Re: [PATCH 6/8] x86: Provide API for local kernel TLB flushing

From: Kees Cook
Date: Tue Jun 16 2020 - 14:37:53 EST

Next message: Steven Rostedt: "Re: [PATCH v2] recordmcount: support >64k sections"
Previous message: Jann Horn: "Re: [PATCH 4/8] seccomp: Implement constant action bitmaps"
In reply to: Andy Lutomirski: "Re: [PATCH 6/8] x86: Provide API for local kernel TLB flushing"
Next in thread: Kees Cook: "[PATCH 4/8] seccomp: Implement constant action bitmaps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 16, 2020 at 09:59:29AM -0700, Andy Lutomirski wrote:
> On Tue, Jun 16, 2020 at 12:49 AM Kees Cook <keescook@xxxxxxxxxxxx> wrote:
> >
> > The seccomp constant action bitmap filter evaluation routine depends
> > on being able to quickly clear the PTE "accessed" bit for a temporary
> > allocation. Provide access to the existing CPU-local kernel memory TLB
> > flushing routines.
>
> Can you write a better justification? Also, unless I'm just

Er, dunno? That's the entire reason this series needs it.

> incompetent this morning, I can't find anyone calling this in the
> series.

It's in patch 4, seccomp_update_bitmap():
https://lore.kernel.org/lkml/20200616074934.1600036-5-keescook@xxxxxxxxxxxx/

--
Kees Cook

Next message: Steven Rostedt: "Re: [PATCH v2] recordmcount: support >64k sections"
Previous message: Jann Horn: "Re: [PATCH 4/8] seccomp: Implement constant action bitmaps"
In reply to: Andy Lutomirski: "Re: [PATCH 6/8] x86: Provide API for local kernel TLB flushing"
Next in thread: Kees Cook: "[PATCH 4/8] seccomp: Implement constant action bitmaps"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]