]> git.hungrycats.org Git - linux/commit
projects / linux / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7074687) | patch
seccomp: Enable speculation flaw mitigations
authorKees Cook <keescook@chromium.org>
Tue, 1 May 2018 22:07:31 +0000 (15:07 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Tue, 22 May 2018 16:56:28 +0000 (18:56 +0200)
commit62fffc7129840290e191569d02e406d356037804
tree1f2296c7454b339ecf44bb11f3769809fc6cc8e9tree | snapshot
parent7074687d3a6539d5204c1c8310e98d1714094b2fcommit | diff
seccomp: Enable speculation flaw mitigations

commit 5c3070890d06ff82eecb808d02d2ca39169533ef upstream

When speculation flaw mitigations are opt-in (via prctl), using seccomp
will automatically opt-in to these protections, since using seccomp
indicates at least some level of sandboxing is desired.

Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
kernel/seccomp.c diff | blob | history
Linux kernels and configurations used by Zygo.