crosvm/seccomp/x86_64/cras_audio_device.policy
Daniel Verkamp 9f7a50fb50 seccomp: allow clock_gettime in all devices
This was already allowed in common_device.policy for arm platforms, and
it can be called via future/async code that is used by many devices. Add
it to x86_64 and aarch64 common policies as well.

BUG=b:220908060
TEST=Start Crostini with virtio-snd on hatch and trogdo

Change-Id: I9bf8f56ebed0cfe6d5e17e45226cac73db3d6d37
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/3482026
Reviewed-by: Dmitry Torokhov <dtor@chromium.org>
Tested-by: kokoro <noreply+kokoro@google.com>
Commit-Queue: Daniel Verkamp <dverkamp@chromium.org>
2022-02-22 23:15:48 +00:00

18 lines
443 B
Text

# Copyright 2019 The Chromium OS Authors. All rights reserved.
# Use of this source code is governed by a BSD-style license that can be
# found in the LICENSE file.
@include /usr/share/policy/crosvm/common_device.policy
lseek: 1
madvise: 1
open: return ENOENT
openat: return ENOENT
prlimit64: 1
setrlimit: 1
sched_setscheduler: 1
socketpair: arg0 == AF_UNIX
prctl: arg0 == PR_SET_NAME
timerfd_create: 1
timerfd_gettime: 1
timerfd_settime: 1