Re: [RFC] x86: restrict pid namespaces to 32 or 64 bit syscalls

From: James Morris
Date: Sun Aug 14 2011 - 19:36:38 EST

Next message: Linus Torvalds: "Re: Linux 3.1-rc2"
Previous message: Maxin B John: "Re: [PATCH] SCSI: OSD: Kconfig: Select SHA1 and HMAC for OSDInitiator library"
In reply to: H. Peter Anvin: "Re: [RFC] x86: restrict pid namespaces to 32 or 64 bit syscalls"
Next in thread: Andi Kleen: "Re: [RFC] x86: restrict pid namespaces to 32 or 64 bit syscalls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 14 Aug 2011, H. Peter Anvin wrote:

> Last I looked seccomp still had a hardcoded list of system calls, but
> perhaps I've been looking in the wrong place. However, since that's
> exactly what seccomp is -- a system call filter -- this can, and should,
> be unified that way.

Yes, we should definitely look at incorporating this into seccomp v2,
which is still under discussion (and a topic at KS).

- James
--
James Morris
<jmorris@xxxxxxxxx>
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Linus Torvalds: "Re: Linux 3.1-rc2"
Previous message: Maxin B John: "Re: [PATCH] SCSI: OSD: Kconfig: Select SHA1 and HMAC for OSDInitiator library"
In reply to: H. Peter Anvin: "Re: [RFC] x86: restrict pid namespaces to 32 or 64 bit syscalls"
Next in thread: Andi Kleen: "Re: [RFC] x86: restrict pid namespaces to 32 or 64 bit syscalls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]