[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH] Whitelist sysinfo call
|
From: |
Eduardo Otubo |
|
Subject: |
Re: [Qemu-devel] [PATCH] Whitelist sysinfo call |
|
Date: |
Tue, 12 Apr 2016 13:53:47 +0200 |
|
User-agent: |
Mutt/1.5.23 (2014-03-12) |
On Mon, Apr 11, 2016 at 08=19=52PM +0000, Serge Hallyn wrote:
> Quoting address@hidden (address@hidden):
> > From: Miroslav Rezanina <address@hidden>
> >
> > Newer version of nss-softokn libraries (> 3.16.2.3) use sysinfo call
> > so qemu using rbd image hang after start when run in sandbox mode.
> >
> > To allow using rbd images in sandbox mode we have to whitelist it.
> >
> > Signed-off-by: Miroslav Rezanina <address@hidden>
>
> Thanks.
>
> Acked-by: Serge E. Hallyn <address@hidden>
Also: I'll change the subject of this email a little bit for a cleaner
and more explicit commit.
Thanks.
>
> > ---
> > qemu-seccomp.c | 1 +
> > 1 file changed, 1 insertion(+)
> >
> > diff --git a/qemu-seccomp.c b/qemu-seccomp.c
> > index 2866e3c..e29fca1 100644
> > --- a/qemu-seccomp.c
> > +++ b/qemu-seccomp.c
> > @@ -250,6 +250,7 @@ static const struct QemuSeccompSyscall
> > seccomp_whitelist[] = {
> > #ifdef HAVE_CACHEFLUSH
> > { SCMP_SYS(cacheflush), 240 },
> > #endif
> > + { SCMP_SYS(sysinfo), 240 },
> > };
> >
> > int seccomp_start(void)
> > --
> > 2.5.0
> >
> >
>
--
Eduardo Otubo
ProfitBricks GmbH
signature.asc
Description: Digital signature