|From:||Kees Cook <firstname.lastname@example.org>|
|Subject:||[PATCH v2 0/3] seccomp: add PR_SECCOMP_EXT and SECCOMP_EXT_ACT_TSYNC|
|Date:||Thu, 17 Apr 2014 11:05:01 -0700|
|Cc:||John Johansen <email@example.com>, Kees Cook <firstname.lastname@example.org>, Oleg Nesterov <email@example.com>, Andy Lutomirski <firstname.lastname@example.org>, Will Drewry <email@example.com>, Julien Tinnes <firstname.lastname@example.org>, email@example.com, firstname.lastname@example.org|
This adds the ability for threads to request seccomp filter synchronization across their thread group. To support this, seccomp locking on writes is introduced, along with refactoring of no_new_privs. Races with thread creation are handled via the tasklist_list. I think all the concerns raised during the discussion of the first version of this patch have been addressed. However, the races involved have tricked me before. :) Thanks! -Kees  https://lkml.org/lkml/2014/1/13/795 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to email@example.com More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Copyright © 2014, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds