Received: by 10.223.185.116 with SMTP id b49csp4141122wrg;
        Tue, 13 Feb 2018 13:30:46 -0800 (PST)
X-Google-Smtp-Source: AH8x227sCVTbh1YAtNygGtwne2HQiAGFXraLmMIR0gOX2/gANFvr41Ko1KQycJcxNui/MKUT+ryd
X-Received: by 2002:a17:902:328:: with SMTP id 37-v6mr2378960pld.398.1518557446746;
        Tue, 13 Feb 2018 13:30:46 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1518557446; cv=none;
        d=google.com; s=arc-20160816;
        b=DK/iIKpjktatnwvPpO42ngURrp5f+a0S75SOEYkJtOBNukiG4GGcqKQLzX6GmOvUjL
         YRgyarowmNf+ytuFd2DJ3i3n+VgeioA+5P8ZqCBT2OcCqtlspIMIlmcwk97C+Su3A8ZO
         AGCXcMmm6EPro1M6AURn3OLHar0orO2yBw5Zf7X4AJ6nxEgQfW6cs7gpRZSFf8eAAbBb
         uzZRFu+Px2ULCtkX3wFZgxowWMSJWwWqCe6spsIZ/2znipjCcClSoymO41xF6hj7u6PX
         aV9Kiye2ymsUrj2km6y/gU51WTz1Wyg5p6AD3xw5NYZFWjlloc2cZ7RMEJbboS5OvTI0
         cSlg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :references:in-reply-to:mime-version:dkim-signature:dkim-signature
         :arc-authentication-results;
        bh=+0WjocXLSD0yC/3DiLEwprCP3FBcxfvk2kHBfSCbs6g=;
        b=UHUyLBS07zGAp1rkqG+opOGlgvCgJeGmEDk5rf6l0q7XeOtY/HJz/ABpdbk5WKn2Ow
         ay89lIQ8mraWnNZPhPMgfHsAYaWbAQBvSIIx46fy0N6+DSf7e2bSQYepbpijFkAizZjo
         WqJfT4ZpUjMzoE8oXO1kDHw9GQJ0svo4CiNihxIcWHXzloKTSaTJirUHSExONtwRoY+y
         +ujXkOAJpAY4i42IqAmCtysgQGXKIP75ggEDGlCRNO1Nf/mqReFIhPci6StgEX1c0HoB
         XxT5yHeuLK9Q3eA+GaYfCgi6G+9XfIJumHcWUpmZDTA8LZ6dtXMlBCHYNARFqlcmLVCk
         JNVg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@google.com header.s=20161025 header.b=Ct42YvYW;
       dkim=fail header.i=@chromium.org header.s=google header.b=moDoXCV/;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id x7si1867768pgr.525.2018.02.13.13.30.31;
        Tue, 13 Feb 2018 13:30:46 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@google.com header.s=20161025 header.b=Ct42YvYW;
       dkim=fail header.i=@chromium.org header.s=google header.b=moDoXCV/;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S965889AbeBMV30 (ORCPT <rfc822;rmelvin.vger@gmail.com>
        + 99 others); Tue, 13 Feb 2018 16:29:26 -0500
Received: from mail-vk0-f44.google.com ([209.85.213.44]:34594 "EHLO
        mail-vk0-f44.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S965749AbeBMV3Z (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 13 Feb 2018 16:29:25 -0500
Received: by mail-vk0-f44.google.com with SMTP id p74so5506268vkd.1
        for <linux-kernel@vger.kernel.org>; Tue, 13 Feb 2018 13:29:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=+0WjocXLSD0yC/3DiLEwprCP3FBcxfvk2kHBfSCbs6g=;
        b=Ct42YvYWgjELgNO+2W0Oc2ebIy1ZscBnuyIQdbU0kXjG4aQ8pCCb7t2wQ1CfTM9LWr
         JI8t3EaP5iPIRijhSkRPSTCA2C+z+A5aALNqymDlZYSgmMi9froYCSacpG/ekkuOsuqe
         2x8vrIbO+7ZH4mXDvEhxpNVHkkGmSaY5eAc1IlXNBORNDotZ9Ii3LRxXXaFa8NWD0jYq
         JfLlXnl6xWRDOR0k2BU74paS4OGwxFJDI/K48N8fORG37HXhC6c07MyadGFLOXriu8tQ
