UbuntuUpdates.org

Package "libseccomp"




Name: libseccomp

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • high level interface to Linux seccomp filter (development files)
  • high level interface to Linux seccomp filter
Latest version: *DELETED*
Release: trusty (14.04)
Level: proposed
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "libseccomp" in Trusty

Repository Area Version
base universe 2.1.0+dfsg-1
security universe 2.1.1-1ubuntu1~trusty5
security main 2.1.1-1ubuntu1~trusty5
updates main 2.1.1-1ubuntu1~trusty5
updates universe 2.1.1-1ubuntu1~trusty5
backports main 2.2.3-2ubuntu1~ubuntu14.04.1
backports universe 2.2.3-2ubuntu1~ubuntu14.04.1
PPA: Ubuntu SDK Release 2.3.1-2ubuntu2~ubuntu14.04.1~ppa1
PPA: Lxd 2.3.1-2.1ubuntu3~ubuntu14.04.1~ppa1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.1.1-1ubuntu1~trusty3 2017-01-06 00:06:44 UTC

  libseccomp (2.1.1-1ubuntu1~trusty3) trusty-proposed; urgency=medium

  * Cherrypick various bpf fixes to support argument filtering on 64-bit
    (LP: #1653487)
    - debian/patches/bpf-use-state-arch.patch: use state->arch instead of
      db->arch in _gen_bpf_arch()
    - debian/patches/db-require-filters-to-share-endianess.patch: require all
      filters in a collection to share the same endianess
    - debian/patches/resolve-issues-caused-by-be.patch: resolve issues caused
      by big endian systems
    - debian/patches/bpf-accumulator-check.patch: test the bpf accumulator
      checking logic
    - debian/patches/bpf-track-accumulator-state.patch: track accumulator
      state and reload it when necessary. This is the fix for LP: #1653487. The
      previous patches are required by this patch.
    - debian/patches/ensure-simulator-has-valid-arch.patch: ensure the
      simulator always has a valid architecture value. This fixes a regression
      in the testsuite introduced by resolve-issues-caused-by-be.patch
    - debian/patches/bpf-accumulator-check-indep.patch: fix a regression in the
      testsuite introduced by bpf-accumulator-check.patch
    - debian/patches/fix-audit-arch-i386.patch: fix arch token for 32-bit x86
      not being defined correctly for the tools
Source diff to previous version
1653487 seccomp argument filtering not working on trusty amd64

Version: 2.1.1-1ubuntu1~trusty1 2016-12-20 20:07:21 UTC

  libseccomp (2.1.1-1ubuntu1~trusty1) trusty-proposed; urgency=medium

  * Bring libseccomp 2.1.1-1ubuntu1~vivid2, from Ubuntu 14.10, to Ubuntu
    14.04 and add a couple patches to account for new syscalls found in the
    4.4 based hardware enablement kernel. This allows for proper snap seccomp
    confinement on Ubuntu 14.04 when using the hardware enablement kernel
    (LP: #1450642)
    - debian/patches/add-membarrier-and-userfaultfd.patch: Add membarrier and
      userfaultfd syscalls
    - debian/patches/add-mlock2.patch: Add mlock2 syscall
    - debian/tests/data/all-except-s390-4.4.filter: Add autopkgtest that
      verifies all syscalls found in the 4.4 kernel, except for the s390
      specific syscalls, are supported by libseccomp. The s390 specific
      syscalls are not needed since this version of libseccomp does not
      support the s390 architecture.
    - debian/tests/test-filter: Skip the getrandom filter tests since
      SYS_getrandom is not defined in 14.04 environment and the getrandom(2)
      syscall is not even available in the 14.04 release kernel.

 -- Tyler Hicks <email address hidden> Thu, 15 Dec 2016 23:26:30 +0000
1450642 seccomp missing many new syscalls


About   -   Send Feedback to @ubuntu_updates