Received: by 2002:a05:6a10:16a7:0:0:0:0 with SMTP id gp39csp4171095pxb; Tue, 17 Nov 2020 13:15:46 -0800 (PST) X-Google-Smtp-Source: ABdhPJyxUAXWaoLUKPcJXdUPUX7iC609jmi8vgUYOxI2YIQXG9Hl1NZsJ9uR8e8CGoUpnf80Tb+6 X-Received: by 2002:a17:906:2932:: with SMTP id v18mr20714714ejd.144.1605647746230; Tue, 17 Nov 2020 13:15:46 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1605647746; cv=none; d=google.com; s=arc-20160816; b=TDUYeY0o8M1Xl5T8O/5ZiKVQxkm//zxLoT7UyaE+YW8In/wc6XNLzr+sYSP9da+zxM 9VrAb6DGvmGQV4hbe9d2Ceq3ypnrdyfoTt+QLR4aISONwlPuuNMSkVXp6xH7QXVnJpe3 ZCMOAcEsv9Za4KvfX894EWGuHnbfVKqyJw04Ci4uIx3rtJHVW5SMEAIXfs2RT7t+o2Yp 7D8Xf6CoD4vzLuqlnaX/0x8PuePwkPQUs8fzNGBzboY+A8T8AP/j6NjPR/vubz/Ze8t7 ZGYlCAvAnPWRZz59bf4oxsu5l6ulFoTsxcu5br+iaErTSaZZPxOcMx0bYX71FfOrHJAs 4rEw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=cUL+9SvzrRzllFEAM5OhpKctCqgJfj/sR/XV7GWar0I=; b=i0xjkuk1pghnsU/zxHqJMZp29AXFF4I5kW8ZQI6O/3JO821DzQB/83kCMcN0Jg2pj2 MTEJYVXs1Prtdi8sTh6+wY9U3hP5V62JY6rREdkwQdU6PZG55JRcntsnJ+cuQgFRgymw +HyBdF3WHgaKb7a9I3TkJ2SYCkOXFrKvbK1rxCK+zJeA4zIuwA5yLGXZhBZwZSq2RAMH 8L7LqfTyt36kExKspq7e3LoUCU6VFqN/pdLOGl8QYqa9OiQ80umwLXhIQNSMcKky+NGX 7bLBb6lAUc3cCwVjCXOYHOeFqw+1HY2/sevB+8v5HIs/LcUinCLniQWttVX07f4Ze+b/ rE1w== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=MWHmfYIY; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id a14si14719421ejs.111.2020.11.17.13.15.23; Tue, 17 Nov 2020 13:15:46 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=MWHmfYIY; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727520AbgKQVN3 (ORCPT + 99 others); Tue, 17 Nov 2020 16:13:29 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:48300 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727672AbgKQVN0 (ORCPT ); Tue, 17 Nov 2020 16:13:26 -0500 Received: from mail-pl1-x642.google.com (mail-pl1-x642.google.com [IPv6:2607:f8b0:4864:20::642]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A48BBC0617A7 for ; Tue, 17 Nov 2020 13:13:26 -0800 (PST) Received: by mail-pl1-x642.google.com with SMTP id b3so10932131pls.11 for ; Tue, 17 Nov 2020 13:13:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=from:to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; bh=cUL+9SvzrRzllFEAM5OhpKctCqgJfj/sR/XV7GWar0I=; b=MWHmfYIY9ch9OvmV2riVcHnEmRpuPVUXqLW0gkD2sszZU8xssgw1NP5X1ShxEm8HJa 0hsVkK3fKE20KdO6VmXkfWW+cgXtGbCsjVnNFMstYf+pK2L5LTkbrAxCuUfBB/WpAjAt 75tDLdzwv7U0UzXqesHtuAuhick5Z8a/RrA2E= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=cUL+9SvzrRzllFEAM5OhpKctCqgJfj/sR/XV7GWar0I=; b=P6uUheI+UXU9jvDi7cX4Pgrlgy+FlulCIK3d7xDetx5TvrmcuiKMTC0czcagsd+v5s DZx43TsPNqE2BIxdcmMJ3FN1l5KT1H2k4x3/AgXmd67GNpElmLXS/BgN2Ydd0IuAfJF8 O/Eb5C9TIrYy12WqSXJatbK94k5DcvKkpRbzHXrGeRfIyGnEPxyuDIsE2ys0SEJKcta+ W5EVYCpCiNqRZuUVRE229NngYUAPL+xst+tIAAje50MqjbQG9TMB5L3RHKsaqNU/MFdh /oDoFsRy2Gl3sNamSEqLvUdPAbP4yyhSeex4Ho/rvAZ1LEv3LYpvaLFsTiq5orEBPF4l iTvg== X-Gm-Message-State: