[PATCH v3 0/7] SECCOMP based userspace for UML

linux-um.lists.infradead.org archive mirror
 help / color / mirror / Atom feed

From: Benjamin Berg <benjamin@sipsolutions.net>
To: linux-um@lists.infradead.org
Cc: Benjamin Berg <benjamin.berg@intel.com>
Subject: [PATCH v3 0/7] SECCOMP based userspace for UML
Date: Mon,  2 Jun 2025 15:00:45 +0200	[thread overview]
Message-ID: <20250602130052.545733-1-benjamin@sipsolutions.net> (raw)

From: Benjamin Berg <benjamin.berg@intel.com>

Hi all,

we should be getting close to a usable SECCOMP patchset now. This
revision mostly fixes an issue with FP size detection and makes SECCOMP
mode a runtime rather than compile time option.

Benjamin

v3:
- Fix an issue where the FP size was not detected (memor was not shared)
- Use runtime configuration instead of compile time configuration

v2:
- Simple rebase dropping the merged patche

v1:
- Remove explicit (and insufficient) kconfig.h includes
- Change commit order to move configuration to the end
- Fix futex wait race condition
- Also handle child dying during stub startup

RFCv2:
- Fix FP handling on i386
- Improved MM list for userspace sigchild handling
- Remove kconfig.h includes
- Minor cleanups

Benjamin Berg (7):
  um: Move faultinfo extraction into userspace routine
  um: Add stub side of SECCOMP/futex based process handling
  um: Add helper functions to get/set state for SECCOMP
  um: Track userspace children dying in SECCOMP mode
  um: Implement kernel side of SECCOMP based process handling
  um: Add SECCOMP support detection and initialization
  um: pass FD for memory operations when needed

 arch/um/include/asm/irq.h                  |   5 +-
 arch/um/include/asm/mmu.h                  |   3 +
 arch/um/include/shared/common-offsets.h    |   4 +
 arch/um/include/shared/irq_user.h          |   2 +
 arch/um/include/shared/os.h                |   3 +-
 arch/um/include/shared/skas/mm_id.h        |   9 +
 arch/um/include/shared/skas/skas.h         |   1 +
 arch/um/include/shared/skas/stub-data.h    |  20 +-
 arch/um/kernel/irq.c                       |   6 +
 arch/um/kernel/skas/mmu.c                  |  89 +++-
 arch/um/kernel/skas/stub.c                 | 130 +++++-
 arch/um/kernel/skas/stub_exe.c             | 159 ++++++-
 arch/um/os-Linux/internal.h                |   5 +-
 arch/um/os-Linux/process.c                 |  31 ++
 arch/um/os-Linux/registers.c               |   4 +-
 arch/um/os-Linux/signal.c                  |  19 +-
 arch/um/os-Linux/skas/mem.c                | 103 ++++-
 arch/um/os-Linux/skas/process.c            | 482 +++++++++++++++------
 arch/um/os-Linux/start_up.c                | 181 +++++++-
 arch/x86/um/os-Linux/mcontext.c            | 218 +++++++++-
 arch/x86/um/ptrace.c                       |  76 +++-
 arch/x86/um/shared/sysdep/kernel-offsets.h |   2 +
 arch/x86/um/shared/sysdep/mcontext.h       |   9 +
 arch/x86/um/shared/sysdep/stub-data.h      |  23 +
 arch/x86/um/shared/sysdep/stub.h           |   2 +
 arch/x86/um/shared/sysdep/stub_32.h        |  13 +
 arch/x86/um/shared/sysdep/stub_64.h        |  17 +
 arch/x86/um/tls_32.c                       |  23 +-
 28 files changed, 1434 insertions(+), 205 deletions(-)
 create mode 100644 arch/x86/um/shared/sysdep/stub-data.h

-- 
2.49.0

next             reply	other threads:[~2025-06-02 13:02 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2025-06-02 13:00 Benjamin Berg [this message]
2025-06-02 13:00 ` [PATCH v3 1/7] um: Move faultinfo extraction into userspace routine Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 2/7] um: Add stub side of SECCOMP/futex based process handling Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 3/7] um: Add helper functions to get/set state for SECCOMP Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 4/7] um: Track userspace children dying in SECCOMP mode Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 5/7] um: Implement kernel side of SECCOMP based process handling Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 6/7] um: Add SECCOMP support detection and initialization Benjamin Berg
2025-06-02 13:00 ` [PATCH v3 7/7] um: pass FD for memory operations when needed Benjamin Berg

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20250602130052.545733-1-benjamin@sipsolutions.net \
    --to=benjamin@sipsolutions.net \
    --cc=benjamin.berg@intel.com \
    --cc=linux-um@lists.infradead.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).