commit | e9c4bf66a816d4efc1257de4f8d1fa6f3cf257fe | [log] [tgz] |
---|---|---|
author | Daniel Verkamp <dverkamp@chromium.org> | Tue Feb 22 21:05:08 2022 |
committer | Commit Bot <commit-bot@chromium.org> | Wed Mar 02 18:31:03 2022 |
tree | 07eef17eb229d9712bef927c929f14cd3b8fcc40 | |
parent | bb07b7c2f71438a0d776108a562432a71e11b3b8 [diff] |
seccomp: allow clock_gettime in all devices This was already allowed in common_device.policy for arm platforms, and it can be called via future/async code that is used by many devices. Add it to x86_64 and aarch64 common policies as well. BUG=b:220908060 TEST=Start Crostini with virtio-snd on hatch and trogdo Change-Id: I9bf8f56ebed0cfe6d5e17e45226cac73db3d6d37 Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/3482026 Reviewed-by: Dmitry Torokhov <dtor@chromium.org> Tested-by: kokoro <noreply+kokoro@google.com> Commit-Queue: Daniel Verkamp <dverkamp@chromium.org> (cherry picked from commit 9f7a50fb5033d70681d246cf554c75b16faec94a) Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/3485639 Tested-by: Daniel Verkamp <dverkamp@chromium.org> (cherry picked from commit f8ba4d599f05ac8cef7f7834e262901a5c1a5290) Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/3500287 Reviewed-by: Daniel Verkamp <dverkamp@chromium.org> Reviewed-by: Dennis Kempin <denniskempin@google.com>
crosvm is a virtual machine monitor (VMM) based on Linux’s KVM hypervisor, with a focus on simplicity, security, and speed. crosvm is intended to run Linux guests, originally as a security boundary for running native applications on the Chrome OS platform. Compared to QEMU, crosvm doesn’t emulate architectures or real hardware, instead concentrating on paravirtualized devices, such as the virtio standard.
crosvm is currently used to run Linux/Android guests on Chrome OS devices.