From: Kees Cook <keescook@chromium.org>
To: containers@lists.linux-foundation.org,
YiFei Zhu <zhuyifei1999@gmail.com>
Cc: linux-sh@vger.kernel.org, Tobin Feldman-Fitzthum <tobin@ibm.com>,
Hubertus Franke <frankeh@us.ibm.com>,
Jack Chen <jianyan2@illinois.edu>,
linux-riscv@lists.infradead.org,
Andrea Arcangeli <aarcange@redhat.com>,
linux-s390@vger.kernel.org, YiFei Zhu <yifeifz2@illinois.edu>,
linux-csky@vger.kernel.org, Tianyin Xu <tyxu@illinois.edu>,
linux-xtensa@linux-xtensa.org, Kees Cook <keescook@chromium.org>,
Jann Horn <jannh@google.com>,
Valentin Rothberg <vrothber@redhat.com>,
Aleksa Sarai <cyphar@cyphar.com>,
Josep Torrellas <torrella@illinois.edu>,
Will Drewry <wad@chromium.org>,
linux-parisc@vger.kernel.org, linux-kernel@vger.kernel.org,
Andy Lutomirski <luto@amacapital.net>,
Dimitrios Skarlatos <dskarlat@cs.cmu.edu>,
David Laight <David.Laight@aculab.com>,
Giuseppe Scrivano <gscrivan@redhat.com>,
linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs
Date: Tue, 17 Nov 2020 13:11:13 -0800 [thread overview]
Message-ID: <160564746555.1001899.9792418917631139658.b4-ty@chromium.org> (raw)
In-Reply-To: <cover.1605101222.git.yifeifz2@illinois.edu>
On Wed, 11 Nov 2020 07:33:46 -0600, YiFei Zhu wrote:
> This patch series enables bitmap cache for the remaining arches with
> SECCOMP_FILTER, other than MIPS.
>
> I was unable to find any of the arches having subarch-specific NR_syscalls
> macros, so generic NR_syscalls is used. SH's syscall_get_arch seems to
> only have the 32-bit subarch implementation. I'm not sure if this is
> expected.
>
> [...]
Applied to for-next/seccomp, thanks!
I made a small tweak to the last patch to add more details to the per-ARCH
help text, and to drop the needless "depends on SECCOMP" (which "depends
on SECCOMP_FILTER" was already present).
I successfully build-tested on parisc, powerpc, riscv, s390, and
sh. xtensa doesn't build using the existing Debian cross-compiler, and
I can't make csky with clang work, but they look correct. *cross fingers*
[1/8] csky: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/ee7ce951028f
[2/8] parisc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/7f049cc068a3
[3/8] powerpc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/95f8ae2624a0
[4/8] riscv: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/8f9f0f44a37b
[5/8] s390: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/5897106c6902
[6/8] sh: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/75186111c257
[7/8] xtensa: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/4f408bc643aa
[8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache
https://git.kernel.org/kees/c/49a6968cc78f
--
Kees Cook
_______________________________________________
Containers mailing list
Containers@lists.linux-foundation.org
https://lists.linuxfoundation.org/mailman/listinfo/containers
WARNING: multiple messages have this Message-ID (diff)
From: Kees Cook <keescook@chromium.org>
To: containers@lists.linux-foundation.org,
YiFei Zhu <zhuyifei1999@gmail.com>
Cc: Kees Cook <keescook@chromium.org>,
Josep Torrellas <torrella@illinois.edu>,
Jack Chen <jianyan2@illinois.edu>,
Tobin Feldman-Fitzthum <tobin@ibm.com>,
linux-riscv@lists.infradead.org,
David Laight <David.Laight@aculab.com>,
Dimitrios Skarlatos <dskarlat@cs.cmu.edu>,
Andrea Arcangeli <aarcange@redhat.com>,
linux-sh@vger.kernel.org, Hubertus Franke <frankeh@us.ibm.com>,
YiFei Zhu <yifeifz2@illinois.edu>, Tianyin Xu <tyxu@illinois.edu>,
linux-parisc@vger.kernel.org,
Andy Lutomirski <luto@amacapital.net>,
linux-csky@vger.kernel.org, Aleksa Sarai <cyphar@cyphar.com>,
linux-xtensa@linux-xtensa.org, Jann Horn <jannh@google.com>,
Giuseppe Scrivano <gscrivan@redhat.com>,
linux-kernel@vger.kernel.org, Will Drewry <wad@chromium.org>,
linux-s390@vger.kernel.org,
Valentin Rothberg <vrothber@redhat.com>,
linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs
Date: Tue, 17 Nov 2020 13:11:13 -0800 [thread overview]
Message-ID: <160564746555.1001899.9792418917631139658.b4-ty@chromium.org> (raw)
In-Reply-To: <cover.1605101222.git.yifeifz2@illinois.edu>
On Wed, 11 Nov 2020 07:33:46 -0600, YiFei Zhu wrote:
> This patch series enables bitmap cache for the remaining arches with
> SECCOMP_FILTER, other than MIPS.
