From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from foss.arm.com (foss.arm.com [217.140.110.172])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id DC615364028
	for <linux-kernel@vger.kernel.org>; Wed, 24 Jun 2026 13:43:39 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=217.140.110.172
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1782308621; cv=none; b=m0J5VX7qK8AG5U5IUHDrUfzL4J/ln15SzXzxArnKE7bsWaa3AENcYbSZimxGxSX9KYKQ+lCJaMc/hOmmjLUr/FS/D3v0XQmC3JObEz8dZy1I1Yr89/WEFC/MvdGQXWK11kBROMVy5pYBkdMgyZPalWFsGAUQtHkv93Y3rK63X/k=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1782308621; c=relaxed/simple;
	bh=bjymW0o4mMAwwsEwrh9O9s4aXugkRn2RvVRAAj4UCY8=;
	h=Message-ID:Date:MIME-Version:Subject:To:References:From:Cc:
	 In-Reply-To:Content-Type; b=NQSkIo2zZeCJFPT56fNVbTD4Y+R2jzn+hhDUegod+86YEfEQOQCC2lS8joTS60MFwQUnZSokphxliA96jdrYj9j+E19IcZ0ZcBcvXg8W6482R3gj+xtKv3gJKV04j70mqcCTX5FIxr2CsqUI7EyVAR2VsBmEppL+EMvkG2gku4A=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com; spf=pass smtp.mailfrom=arm.com; dkim=pass (1024-bit key) header.d=arm.com header.i=@arm.com header.b=RK5RURKf; arc=none smtp.client-ip=217.140.110.172
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=arm.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=arm.com
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=arm.com header.i=@arm.com header.b="RK5RURKf"
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14])
	by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 9839D263D;
	Wed, 24 Jun 2026 06:43:34 -0700 (PDT)
Received: from [10.2.213.11] (e137867.arm.com [10.2.213.11])
	by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 5140D3F905;
	Wed, 24 Jun 2026 06:43:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=arm.com; s=foss;
	t=1782308619; bh=bjymW0o4mMAwwsEwrh9O9s4aXugkRn2RvVRAAj4UCY8=;
	h=Date:Subject:To:References:From:Cc:In-Reply-To:From;
	b=RK5RURKfdVfWwVYxx8VSUezom3WlWBNUldjJ7TlTqnkDk9Y68d4podFfPoIo7ls62
	 8xghgKOjYnQHMI8R9OFmed8qZVNZqbFKWBIN4BvQoKHuJpsJXiuFhWY2BADk6glDoi
	 +k3FHaFsk76K/0rPyslqV7txO5WsIDFYSzaetL20=
Message-ID: <af2f23cc-331a-4145-abdd-eaa8fe4039d6@arm.com>
Date: Wed, 24 Jun 2026 14:43:33 +0100
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: [PATCH v15 04/11] arm64/ptrace: Expand secure_computing() in
 place
To: Jinjie Ruan <ruanjinjie@huawei.com>
References: <20260511092103.1974980-1-ruanjinjie@huawei.com>
 <20260511092103.1974980-5-ruanjinjie@huawei.com>
From: Ada Couprie Diaz <ada.coupriediaz@arm.com>
Cc: Ada Couprie Diaz <ada.coupriediaz@arm.com>, catalin.marinas@arm.com,
 will@kernel.org, oleg@redhat.com, tglx@kernel.org, peterz@infradead.org,
 luto@kernel.org, kees@kernel.org, wad@chromium.org, mark.rutland@arm.com,
 yeoreum.yun@arm.com, linusw@kernel.org, kevin.brodsky@arm.com,
 ldv@strace.io, thuth@redhat.com, james.morse@arm.com, song@kernel.org,
 anshuman.khandual@arm.com, broonie@kernel.org, ryan.roberts@arm.com,
 pengcan@kylinos.cn, liqiang01@kylinos.cn,
 linux-arm-kernel@lists.infradead.org, linux-kernel@vger.kernel.org
Content-Language: en-US, en-GB, fr
Organization: Arm Ltd.
In-Reply-To: <20260511092103.1974980-5-ruanjinjie@huawei.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

On 11/05/2026 10:20, Jinjie Ruan wrote:
> Refactor syscall_trace_enter() by open-coding the seccomp check
> to align with the generic entry framework.
>
> [Background]
> The generic entry implementation expands the seccomp check in-place
> instead of using the secure_computing() wrapper. It directly tests
> SYSCALL_WORK_SECCOMP and calls the underlying __secure_computing()
> function to handle syscall filtering.
>
> [Changes]
> 1. Open-code seccomp check:
>     - Instead of calling the secure_computing() wrapper, explicitly check
>       the 'flags' parameter for _TIF_SECCOMP.
>     - Call __secure_computing() directly if the flag is set.
>
> [Why this matters]
> - Aligns the arm64 syscall path with the generic entry implementation,
>    simplifying future migration to the generic entry framework.
> - No functional changes are intended; seccomp behavior remains identical.
>
> Cc: Mark Rutland <mark.rutland@arm.com>
> Cc: Will Deacon <will@kernel.org>
> Cc: Catalin Marinas <catalin.marinas@arm.com>
> Reviewed-by: Linus Walleij <linusw@kernel.org>
> Reviewed-by: Yeoreum Yun <yeoreum.yun@arm.com>
> Reviewed-by: Kevin Brodsky <kevin.brodsky@arm.com>
> Signed-off-by: Jinjie Ruan <ruanjinjie@huawei.com>
> ---
Reviewed-by: Ada Couprie Diaz <ada.coupriediaz@arm.com>