Re: [PATCH 1/2] seccomp: Use FIFO semantics to order notifications

From: Kees Cook
Date: Fri Apr 29 2022 - 14:50:49 EST

Next message: Alex Elder: "Re: [PATCH] interconnect: Restore sync state by ignoring ipa-virt in provider count"
Previous message: Heiko Carstens: "Re: [PATCH 13/30] s390/consoles: Improve panic notifiers reliability"
In reply to: Christian Brauner: "Re: [PATCH 1/2] seccomp: Use FIFO semantics to order notifications"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 27 Apr 2022 18:54:46 -0700, Sargun Dhillon wrote:
> Previously, the seccomp notifier used LIFO semantics, where each
> notification would be added on top of the stack, and notifications
> were popped off the top of the stack. This could result one process
> that generates a large number of notifications preventing other
> notifications from being handled. This patch moves from LIFO (stack)
> semantics to FIFO (queue semantics).
>
> [...]

Applied (which comment typo fix) to for-next/seccomp, thanks!

[1/2] seccomp: Use FIFO semantics to order notifications
https://git.kernel.org/kees/c/4cbf6f621150
[2/2] selftests/seccomp: Ensure that notifications come in FIFO order
https://git.kernel.org/kees/c/662340ef9218

--
Kees Cook

Next message: Alex Elder: "Re: [PATCH] interconnect: Restore sync state by ignoring ipa-virt in provider count"
Previous message: Heiko Carstens: "Re: [PATCH 13/30] s390/consoles: Improve panic notifiers reliability"
In reply to: Christian Brauner: "Re: [PATCH 1/2] seccomp: Use FIFO semantics to order notifications"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]