diff options
| author | Tony Luck <tony.luck@intel.com> | 2005-06-20 12:35:34 -0400 |
|---|---|---|
| committer | Tony Luck <tony.luck@intel.com> | 2005-06-20 12:35:34 -0400 |
| commit | 8ba08378b479f472b37b83542c31bdad465033cf (patch) | |
| tree | f4421227b3065e786c9041cf0ce0073a249e011b /arch/ppc/Kconfig | |
| parent | 34b727c135ff651f153be5757056d25678b6d018 (diff) | |
| parent | 8b22c249e7de453961e4d253b19fc2a0bdd65d53 (diff) | |
Auto merge with /home/aegl/GIT/linus
Diffstat (limited to 'arch/ppc/Kconfig')
| -rw-r--r-- | arch/ppc/Kconfig | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/arch/ppc/Kconfig b/arch/ppc/Kconfig index 6e6377a69d5b..54ce6da22644 100644 --- a/arch/ppc/Kconfig +++ b/arch/ppc/Kconfig | |||
| @@ -1083,6 +1083,23 @@ source "drivers/zorro/Kconfig" | |||
| 1083 | 1083 | ||
| 1084 | source kernel/power/Kconfig | 1084 | source kernel/power/Kconfig |
| 1085 | 1085 | ||
| 1086 | config SECCOMP | ||
| 1087 | bool "Enable seccomp to safely compute untrusted bytecode" | ||
| 1088 | depends on PROC_FS | ||
| 1089 | default y | ||
| 1090 | help | ||
| 1091 | This kernel feature is useful for number crunching applications | ||
| 1092 | that may need to compute untrusted bytecode during their | ||
| 1093 | execution. By using pipes or other transports made available to | ||
| 1094 | the process as file descriptors supporting the read/write | ||
| 1095 | syscalls, it's possible to isolate those applications in | ||
| 1096 | their own address space using seccomp. Once seccomp is | ||
| 1097 | enabled via /proc/<pid>/seccomp, it cannot be disabled | ||
| 1098 | and the task is only allowed to execute a few safe syscalls | ||
| 1099 | defined by each seccomp mode. | ||
| 1100 | |||
| 1101 | If unsure, say Y. Only embedded should say N here. | ||
| 1102 | |||
| 1086 | endmenu | 1103 | endmenu |
| 1087 | 1104 | ||
| 1088 | config ISA_DMA_API | 1105 | config ISA_DMA_API |