[CRIU] [PATCH 00/10] Per-thread seccomp support, v5
Cyrill Gorcunov
gorcunov at gmail.com
Mon May 7 11:42:40 MSK 2018
- In test we use "r" for mode parsing because in uns we may
have no write access and we actually don't need to
- Fixed nits in collect_filter
Cyrill Gorcunov (10):
seccomp: compel -- Add PTRACE_SECCOMP_GET_METADATA definition
seccomp: Define log prefix
seccomp: Move seccomp_info into seccomp.h
seccomp: Fetch seccomp flags if kernel provides
seccomp: Add engine to restore per-thread seccomp chains
seccomp: Add engine to checkpoint per-thread seccomp chains
seccomp: test -- Add seccomp_filter_threads
seccomp: Dont forget to suspend filtering on threads
seccomp: test,seccomp_filter_threads -- Use multiple threads
seccomp: Fix nits in collect_filter
compel/include/uapi/ptrace.h | 11 +
criu/cr-dump.c | 19 +-
criu/cr-restore.c | 54 ++-
criu/include/proc_parse.h | 7 -
criu/include/pstree.h | 6 +-
criu/include/restorer.h | 16 +-
criu/include/rst_info.h | 5 +
criu/include/seccomp.h | 47 ++-
criu/pie/restorer.c | 124 ++++---
criu/seccomp.c | 534 +++++++++++++++++++--------
criu/seize.c | 77 +---
images/core.proto | 8 +-
images/seccomp.proto | 1 +
test/zdtm/static/Makefile | 2 +
test/zdtm/static/seccomp_filter_threads.c | 225 +++++++++++
test/zdtm/static/seccomp_filter_threads.desc | 1 +
16 files changed, 844 insertions(+), 293 deletions(-)
create mode 100644 test/zdtm/static/seccomp_filter_threads.c
create mode 100644 test/zdtm/static/seccomp_filter_threads.desc
--
2.14.3
More information about the CRIU
mailing list