| Re: [chrony-dev] [PATCH] sys_linux: allow clock_gettime64 in seccomp filter |
[ Thread Index |
Date Index
| More chrony.tuxfamily.org/chrony-dev Archives
]
- To: chrony-dev@xxxxxxxxxxxxxxxxxxxx
- Subject: Re: [chrony-dev] [PATCH] sys_linux: allow clock_gettime64 in seccomp filter
- From: Miroslav Lichvar <mlichvar@xxxxxxxxxx>
- Date: Mon, 18 May 2020 17:44:07 +0200
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1589816657; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=NV2Wba6uvMfy5EEN9pWhSueXjwwtKSNYJRVvm5NEhwA=; b=CP3MDqrM+wBf4nbIDrFnXbEML9LKo9NDkNXw3wmqKDDXgzm7WufstgxUwtGnrscJyPZKgP fWjhWHaydFe0rildEkKBNabz0L+UtVtIF2zUjAKPr1GuZipAyARWx3EN/Z6ADH9DDWYjcF q4ciSNuyAWMHD7TTFa/FwM3pCNX5wqo=
On Thu, May 14, 2020 at 09:56:12PM +0200, Vincent Blut wrote:
> So when I started working on this, it became apparent that the seccomp
> filter was becoming indigestible, too painful to read. For that reason, I
> took the liberty of restructuring the list of permitted system calls in the
> seccomp filter (I did not touch socket_domains, socket_options and ioctls).
> This is 0001-sys_linux-restructure-syscalls-in-seccomp-filter.patch.
> If the result doesn’t suit you, feel free to tell me and I’ll make the
> necessary changes.
Good idea.
> 0002-sys_linux-allow-some-time64-syscalls-in-seccomp-filt.patch adds 64-bit
> variants of some syscalls. I did not put them in a single “#ifdef” as I
> don’t know if a specific macro has been defined for these kind of syscalls.
Both applied, thanks.
--
Miroslav Lichvar
--
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.