Solar Designer
Solar Designer
> What about keeping the call to `get/put_seccomp_filter` until kernel 5.9 but starting from 5.9+ switch to custom `refcount_t` implementation Sounds reasonable to me.
While reviewing the kernel's seccomp filter refcount logic, I notice that there can be multiple filters on a task, yet we're currently monitoring just one of them, right? We could...
Kind of fixed via #346
We proceeded to discuss fixing the same issue in #413, so I'll close this one as duplicate. @Oipo We'd appreciate it if you help test the proposed fix in PR...
@Oipo OK, thank you for the prompt response.
In terms of implementation, we'd probably need to hook `nfnetlink_rcv` (not exported and `static`, but accessed via function pointer, so should be intact), but a problem is with our current...
It's great to see you contribute to our project again, @kholia! You appear to be replacing this entire script with one based on a different upstream. The new script is...
Actually, 3 sub-tasks here: 1. Go over the commits since 1.9.0-jumbo-1 and add what we forgot to add. 2. Adjust all entries for consistent style, such as standardizing on "Add"...
> Go over the commits since 1.9.0-jumbo-1 and add what we forgot to add. Done for 2022-2024, yet to do for 2019-2021. Of course, the selection is subjective, but I...