[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-commits] [qemu/qemu] 843976: seccomp: add timerfd_create and timer
|
From: |
GitHub |
|
Subject: |
[Qemu-commits] [qemu/qemu] 843976: seccomp: add timerfd_create and timerfd_settime to... |
|
Date: |
Mon, 28 Apr 2014 07:00:08 -0700 |
Branch: refs/heads/master
Home: https://github.com/qemu/qemu
Commit: 84397618529f920bea45d0bab22ec097766244fc
https://github.com/qemu/qemu/commit/84397618529f920bea45d0bab22ec097766244fc
Author: Felix Geyer <address@hidden>
Date: 2014-04-25 (Fri, 25 Apr 2014)
Changed paths:
M qemu-seccomp.c
Log Message:
-----------
seccomp: add timerfd_create and timerfd_settime to the whitelist
libusb calls timerfd_create() and timerfd_settime() when it's built with
timerfd support.
Command to reproduce:
-device usb-host,hostbus=1,hostaddr=3,id=hostdev0
Log messages:
audit(1390730418.924:135): auid=4294967295 uid=121 gid=103 ses=4294967295
pid=5232 comm="qemu-system-x86" sig=31 syscall=283
compat=0 ip=0x7f2b0f4e96a7 code=0x0
audit(1390733100.580:142): auid=4294967295 uid=121 gid=103 ses=4294967295
pid=16909 comm="qemu-system-x86" sig=31 syscall=286
compat=0 ip=0x7f03513a06da code=0x0
Reading a few hundred MB from a USB drive on x86_64 shows this syscall
distribution.
Therefore the timerfd_settime priority is set to 242.
calls syscall
--------- ----------------
5303600 write
2240554 read
2167030 ppoll
2134828 ioctl
704023 timerfd_settime
689105 poll
83122 futex
803 writev
476 rt_sigprocmask
287 recvmsg
178 brk
Signed-off-by: Felix Geyer <address@hidden>
Signed-off-by: Eduardo Otubo <address@hidden>
Commit: e3f9bb011ae24a594310fa4917754945dc832f8f
https://github.com/qemu/qemu/commit/e3f9bb011ae24a594310fa4917754945dc832f8f
Author: Paul Moore <address@hidden>
Date: 2014-04-25 (Fri, 25 Apr 2014)
Changed paths:
M qemu-seccomp.c
Log Message:
-----------
seccomp: add shmctl(), mlock(), and munlock() to the syscall whitelist
Additional testing reveals that PulseAudio requires shmctl() and the
mlock()/munlock() syscalls on some systems/configurations. As before,
on systems that do require these syscalls, the problem can be seen with
the following command line:
# qemu -monitor stdio -sandbox on \
-device intel-hda -device hda-duplex
Signed-off-by: Paul Moore <address@hidden>
Signed-off-by: Eduardo Otubo <address@hidden>
Commit: e2da502c003b9a91b4aea7684959192bd07c1f1d
https://github.com/qemu/qemu/commit/e2da502c003b9a91b4aea7684959192bd07c1f1d
Author: Peter Maydell <address@hidden>
Date: 2014-04-28 (Mon, 28 Apr 2014)
Changed paths:
M qemu-seccomp.c
Log Message:
-----------
Merge remote-tracking branch 'remotes/otubo/seccomp' into staging
* remotes/otubo/seccomp:
seccomp: add shmctl(), mlock(), and munlock() to the syscall whitelist
seccomp: add timerfd_create and timerfd_settime to the whitelist
Signed-off-by: Peter Maydell <address@hidden>
Compare: https://github.com/qemu/qemu/compare/93156cef1c90...e2da502c003b
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Qemu-commits] [qemu/qemu] 843976: seccomp: add timerfd_create and timerfd_settime to...,
GitHub <=