riscv: add support for SECCOMP and SECCOMP_FILTER
This patch was extensively tested on Fedora/RISCV (applied by default on top of 5.2-rc7 kernel for <2 months). The patch was also tested with 5.3-rc on QEMU and SiFive Unleashed board. libseccomp (userspace) was rebased: https://github.com/seccomp/libseccomp/pull/134 Fully passes libseccomp regression testing (simulation and live). There is one failing kernel selftest: global.user_notification_signal v1 -> v2: - return immediately if secure_computing(NULL) returns -1 - fixed whitespace issues - add missing seccomp.h - remove patch #2 (solved now) - add riscv to seccomp kernel selftest Signed-off-by:David Abdurachmanov <david.abdurachmanov@sifive.com> Cc: keescook@chromium.org Cc: me@carlosedp.com Tested-by:
Carlos de Paula <me@carlosedp.com> Reviewed-by:
Kees Cook <keescook@chromium.org> Link: https://lore.kernel.org/linux-riscv/CAEn-LTp=ss0Dfv6J00=rCAy+N78U2AmhqJNjfqjr2FDpPYjxEQ@mail.gmail.com/ Link: https://lore.kernel.org/linux-riscv/CAJr-aD=UnCN9E_mdVJ2H5nt=6juRSWikZnA5HxDLQxXLbsRz-w@mail.gmail.com/ [paul.walmsley@sifive.com: cleaned up Cc: lines; fixed spelling and checkpatch issues; updated to apply] Signed-off-by:
Paul Walmsley <paul.walmsley@sifive.com>
Showing
- arch/riscv/Kconfig 14 additions, 0 deletionsarch/riscv/Kconfig
- arch/riscv/include/asm/seccomp.h 10 additions, 0 deletionsarch/riscv/include/asm/seccomp.h
- arch/riscv/include/asm/thread_info.h 4 additions, 1 deletionarch/riscv/include/asm/thread_info.h
- arch/riscv/kernel/entry.S 25 additions, 2 deletionsarch/riscv/kernel/entry.S
- arch/riscv/kernel/ptrace.c 10 additions, 0 deletionsarch/riscv/kernel/ptrace.c
- tools/testing/selftests/seccomp/seccomp_bpf.c 7 additions, 1 deletiontools/testing/selftests/seccomp/seccomp_bpf.c
Loading
Please register or sign in to comment