virtiofsd: add seccomp whitelist

Only allow system calls that are needed by virtiofsd. All other system calls cause SIGSYS to be directed at the thread and the process will coredump. Restricting system calls reduces the kernel attack surface and limits what the process can do when compromised. Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com> with additional entries by: Signed-off-by: Ganesh Maharaj Mahalingam <ganesh.mahalingam@intel.com> Signed-off-by: Masayoshi Mizuma <m.mizuma@jp.fujitsu.com> Signed-off-by: Misono Tomohiro <misono.tomohiro@jp.fujitsu.com> Signed-off-by: piaojun <piaojun@huawei.com> Signed-off-by: Vivek Goyal <vgoyal@redhat.com> Signed-off-by: Eric Ren <renzhen@linux.alibaba.com> Signed-off-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
author: Stefan Hajnoczi <stefanha@redhat.com> 2019-03-13 09:32:51 +0000
committer: Dr. David Alan Gilbert <dgilbert@redhat.com> 2020-01-23 16:41:37 +0000
commit: 4f8bde99c175ffd86b5125098a4707d43f5e80c6 (patch)
tree: dff3e147bad537c6308fccd1e3f5d89a2e1327c8 /tools/virtiofsd/Makefile.objs
parent: 8e1d4ef231d8327be219f7aea7aa15d181375bbc (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/tools/virtiofsd/Makefile.objs b/tools/virtiofsd/Makefile.objs
index 45a807500d..076f667e46 100644
--- a/tools/virtiofsd/Makefile.objs
+++ b/tools/virtiofsd/Makefile.objs
@@ -5,5 +5,8 @@ virtiofsd-obj-y = buffer.o \
                   fuse_signals.o \
                   fuse_virtio.o \
                   helper.o \
-                  passthrough_ll.o
+                  passthrough_ll.o \
+                  seccomp.o
 
+seccomp.o-cflags := $(SECCOMP_CFLAGS)
+seccomp.o-libs := $(SECCOMP_LIBS)
author	Stefan Hajnoczi <stefanha@redhat.com>	2019-03-13 09:32:51 +0000
committer	Dr. David Alan Gilbert <dgilbert@redhat.com>	2020-01-23 16:41:37 +0000
commit	4f8bde99c175ffd86b5125098a4707d43f5e80c6 (patch)
tree	dff3e147bad537c6308fccd1e3f5d89a2e1327c8 /tools/virtiofsd/Makefile.objs
parent	8e1d4ef231d8327be219f7aea7aa15d181375bbc (diff)