On Thu, Jan 11, 2018 at 10:25 AM, Linus Torvalds <[email protected]> wrote: > > The other case may be the CLONE_NEW* operations. I *think* they are > noops as far as PTI settings would be, but I think people should think > about them.
Oh, and yes, I think the npti flag should also break ptrace(). I do
agree with Andy that it's a "capability", although I do not think it
should actually be implemented as one.
Linus
