seccomp

seccomp
Original author(s)	Andrea Arcangeli
Initial release	March 8, 2005; 19 years ago
Development status	mainlined
Written in	C
Operating system	Linux
Type	Sandboxing
License	GNU General Public License
Website	code.google.com/p/seccompsandbox/wiki/overview

Lua error in package.lua at line 80: module 'strict' not found. Lua error in package.lua at line 80: module 'strict' not found.

seccomp (short for secure computing mode) is a computer security facility that provides an application sandboxing mechanism in the Linux kernel; it was merged into the Linux kernel mainline in kernel version 2.6.12, which was released on March 8, 2005.^[1] seccomp allows a process to make a one-way transition into a "secure" state where it cannot make any system calls except exit(), sigreturn(), read() and write() to already-open file descriptors. Should it attempt any other system calls, the kernel will terminate the process with SIGKILL. In this sense, it does not virtualize the system's resources but isolates the process from them entirely.

seccomp mode is enabled via the prctl(2) system call using the PR_SET_SECCOMP argument, or (since Linux kernel 3.17^[2]) via the seccomp(2) system call.^[3] seccomp mode used to be enabled by writing to a file, /proc/self/seccomp, but this method was removed in favor of prctl().^[4] In some kernel versions, seccomp disables the RDTSC x86 instruction.^{[clarification needed]}^[5]

seccomp-bpf

seccomp-bpf is an extension to seccomp^[6] that allows filtering of system calls using a configurable policy implemented using Berkeley Packet Filter rules. It is used by OpenSSH and vsftpd as well as the Google Chrome/Chromium web browsers on Chrome OS and Linux.^[7]

Uses

seccomp was first devised by Andrea Arcangeli in January 2005 for use in public grid computing and was originally intended as a means of safely running untrusted compute-bound programs.
Arcangeli's CPUShare was the only known user of this feature.^[8] Writing in February 2009, Linus Torvalds expresses doubt whether seccomp is actually used by anyone.^[9] However, a Google engineer replied that Google is exploring using seccomp for sandboxing its Chrome web browser.^[10]^[11]
As of Chrome version 20, seccomp-bpf is used to sandbox Adobe Flash Player.^[12]
As of Chrome version 23, seccomp-bpf is used to sandbox the renderers.^[13]
Vsftpd uses seccomp-bpf sandboxing as of version 3.0.0.^[14]
OpenSSH has supported seccomp-bpf since version 6.0.^[15]
Mbox uses ptrace along with seccomp-bpf to create a secure sandbox with less overhead than ptrace alone.^[16]
LXD, which is a "hypervisor" for containers^[17]^[18]
Firefox and FirefoxOS use seccomp-bpf to sandbox the child processes and certain plugins.^[19]^[20]
Cjdns uses seccomp-bpf as one of its sandbox mechanisms, filtering the system calls it performs on a Linux system, and strictly limiting its access to the outside world.^[21]
Tor supports seccomp since 0.2.5.1-alpha^[22]

References

Cite error: Invalid <references> tag; parameter "group" is allowed only.

Use <references />, or <references group="..." />

External links

Official website
Google's Chromium sandbox, LWN.net, August 2009, by Jake Edge
seccomp-nurse, a sandboxing framework based on seccomp
Documentation/prctl/seccomp_filter.txt, part of the Linux kernel documentation
Security In-Depth for Linux Software: Preventing and Mitigating Security Bugs

This Linux-related article is a stub. You can help Wikipedia by expanding it.

↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.
↑ Lua error in package.lua at line 80: module 'strict' not found.

[1] Lua error in package.lua at line 80: module 'strict' not found.

[2] Lua error in package.lua at line 80: module 'strict' not found.

[3] Lua error in package.lua at line 80: module 'strict' not found.

[4] Lua error in package.lua at line 80: module 'strict' not found.

[5] Lua error in package.lua at line 80: module 'strict' not found.

[6] Lua error in package.lua at line 80: module 'strict' not found.

[7] Lua error in package.lua at line 80: module 'strict' not found.

[lkml_2009-02-28_141-8] Lua error in package.lua at line 80: module 'strict' not found.

[lkml_2009-02-28_129-9] Lua error in package.lua at line 80: module 'strict' not found.

[10] Lua error in package.lua at line 80: module 'strict' not found.

[lkml_2009-05-06_365-11] Lua error in package.lua at line 80: module 'strict' not found.

[12] Lua error in package.lua at line 80: module 'strict' not found.

[13] Lua error in package.lua at line 80: module 'strict' not found.

[14] Lua error in package.lua at line 80: module 'strict' not found.

[15] Lua error in package.lua at line 80: module 'strict' not found.

[16] Lua error in package.lua at line 80: module 'strict' not found.

[17] Lua error in package.lua at line 80: module 'strict' not found.

[18] Lua error in package.lua at line 80: module 'strict' not found.

[19] Lua error in package.lua at line 80: module 'strict' not found.

[20] Lua error in package.lua at line 80: module 'strict' not found.

[21] Lua error in package.lua at line 80: module 'strict' not found.

[22] Lua error in package.lua at line 80: module 'strict' not found.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]

[17]

[18]

[19]

[20]

[21]

[22]

v t e Linux
Linux kernel	History Kernel Linus's Law Linux-libre Linux startup process Linux kernel oops Tux more…
Controversies	Criticism of Linux Criticism of desktop Linux GNU/Linux naming controversy Tanenbaum–Torvalds debate SCO and Linux
Linux distributions	General comparison Distributions list Netbook-specific comparison Distributions that run from RAM Lightweight Linux distribution Proprietary software for Linux Package manager Package format List of software package managers
Organizations	List of Linux events Linux Foundation Linux Mark Institute Linux User Group (LUG) Linux Documentation Project LinuxChix Linux Counter
Adoption	Desktop Embedded Gaming Linux range of use List of Linux adopters
Media	Free Software Magazine Linux.com Linux Format Open Source For You Linux Gazette Linux Journal Linux Magazine LinuxUser Ubuntu User Linux Outlaws LugRadio LWN.net Phoronix Revolution OS The Code
People	Alan Cox Allison Randal Andrew Morton Benjamin Mako Hill Bradley Kuhn Bruce Perens Daniel Robbins David S. Miller Greg Kroah-Hartman Ian Murdock Jon "maddog" Hall Jono Bacon Karen Sandler Linus Torvalds Mark Shuttleworth Pamela Jones Patrick Volkerding Richard Stallman Theodore Ts'o William John Sullivan
Linux Linux kernel features

seccomp

Contents

seccomp-bpf

Uses

References

External links

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools