[PATCH v5 bpf-next 0/5] mm, security, bpf: Fine-grained control over memory policy adjustments with lsm bpf
Paul Moore
paul at paul-moore.com
Wed Jan 10 16:14:00 UTC 2024
On Wed, Jan 10, 2024 at 10:56 AM Yafang Shao <laoar.shao at gmail.com> wrote:
> On Wed, Jan 10, 2024 at 10:28 PM Paul Moore <paul at paul-moore.com> wrote:
> > On Wed, Jan 10, 2024 at 1:07 AM Yafang Shao <laoar.shao at gmail.com> wrote:
> > > Paul,
> > >
> > > Do you have any additional comments or further suggestions?
> >
> > No, I'm still comfortable with my original comments and stand by them.
>
> I understand your perspective, but it seems I have to propose an
> eBPF-based seccomp in the next step.
You likely already know this, but just in case, eBPF-based seccomp has
been proposed many times in the past and has been rejected. I don't
want to dissuade you from doing so again, but I suspect that this use
case will not be compelling enough to be successful.
--
paul-moore.com
More information about the Linux-security-module-archive
mailing list