seccomp: fine tuning whitelist by adding times()

author Eduardo Otubo <otubo@linux.vnet.ibm.com>

Tue, 24 Sep 2013 17:50:44 +0000 (14:50 -0300)

committer Eduardo Otubo <otubo@linux.vnet.ibm.com>

Tue, 24 Sep 2013 18:15:16 +0000 (15:15 -0300)
author Eduardo Otubo <otubo@linux.vnet.ibm.com>
Tue, 24 Sep 2013 17:50:44 +0000 (14:50 -0300)
committer Eduardo Otubo <otubo@linux.vnet.ibm.com>
Tue, 24 Sep 2013 18:15:16 +0000 (15:15 -0300)
diff --git a/qemu-seccomp.c b/qemu-seccomp.c

index 37d38f881c79b1f89d1e369c794896df7d0504e2..69cee443afaff5813c5533c7739de0bb7e6d274f 100644 (file)
--- a/qemu-seccomp.c
+++ b/qemu-seccomp.c
@@ -90,6 +90,7 @@ static const struct QemuSeccompSyscall seccomp_whitelist[] = {
      { SCMP_SYS(getuid), 245 },
      { SCMP_SYS(geteuid), 245 },
      { SCMP_SYS(timer_create), 245 },
+    { SCMP_SYS(times), 245 },
      { SCMP_SYS(exit), 245 },
      { SCMP_SYS(clock_gettime), 245 },
      { SCMP_SYS(time), 245 },
author	Eduardo Otubo <otubo@linux.vnet.ibm.com>
	Tue, 24 Sep 2013 17:50:44 +0000 (14:50 -0300)
committer	Eduardo Otubo <otubo@linux.vnet.ibm.com>
	Tue, 24 Sep 2013 18:15:16 +0000 (15:15 -0300)