Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp1267792imm;
        Fri, 28 Sep 2018 15:17:18 -0700 (PDT)
X-Google-Smtp-Source: ACcGV60m/ASmNCwnYEc9bqyT1ICSRDvc7pwN+m8OwpPXekglGu/LRcABOLX857HFWeRV4YvsPAB4
X-Received: by 2002:a17:902:6b83:: with SMTP id p3-v6mr540094plk.133.1538173038391;
        Fri, 28 Sep 2018 15:17:18 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1538173038; cv=none;
        d=google.com; s=arc-20160816;
        b=GY0+XhTqROXWEz+jRqm3EFwrbT2FJKOPerX01z8AawqXw7ezXcucXQFyfvYjsmyc3P
         7beoqtrDIJtEtedgPWHuy6GBdl72eU0BEh+4TcDglpMAGlnXP2svHD85ZitRfLaEsDuj
         wzQU/sslFRuxpU5rXxDASsuf4Xq2lCoVPs9en1n80DBk8ebsubutBkXaiwc2qXRSmpJk
         2UZtppKQRyyh1FvUz+crHqGKUJsnm+SeZZGEYdn/c+vSjlMxsTszG1tE5dMYA8c4daqz
         YE9U6GarqNf3KO0pWJNt2pe7AeM+iKmx0FiWAh9jgAUfNN1aMc0lLX0V3bCeyfDkFwJs
         2x+w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:subject:message-id:date:from
         :reply-to:in-reply-to:references:mime-version:dkim-signature;
        bh=XDMXHnRodwWSz9TFAJayP3GrPM6xRs5hUT2n1VgH2Jk=;
        b=QhWjTpiIHoKrmd1Ppq8iWBtuy7rzlbTKJ0ETa8NpnX9TRV/GKTBBO4Tsgcko8BYLOV
         v8H/g1I0hdvz0ZntPhaPZQ4dGY258Ig46Yjd79/AP+T87OcFD9dAxZPHJ3C4dcr54RFE
         tWsTgkBTXSVvTTCFMTk8V1ffxXsPqgoURnDbrKnvTF3g2q9HnrEyOo4NzFVtXLeMSbZP
         LC+oVMs7kloWxFLOM4fBdPXzQDp7jI4uZPJ3tHJZN2OQVGpHsArZevgfUUTpY4Ln3057
         MBlK7lcv/niNdHBbI8Q1mhZO2kNt4F3H7sjMdrCTfFPvb0tQ+DsSCWxtZ8Nzjo5U2Ajq
         y53A==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b="hb/c17tn";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id 3-v6si5766062plo.318.2018.09.28.15.17.02;
        Fri, 28 Sep 2018 15:17:18 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@gmail.com header.s=20161025 header.b="hb/c17tn";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726564AbeI2Emp (ORCPT <rfc822;charleyewang@gmail.com>
        + 99 others); Sat, 29 Sep 2018 00:42:45 -0400
Received: from mail-ed1-f66.google.com ([209.85.208.66]:39956 "EHLO
        mail-ed1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725938AbeI2Emp (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 29 Sep 2018 00:42:45 -0400
Received: by mail-ed1-f66.google.com with SMTP id j62-v6so9406337edd.7;
        Fri, 28 Sep 2018 15:16:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:references:in-reply-to:reply-to:from:date:message-id
         :subject:to:cc;
        bh=XDMXHnRodwWSz9TFAJayP3GrPM6xRs5hUT2n1VgH2Jk=;
        b=hb/c17tn5VUADWZZ+V8jz7XpQ8b+zvbGTq1BKDqXN4OXneWYHTjQkbd28JaMs6AALi
         aFC2aMrXtswvNFq61fAlL7prkgnm6CDNHw26E6FGwZl8oRZ7s9WBvxr9cz6hteX23S+z
         lAk9ErtLjogIadl55ZUAKvkUkk8E/Cf7LwGJ8vp2QpWM7tFmLUno9C/9KE1gXedSAdqC
         Ck4kEtpqA31J/lWF/pRHR8q98CjZaoEwEWYhORPiNh/c/vOyxdneeb2/F0cob9IJCU3p
         c9f+v0PC8pRQaCmZOTWO3KQKha+Ej1OMQAn6NuMYPSmFiG7I9Ddto6EflHoYrQTi+TPt
         vn3w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:reply-to
         :from:date:message-id:subject:to:cc;
        bh=XDMXHnRodwWSz9TFAJayP3GrPM6xRs5hUT2n1VgH2Jk=;
        b=aYfM+Vr+ClF4zjrEyrVyCBihDqM07gl05qEdMxyGSqJGGzoMg0oUGWOD+4+41cfwZx
         AP2vrlgn1NipQkaBju1M6OKd1QgWlA/02Hm8k8P7mkwCLupw4r9CJurjWkK4e76SAuXu
         PFTZsd5sxHx8IwY+dgzOTdFJJGSzh7OAvWu2UzTmLRJCl8a+js2ZzNXoga+uFwlsPu0z
         brsVzMBfprF1vNVGvZ6zwBqEafpjZEwkigZYgtrc7kvVZ6Q+w2CzwVpd2Y00gft1N408
         839TeoP8ugGjF/kDLaBAIFBtYqDXGj65PcUAhFG1bdgn18DZ+pCduT+Y/puIoL97uNON
         DGgA==
X-Gm-Message-State: ABuFfojIj9LYH/nHlR7AczVkjbFthiggcnMjlvhJhfxxbiGyKhGmN1lS
        Ly2b9CILRRTf02znYBc410h9ZwOo74HTh7E2GBs=
X-Received: by 2002:a50:baae:: with SMTP id x43-v6mr5429482ede.65.1538173015135;
 Fri, 28 Sep 2018 15:16:55 -0700 (PDT)
MIME-Version: 1.0
References: <20180927151119.9989-1-tycho@tycho.ws> <686fe047-16e6-3dfc-6284-ed574d97ad2f@gmail.com>
 <20180928220359.GF18045@cisco.lan>
In-Reply-To: <20180928220359.GF18045@cisco.lan>
Reply-To: mtk.manpages@gmail.com
From:   "Michael Kerrisk (man-pages)" <mtk.manpages@gmail.com>
Date:   Sat, 29 Sep 2018 00:16:43 +0200
Message-ID: <CAKgNAkgcHENKrT=n4_YbmxJCOaY2Z+SXJcfuw9j7uOJwgym3Dg@mail.gmail.com>
Subject: Re: [PATCH v7 0/6] seccomp trap to userspace
To:     Tycho Andersen <tycho@tycho.ws>
Cc:     Kees Cook <keescook@chromium.org>,
        lkml <linux-kernel@vger.kernel.org>,
        Containers <containers@lists.linux-foundation.org>,
        Linux API <linux-api@vger.kernel.org>,
        Andy Lutomirski <luto@amacapital.net>,
        Oleg Nesterov <oleg@redhat.com>,
        "Eric W. Biederman" <ebiederm@xmission.com>,
        "Serge E. Hallyn" <serge@hallyn.com>,
        Christian Brauner <christian.brauner@ubuntu.com>,
        Tyler Hicks <tyhicks@canonical.com>,
        Akihiro Suda <suda.akihiro@lab.ntt.co.jp>,
        Jann Horn <jannh@google.com>,
        "linux-fsdevel@vger.kernel.org" <linux-fsdevel@vger.kernel.org>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi Tycho,

