Bug#951718: selectively enable seccomp not working as documented

[Marc Haber <mh+debian-bugs@zugschlus.de>]

On Thu, Feb 20, 2020 at 05:21:31PM +0100, Julian Andres Klode wrote:
> It is the correct syntax. libseccomp2 in stable is too old to know
> the new syscalls, and there's no way to override by syscall number in
> apt. Both should be fixed IMO:
> 
> - the list of syscalls the libseccomp library handles in stable 
>   does not match the syscalls used in stable

I am not using a stable kernel though. Does that change things?

> - apt should allow you to override by number because that's easier.

So, at the moment, seccomp in apt in stable is unuseable with a more
recent kernel because of this, and should be switched off on my affected
systems?

Greetings
Marc

-- 
-----------------------------------------------------------------------------
Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany    |  lose things."    Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature |  How to make an American Quilt | Fax: *49 6224 1600421