diff options
| author | Daniel P. Berrangé | 2021-07-29 14:15:43 +0200 |
|---|---|---|
| committer | Daniel P. Berrangé | 2022-02-16 19:52:40 +0100 |
| commit | d2ea8dac705fe9bca9b6b26a7aeb063d1a406f7a (patch) | |
| tree | 41563216a16a629fe69ba4bc891e385828cb272c /MAINTAINERS | |
| parent | seccomp: allow action to be customized per syscall (diff) | |
| download | qemu-d2ea8dac705fe9bca9b6b26a7aeb063d1a406f7a.tar.gz qemu-d2ea8dac705fe9bca9b6b26a7aeb063d1a406f7a.tar.xz qemu-d2ea8dac705fe9bca9b6b26a7aeb063d1a406f7a.zip | |
seccomp: add unit test for seccomp filtering
The handling of some syscalls / libc function is quite subtle. For
example, 'fork' at a libc level doesn't always correspond to 'fork'
at a syscall level, since the 'clone' syscall is preferred usually.
The unit test will help to detect these kind of problems. A point of
difficulty in writing a test though is that the QEMU build process may
already be confined by seccomp. For example, if running inside a
container. Since we can't predict what filtering might have been applied
already, we are quite conservative and skip all tests if we see any kind
of seccomp filter active.
Acked-by: Eduardo Otubo <otubo@redhat.com>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
Diffstat (limited to 'MAINTAINERS')
| -rw-r--r-- | MAINTAINERS | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/MAINTAINERS b/MAINTAINERS index 4b3ae2ab08..1fe647eb08 100644 --- a/MAINTAINERS +++ b/MAINTAINERS @@ -2982,6 +2982,7 @@ M: Eduardo Otubo <otubo@redhat.com> S: Supported F: softmmu/qemu-seccomp.c F: include/sysemu/seccomp.h +F: tests/unit/test-seccomp.c Cryptography M: Daniel P. Berrange <berrange@redhat.com> |