[PATCH 0 of 2] seccomp updates

From: Andrea Arcangeli
Date: Thu Jun 14 2007 - 11:25:51 EST

Next message: holzheu: "Re: [RFC/PATCH] Documentation of kernel messages"
Previous message: Andrea Arcangeli: "[PATCH 1 of 2] move seccomp from /proc to a prctl"
Next in thread: Andrea Arcangeli: "[PATCH 1 of 2] move seccomp from /proc to a prctl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

Those are two longstanding updates for seccomp that I need applied ASAP.

It's not the first time I submit them, hope they go in this time, for the
happiness of all the anti-seccomp and in turn anti-cpushare folks out there.

1) this reduces the number of bytes that seccomp takes when enabled (in ram
terms)
2) this makes seccomp absolutely zerocost at runtime (in cpu terms, even for
the scheduler and not only for the syscalls)

As soon as the money is allowed in (and no it's not a technical problem
anymore, the code is completely finished and tested in the sandbox since two
weeks ago), the userland package may become a bit more spread than only in
debian, and I hardcoded those prctl in the userland side, so I wouldn't like
breakage to spread if somebody registers those prctl numbers in the kernel for
something else.

Thanks.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: holzheu: "Re: [RFC/PATCH] Documentation of kernel messages"
Previous message: Andrea Arcangeli: "[PATCH 1 of 2] move seccomp from /proc to a prctl"
Next in thread: Andrea Arcangeli: "[PATCH 1 of 2] move seccomp from /proc to a prctl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]