Re: [PATCH v8 3/8] seccomp: add system call filtering using BPF

From: Will Drewry
Date: Thu Feb 16 2012 - 23:40:53 EST

Next message: Nikunj A Dadhania: "Re: [RFC PATCH 06/14] sched: aggregate total task_group load"
Previous message: Mike Frysinger: "Re: [PATCH v2 1/2] arch/blackfin: don't generate random mac in bfin_get_ether_addr()"
In reply to: H. Peter Anvin: "Re: [PATCH v8 3/8] seccomp: add system call filtering using BPF"
Next in thread: Will Drewry: "Re: [PATCH v8 3/8] seccomp: add system call filtering using BPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Feb 16, 2012 at 10:32 PM, H. Peter Anvin <hpa@xxxxxxxxx> wrote:
> On 02/16/2012 08:26 PM, Will Drewry wrote:
>>>
>>> For x32 you have the option of introducing a new value or relying on bit
>>> 30 in eax (and AUDIT_ARCH_X86_64). The latter is more natural, probably.
>>
>> Will that bit be visible as the syscall number or will it be stripped
>> out before passing the number around? If it's visible, then it
>> doesn't seem like there'd need to be a new AUDIT_ARCH, but I suspect
>> someone like Eric will have an actually useful opinion.
>>
>
> Bit 30 is visible in orig_eax; whether you export it as part of "the
> syscall number" is presumably TBD, but I think it's more natural to do so.

That's what I meant - thanks!
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Nikunj A Dadhania: "Re: [RFC PATCH 06/14] sched: aggregate total task_group load"
Previous message: Mike Frysinger: "Re: [PATCH v2 1/2] arch/blackfin: don't generate random mac in bfin_get_ether_addr()"
In reply to: H. Peter Anvin: "Re: [PATCH v8 3/8] seccomp: add system call filtering using BPF"
Next in thread: Will Drewry: "Re: [PATCH v8 3/8] seccomp: add system call filtering using BPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]