On Sat, 29 Sep 2018 at 00:04, Tycho Andersen <tycho@tycho.ws> wrote:
>
> On Fri, Sep 28, 2018 at 11:57:40PM +0200, Michael Kerrisk (man-opages) wrote:
> > Hi Tycho,
> >
> > On 09/27/2018 05:11 PM, Tycho Andersen wrote:
> > > Hi all,
> > >
> > > Here's v7 of the seccomp trap to userspace set. There are various minor
> > > changes and bug fixes, but two major changes:
> > >
> > > * We now pass fds to the tracee via an ioctl, and do it immediately when
> > >    the ioctl is called. For this we needed some help from the vfs, so
> > >    I've put the one patch in this series and cc'd fsdevel. This does have
> > >    the advantage that the feature is now totally decoupled from the rest
> > >    of the set, which is itself useful (thanks Andy!)
> > >
> > > * Instead of putting all of the notification related stuff into the
> > >    struct seccomp_filter, it now lives in its own struct notification,
> > >    which is pointed to by struct seccomp_filter. This will save a lot of
> > >    memory (thanks Tyler!)
> >
> > Is there a documentation (man page) patch for this API change?
>
> Not yet, but once we decide on a final API I'll prepare one.

Honestly, the production of such documentation should be part of the
evolution towards the final API...

Documentation is not an afterthought. It's a tool for pushing you, the
developer (and others, your reviewers) to more deeply consider your
design.

Thanks,

Michael
-- 
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/