On Tue, Jun 24, 2014 at 3:23 AM, Michael Kerrisk (man-pages) <[email protected]> wrote: > On 06/24/2014 12:01 AM, Kees Cook wrote: >> Combines documentation from prctl, and in-kernel seccomp_filter.txt, >> along with new details specific to the new syscall. > > Great work on the man page, Kees! (BTW, just looking at the complexity > detailed > there further supports the decision to grant this functionality as a separate > syscall, rather than multiplexed into prctl(2).
Great, thanks! > Would there be some suitable, not too long program that we > could put in the man page as an example for using filters? Sure thing. I can modify the "dropper" sample in samples/seccomp. I will resend the man-page with that added. Thanks! -Kees -- Kees Cook Chrome OS Security -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to [email protected] More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
