[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[PULL 4/5] virtiofsd: Add _llseek to the seccomp whitelist
|
From: |
Dr. David Alan Gilbert (git) |
|
Subject: |
[PULL 4/5] virtiofsd: Add _llseek to the seccomp whitelist |
|
Date: |
Thu, 4 Feb 2021 18:34:38 +0000 |
From: Greg Kurz <groug@kaod.org>
This is how glibc implements lseek(2) on POWER.
BugLink: https://bugzilla.redhat.com/show_bug.cgi?id=1917692
Signed-off-by: Greg Kurz <groug@kaod.org>
Message-Id: <20210121171540.1449777-1-groug@kaod.org>
Reviewed-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
Signed-off-by: Dr. David Alan Gilbert <dgilbert@redhat.com>
---
tools/virtiofsd/passthrough_seccomp.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/tools/virtiofsd/passthrough_seccomp.c
b/tools/virtiofsd/passthrough_seccomp.c
index a60d7da4b4..1ecf5bf318 100644
--- a/tools/virtiofsd/passthrough_seccomp.c
+++ b/tools/virtiofsd/passthrough_seccomp.c
@@ -65,6 +65,7 @@ static const int syscall_whitelist[] = {
SCMP_SYS(linkat),
SCMP_SYS(listxattr),
SCMP_SYS(lseek),
+ SCMP_SYS(_llseek), /* For POWER */
SCMP_SYS(madvise),
SCMP_SYS(mkdirat),
SCMP_SYS(mknodat),
--
2.29.2
- [PULL 0/5] virtiofs queue: Security fix, Dr. David Alan Gilbert (git), 2021/02/04
- [PULL 2/5] virtiofsd: optionally return inode pointer from lo_do_lookup(), Dr. David Alan Gilbert (git), 2021/02/04
- [PULL 1/5] virtiofsd: extract lo_do_open() from lo_open(), Dr. David Alan Gilbert (git), 2021/02/04
- [PULL 3/5] virtiofsd: prevent opening of special files (CVE-2020-35517), Dr. David Alan Gilbert (git), 2021/02/04
- [PULL 4/5] virtiofsd: Add _llseek to the seccomp whitelist,
Dr. David Alan Gilbert (git) <=
- [PULL 5/5] virtiofsd: Add restart_syscall to the seccomp whitelist, Dr. David Alan Gilbert (git), 2021/02/04
- Re: [PULL 0/5] virtiofs queue: Security fix, no-reply, 2021/02/04
- Re: [PULL 0/5] virtiofs queue: Security fix, Peter Maydell, 2021/02/05