seccomp: Enable speculation flaw mitigations - kernel/linux.git

diff options

author	Kees Cook <keescook@chromium.org>	2018-07-14 12:36:33 +0300
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2018-07-25 11:18:27 +0300
commit	0b1174054e0f4afd999c56ddecbbfb18f598f099 (patch)
tree	079b25c23138d3385d498661d36b0e77361e3b11 /fs/proc/array.c
parent	484964fa3e5a0d8467891aab8368dab34e8eb13c (diff)
download	linux-0b1174054e0f4afd999c56ddecbbfb18f598f099.tar.xz

seccomp: Enable speculation flaw mitigations

commit 5c3070890d06ff82eecb808d02d2ca39169533ef upstream When speculation flaw mitigations are opt-in (via prctl), using seccomp will automatically opt-in to these protections, since using seccomp indicates at least some level of sandboxing is desired. Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Signed-off-by: David Woodhouse <dwmw@amazon.co.uk> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Signed-off-by: Srivatsa S. Bhat <srivatsa@csail.mit.edu> Reviewed-by: Matt Helsley (VMware) <matt.helsley@gmail.com> Reviewed-by: Alexey Makhalov <amakhalov@vmware.com> Reviewed-by: Bo Gan <ganb@vmware.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'fs/proc/array.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: