Re: [PATCH v4 3/4] seccomp: add a way to get a listener fd from ptrace

Hi Jann, On Fri, Jun 22, 2018 at 12:48:09AM +0200, Jann Horn wrote: > On Fri, Jun 22, 2018 at 12:04 AM Tycho Andersen wrote: > > As an alternative to SECCOMP_FILTER_FLAG_GET_LISTENER, perhaps a ptrace() > > version which can acquire filters is useful. There are at least two reasons > > this is

Re: [PATCH v4 3/4] seccomp: add a way to get a listener fd from ptrace

Hi Jann, On Fri, Jun 22, 2018 at 12:48:09AM +0200, Jann Horn wrote: > On Fri, Jun 22, 2018 at 12:04 AM Tycho Andersen wrote: > > As an alternative to SECCOMP_FILTER_FLAG_GET_LISTENER, perhaps a ptrace() > > version which can acquire filters is useful. There are at least two reasons > > this is

Re: [PATCH v4 3/4] seccomp: add a way to get a listener fd from ptrace

On Fri, Jun 22, 2018 at 12:04 AM Tycho Andersen wrote: > As an alternative to SECCOMP_FILTER_FLAG_GET_LISTENER, perhaps a ptrace() > version which can acquire filters is useful. There are at least two reasons > this is preferable, even though it uses ptrace: > > 1. You can control tasks that

Re: [PATCH v4 3/4] seccomp: add a way to get a listener fd from ptrace

On Fri, Jun 22, 2018 at 12:04 AM Tycho Andersen wrote: > As an alternative to SECCOMP_FILTER_FLAG_GET_LISTENER, perhaps a ptrace() > version which can acquire filters is useful. There are at least two reasons > this is preferable, even though it uses ptrace: > > 1. You can control tasks that