Re: seccomp for 2.6.11-rc1-bk8

From: Roland McGrath
Date: Fri Jan 21 2005 - 16:38:45 EST

Next message: Stephen C. Tweedie: "Re: Fix ea-in-inode default ACL creation"
Previous message: Pavel Machek: "Re: [PATCH] dynamic tick patch"
In reply to: Ingo Molnar: "Re: seccomp for 2.6.11-rc1-bk8"
Next in thread: Andrea Arcangeli: "Re: seccomp for 2.6.11-rc1-bk8"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> maybe this could even be fit into existing ptrace semantics, without any
> need for PTRACE_ATTACH_JAIL. What we need is to catch the case where a
> ptraced child is running (i.e. the signal_wake_up() has already been
> done, and the parent is waiting for the child to stop again), and the
> ptrace parent is killed unexpectedly. Would it be a correct fix to just
> unconditionally stop the child in this case (and leave it hanging in
> such a state)? Or to kill it right away?

That's the same as the case of the debugger dying or being killed by hand.
When gdb has a bug, people want to be able to kill it and get on with using
their program, not have their program always be killed too.

If you add this feature, it makes most sense IMHO to use PTRACE_SETOPTIONS
as the way to request it.

Thanks,
Roland
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Stephen C. Tweedie: "Re: Fix ea-in-inode default ACL creation"
Previous message: Pavel Machek: "Re: [PATCH] dynamic tick patch"
In reply to: Ingo Molnar: "Re: seccomp for 2.6.11-rc1-bk8"
Next in thread: Andrea Arcangeli: "Re: seccomp for 2.6.11-rc1-bk8"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]