seccomp: add spawn argument to command line (995a226f) · Commits · Anton / libtcg

Commit 995a226f authored 8 years ago by Eduardo Otubo

seccomp: add spawn argument to command line


This patch adds [,spawn=deny] argument to `-sandbox on' option. It
blacklists fork and execve system calls, avoiding Qemu to spawn new
threads or processes.

Signed-off-by: Eduardo Otubo <otubo@redhat.com>

parent 73a1e647

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 28 additions and 2 deletions

Please register or to comment