Re: [RFC PATCH 0/2] seccomp: defer syscall_rollback() to get_signal()

Next message: David Hildenbrand (Arm): "Re: [PATCH v3 13/13] mm/huge_memory: add and use has_deposited_pgtable()"
Previous message: Vishnu Reddy: "Re: [PATCH 3/3] misc: fastrpc: Use context device bus for compute banks"
In reply to: Oleg Nesterov: "Re: [RFC PATCH 0/2] seccomp: defer syscall_rollback() to get_signal()"
Next in thread: Kees Cook: "Re: [RFC PATCH 0/2] seccomp: defer syscall_rollback() to get_signal()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Kees Cook

Date: Wed Apr 15 2026 - 12:07:52 EST

On Wed, Apr 15, 2026 at 12:44:25PM +0200, Oleg Nesterov wrote:
> On 04/14, Oleg Nesterov wrote:
> >
> > Kees, Andy, et al, please comment. I think the usage of syscall_rollback()
> > in __seccomp_filter() is not right.
>
> I'll recheck, but in fact this logic looks broken... force_sig_seccomp() assumes
> that it can't race with (say) SIGSEGV which has a handler. And 2/2 makes the things
> slightly worse. So self-nack for now.

Oh, I just read this now. Yeah, that's a good point. Hrmpf. A corner
case, but yeah, the proposed change makes things worse.

--
Kees Cook