[libvirt] [PATCHv2 1/4] Introduce QEMU_CAPS_SECCOMP_BLACKLIST
John Ferlan
jferlan at redhat.com
Fri Apr 13 14:07:04 UTC 2018
On 04/10/2018 10:49 AM, Ján Tomko wrote:
> QEMU commit 1bd6152 changed the default behavior from whitelist
> to blacklist and introduced a few sets of system calls.
>
> Use the 'elevateprivileges' parameter of -sandbox as a witness
> of this change.
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1492597
>
> Signed-off-by: Ján Tomko <jtomko at redhat.com>
> ---
> src/qemu/qemu_capabilities.c | 2 ++
> src/qemu/qemu_capabilities.h | 1 +
> tests/qemucapabilitiesdata/caps_2.11.0.s390x.xml | 1 +
> tests/qemucapabilitiesdata/caps_2.12.0.aarch64.xml | 1 +
> tests/qemucapabilitiesdata/caps_2.12.0.ppc64.xml | 1 +
> tests/qemucapabilitiesdata/caps_2.12.0.s390x.xml | 1 +
> tests/qemucapabilitiesdata/caps_2.12.0.x86_64.xml | 1 +
> 7 files changed, 8 insertions(+)
>
Reviewed-by: John Ferlan <jferlan at redhat.com>
John
Although I think this should be patch 3... not that it really matters.
More information about the libvir-list
mailing list