Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 713688 (seccomp)

Summary: [TRACKER] Packages without seccomp enabled or seccomp-related bugs
Product: Gentoo Security Reporter: Sam James <sam>
Component: AuditingAssignee: Gentoo Security <security>
Status: CONFIRMED ---    
Severity: normal CC: bertrand, jstein
Priority: Normal Keywords: Tracker
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on: 713690, 713694, 713700, 714070, 714074, 815877, 443898, 705128, 711058, 713706, 713708, 713710, 783915, 786228, 789459    
Bug Blocks: 713704    

Description Sam James archtester Gentoo Infrastructure gentoo-dev Security 2020-03-20 20:40:52 UTC 
seccomp is Linux's syscall filtering facility; applications define a restricted set of syscalls they are allowed to make once they have setup their core functionality.

This is a tracker bug for packages which don't currently have seccomp exposed as a USE flag / force it off, or where it is compiled in, but for some reason not enabled (e.g. config, see bug 711058).

If there are bugs in that package's seccomp implementation, we should try to patch it to allow the appropriate syscalls.