Skip to content

seccomp: add arch_prctl syscall for amx #7518

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rbradford merged 1 commit into from
Nov 26, 2025
Merged

seccomp: add arch_prctl syscall for amx #7518

rbradford merged 1 commit into from
Nov 26, 2025

Conversation

@lisongqian
Copy link
Contributor

@lisongqian lisongqian commented Nov 26, 2025

When enabling amx feature, we should call arch_prctl to request
permission to use tile data for guest. The permission should be
requested before the first vcpu is created, so we need to call
arch_prctl in vmm thread. This patch adds the arch_prctl syscall for
vmm_thread_rules.

Fixes: #7516

Signed-off-by: Songqian Li [email protected]

@lisongqian
seccomp: add arch_prctl syscall for amx
8470fad 
When enabling amx feature, we should call arch_prctl to request
permission to use tile data for guest. The permission should be
requested before the first vcpu is created, so we need to call
arch_prctl in vmm thread. This patch adds the arch_prctl syscall for
vmm_thread_rules.

Fixes: cloud-hypervisor#7516

Signed-off-by: Songqian Li <[email protected]>
@lisongqian lisongqian requested a review from a team as a code owner November 26, 2025 12:44
@phip1611
Copy link
Member

phip1611 commented Nov 26, 2025
edited
Loading

Is this syscall called by libc? Who causes the syscall? That is not fully clear to me.

@lisongqian
Copy link
Contributor Author

lisongqian commented Nov 26, 2025

Is this syscall called by libc? Who causes the syscall? That is not fully clear to me.

It's called by CpuManager::new() :

cloud-hypervisor/vmm/src/cpu.rs

Line 801 in e7cda17

libc::SYS_arch_prctl,

@rbradford rbradford added this pull request to the merge queue Nov 26, 2025
Merged via the queue into cloud-hypervisor:main with commit 4138287 Nov 26, 2025
42 of 43 checks passed
@lisongqian lisongqian deleted the amx_seccomp branch November 26, 2025 15:33
@likebreath likebreath added the bug-fix Bug fix to include in release notes label Dec 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rbradford rbradford rbradford approved these changes

@phip1611 phip1611 phip1611 approved these changes

Assignees

No one assigned

Labels

bug-fix Bug fix to include in release notes

Projects

Cloud Hypervisor Roadmap
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Seccomp violation when enabling amx feature

4 participants

@lisongqian @phip1611 @rbradford @likebreath