[libvirt] [PATCH v0] qemu: Add sandbox support.
Doug Goldstein
cardoe at gentoo.org
Mon Sep 3 21:07:50 UTC 2012
On Mon, Sep 3, 2012 at 7:03 AM, Ján Tomko <jtomko at redhat.com> wrote:
> QEMU (since 1.2-rc0) supports setting up a syscall whitelist through
> libseccomp on linux kernel from 3.5-rc1. This is enabled by specifying
> -sandbox on on qemu command line.
<snip>
There's a big push to not rely on -help scraping, please work with
qemu upstream to get this exposed through the QMP and query for the
capability that way.
--
Doug Goldstein
More information about the libvir-list
mailing list