diff options
author | Daniel Verkamp <dverkamp@chromium.org> | 2020-01-15 13:34:09 -0800 |
---|---|---|
committer | Commit Bot <commit-bot@chromium.org> | 2020-01-17 23:04:03 +0000 |
commit | 5de0604f2922681f1414bc05f8cfe9b30387e59e (patch) | |
tree | a34a2ea8d4c92269876a708c450e167417b95dea /seccomp/aarch64 | |
parent | dd21cf7b38dd367b8d053fe0fb849db337f7740e (diff) | |
download | crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar.gz crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar.bz2 crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar.lz crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar.xz crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.tar.zst crosvm-5de0604f2922681f1414bc05f8cfe9b30387e59e.zip |
seccomp: allow statx syscall where stat/fstat was allowed
This is used in Rust 1.40.0's libstd in place of stat/fstat; update the whitelists to allow the new syscall as well. BUG=chromium:1042461 TEST=`crosvm disk resize` does not trigger seccomp failure Change-Id: Ia3f0e49ee009547295c7af7412dfb5eb3ac1efcb Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/2003685 Reviewed-by: Chirantan Ekbote <chirantan@chromium.org> Tested-by: kokoro <noreply+kokoro@google.com> Commit-Queue: Daniel Verkamp <dverkamp@chromium.org>
Diffstat (limited to 'seccomp/aarch64')
-rw-r--r-- | seccomp/aarch64/block_device.policy | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/seccomp/aarch64/block_device.policy b/seccomp/aarch64/block_device.policy index 14287e3..cf1816a 100644 --- a/seccomp/aarch64/block_device.policy +++ b/seccomp/aarch64/block_device.policy @@ -12,6 +12,7 @@ ftruncate: 1 lseek: 1 preadv: 1 pwritev: 1 +statx: 1 timerfd_create: 1 timerfd_gettime: 1 timerfd_settime: 1 |