[PATCH v10 09/16] arm64/ptrace: Expand secure_computing() in place

Next message: Jinjie Ruan: "[PATCH v10 11/16] entry: Split syscall_exit_to_user_mode_work() for arch reuse"
Previous message: Jinjie Ruan: "[PATCH v10 08/16] arm64/ptrace: Do not report_syscall_exit() for PTRACE_SYSEMU_SINGLESTEP"
In reply to: Jinjie Ruan: "[PATCH v10 08/16] arm64/ptrace: Do not report_syscall_exit() for PTRACE_SYSEMU_SINGLESTEP"
Next in thread: Jinjie Ruan: "[PATCH v10 11/16] entry: Split syscall_exit_to_user_mode_work() for arch reuse"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jinjie Ruan

Date: Mon Dec 22 2025 - 06:48:28 EST

The generic entry expand secure_computing() in place and call
__secure_computing() directly.

In order to switch to the generic entry for arm64, refactor
secure_computing() for syscall_trace_enter().

No functional changes.

Reviewed-by: Kevin Brodsky <kevin.brodsky@xxxxxxx>
Signed-off-by: Jinjie Ruan <ruanjinjie@xxxxxxxxxx>
---
arch/arm64/kernel/ptrace.c | 9 ++++++---
1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/arch/arm64/kernel/ptrace.c b/arch/arm64/kernel/ptrace.c
index 558d5553fd6b..a1922e4a6437 100644
--- a/arch/arm64/kernel/ptrace.c
+++ b/arch/arm64/kernel/ptrace.c
@@ -2418,8 +2418,11 @@ int syscall_trace_enter(struct pt_regs *regs, long syscall, unsigned long flags)
}

/* Do the secure computing after ptrace; failures should be fast. */
- if (secure_computing() == -1)
- return NO_SYSCALL;
+ if (flags & _TIF_SECCOMP) {
+ ret = __secure_computing();
+ if (ret == -1)
+ return NO_SYSCALL;
+ }

/* Either of the above might have changed the syscall number */
syscall = syscall_get_nr(current, regs);
@@ -2437,7 +2440,7 @@ int syscall_trace_enter(struct pt_regs *regs, long syscall, unsigned long flags)
audit_syscall_entry(syscall, regs->orig_x0, regs->regs[1],
regs->regs[2], regs->regs[3]);

- return syscall;
+ return ret ? : syscall;
}

static inline bool report_single_step(unsigned long flags)
--
2.34.1