The current version of my virtio-gpu patches for cloud-hypervisor
aren't compatible with sandboxing[1]. The next version of them will fix
this, which will allow this patch to be dropped.
[1]: https://spectrum-os.org/lists/archives/spectrum-devel/20220929085338.lazjtzt...
Signed-off-by: Alyssa Ross
---
host/start-vm/start-vm.rs | 1 +
1 file changed, 1 insertion(+)
diff --git a/host/start-vm/start-vm.rs b/host/start-vm/start-vm.rs
index b954ebd..f07711b 100644
--- a/host/start-vm/start-vm.rs
+++ b/host/start-vm/start-vm.rs
@@ -33,6 +33,7 @@ fn vm_command(dir: PathBuf) -> Result {
command.args(&["--cmdline", "console=ttyS0 root=PARTLABEL=root"]);
command.args(&["--memory", "size=128M,shared=on"]);
command.args(&["--console", "pty"]);
+ command.args(&["--seccomp", "log"]);
let mut definition_path = PathBuf::new();
definition_path.push("/ext/svc/data");
--
2.37.1
