Received: by 2002:ac0:aed5:0:0:0:0:0 with SMTP id t21csp4433955imb; Wed, 6 Mar 2019 13:19:33 -0800 (PST) X-Google-Smtp-Source: APXvYqxYf+ERLJvrPFBLD3rnuYayXMFa5jVnhXS1KL28IAV7HvB9LE/Bfj1DYU+Th0YN0ZVyKgFQ X-Received: by 2002:a17:902:2865:: with SMTP id e92mr3063628plb.312.1551907173657; Wed, 06 Mar 2019 13:19:33 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1551907173; cv=none; d=google.com; s=arc-20160816; b=gzyoM0sz+5+4ZR49Hsd4haJJPyHUGSwU7wu/wFvkr+0xZhsv8F//BbvTwxrCSmoHLX nSm3k/5vCN4FxnKpl5p3aBnegX/P1vTKjsnJV4L9MkWvDDk6bj9v/WaGzFcrOTjVSCWJ d8CDzD2h3Eyv74e9HnghoMmILHf8e4c7Z0sFsn6RDQc2YR4ZHGYIYEH8g0ep+L19+ml2 m3kwSuDD7ePEkFJqD8xbeKSXzZIfvg/OIKb8tsgZpCMPWpnfawXqSERg90rnxINwHG0+ ZGYTQ2L4htc97CZz0Px8zGKV3FcUqF1L9wyBMGPRZ1gOe/Ivikl9+evpuKUJxOWkYWJk iFlA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version; bh=+0QcrydL38OtMb0fF0uJyFZ8CpCYGXfoKCV1KajAUXE=; b=1JkQannrWvT+nVwBrJcTf8pSM4aC/2fzY4VRlA5mRumfZzKfl7jIBEwyDKAwTz89Ch s852SjPM60me7D4hUBkwRlw3s0ig3cX9juBrxLlazK9Q3hymSQoTr4JcQrwMkyv78sYY fWflJ5NyV4ejvGxMWeNByA4A4TsRymATRYIr+wGrMeEGLWTv59JnkVay4xnb9OnPQOzD QqAFWby2429kxvW2iA248qbe9xbvgPYFhpraxsFqw0969/GMTzds2TzCiyXJBEOE/knY 5S3UrnDT5BZDvet//7GoVIhDgrqDjEv4dXQQ4ubwuGi999QCqcox58ENTxoOocVM7l2m ZwyA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i30si2203467pgb.413.2019.03.06.13.19.15; Wed, 06 Mar 2019 13:19:33 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727006AbfCFVCi (ORCPT + 99 others); Wed, 6 Mar 2019 16:02:38 -0500 Received: from youngberry.canonical.com ([91.189.89.112]:54085 "EHLO youngberry.canonical.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726324AbfCFVCi (ORCPT ); Wed, 6 Mar 2019 16:02:38 -0500 Received: from mail-vk1-f197.google.com ([209.85.221.197]) by youngberry.canonical.com with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.76) (envelope-from ) id 1h1dgT-0005Vh-Ca for linux-kernel@vger.kernel.org; Wed, 06 Mar 2019 21:02:37 +0000 Received: by mail-vk1-f197.google.com with SMTP id b202so7234688vke.3 for ; Wed, 06 Mar 2019 13:02:37 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=+0QcrydL38OtMb0fF0uJyFZ8CpCYGXfoKCV1KajAUXE=; b=hMt6GOOkMV2P+Urn6uVcFNK91wxKyIIqIpEWzIVBXj2bMrxlvjOBfDESN450UJou3a pKaOxy8WW1cYNGqm/pz2pY5ztWmxNhym2zIhg1XCkvHLXCmVjTBhXNxAoUyZ3ed/4Gds 4FdinOOOYg/fgYZdHrajo0PLcoBBUtwfnsMJPZBOmrGmd4n4AmZFj6DC8xb2fc9oZ9SS PhVahJGtRFJHINeILabFjcVLJxvzKuUZbPMVzlTSPOxp1+ig4N76qlE88sQKkYhl7k/k yDO6pY+mVauaMH40LGBQfumUyvM7jCHwIaD5RlwDnN9a9h3JLkxnUQo6t0qBotZd3X2A 4eaA== X-Gm-Message-State: APjAAAUtu4OwNJTJfKSHRs0qGIkGt9g3iUU9E5MHNgii9nqrF0lCZsHL k1z+gUSVrN9chULzIPtEhI0lYvg9sWd94kFpKMs+yh5Ruqye7zPp0WZ8HbubHcHQBVUbTq0mt1A ZlY0AXdF2V5baQklMBrTR6wF1u1kYfSbwwIWrDPip2xmAbehI8zeDoE72fg== X-Received: by 2002:a1f:91c4:: with SMTP id t187mr4346052vkd.86.1551906156116; Wed, 06 Mar 2019 13:02:36 -0800 (PST) X-Received: by 2002:a1f:91c4:: with SMTP id t187mr4346036vkd.86.1551906155768; Wed, 06 Mar 2019 13:02:35 -0800 (PST) MIME-Version: 1.0 References: <20190306201413.14153-1-tycho@tycho.ws> <20190306201413.14153-2-tycho@tycho.ws> <20190306203932.im7lkblvmd227td3@gmail.com> <20190306204611.GH7413@cisco> In-Reply-To: <20190306204611.GH7413@cisco> From: Christian Brauner Date: Wed, 6 Mar 2019 22:02:25 +0100 Message-ID: Subject: Re: [PATCH 2/2] seccomp: disallow NEW_LISTENER and TSYNC flags To: Tycho Andersen Cc: Kees Cook , Linux Kernel Mailing List , stable@vger.kernel.org Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Mar 6, 2019 at 9:46 PM Tycho Andersen wrote: > > On Wed, Mar 06, 2019 at 09:39:35PM +0100, Christian Brauner wrote: > > > + > > > /* Prepare the new filter before holding any locks. */ > > > prepared = seccomp_prepare_user_filter(filter); > > > if (IS_ERR(prepared)) > > > @@ -1302,7 +1315,7 @@ static long seccomp_set_mode_filter(unsigned int flags, > > > mutex_unlock(¤t->signal->cred_guard_mutex); > > > out_put_fd: > > > if (flags & SECCOMP_FILTER_FLAG_NEW_LISTENER) { > > > - if (ret < 0) { > > > + if (ret) { > > > > Why that change but keep checking if (ret < 0) further up? > > Not sure what you mean here. The only other place I see that we check > something is < 0 in that function is the return value of > get_unused_fd_flags(), which looks right to me? The change just seemed it had nothing to do with the rest of the patch. Just making sure this didn't happen on accident and would cause regressions.