Re: [PATCH v4 03/13] seccomp_filters: new mode with configurablesyscall filters

From: Colin Walters
Date: Fri Jun 03 2011 - 18:16:52 EST

Next message: Sameer Nanda: "Re: [PATCH] init: skip calibration delay if previously done"
Previous message: Alan Cox: "Re: [PATCH 5/5] tty: n_gsm: Fixed NULL ptr OOPs in tty_write_room()"
In reply to: Will Drewry: "[PATCH v6 03/14] seccomp_filters: new mode with configurable syscall filters"
Next in thread: Stephen Smalley: "Re: [PATCH v4 03/13] seccomp_filters: new mode with configurablesyscall filters"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jun 3, 2011 at 4:34 PM, Will Drewry <wad@xxxxxxxxxxxx> wrote:
> (Any thoughts specifically on the mutex use would be greatly appreciated!)
>
> This change adds a new seccomp mode which specifies the allowed system
> calls dynamically.

One thing to consider (not sure if it's been discussed, but I think
not) is whether some of the LSMs should hook this.

Notably, it looks like SELinux doesn't have an access vector for prctl
at all now; it doesn't hook task_prctl from what I see, and so we fall
back to cap_task_prctl. While I know the idea of restricting a
process' ability to enter seccomp is a bit perverse, we should
probably at least allow mandatory controls. James?
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sameer Nanda: "Re: [PATCH] init: skip calibration delay if previously done"
Previous message: Alan Cox: "Re: [PATCH 5/5] tty: n_gsm: Fixed NULL ptr OOPs in tty_write_room()"
In reply to: Will Drewry: "[PATCH v6 03/14] seccomp_filters: new mode with configurable syscall filters"
Next in thread: Stephen Smalley: "Re: [PATCH v4 03/13] seccomp_filters: new mode with configurablesyscall filters"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]