Received: by 10.223.176.5 with SMTP id f5csp1384814wra; Sun, 4 Feb 2018 02:51:26 -0800 (PST) X-Google-Smtp-Source: AH8x225PGTC1TA/N+0UhN1ZXbALslksMCD/VL5VO4/Lzyz35X9csdCpIbOTsQDW8KqP3oRfPBu7e X-Received: by 2002:a17:902:52f:: with SMTP id 44-v6mr39637478plf.65.1517741486665; Sun, 04 Feb 2018 02:51:26 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1517741486; cv=none; d=google.com; s=arc-20160816; b=JmK4UdFhyCd6DHxehaok3VMsWjmX2SIDuKEAcIm/Zafo5xQJOeFFbrlkXnapSShBn+ Cxux7rM50MAiUz+505MeMw9w+B0RyRbXd/C64ATatg21gLJgkBS9CmEorZSAJNwmy+TG +iC1YTeLM9Jf6wXs6S7m9i2OgeANXJiwtVSONM/BRpZQUjcxXz6cd5IlQ42MJcdZzeQW Aof6krMvn8Ecx9fUz6AhP8M35SObpfmnt8UPp0rfdRRDzYPg/zbZ1jFROFdi1xoqnoCT jfAugkqB5hwmgoAS6KQ7i4TJ4ZwIbaXBGXRmxB8+MxMdPxol20FY4S47krxCqq4qgZv/ V33A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:date:subject:cc:to:from :dkim-signature:arc-authentication-results; bh=nPZesD5ryhhD3gsaj46B3qWEAzkT1xPrXBX/7RpF17M=; b=Um/6SKeZqUTylPS5F13VpWCul7+tKYwsx87z09O3SCHC15s+rY3krQyjBnc5c7N2rP R+xa6aKPZkpZc+1kvh1brEinIAojLPZAPnMxTHRQvm71hlkcs/ce3KywadrhclbCVkGr qPPOJpxILFbwB4FQhxQC83AlxJM+QwpiiQENgw1ccvuThF8qEOaJijZS6gylLQu4ZdzK oaqKPWbBSpkn3UqumHXwhDORLmvGuve+3z33pOChM3oiNMr4YIa4zSGKS/qP+utVhcE6 ecfGl78cACqgWO7P+ZzA3DC5hCj7u++xM9/2+2ZVxTOaNY+NxResLSbBJUbMFvwtMKrC lc6A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@tycho-ws.20150623.gappssmtp.com header.s=20150623 header.b=RnYGk3PD; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id q3-v6si2942517plb.155.2018.02.04.02.50.59; Sun, 04 Feb 2018 02:51:26 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@tycho-ws.20150623.gappssmtp.com header.s=20150623 header.b=RnYGk3PD; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751736AbeBDKuW (ORCPT + 99 others); Sun, 4 Feb 2018 05:50:22 -0500 Received: from mail-wr0-f193.google.com ([209.85.128.193]:33154 "EHLO mail-wr0-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750818AbeBDKuO (ORCPT ); Sun, 4 Feb 2018 05:50:14 -0500 Received: by mail-wr0-f193.google.com with SMTP id s5so26740222wra.0 for ; Sun, 04 Feb 2018 02:50:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tycho-ws.20150623.gappssmtp.com; s=20150623; h=from:to:cc:subject:date:message-id; bh=nPZesD5ryhhD3gsaj46B3qWEAzkT1xPrXBX/7RpF17M=; b=RnYGk3PDtJ08pUOIde4clUdxBBezKEFIdljuqCLnLjshAsLXxzhF5TDT5yx8r361yd zL7SnEwQ8ascaXUs04SFLjObVCSAgz8pSwS7VDK7MEI8C4TpDOROS7ZcT93kEqBTRwIw UbYBQzVGzi2OjmCpPEESIvRyToRHArK9uug15TW0KhuJjqJrclrovhsSluoPf2an+tgP eWe6KezLPcBeMs5nwSZS9ESwVs4U/jFe2OPdzVt7nU6eSX4aiCwnyrdtEOHFzgl1xHj7 9sECPdSOXm/of+v4Qmh8ns1y8KIfnqX1ICZArc3ccKGen/gW6Z4ZNgKN/tJHXgX0ESny KmGA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id; bh=nPZesD5ryhhD3gsaj46B3qWEAzkT1xPrXBX/7RpF17M=; b=LDK29SledUEhdMYnujOwkJb1a2r5g6rCxjBhp7DSeHP05JmEwfDQCvvTJHFeID8lDa BNu23c4hIBu2yPzjwWZ0qOcwJKSK2JFpqSuL0k+lm9sG76/JNBu0+V1qAM2h5wATDCVN +67NDt1llhIZFF3A+XhTMgmMNGZg+BlJsujtUObNTuU5F/+CYRwOpYxyAUHQTbPqsEpO cb33chVfb5JoNr8qoDjfH53XSipfKAveBnQsUFLLooJsB0SA4lX510yGWkhvUOK4VEml L998C9srS6NHIcd//fcMOLNeeHUSwJrS9cbTDDOfrwVnvPU7PANi99GJHZjrioX5VKRg psTw== X-Gm-Message-State: APf1xPC1+kfUFLjSAX8wiWZO9mLbPAaA45A7It0lrj/jmqn1YjEPFc7D KlSarbHsaslg6dceZrHWDmDanWA6Vx0= X-Received: by 10.223.149.36 with SMTP id 33mr368795wrs.1.1517741413111; Sun, 04 Feb 2018 02:50:13 -0800 (PST) Received: from cisco.fosdem.net ([2001:67c:1810:f051:2123:e18a:e3fd:72f8]) by smtp.gmail.com with ESMTPSA id 81sm3751766wmi.26.2018.02.04.02.50.10 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 04 Feb 2018 02:50:11 -0800 (PST) From: Tycho Andersen To: linux-kernel@vger.kernel.org, containers@lists.linux-foundation.org Cc: Kees Cook , Andy Lutomirski , Oleg Nesterov , "Eric W . Biederman" , "Serge E . Hallyn" , Christian Brauner , Tyler Hicks , Akihiro Suda , Tycho Andersen Subject: [RFC 0/3] seccomp trap to userspace Date: Sun, 4 Feb 2018 11:49:43 +0100 Message-Id: <20180204104946.25559-1-tycho@tycho.ws> X-Mailer: git-send-email 2.14.1 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Several months ago at Linux Plumber's, we had a discussion about adding a feature to seccomp which would allow seccomp to trigger a notification for some other process. Here's a draft of that feature. Patch 1 contains the bulk of it, patches 2 & 3 offer an alternative way to acquire the fd that receives notifications via ptrace (the method in patch 1 poses some problems). Other suggestions for how to acquire one of these fds would be welcome. Take a close look at the synchronization. I think I've got it right, but I probably don't :) Thanks! Tycho Andersen (3): seccomp: add a return code to trap to userspace seccomp: hoist out filter resolving logic seccomp: add a way to get a listener fd from ptrace arch/Kconfig | 7 + include/linux/seccomp.h | 14 +- include/uapi/linux/ptrace.h | 1 + include/uapi/linux/seccomp.h | 18 +- kernel/ptrace.c | 4 + kernel/seccomp.c | 467 ++++++++++++++++++++++++-- tools/testing/selftests/seccomp/seccomp_bpf.c | 180 +++++++++- 7 files changed, 653 insertions(+), 38 deletions(-) -- 2.14.1