[PATCH v2 0/3] Fix seccomp for UM (next)

From: MickaÃl SalaÃn
Date: Mon Aug 01 2016 - 17:10:49 EST

Next message: MickaÃl SalaÃn: "[PATCH v2 3/3] seccomp: Remove 2-phase API documentation"
Previous message: Jens Axboe: "Re: [PATCH] Include: blkdev: Removed duplicate 'struct request;' declaration."
Next in thread: MickaÃl SalaÃn: "[PATCH v2 3/3] seccomp: Remove 2-phase API documentation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

This series fix the recent seccomp update for the User-mode Linux architecture
(32-bit and 64-bit) since commit 26703c636c1f ("um/ptrace: run seccomp after
ptrace") which close the hole where ptrace can change a syscall out from under
seccomp.

Changes since v1:
* fix commit message typo [2/3]
* add Kees Cook's Acked-by
* rebased on commit 7616ac70d1bb ("apparmor: fix SECURITY_APPARMOR_HASH_DEFAULT
parameter handling")

Available in the git repository at:
https://github.com/l0kod/linux heads/um-fix-seccomp-ptrace-v2

Regards,

MickaÃl SalaÃn (3):
um/ptrace: Fix the syscall_trace_leave call
um/ptrace: Fix the syscall number update after a ptrace
seccomp: Remove 2-phase API documentation

arch/Kconfig | 11 -----------
arch/um/kernel/skas/syscall.c | 10 +++-------
arch/x86/um/ptrace_32.c | 3 +++
arch/x86/um/ptrace_64.c | 4 ++++
4 files changed, 10 insertions(+), 18 deletions(-)

--
2.8.1

Next message: MickaÃl SalaÃn: "[PATCH v2 3/3] seccomp: Remove 2-phase API documentation"
Previous message: Jens Axboe: "Re: [PATCH] Include: blkdev: Removed duplicate 'struct request;' declaration."
Next in thread: MickaÃl SalaÃn: "[PATCH v2 3/3] seccomp: Remove 2-phase API documentation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]