From 2db05316d09214f5cd6de24e9f17784cbc2f2573 Mon Sep 17 00:00:00 2001
From: Miklos Szegedi <miklos.szegedi@cloudera.com>
Date: Mon, 22 May 2017 22:42:47 -0700
Subject: [PATCH] Whitelist adjtimex get operation. Adjustment operations are
 gated by CAP_SYS_TIME

Signed-off-by: Miklos Szegedi <miklos.szegedi@cloudera.com>
---
 profiles/seccomp/default.json       | 2 +-
 profiles/seccomp/seccomp_default.go | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/profiles/seccomp/default.json b/profiles/seccomp/default.json
index 0d43e60795..b71a8718a4 100755
--- a/profiles/seccomp/default.json
+++ b/profiles/seccomp/default.json
@@ -55,6 +55,7 @@
 				"accept",
 				"accept4",
 				"access",
+				"adjtimex",
 				"alarm",
 				"alarm",
 				"bind",
@@ -719,7 +720,6 @@
 			"names": [
 				"settimeofday",
 				"stime",
-				"adjtimex",
 				"clock_settime"
 			],
 			"action": "SCMP_ACT_ALLOW",
diff --git a/profiles/seccomp/seccomp_default.go b/profiles/seccomp/seccomp_default.go
index 8cf0df2698..833dcd5a8a 100644
--- a/profiles/seccomp/seccomp_default.go
+++ b/profiles/seccomp/seccomp_default.go
@@ -49,6 +49,7 @@ func DefaultProfile() *types.Seccomp {
 				"accept",
 				"accept4",
 				"access",
+				"adjtimex",
 				"alarm",
 				"alarm",
 				"bind",
@@ -611,7 +612,6 @@ func DefaultProfile() *types.Seccomp {
 			Names: []string{
 				"settimeofday",
 				"stime",
-				"adjtimex",
 				"clock_settime",
 			},
 			Action: types.ActAllow,