[PATCH 3/5] v2 seccomp_filters: Enable ftrace-based system call filtering
Ingo Molnar
mingo at elte.hu
Mon May 16 22:00:43 EST 2011
* Arnd Bergmann <arnd at arndb.de> wrote:
> On Saturday 14 May 2011, Will Drewry wrote:
> > Depending on integration, it could even be limited to ioctl commands
> > that are appropriate to a known fd if the fd is opened prior to
> > entering seccomp mode 2. Alternatively, __NR__ioctl could be allowed
> > with a filter of "1" then narrowed through a later addition of
> > something like "(fd == %u && (cmd == %u || cmd == %u))" or something
> > along those lines.
> >
> > Does that make sense?
>
> Thanks for the explanation. This sounds like it's already doing all
> we need.
One thing we could do more clearly here is to help keep the filter expressions
symbolic - i.e. help resolve the various ioctl variants as well, not just the
raw syscall parameter numbers.
But yes, access to the raw syscall parameters and the ability to filter them
already gives us the ability to exclude/include specific ioctls in a rather
flexible way.
Thanks,
Ingo
More information about the Linuxppc-dev
mailing list