Hi all, Here's v4 of the seccomp trap to userspace series. v3 is here: https://lkml.org/lkml/2018/5/31/527 I believe we've addressed the two burning questions I had about v3: 1. it seems ok not to use netlink, since there's not a great way to re-use the API without a lot of unnecessary code and 2. only having return capability for fds seems fine with people. Or at least I haven't heard any strong objections. I've re-worked a bunch of things in this version based on feedback from the last series. See patch notes for details. At this point I'm not aware of anything that needs to be addressed, but of course that is subject to change :) Tycho Tycho Andersen (4): seccomp: add a return code to trap to userspace seccomp: make get_nth_filter available outside of CHECKPOINT_RESTORE seccomp: add a way to get a listener fd from ptrace seccomp: add support for passing fds via USER_NOTIF .../userspace-api/seccomp_filter.rst | 79 +++ arch/Kconfig | 7 + include/linux/seccomp.h | 18 +- include/uapi/linux/ptrace.h | 2 + include/uapi/linux/seccomp.h | 23 +- kernel/ptrace.c | 4 + kernel/seccomp.c | 491 ++++++++++++++- tools/testing/selftests/seccomp/seccomp_bpf.c | 560 +++++++++++++++++- 8 files changed, 1172 insertions(+), 12 deletions(-) -- 2.17.1 -- To unsubscribe from this list: send the line "unsubscribe linux-api" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
