[pypy-issue] [issue1003] Sandbox code uses no-longer-working seccom

Da_Blitz tracker at bugs.pypy.org
Fri Feb 3 11:19:38 CET 2012


Da_Blitz <pypy at pocketnix.org> added the comment:

Just adding some more notes, looks like this is set to go into linux 3.3. after
playing with low level syscalls from python, there is no good way to detect what
features are supported other than version number and grepping /proc/config for
the compile flag

i would also be tempted to suggest some 'capabilities' changes and some other
changes that require root to make a sandbox safe even if the sandbox is run with
uid 0. if you are interested 'man 2 capabilities' or the documentation  at
http://code.pocketnix.org/asylum/file/33f6c6e0d060/asylum/capabilities.py should
help as i have found some differences between the man pages and reality

note that none of these features are portable (except perhaps POSIX capabilities)

* https://lwn.net/Articles/477753/
* https://lwn.net/Articles/478062/ < prctl interface, this is auto enabled when
turning on seccomp so that you cant limit SUID binaries to make them behave in
an unpredictable (unsafe) fashion

________________________________________
PyPy bug tracker <tracker at bugs.pypy.org>
<https://bugs.pypy.org/issue1003>
________________________________________


More information about the pypy-issue mailing list