>
> I was unable to find any of the arches having subarch-specific NR_syscalls
> macros, so generic NR_syscalls is used. SH's syscall_get_arch seems to
> only have the 32-bit subarch implementation. I'm not sure if this is
> expected.
>
> [...]
Applied to for-next/seccomp, thanks!
I made a small tweak to the last patch to add more details to the per-ARCH
help text, and to drop the needless "depends on SECCOMP" (which "depends
on SECCOMP_FILTER" was already present).
I successfully build-tested on parisc, powerpc, riscv, s390, and
sh. xtensa doesn't build using the existing Debian cross-compiler, and
I can't make csky with clang work, but they look correct. *cross fingers*
[1/8] csky: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/ee7ce951028f
[2/8] parisc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/7f049cc068a3
[3/8] powerpc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/95f8ae2624a0
[4/8] riscv: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/8f9f0f44a37b
[5/8] s390: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/5897106c6902
[6/8] sh: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/75186111c257
[7/8] xtensa: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/4f408bc643aa
[8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache
https://git.kernel.org/kees/c/49a6968cc78f
--
Kees Cook
WARNING: multiple messages have this Message-ID (diff)
From: Kees Cook <keescook@chromium.org>
To: containers@lists.linux-foundation.org,
YiFei Zhu <zhuyifei1999@gmail.com>
Cc: linux-sh@vger.kernel.org, Tobin Feldman-Fitzthum <tobin@ibm.com>,
Hubertus Franke <frankeh@us.ibm.com>,
Jack Chen <jianyan2@illinois.edu>,
linux-riscv@lists.infradead.org,
Andrea Arcangeli <aarcange@redhat.com>,
linux-s390@vger.kernel.org, YiFei Zhu <yifeifz2@illinois.edu>,
linux-csky@vger.kernel.org, Tianyin Xu <tyxu@illinois.edu>,
linux-xtensa@linux-xtensa.org, Kees Cook <keescook@chromium.org>,
Jann Horn <jannh@google.com>,
Valentin Rothberg <vrothber@redhat.com>,
Aleksa Sarai <cyphar@cyphar.com>,
Josep Torrellas <torrella@illinois.edu>,
Will Drewry <wad@chromium.org>,
linux-parisc@vger.kernel.org, linux-kernel@vger.kernel.org,
Andy Lutomirski <luto@amacapital.net>,
Dimitrios Skarlatos <dskarlat@cs.cmu.edu>,
David Laight <David.Laight@aculab.com>,
Giuseppe Scrivano <gscrivan@redhat.com>,
linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs
Date: Tue, 17 Nov 2020 13:11:13 -0800 [thread overview]
Message-ID: <160564746555.1001899.9792418917631139658.b4-ty@chromium.org> (raw)
In-Reply-To: <cover.1605101222.git.yifeifz2@illinois.edu>
On Wed, 11 Nov 2020 07:33:46 -0600, YiFei Zhu wrote:
> This patch series enables bitmap cache for the remaining arches with
> SECCOMP_FILTER, other than MIPS.
>
> I was unable to find any of the arches having subarch-specific NR_syscalls
> macros, so generic NR_syscalls is used. SH's syscall_get_arch seems to
> only have the 32-bit subarch implementation. I'm not sure if this is
> expected.
>
> [...]
Applied to for-next/seccomp, thanks!
I made a small tweak to the last patch to add more details to the per-ARCH
help text, and to drop the needless "depends on SECCOMP" (which "depends
on SECCOMP_FILTER" was already present).
