lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:	Mon, 14 Jul 2014 13:34:36 -0700
From:	Kees Cook <>
To:	Andy Lutomirski <>
Cc:	Oleg Nesterov <>,
	LKML <>,
	Alexei Starovoitov <>,
	"Michael Kerrisk (man-pages)" <>,
	Andrew Morton <>,
	Daniel Borkmann <>,
	Will Drewry <>,
	Julien Tinnes <>,
	David Drysdale <>,
	Linux API <>,
	"" <>,
	linux-arch <>,
	linux-security-module <>
Subject: Re: [PATCH v10 0/11] seccomp: add thread sync ability

On Mon, Jul 14, 2014 at 12:04 PM, Andy Lutomirski <> wrote:
> On Fri, Jul 11, 2014 at 10:55 AM, Kees Cook <> wrote:
>> On Fri, Jul 11, 2014 at 9:49 AM, Oleg Nesterov <> wrote:
>>> On 07/10, Kees Cook wrote:
>>>> This adds the ability for threads to request seccomp filter
>>>> synchronization across their thread group (at filter attach time).
>>>> For example, for Chrome to make sure graphic driver threads are fully
>>>> confined after seccomp filters have been attached.
>>>> To support this, locking on seccomp changes via thread-group-shared
>>>> sighand lock is introduced, along with refactoring of no_new_privs. Races
>>>> with thread creation are handled via delayed duplication of the seccomp
>>>> task struct field and cred_guard_mutex.
>>>> This includes a new syscall (instead of adding a new prctl option),
>>>> as suggested by Andy Lutomirski and Michael Kerrisk.
>>> I do not not see any problems in this version,
>> Awesome! Thank you for all the reviews. :) If Andy and Michael are
>> happy with this too, I think this is in good shape. \o/
> I think I'm happy with it.  Is it in git somewhere for easy perusal?
> I have a cold, so my reviewing ability is a bit off, but I want to
> take a look at the final version, and git is a little easier than
> email for this.

Yes, absolutely:

Thanks for looking it over, and I hope you feel better soon!


Kees Cook
Chrome OS Security
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to
More majordomo info at
Please read the FAQ at

Powered by blists - more mailing lists