DescriptionMake a small change to the API. Instead of passing in a file
descriptor to /proc/self/maps, we now pass in a file descriptor
to /proc/self and open "maps" ourselves. This is a more generic
API that will make it easier to add other features in the future
(e.g. merge the setuid sandbox into the seccomp sandbox, if the
kernel allow unprivileged calls to chroot).
BUG=none
TEST=make test
Committed: https://code.google.com/p/seccompsandbox/source/detail?r=180
Patch Set 1 #
Total comments: 6
Patch Set 2 : #Messages
Total messages: 7 (0 generated)
|