Forum | Documentation | Website | Blog

Skip to content
Snippets Groups Projects
Commit 93e35efb authored by Kees Cook's avatar Kees Cook
Browse files

x86/ptrace: run seccomp after ptrace 


This moves seccomp after ptrace on x86 to that seccomp can catch changes
made by ptrace. Emulation should skip the rest of processing too.

We can get rid of test_thread_flag because there's no longer any
opportunity for seccomp to mess with ptrace state before invoking
ptrace.

Suggested-by: default avatarAndy Lutomirski <luto@kernel.org>
Signed-off-by: default avatarKees Cook <keescook@chromium.org>
Cc: x86@kernel.org
Cc: Andy Lutomirski <luto@kernel.org>
parent ce6526e8
Hide whitespace changes
Inline Side-by-side
Showing
with 12 additions and 10 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Open hardware computers for makers, educators and professionals