Received: by 2002:a25:8b91:0:0:0:0:0 with SMTP id j17csp12353731ybl;
        Sat, 28 Dec 2019 10:22:13 -0800 (PST)
X-Google-Smtp-Source: APXvYqxBJiYiXwUQ9P1g4+7r4BgkwpoOVYl1Oc8rnpG1aXqdojOJA5MJX34QXgEXoDT/LqcSnAtK
X-Received: by 2002:a9d:7851:: with SMTP id c17mr42962904otm.58.1577557333638;
        Sat, 28 Dec 2019 10:22:13 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1577557333; cv=none;
        d=google.com; s=arc-20160816;
        b=oIFmyrqOG2F34WOBKMm4nZqmSnHzyxKEj3k2or5p2/eJLbYkkd+nMvDZ4KpCmvSo1z
         2ddYqutkUPMdDLWw+bj+geKBpziouq0hsZoIop+C9bko+vVDiuK9dPoawY0U5SPIN6YL
         FI58PZ5e265VH7vVNpNodOBxX3p4CEyYe7s9R1+I1kQ29MdpJ3QScoopUkY117dS6ZRG
         Tltmxw7R0ggSc5xJirumMJULJVcCEcDpsNQ2toOXJOnR/HrkSqoKmm82na2gZT7XVCNj
         dZwpb7h6HXdtWULeMcnGDMaoPu02zhBHD517PnH6fMllRNp32viaqd1QJq/gbZa6VNeD
         cDGw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:dkim-signature;
        bh=MZG5qGB/Ymv7HA+XNiXGukSQ3TbbXrFPeer637cNn9g=;
        b=tTNI2V4YwtePVru+5l1wRcW6BD3dN++8inHcX3QkXndnBORggEize9D3R/Avp+545U
         uZEzuvcpF2BXQdW8jqs1pTYGS22iNLs2BhCxObkVVYg7KhlK+nr7h6XAddbgkFUyrjBZ
         7bS05+6FklFP11ALkx1UK7VtwzoEFVDN3Xmj62ysJfxECsyG/v8UsiqCY0u0TguI/7t2
         2eIfHh32Ky2oJqD4AgPmzdyIlbWz8FTo6UJjFK1nB+r045PoZd4TDL5G0nPSo8fF8hM0
         DtIAxN9xieQA1KtZVnOcsJxZ8VqoAHNSILL39KXA6K5xtO+yGm9CDN/1rnoS6h7Up4Ae
         zhOQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@tycho-ws.20150623.gappssmtp.com header.s=20150623 header.b=IA0yXAVG;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id l25si14604249otn.69.2019.12.28.10.21.49;
        Sat, 28 Dec 2019 10:22:13 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@tycho-ws.20150623.gappssmtp.com header.s=20150623 header.b=IA0yXAVG;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726364AbfL1SS3 (ORCPT <rfc822;tanxianhu@gmail.com> + 99 others);
        Sat, 28 Dec 2019 13:18:29 -0500
Received: from mail-io1-f66.google.com ([209.85.166.66]:40169 "EHLO
        mail-io1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726088AbfL1SS3 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sat, 28 Dec 2019 13:18:29 -0500
Received: by mail-io1-f66.google.com with SMTP id x1so28317708iop.7
        for <linux-kernel@vger.kernel.org>; Sat, 28 Dec 2019 10:18:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=tycho-ws.20150623.gappssmtp.com; s=20150623;
        h=date:from:to:cc:subject:message-id:references:mime-version
         :content-disposition:in-reply-to:user-agent;
        bh=MZG5qGB/Ymv7HA+XNiXGukSQ3TbbXrFPeer637cNn9g=;
        b=IA0yXAVG+abRw4Z4X+DWQ8DtbjRWfpIwTBQuZOJLyCBLiiU1ppIZkHaIqkD8EH6FlS
         sMao0bFQR70l2D0pyb/KJi+9+ENhHK3q4zdEBHgiTBKfY5AEsjyxd2XtPYc+FV5GJtjA
         4T1cy7yhbN3p0tUte/1Bsjt+5WVPMEs7EnzUPjqIez08ZbTfgNtu5w7N6UJIlsY0J7iP
         4hio5sUQnLIPc1W4csYsKWqNYTq79flh96weviiNZQ97PoMDT+lgIaRa6dNBP8yf7eP0
         amKNd0zdTzBMc1qqk2RZonPmVmQ7zzlHAjOJD3kNnyT8oLw2b220qaVNUFrO5cKo+oTP
         Mslg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to:user-agent;
