|From:||Kees Cook <email@example.com>|
|Subject:||[PATCH v2 0/3] seccomp: add PR_SECCOMP_EXT and SECCOMP_EXT_ACT_TSYNC|
|Date:||Thu, 17 Apr 2014 11:05:01 -0700|
|Cc:||John Johansen <firstname.lastname@example.org>, Kees Cook <email@example.com>, Oleg Nesterov <firstname.lastname@example.org>, Andy Lutomirski <email@example.com>, Will Drewry <firstname.lastname@example.org>, Julien Tinnes <email@example.com>, firstname.lastname@example.org, email@example.com|
This adds the ability for threads to request seccomp filter synchronization across their thread group. To support this, seccomp locking on writes is introduced, along with refactoring of no_new_privs. Races with thread creation are handled via the tasklist_list. I think all the concerns raised during the discussion of the first version of this patch have been addressed. However, the races involved have tricked me before. :) Thanks! -Kees  https://lkml.org/lkml/2014/1/13/795 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to firstname.lastname@example.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Copyright © 2014, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds