-
Kees Cook authored
commit 5c307089 upstream. When speculation flaw mitigations are opt-in (via prctl), using seccomp will automatically opt-in to these protections, since using seccomp indicates at least some level of sandboxing is desired. Signed-off-by:
Kees Cook <keescook@chromium.org> Signed-off-by:
Thomas Gleixner <tglx@linutronix.de> [bwh: Backported to 3.16: - Apply to current task - Adjust context] Signed-off-by:
Ben Hutchings <ben@decadent.org.uk>
284aa155