mirror of
https://kernel.googlesource.com/pub/scm/linux/kernel/git/torvalds/linux
synced 2025-09-28 03:37:44 +10:00
6baaade155
Add secure_computing() call to syscall_trace_enter to actually filter system calls. Add necessary arch Kconfig options, define TIF_SECCOMP trace flag and provide basic seccomp filter support in asm/syscall.h syscall_get_nr currently uses the syscall nr stored in orig_d0 because we change d0 to a default return code before starting a syscall trace. This may be inconsistent with syscall_rollback copying orig_d0 to d0 (which we never check upon return from trace). We use d0 for the return code from syscall_trace_enter in entry.S currently, and could perhaps expand that to store a new syscall number returned by the seccomp filter before executing the syscall. This clearly needs some discussion. seccomp_bpf self test on ARAnyM passes 81 out of 94 tests. Signed-off-by: Michael Schmitz <schmitzmic@gmail.com> Reviewed-by: Geert Uytterhoeven <geert@linux-m68k.org> Link: https://lore.kernel.org/r/20230112035529.13521-3-schmitzmic@gmail.com Signed-off-by: Geert Uytterhoeven <geert@linux-m68k.org> |
||
|---|---|---|
| .. | ||
| adb_iop.h | ||
| amigahw.h | ||
| amigaints.h | ||
| amigayle.h | ||
| amipcmcia.h | ||
| apollohw.h | ||
| asm-offsets.h | ||
| asm-prototypes.h | ||
| atari_joystick.h | ||
| atari_stdma.h | ||
| atari_stram.h | ||
| atarihw.h | ||
| atariints.h | ||
| atarikb.h | ||
| atomic.h | ||
| bitops.h | ||
| blinken.h | ||
| bootinfo.h | ||
| bootstd.h | ||
| bug.h | ||
| bugs.h | ||
| bvme6000hw.h | ||
| cache.h | ||
| cacheflush_mm.h | ||
| cacheflush_no.h | ||
| cacheflush.h | ||
| checksum.h | ||
| cmpxchg.h | ||
| coldfire.h | ||
| config.h | ||
| contregs.h | ||
| current.h | ||
| delay.h | ||
| div64.h | ||
| dma.h | ||
| dsp56k.h | ||
| dvma.h | ||
| elf.h | ||
| entry.h | ||
| fb.h | ||
| fbio.h | ||
| flat.h | ||
| floppy.h | ||
| fpu.h | ||
| ftrace.h | ||
| gpio.h | ||
| hash.h | ||
| hp300hw.h | ||
| hwtest.h | ||
| ide.h | ||
| idprom.h | ||
| intersil.h | ||
| io_mm.h | ||
| io_no.h | ||
| io.h | ||
| irq.h | ||
| irqflags.h | ||
| Kbuild | ||
| kexec.h | ||
| kmap.h | ||
| linkage.h | ||
| m52xxacr.h | ||
| m53xxacr.h | ||
| m53xxsim.h | ||
| m54xxacr.h | ||
| m54xxgpt.h | ||
| m54xxpci.h | ||
| m54xxsim.h | ||
| m520xsim.h | ||
| m523xsim.h | ||
| m525xsim.h | ||
| m527xsim.h | ||
| m528xsim.h | ||
| m5206sim.h | ||
| m5272sim.h | ||
| m5307sim.h | ||
| m5407sim.h | ||
| m5441xsim.h | ||
| mac_asc.h | ||
| mac_baboon.h | ||
| mac_iop.h | ||
| mac_oss.h | ||
| mac_psc.h | ||
| mac_via.h | ||
| machdep.h | ||
| machines.h | ||
| machw.h | ||
| macintosh.h | ||
| macints.h | ||
| math-emu.h | ||
| mc146818rtc.h | ||
| MC68EZ328.h | ||
| MC68VZ328.h | ||
| MC68328.h | ||
| mcf8390.h | ||
| mcf_pgalloc.h | ||
| mcf_pgtable.h | ||
| mcfclk.h | ||
| mcfdma.h | ||
| mcfgpio.h | ||
| mcfintc.h | ||
| mcfmmu.h | ||
| mcfpit.h | ||
| mcfqspi.h | ||
| mcfsim.h | ||
| mcfslt.h | ||
| mcftimer.h | ||
| mcfuart.h | ||
| mcfwdebug.h | ||
| mmu_context.h | ||
| mmu.h | ||
| module.h | ||
| module.lds.h | ||
| motorola_pgalloc.h | ||
| motorola_pgtable.h | ||
| movs.h | ||
| mvme16xhw.h | ||
| mvme147hw.h | ||
| natfeat.h | ||
| nettel.h | ||
| nubus.h | ||
| openprom.h | ||
| oplib.h | ||
| page_mm.h | ||
| page_no.h | ||
| page_offset.h | ||
| page.h | ||
| parport.h | ||
| pci.h | ||
| pgalloc.h | ||
| pgtable_mm.h | ||
| pgtable_no.h | ||
| pgtable.h | ||
| processor.h | ||
| ptrace.h | ||
| q40_master.h | ||
| q40ints.h | ||
| quicc_simple.h | ||
| raw_io.h | ||
| seccomp.h | ||
| serial.h | ||
| setup.h | ||
| signal.h | ||
| smp.h | ||
| string.h | ||
| sun3_pgalloc.h | ||
| sun3_pgtable.h | ||
| sun3-head.h | ||
| sun3ints.h | ||
| sun3mmu.h | ||
| sun3x.h | ||
| sun3xflop.h | ||
| sun3xprom.h | ||
| switch_to.h | ||
| syscall.h | ||
| thread_info.h | ||
| timex.h | ||
| tlb.h | ||
| tlbflush.h | ||
| traps.h | ||
| uaccess.h | ||
| ucontext.h | ||
| unistd.h | ||
| user.h | ||
| vga.h | ||
| virt.h | ||
| virtconvert.h | ||
| vmalloc.h | ||
| zorro.h | ||