Merge release-20210208.0-85-gacd516cfe (automated)

author: gVisor bot <gvisor-bot@google.com> 2021-02-24 10:07:45 +0000
committer: gVisor bot <gvisor-bot@google.com> 2021-02-24 10:07:45 +0000
commit: a004d3309c5d8320408b4661940e6b0839eef69b (patch)
tree: a1295517d02e17401932b9f0db45523f5a475868 /pkg/abi/linux
parent: 2b0d4ebbbaa18506fdba8988210fc0f2009ca379 (diff)
parent: acd516cfe2920006a5d2760c78bd2245d498023a (diff)
2 files changed, 11 insertions, 0 deletions
diff --git a/pkg/abi/linux/prctl.go b/pkg/abi/linux/prctl.go
index 391cfaa1c..41118c3b4 100644
--- a/pkg/abi/linux/prctl.go
+++ b/pkg/abi/linux/prctl.go
@@ -144,6 +144,11 @@ const (
 	// PR_MPX_DISABLE_MANAGEMENT disables kernel management of Memory
 	// Protection eXtensions (MPX) bounds tables.
 	PR_MPX_DISABLE_MANAGEMENT = 44
+
+	// PR_SET_PTRACER allows a specific process (or any, if PR_SET_PTRACER_ANY is
+	// specified) to ptrace the current task.
+	PR_SET_PTRACER     = 0x59616d61
+	PR_SET_PTRACER_ANY = -1
 )
 
 // From <asm/prctl.h>
diff --git a/pkg/abi/linux/ptrace.go b/pkg/abi/linux/ptrace.go
index 23e605ab2..db1c6a0d8 100644
--- a/pkg/abi/linux/ptrace.go
+++ b/pkg/abi/linux/ptrace.go
@@ -87,3 +87,9 @@ const (
 	PTRACE_O_EXITKILL        = 1 << 20
 	PTRACE_O_SUSPEND_SECCOMP = 1 << 21
 )
+
+// YAMA ptrace_scope levels from security/yama/yama_lsm.c.
+const (
+	YAMA_SCOPE_DISABLED   = 0
+	YAMA_SCOPE_RELATIONAL = 1
+)
author	gVisor bot <gvisor-bot@google.com>	2021-02-24 10:07:45 +0000
committer	gVisor bot <gvisor-bot@google.com>	2021-02-24 10:07:45 +0000
commit	a004d3309c5d8320408b4661940e6b0839eef69b (patch)
tree	a1295517d02e17401932b9f0db45523f5a475868 /pkg/abi/linux
parent	2b0d4ebbbaa18506fdba8988210fc0f2009ca379 (diff)
parent	acd516cfe2920006a5d2760c78bd2245d498023a (diff)