        bh=MZG5qGB/Ymv7HA+XNiXGukSQ3TbbXrFPeer637cNn9g=;
        b=Wsb8389SOFj/ti0BzJLHzGCbXZoSTvcVluoRzYb9jHyEMtiC4KExVhv80pSA5e/FN8
         aBmX+AbQ476uZ5jcCKga+qX5A4piVzKjPh4En9zLKp4g0k8mJE7NtxcA7IocoeRwP+10
         ZdK/LsPn3AECeD5GLdVSjsxcwKMx8RTtYh8Ho05/xsdPVSxwCHMzl7p97s2lMve0FEBF
         is6x9KhbXc92MpXPWQKyoOTA7YdoDl4TXJyINAE74sEwwGvFgMPTDUPcYge1MMRl4R3K
         Nu6fTFxMchmK+/7YuOUgfOGkNhoI5EeF0zWFhtxnvUF+PtDWSegjSMmkcANoRHALMbmf
         BRyw==
X-Gm-Message-State: APjAAAU9DMGGpoolHhrexRghaP782gndFrdVbfsoJZQ3FSuGd7nAPUnn
        8deJhvh5bc4llkcD89OOOrOMIg==
X-Received: by 2002:a6b:731a:: with SMTP id e26mr38013162ioh.254.1577557108304;
        Sat, 28 Dec 2019 10:18:28 -0800 (PST)
Received: from cisco ([2601:282:902:b340:f166:b50c:bba2:408])
        by smtp.gmail.com with ESMTPSA id w21sm10299560ioc.34.2019.12.28.10.18.27
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sat, 28 Dec 2019 10:18:27 -0800 (PST)
Date:   Sat, 28 Dec 2019 11:18:25 -0700
From:   Tycho Andersen <tycho@tycho.ws>
To:     Sargun Dhillon <sargun@sargun.me>
Cc:     linux-kernel@vger.kernel.org, linux-api@vger.kernel.org,
        jannh@google.com, christian.brauner@ubuntu.com,
        keescook@chromium.org, cyphar@cyphar.com
Subject: Re: [PATCH v2 1/2] samples, selftests/seccomp: Zero out seccomp_notif
Message-ID: <20191228181825.GB6746@cisco>
References: <20191228014837.GA31774@ircssh-2.c.rugged-nimbus-611.internal>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20191228014837.GA31774@ircssh-2.c.rugged-nimbus-611.internal>
User-Agent: Mutt/1.10.1 (2018-07-13)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Sat, Dec 28, 2019 at 01:48:39AM +0000, Sargun Dhillon wrote:
> The seccomp_notif structure should be zeroed out prior to calling the
> SECCOMP_IOCTL_NOTIF_RECV ioctl. Previously, the kernel did not check
> whether these structures were zeroed out or not, so these worked.
> 
> Signed-off-by: Sargun Dhillon <sargun@sargun.me>
> Cc: Kees Cook <keescook@chromium.org>
> ---
>  samples/seccomp/user-trap.c                   | 2 +-
>  tools/testing/selftests/seccomp/seccomp_bpf.c | 2 ++
>  2 files changed, 3 insertions(+), 1 deletion(-)
> 
> diff --git a/samples/seccomp/user-trap.c b/samples/seccomp/user-trap.c
> index 6d0125ca8af7..0ca8fb37cd79 100644
> --- a/samples/seccomp/user-trap.c
> +++ b/samples/seccomp/user-trap.c
> @@ -298,7 +298,6 @@ int main(void)
>  		req = malloc(sizes.seccomp_notif);
>  		if (!req)
>  			goto out_close;
> -		memset(req, 0, sizeof(*req));
>  
>  		resp = malloc(sizes.seccomp_notif_resp);
>  		if (!resp)
> @@ -306,6 +305,7 @@ int main(void)
>  		memset(resp, 0, sizeof(*resp));

I know it's unrelated, but it's probably worth sending a patch to fix
this to be sizes.seccomp_notif_resp instead of sizeof(*resp), since if
the kernel is older this will over-zero things. I can do that, or you
can add the patch to this series, just let me know which.

But in any case, this patch is:

Reviewed-by: Tycho Andersen <tycho@tycho.ws>

Cheers,

Tycho