A status update is in order. We settled on a design that meets everyone's kernel needs. Those patches have been accepted into linux-next and they're on their way into 4.14.
I'll have a little more work to do on libseccomp-golang once the libseccomp PR is reviewed. Then I can start the SRUs. The snap-seccomp/snap-confine changes are straightforward and small so they shouldn't be a problem.
Everything is finally coming together but there have been a lot of moving pieces (and people) involved in landing all the changes.
A status update is in order. We settled on a design that meets everyone's kernel needs. Those patches have been accepted into linux-next and they're on their way into 4.14.
https:/ /lkml.kernel. org/r/% 3C2017081522031 9.GA63342@ beast%3E
I've submitted Artful backports to the kernel team:
https:/ /lists. ubuntu. com/archives/ kernel- team/2017- August/ 086691. html
I've reached out to the libseccomp maintainer to discuss some design aspects that needed to be sorted out and now I've proposed a PR for libseccomp:
https:/ /github. com/seccomp/ libseccomp/ pull/92
I'll have a little more work to do on libseccomp-golang once the libseccomp PR is reviewed. Then I can start the SRUs. The snap-seccomp/ snap-confine changes are straightforward and small so they shouldn't be a problem.
Everything is finally coming together but there have been a lot of moving pieces (and people) involved in landing all the changes.