Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / ce6526e8afa4b6ad0ab134a4cc50c9c863319637
commitce6526e8afa4b6ad0ab134a4cc50c9c863319637[log] [tgz]
authorKees Cook <keescook@chromium.org>Wed Jun 01 19:29:15 2016 -0700
committerKees Cook <keescook@chromium.org>Tue Jun 14 10:54:41 2016 -0700
treec3074e4661ee9432faf518fd2eef8527c5811730
parent8112c4f140fa03f9ee68aad2cc79afa7df5418d3 [diff]
seccomp: recheck the syscall after RET_TRACE

When RET_TRACE triggers, a tracer may change a syscall into something that
should be filtered by seccomp. This re-runs seccomp after a trace event
to make sure things continue to pass.

Signed-off-by: Kees Cook <keescook@chromium.org>
Cc: Andy Lutomirski <luto@kernel.org>
1 file changed
tree: c3074e4661ee9432faf518fd2eef8527c5811730
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS