Re: [PATCH v4 seccomp 5/5] seccomp/cache: Report cache data through /proc/pid/seccomp_cache

From: YiFei Zhu
Date: Mon Oct 12 2020 - 22:40:58 EST

Next message: Sami Tolvanen: "[PATCH v6 10/25] objtool: Split noinstr validation from --vmlinux"
Previous message: Jarkko Sakkinen: "[PATCH v3 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations"
In reply to: Kees Cook: "Re: [PATCH v4 seccomp 5/5] seccomp/cache: Report cache data through /proc/pid/seccomp_cache"
Next in thread: YiFei Zhu: "[PATCH v5 seccomp 0/5]seccomp: Add bitmap cache of constant allow filter results"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Oct 12, 2020 at 5:57 PM Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> I think it's fine to just have this "dangle" with a help text update of
> "if seccomp action caching is supported by the architecture, provide the
> /proc/$pid ..."

I think it would be weird if someone sees this help text and wonder...
"hmm does my architecture support seccomp action caching" and without
a clear pointer to how seccomp action cache works, goes and compiles
the kernel with this config option on for the purpose of knowing if
their arch supports it... Or, is it a common practice in the kernel to
leave dangling configs?

YiFei Zhu

Next message: Sami Tolvanen: "[PATCH v6 10/25] objtool: Split noinstr validation from --vmlinux"
Previous message: Jarkko Sakkinen: "[PATCH v3 3/3] KEYS: trusted: Reserve TPM for seal and unseal operations"
In reply to: Kees Cook: "Re: [PATCH v4 seccomp 5/5] seccomp/cache: Report cache data through /proc/pid/seccomp_cache"
Next in thread: YiFei Zhu: "[PATCH v5 seccomp 0/5]seccomp: Add bitmap cache of constant allow filter results"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]