From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S933175AbbI3Sle (ORCPT ); Wed, 30 Sep 2015 14:41:34 -0400 Received: from mail-ig0-f172.google.com ([209.85.213.172]:32945 "EHLO mail-ig0-f172.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S932871AbbI3Slb (ORCPT ); Wed, 30 Sep 2015 14:41:31 -0400 Date: Wed, 30 Sep 2015 12:41:29 -0600 From: Tycho Andersen To: Andy Lutomirski Cc: Kees Cook , Alexei Starovoitov , Will Drewry , Oleg Nesterov , Pavel Emelyanov , "Serge E. Hallyn" , Daniel Borkmann , "linux-kernel@vger.kernel.org" , Network Development , Linux API Subject: Re: [PATCH v3 4/5] kcmp: add KCMP_FILE_PRIVATE_DATA Message-ID: <20150930184129.GB23065@smitten> References: <1443636820-17083-1-git-send-email-tycho.andersen@canonical.com> <1443636820-17083-5-git-send-email-tycho.andersen@canonical.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.23 (2014-03-12) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Sep 30, 2015 at 11:25:41AM -0700, Andy Lutomirski wrote: > On Wed, Sep 30, 2015 at 11:13 AM, Tycho Andersen > wrote: > > This command allows comparing the underling private data of two fds. This > > is useful e.g. to find out if a seccomp filter is inherited, since struct > > seccomp_filter are unique across tasks and are the private_data seccomp > > fds. > > This is very implementation-specific and may have nasty ABI > consequences far outside seccomp. Let's do something specific to > seccomp and/or eBPF. We could change the name to a less generic KCMP_SECCOMP_FD or something, but without some sort of GUID on each struct seccomp_filter, the implementation would be effectively the same as it is today. Is that enough, or do we need a GUID? Tycho