Re: Potential issues (security and otherwise) with the current cgroup-bpf API

From: Alexei Starovoitov
Date: Mon Dec 19 2016 - 23:52:19 EST

Next message: Jiandi An: "Re: [PATCH] Xen: ARM: Zero reserved fields of xatp before making hypervisor call"
Previous message: Alexei Starovoitov: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
In reply to: Andy Lutomirski: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
Next in thread: Andy Lutomirski: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Dec 19, 2016 at 05:40:53PM -0800, Andy Lutomirski wrote:
>
> By the way, even if Alexei is right, the BPF_PROG_DETACH API doesn't
> even take a reference to a BPF program as an argument. What is it
> supposed to do if this mechanism ever gets extended?

we just add another field to that anonymous union just like
we did for other commands and everything is backwards compatible.
It's the basics of bpf syscall that we've been relying on for some
time now and it worked just fine.

Next message: Jiandi An: "Re: [PATCH] Xen: ARM: Zero reserved fields of xatp before making hypervisor call"
Previous message: Alexei Starovoitov: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
In reply to: Andy Lutomirski: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
Next in thread: Andy Lutomirski: "Re: Potential issues (security and otherwise) with the current cgroup-bpf API"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]