         juvimCulTBytgeUAm9q27viyuJ5WdAMLEA/C3Y/XnsatzAokTzs8d/zjS03Wgp2DKxm6
         kPFQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:cc;
        bh=+0WjocXLSD0yC/3DiLEwprCP3FBcxfvk2kHBfSCbs6g=;
        b=moDoXCV/VVufaaaZ5vVZc0iTNlYvj/IBUtQz6HQsdvUIsFD9ihxKGNcmMbOu+wP/ZK
         LBvLI+gVJnsbgImggtBvMcKVhOPSt7Zh6EXg5JOlrc6+o4bvjiCMK8U9CLN4EJXasxy/
         vITrpZfPPb3CQ4yfiG0tMWNPpe6UIqivPbCkI=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to:cc;
        bh=+0WjocXLSD0yC/3DiLEwprCP3FBcxfvk2kHBfSCbs6g=;
        b=N21CjKJprMARq4K9fFT8LgiLHm7P0SwWvJyMW+KvOukT3VNRwxXo60P8cAOIxOiUDf
         DtoyJq+6MMyvtBYt3c79Oeoy4JMomWyDZo9okVKhpOpgt3z1RPsNVGkp8yE2CDUFxwGf
         BScr6sP5/APEudKXHtwg29nUlMYrABGm8epov5/i3W3f6LstTS2UX4/38Tl5UJ4W+Z9I
         3GZaZtLR1429scwuliFG07HfJJn2lXBWvcty+Q+dsqk3v6TFtx71L0uYZoORHSq7B1/R
         IXIAwx4IWRXOMCoPU25qwyXAhedKzDky1EbozrV1jX/Afs5qpO8UJZMOeEPXE/FP5wvU
         5XrQ==
X-Gm-Message-State: APf1xPDZ81YjWJSGZf9PD5Cpu73Yp86jBTH6/7PpSo2uhxbHGXhY9+k5
        ymwRdyN393t73CFNA/Yw8uPC3o7tGn7+nXcCCP8S/A==
X-Received: by 10.31.193.1 with SMTP id r1mr2455196vkf.143.1518557364221; Tue,
 13 Feb 2018 13:29:24 -0800 (PST)
MIME-Version: 1.0
Received: by 10.31.56.87 with HTTP; Tue, 13 Feb 2018 13:29:23 -0800 (PST)
In-Reply-To: <20180204104946.25559-3-tycho@tycho.ws>
References: <20180204104946.25559-1-tycho@tycho.ws> <20180204104946.25559-3-tycho@tycho.ws>
From:   Kees Cook <keescook@chromium.org>
Date:   Tue, 13 Feb 2018 13:29:23 -0800
X-Google-Sender-Auth: spjagMC26ffcQgOkrNZKRy4JmnE
Message-ID: <CAGXu5jJLCcmB6MCeOgMntUgrnPycbmM8MBt_CVGXtsrQ+mtf=Q@mail.gmail.com>
Subject: Re: [RFC 2/3] seccomp: hoist out filter resolving logic
To:     Tycho Andersen <tycho@tycho.ws>
Cc:     LKML <linux-kernel@vger.kernel.org>,
        Linux Containers <containers@lists.linux-foundation.org>,
        Andy Lutomirski <luto@amacapital.net>,
        Oleg Nesterov <oleg@redhat.com>,
        "Eric W . Biederman" <ebiederm@xmission.com>,
        "Serge E . Hallyn" <serge@hallyn.com>,
        Christian Brauner <christian.brauner@ubuntu.com>,
        Tyler Hicks <tyhicks@canonical.com>,
        Akihiro Suda <suda.akihiro@lab.ntt.co.jp>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Sun, Feb 4, 2018 at 2:49 AM, Tycho Andersen <tycho@tycho.ws> wrote:
> Hoist out the nth filter resolving logic that ptrace uses into a new
> function. We'll use this in the next patch to implement the new
> PTRACE_SECCOMP_GET_FILTER_FLAGS command. This is based on an older patch
> that I had sent a while ago; it significantly revamps the get_nth_filter
> logic based on previous suggestions from Oleg.

Is this the same as f06eae831f0c1fc5b982ea200daf552810e1dd55 ? Quick
compare says yes? Either way, please rebase to v4.16-rc1 (or -rc2 in
the future). :)

-Kees

-- 
Kees Cook
Pixel Security