Whitelist clock_gettime() for seccomp. Not necessary so long as vdso

is enabled, but otherwise...
2012-07-21 19:46:50 -04:00 · 2012-07-21 19:46:50 -04:00 · 7d5b6ddc7e
commit 7d5b6ddc7e
parent b53b8585d5
1 changed files with 1 additions and 0 deletions
--- a/ifchd/ifchd.c
+++ b/ifchd/ifchd.c
@ -134,6 +134,7 @@ static int enforce_seccomp(void)
        ALLOW_SYSCALL(sendto), // used for glibc syslog routines
        ALLOW_SYSCALL(epoll_wait),
        ALLOW_SYSCALL(epoll_ctl),
        ALLOW_SYSCALL(clock_gettime),
        ALLOW_SYSCALL(close),
        ALLOW_SYSCALL(socket),
        ALLOW_SYSCALL(getsockopt),