Re: [RFC v4 00/18] Landlock LSM: Unprivileged sandboxing

From: Jann Horn
Date: Wed Oct 26 2016 - 10:53:04 EST

Next message: Mika Westerberg: "Re: [PATCH v2] I2C Designware Core Supports SMBUS BLOCK"
Previous message: Boris Ostrovsky: "Re: [PATCH 5/8] xen/pvh: Prevent PVH guests from using PIC, RTC and IOAPIC"
In reply to: MickaÃl SalaÃn: "[RFC v4 10/18] seccomp: Split put_seccomp_filter() with put_seccomp()"
Next in thread: MickaÃl SalaÃn: "Re: [RFC v4 00/18] Landlock LSM: Unprivileged sandboxing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Oct 26, 2016 at 08:56:36AM +0200, Mickaël Salaün wrote:
> The loaded Landlock eBPF programs can be triggered by a seccomp filter
> returning RET_LANDLOCK. In addition, a cookie (16-bit value) can be passed from
> a seccomp filter to eBPF programs. This allow flexible security policies
> between seccomp and Landlock.

Is this still up to date, or was that removed in v3?

Attachment: signature.asc
Description: Digital signature

Next message: Mika Westerberg: "Re: [PATCH v2] I2C Designware Core Supports SMBUS BLOCK"
Previous message: Boris Ostrovsky: "Re: [PATCH 5/8] xen/pvh: Prevent PVH guests from using PIC, RTC and IOAPIC"
In reply to: MickaÃl SalaÃn: "[RFC v4 10/18] seccomp: Split put_seccomp_filter() with put_seccomp()"
Next in thread: MickaÃl SalaÃn: "Re: [RFC v4 00/18] Landlock LSM: Unprivileged sandboxing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]