On Tue, Jun 16, 2020 at 09:59:29AM -0700, Andy Lutomirski wrote: > On Tue, Jun 16, 2020 at 12:49 AM Kees Cook <keescook@xxxxxxxxxxxx> wrote: > > > > The seccomp constant action bitmap filter evaluation routine depends > > on being able to quickly clear the PTE "accessed" bit for a temporary > > allocation. Provide access to the existing CPU-local kernel memory TLB > > flushing routines. > > Can you write a better justification? Also, unless I'm just Er, dunno? That's the entire reason this series needs it. > incompetent this morning, I can't find anyone calling this in the > series. It's in patch 4, seccomp_update_bitmap(): https://lore.kernel.org/lkml/20200616074934.1600036-5-keescook@xxxxxxxxxxxx/ -- Kees Cook
