[Bug 2361] seccomp filter (not only) for aarch64
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Wed Apr 22 16:41:33 AEST 2015
https://bugzilla.mindrot.org/show_bug.cgi?id=2361
--- Comment #8 from Jakub Jelen <jjelen at redhat.com> ---
Thanks for coming back to this.
I was trying to create it in some way it will be less ugly, but I
didn't find any better solution than having every SC_ALLOW covered with
ifdef. I agree with dividing that select ifdefs according to presence.
It doesn't hurt anything and would be much more clear.
This construction discussed from comment #4 is coming from patch [1] by
Marcin, which I had to rewrite little bit, but I left this one, because
it was working.
To make it less uggly, it would be possible to use more high-level
library libseccomp [2], which solves such problems under the hood, but
I'm not sure about support on different platforms.
[1] https://bugzilla.redhat.com/attachment.cgi?id=994437&action=diff
[2] https://github.com/seccomp/libseccomp
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list