diff options
author | Michael Pratt <mpratt@google.com> | 2020-09-18 09:54:00 -0700 |
---|---|---|
committer | gVisor bot <gvisor-bot@google.com> | 2020-09-18 09:57:27 -0700 |
commit | 313e1988c4609c74ada99c1a5e9ecde56c313125 (patch) | |
tree | 3312bf198589a60e1dbd4d137fd40aed4d58fa8f | |
parent | 360006d894247ba78771d1244d5b849dabe3ce5a (diff) |
Drop ARCH_GET_FS
Go does not call arch_prctl(ARCH_GET_FS), nor am I sure it ever did. Drop the
filter.
PiperOrigin-RevId: 332470532
-rw-r--r-- | runsc/boot/filter/config_amd64.go | 1 | ||||
-rw-r--r-- | runsc/fsgofer/filter/config_amd64.go | 1 |
2 files changed, 0 insertions, 2 deletions
diff --git a/runsc/boot/filter/config_amd64.go b/runsc/boot/filter/config_amd64.go index 9b1799416..24e13565e 100644 --- a/runsc/boot/filter/config_amd64.go +++ b/runsc/boot/filter/config_amd64.go @@ -25,7 +25,6 @@ import ( func init() { allowedSyscalls[syscall.SYS_ARCH_PRCTL] = append(allowedSyscalls[syscall.SYS_ARCH_PRCTL], - seccomp.Rule{seccomp.EqualTo(linux.ARCH_GET_FS)}, seccomp.Rule{seccomp.EqualTo(linux.ARCH_SET_FS)}, ) } diff --git a/runsc/fsgofer/filter/config_amd64.go b/runsc/fsgofer/filter/config_amd64.go index 53506b5e1..39f9851a8 100644 --- a/runsc/fsgofer/filter/config_amd64.go +++ b/runsc/fsgofer/filter/config_amd64.go @@ -25,7 +25,6 @@ import ( func init() { allowedSyscalls[syscall.SYS_ARCH_PRCTL] = []seccomp.Rule{ - {seccomp.EqualTo(linux.ARCH_GET_FS)}, {seccomp.EqualTo(linux.ARCH_SET_FS)}, } |