Received: by 2002:a05:6a10:6744:0:0:0:0 with SMTP id w4csp251139pxu; Thu, 22 Oct 2020 22:44:11 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxTDD9FyWws4WUKl+rTcIvqr7z+L/MvAmpc7pyHnTDmfAeR97cfhNnD7feq88J1UuhHsayg X-Received: by 2002:a17:906:36cd:: with SMTP id b13mr9533ejc.235.1603431851440; Thu, 22 Oct 2020 22:44:11 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1603431851; cv=none; d=google.com; s=arc-20160816; b=LvS8bfoNZIMuwFgj4DOedZpEEnLwraGIuwROsKgy1rXzBYu8tIA/rRuApo8Bcf0BfT VWpZAKYBueqeYz05vbNfF9bSWdUltb9lmaTdFcbSr/PMuljPjAJaLnr+HwY7IRIEGR4O 3MBpr/A5YgoK2L2dc3mZSRdxqa6+UASMuldvAgmK/1RJJf5ljKvOhblBpwWUfAocqcX0 oUpqNQS8EnS5gpyrj8N6ZLmJOzEQutO7Sir5DrPR/GMISUDfpQrcJRm4GUq/lPj6Qio9 LYVaiaEsw0KI4w3KOH6bWByTWEO0ZzfDzW5rEPmhVTSIUgE2tEg2oX3SFvllRpm4GaAL Ufxw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=Ag5R8ANFXiIKHrZi3CpUKkJaLv+KTVPp7lGufqkGA/Q=; b=RLzhfkIOMooX+SnaHLbY9HsZ3hLhYEVbDkPXrXY2JcXwCIIbhn6i3K3dQ4g3VzpQIf 7Ul1dFKdN3Fa8ubFCGrZC49hxeUEUvMLd1My9usOsURFDYb6icsPnSLl9mIWjx/W2Ma3 ek0v0CefJHaJDwBoGQsfXAHUQcoEzGOWdaf5Gl6cO7OKnooZoGvuWTdGpYnajHcC6z9K Lkl2K7fXyoTjaqj92F3X+kxfIx07Gh72IztkPhaaKG9un42f2PvFFFvHG9qFAvQMQaKV HnC31DmZ0kWAQNrl9n36qwFA7sj2AH8tEaR+lxKQ/44XD0N90gIWnEVLRsvFw9u0zPhf vSPA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=d6+CBZng; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id p16si140632edy.362.2020.10.22.22.43.49; Thu, 22 Oct 2020 22:44:11 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=d6+CBZng; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S371989AbgJVUwf (ORCPT + 99 others); Thu, 22 Oct 2020 16:52:35 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36354 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S371979AbgJVUwe (ORCPT ); Thu, 22 Oct 2020 16:52:34 -0400 Received: from mail-pg1-x544.google.com (mail-pg1-x544.google.com [IPv6:2607:f8b0:4864:20::544]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 8E49CC0613CE; Thu, 22 Oct 2020 13:52:34 -0700 (PDT) Received: by mail-pg1-x544.google.com with SMTP id n16so1711798pgv.13; Thu, 22 Oct 2020 13:52:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Ag5R8ANFXiIKHrZi3CpUKkJaLv+KTVPp7lGufqkGA/Q=; b=d6+CBZngB4ab2gx0rcr80/mUgsqGHrDfBj1/ysacUwotFwRiXDdiFVeXasFIZHuxHV 1x42nCvwwG6yQagKIIf1tCqN7+6tPyMBG1vriokW70nyWmsc8sMnME4tilAanNACPt9O UzNtsCl8lGUuz9Im9a2MYKC37+MOa7tXY3edPXllbkN0hCEGFSQJnOVjVtVIAq/+HJLn puZeL7mEq755h14QQNrKiJO3EdeJ0uF64975sPV2JD6dBoaXPh5ct0LHO4hygeT08KGT jSXmP5u+fSJpVAIRfAuEVSd0XPlAxR+NDLBHr9Bh1K2r/SHLCD+LPnn7xcu4RCGkQK5K 2CnQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Ag5R8ANFXiIKHrZi3CpUKkJaLv+KTVPp7lGufqkGA/Q=; b=O7JKExU18i8h5t8FeQ8pekLfr5vW2QMhyLht6agAp/FCfedQiX1tERjHcDGH5Vl1ms /iDDBfd3SqQblaN2Me8KYjcPG3XgwZmnGrAY/la8HnDP9kFFa+Z1dIs8kMtajVgqIZgs ElPdcFs0WEME/jCuw8+lnIXiSnragfrTIAK0zjPBdewhsCMA2KA5csWfSgCfy+ZDZeKQ LpWqMFIGS2pTEKqZ8cNCKciTgjGfwDFJnLxiZrkmRghycAhexEvTMnf1N9bZifJFUNeu Wn0OYyz7gsfzhs3ZAQkqmwzVtp+jMdPYwQRKihIeJNNurB7kKUg03SxWx0oMnElk9Vjp GGHA== X-Gm-Message-State: AOAM530BAvB8+L1wcG2mL/k74EuzqT7M8tz1WYF57kwpaMaK7bW/YGnL iVCOHIX5+ZW5q2+oLYt/iDvvBX2Pi1z4WfvaMzc= X-Received: by 2002:a17:90a:f184:: with SMTP id bv4mr3823913pjb.1.1603399952372; Thu, 22 Oct 2020 13:52:32 -0700 (PDT) MIME-Version: 1.0 References: <202010091613.B671C86@keescook> <202010121556.1110776B83@keescook> In-Reply-To: From: YiFei Zhu Date: Thu, 22 Oct 2020 15:52:20 -0500 Message-ID: Subject: Re: [PATCH v4 seccomp 5/5] seccomp/cache: Report cache data through /proc/pid/seccomp_cache To: Kees Cook Cc: Linux Containers , YiFei Zhu , bpf , kernel list , Aleksa Sarai , Andrea Arcangeli , Andy Lutomirski , David Laight , Dimitrios Skarlatos , Giuseppe Scrivano , Hubertus Franke , Jack Chen , Jann Horn , Josep Torrellas , Tianyin Xu , Tobin Feldman-Fitzthum , Tycho Andersen , Valentin Rothberg , Will Drewry Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Oct 12, 2020 at 7:31 PM YiFei Zhu wrote: > > On Mon, Oct 12, 2020 at 5:57 PM Kees Cook wrote: > > I think it's fine to just have this "dangle" with a help text update of > > "if seccomp action caching is supported by the architecture, provide the > > /proc/$pid ..." > > I think it would be weird if someone sees this help text and wonder... > "hmm does my architecture support seccomp action caching" and without > a clear pointer to how seccomp action cache works, goes and compiles > the kernel with this config option on for the purpose of knowing if > their arch supports it... Or, is it a common practice in the kernel to > leave dangling configs? Bump, in case this question was missed. I don't really want to miss the 5.10 merge window... YiFei Zhu