I successfully build-tested on parisc, powerpc, riscv, s390, and
sh. xtensa doesn't build using the existing Debian cross-compiler, and
I can't make csky with clang work, but they look correct. *cross fingers*
[1/8] csky: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/ee7ce951028f
[2/8] parisc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/7f049cc068a3
[3/8] powerpc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/95f8ae2624a0
[4/8] riscv: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/8f9f0f44a37b
[5/8] s390: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/5897106c6902
[6/8] sh: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/75186111c257
[7/8] xtensa: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/4f408bc643aa
[8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache
https://git.kernel.org/kees/c/49a6968cc78f
--
Kees Cook
_______________________________________________
linux-riscv mailing list
linux-riscv@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-riscv
WARNING: multiple messages have this Message-ID (diff)
From: Kees Cook <keescook@chromium.org>
To: containers@lists.linux-foundation.org,
YiFei Zhu <zhuyifei1999@gmail.com>
Cc: linux-sh@vger.kernel.org, Tobin Feldman-Fitzthum <tobin@ibm.com>,
Hubertus Franke <frankeh@us.ibm.com>,
Jack Chen <jianyan2@illinois.edu>,
linux-riscv@lists.infradead.org,
Andrea Arcangeli <aarcange@redhat.com>,
linux-s390@vger.kernel.org, YiFei Zhu <yifeifz2@illinois.edu>,
linux-csky@vger.kernel.org, Tianyin Xu <tyxu@illinois.edu>,
linux-xtensa@linux-xtensa.org, Kees Cook <keescook@chromium.org>,
Jann Horn <jannh@google.com>,
Valentin Rothberg <vrothber@redhat.com>,
Aleksa Sarai <cyphar@cyphar.com>,
Josep Torrellas <torrella@illinois.edu>,
Will Drewry <wad@chromium.org>,
linux-parisc@vger.kernel.org, linux-kernel@vger.kernel.org,
Andy Lutomirski <luto@amacapital.net>,
Dimitrios Skarlatos <dskarlat@cs.cmu.edu>,
David Laight <David.Laight@aculab.com>,
Giuseppe Scrivano <gscrivan@redhat.com>,
linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs
Date: Tue, 17 Nov 2020 13:11:13 -0800 [thread overview]
Message-ID: <160564746555.1001899.9792418917631139658.b4-ty@chromium.org> (raw)
In-Reply-To: <cover.1605101222.git.yifeifz2@illinois.edu>
On Wed, 11 Nov 2020 07:33:46 -0600, YiFei Zhu wrote:
> This patch series enables bitmap cache for the remaining arches with
> SECCOMP_FILTER, other than MIPS.
>
> I was unable to find any of the arches having subarch-specific NR_syscalls
> macros, so generic NR_syscalls is used. SH's syscall_get_arch seems to
> only have the 32-bit subarch implementation. I'm not sure if this is
> expected.
>
> [...]
Applied to for-next/seccomp, thanks!
I made a small tweak to the last patch to add more details to the per-ARCH
help text, and to drop the needless "depends on SECCOMP" (which "depends
on SECCOMP_FILTER" was already present).
I successfully build-tested on parisc, powerpc, riscv, s390, and
sh. xtensa doesn't build using the existing Debian cross-compiler, and
I can't make csky with clang work, but they look correct. *cross fingers*
[1/8] csky: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/ee7ce951028f
[2/8] parisc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/7f049cc068a3
[3/8] powerpc: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/95f8ae2624a0
[4/8] riscv: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/8f9f0f44a37b
[5/8] s390: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/5897106c6902
[6/8] sh: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/75186111c257
[7/8] xtensa: Enable seccomp architecture tracking
https://git.kernel.org/kees/c/4f408bc643aa
[8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache
https://git.kernel.org/kees/c/49a6968cc78f
--
Kees Cook
next prev parent reply other threads:[~2020-11-17 21:13 UTC|newest]
Thread overview: 49+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-11-11 13:33 [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in pro YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 1/8] csky: Enable seccomp architecture tracking YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 2/8] parisc: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 3/8] powerpc: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 4/8] riscv: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 5/8] s390: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 6/8] sh: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 7/8] xtensa: " YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` [PATCH seccomp v2 8/8] seccomp/cache: Report cache data through /proc/pid/seccomp_cache YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-11 13:33 ` YiFei Zhu
2020-11-17 21:11 ` Kees Cook [this message]
2020-11-17 21:11 ` [PATCH seccomp v2 0/8] seccomp: add bitmap cache support on remaining arches and report cache in procfs Kees Cook
2020-11-17 21:11 ` Kees Cook
2020-11-17 21:11 ` Kees Cook
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=160564746555.1001899.9792418917631139658.b4-ty@chromium.org \
--to=keescook@chromium.org \
--cc=David.Laight@aculab.com \
--cc=aarcange@redhat.com \
--cc=containers@lists.linux-foundation.org \
--cc=cyphar@cyphar.com \
--cc=dskarlat@cs.cmu.edu \
--cc=frankeh@us.ibm.com \
--cc=gscrivan@redhat.com \
--cc=jannh@google.com \
--cc=jianyan2@illinois.edu \
--cc=linux-csky@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-parisc@vger.kernel.org \
--cc=linux-riscv@lists.infradead.org \
--cc=linux-s390@vger.kernel.org \
--cc=linux-sh@vger.kernel.org \
--cc=linux-xtensa@linux-xtensa.org \
--cc=linuxppc-dev@lists.ozlabs.org \
--cc=luto@amacapital.net \
--cc=tobin@ibm.com \
--cc=torrella@illinois.edu \
--cc=tyxu@illinois.edu \
--cc=vrothber@redhat.com \
--cc=wad@chromium.org \
--cc=yifeifz2@illinois.edu \
--cc=zhuyifei1999@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.