seccomp: add arch_prctl syscall for amx by lisongqian · Pull Request #7518 · cloud-hypervisor/cloud-hypervisor · GitHub
Skip to content

seccomp: add arch_prctl syscall for amx#7518

Merged
rbradford merged 1 commit intocloud-hypervisor:mainfrom
lisongqian:amx_seccomp
Nov 26, 2025
Merged

seccomp: add arch_prctl syscall for amx#7518
rbradford merged 1 commit intocloud-hypervisor:mainfrom
lisongqian:amx_seccomp

Conversation

@lisongqian
Copy link
Copy Markdown
Contributor

@lisongqian lisongqian commented Nov 26, 2025

When enabling amx feature, we should call arch_prctl to request
permission to use tile data for guest. The permission should be
requested before the first vcpu is created, so we need to call
arch_prctl in vmm thread. This patch adds the arch_prctl syscall for
vmm_thread_rules.

Fixes: #7516

Signed-off-by: Songqian Li sionli@tencent.com

@lisongqian
seccomp: add arch_prctl syscall for amx
8470fad 
When enabling amx feature, we should call arch_prctl to request
permission to use tile data for guest. The permission should be
requested before the first vcpu is created, so we need to call
arch_prctl in vmm thread. This patch adds the arch_prctl syscall for
vmm_thread_rules.

Fixes: cloud-hypervisor#7516

Signed-off-by: Songqian Li <sionli@tencent.com>
@lisongqian lisongqian requested a review from a team as a code owner November 26, 2025 12:44
@phip1611
Copy link
Copy Markdown
Member

phip1611 commented Nov 26, 2025
edited
Loading

@lisongqian
Copy link
Copy Markdown
Contributor Author

lisongqian commented Nov 26, 2025

Is this syscall called by libc? Who causes the syscall? That is not fully clear to me.

It's called by CpuManager::new() :

cloud-hypervisor/vmm/src/cpu.rs

Line 801 in e7cda17

@rbradford rbradford added this pull request to the merge queue Nov 26, 2025
Merged via the queue into cloud-hypervisor:main with commit 4138287 Nov 26, 2025
42 of 43 checks passed
@lisongqian lisongqian deleted the amx_seccomp branch November 26, 2025 15:33
@likebreath likebreath added the bug-fix Bug fix to include in release notes label Dec 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rbradford rbradford rbradford approved these changes

@phip1611 phip1611 phip1611 approved these changes

Assignees

No one assigned

Labels

bug-fix Bug fix to include in release notes

Projects

Cloud Hypervisor Roadmap
Status: ✅ Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Seccomp violation when enabling amx feature

4 participants

@lisongqian @phip1611 @rbradford @likebreath