AOAM532UweAyVGrt6A8zfpv3SiLeK9icGu8fVo4vAES/FrjP5sJXrZQk qWWH4nK51ENvxF47fYUEvhry+g== X-Received: by 2002:a17:90b:80f:: with SMTP id bk15mr934491pjb.119.1605647606216; Tue, 17 Nov 2020 13:13:26 -0800 (PST) Received: from www.outflux.net (smtp.outflux.net. [198.145.64.163]) by smtp.gmail.com with ESMTPSA id d18sm19469582pgm.68.2020.11.17.13.13.25 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 17 Nov 2020 13:13:25 -0800 (PST) From: Kees Cook To: containers@lists.linux-foundation.org, YiFei Zhu Cc: Kees Cook , Josep Torrellas , Jack Chen , Tobin Feldman-Fitzthum , linux-riscv@lists.infradead.org, David Laight , Dimitrios Skarlatos , Andrea Arcangeli , linux-sh@vger.kernel.org, Hubertus Franke , YiFei Zhu , Tianyin Xu , linux-parisc@vger.kernel.org, Andy Lutomirski , linux-csky@vger.kernel.org, Aleksa Sarai , linux-xtensa@linux-xtensa.org, Jann Horn , Giuseppe Scrivano , linux-kernel@vger.kernel.org, Will Drewry , linux-s390@vger.kernel.org, Valentin Rothberg , linuxppc-dev@lists.ozlabs.org Subject: Re: [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs Date: Tue, 17 Nov 2020 13:11:13 -0800 Message-Id: <160564746555.1001899.9792418917631139658.b4-ty@chromium.org> X-Mailer: git-send-email 2.25.1 In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, 11 Nov 2020 07:33:46 -0600, YiFei Zhu wrote: > This patch series enables bitmap cache for the remaining arches with > SECCOMP_FILTER, other than MIPS. > > I was unable to find any of the arches having subarch-specific NR_syscalls > macros, so generic NR_syscalls is used. SH's syscall_get_arch seems to > only have the 32-bit subarch implementation. I'm not sure if this is > expected. > > [...] Applied to for-next/seccomp, thanks! I made a small tweak to the last patch to add more details to the per-ARCH help text, and to drop the needless "depends on SECCOMP" (which "depends on SECCOMP_FILTER" was already present). I successfully build-tested on parisc, powerpc, riscv, s390, and sh. xtensa doesn't build using the existing Debian cross-compiler, and I can't make csky with clang work, but they look correct. *cross fingers* [1/8] csky: Enable seccomp architecture tracking https://git.kernel.org/kees/c/ee7ce951028f [2/8] parisc: Enable seccomp architecture tracking https://git.kernel.org/kees/c/7f049cc068a3 [3/8] powerpc: Enable seccomp architecture tracking https://git.kernel.org/kees/c/95f8ae2624a0 [4/8] riscv: Enable seccomp architecture tracking https://git.kernel.org/kees/c/8f9f0f44a37b [5/8] s390: Enable seccomp architecture tracking https://git.kernel.org/kees/c/5897106c6902 [6/8] sh: Enable seccomp architecture tracking https://git.kernel.org/kees/c/75186111c257 [7/8] xtensa: Enable seccomp architecture tracking https://git.kernel.org/kees/c/4f408bc643aa [8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache https://git.kernel.org/kees/c/49a6968cc78f -- Kees Cook