Received: by 2002:a05:6902:102b:0:0:0:0 with SMTP id x11csp665872ybt;
        Fri, 10 Jul 2020 09:18:05 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJyeHjnjfodPQBZf7pqdCF14ooJY/z6+M+SEHF8LxQqJVSs2b3l3LTWJBf54C7loV8pyFEL8
X-Received: by 2002:a05:6402:1d14:: with SMTP id dg20mr41732138edb.23.1594397885478;
        Fri, 10 Jul 2020 09:18:05 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1594397885; cv=none;
        d=google.com; s=arc-20160816;
        b=skQ/k0SgEqg7TPylgFqj1nmHy4FvRS0DRLOj53v7uMOJckTbA/TVy1vNHH1Qz3lVLV
         7Fuoi0/luvn0BgrVW25og6Pw9GOD3XmJsH226eE0om4lttDSavxPBiWZiop7HLI72NbJ
         0QWYQIzX82kMU+E+hVPFByKoDCHHo8p+2i1vTYdQ0Ze0kV4VClIgsogEuwHmyt77v4df
         0QeV/bQLBPovYrpZ4YqhngfsaD55VBhPDkFngPQaQ3GWqo3vuOrQdLEV+YD0tC+vxyQ6
         axhUL3cdQGSzgzY5mZgBqUmwzqt/G45wXnpmQcABUuqQDzaTDsIYB97cLZLxOFHrvszR
         zLJA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:in-reply-to:content-disposition
         :mime-version:references:message-id:subject:cc:to:from:date
         :dkim-signature;
        bh=9lBY9pYp9JUzVayxMXqZuU4yWSRYAwmBQ//oKA6K0hs=;
        b=HwvjOERcr1NZ3C7SV4VjI1JzETfz4uAVHDSSpSCQjGVQ1K6barZeZmFg0ImP1XtZLq
         zcCHu8KSZO4/Nc6C1CHia4u9Sp4o1QenFcYX0JMNKoqWpjq9PWU/A2PgvoPhI3norla4
         +AkSOH+yelWWgj6Jxs7GhT3bMoi16rGka4TJfdaPGHq7wkopbB35gBDVRQOCH7IzYIbB
         oh87RzW4OJYAXSx3Wzprx6tbwjaooYpNsH0IWiuwJrnpqW/itNdvWLGntxwl3zLy3Hkd
         mh9OIltDypeNU1edimc+cKbgoM9o2u6LkXkdRV281YHjXCMx3BDROBzi6Ql7LEqjb2Q8
         trwg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@chromium.org header.s=google header.b=ndH1QMbD;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id c25si4293614ejb.6.2020.07.10.09.17.42;
        Fri, 10 Jul 2020 09:18:05 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@chromium.org header.s=google header.b=ndH1QMbD;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728326AbgGJQPE (ORCPT <rfc822;utfcpqpk@gmail.com> + 99 others);
        Fri, 10 Jul 2020 12:15:04 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:60298 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1727826AbgGJQO7 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 10 Jul 2020 12:14:59 -0400
Received: from mail-pf1-x430.google.com (mail-pf1-x430.google.com [IPv6:2607:f8b0:4864:20::430])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id B0143C08C5CE
        for <linux-kernel@vger.kernel.org>; Fri, 10 Jul 2020 09:14:59 -0700 (PDT)
Received: by mail-pf1-x430.google.com with SMTP id z3so2718879pfn.12
        for <linux-kernel@vger.kernel.org>; Fri, 10 Jul 2020 09:14:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=chromium.org; s=google;
        h=date:from:to:cc:subject:message-id:references:mime-version
         :content-disposition:in-reply-to;
        bh=9lBY9pYp9JUzVayxMXqZuU4yWSRYAwmBQ//oKA6K0hs=;
        b=ndH1QMbDsgnY7oGL35UIxrr6Yv+cubgdgMU/sFroEyDe6PkWDrrWYZwvxrezSTUhJt
         UEkzPjM4+UyPJRZ73fmcwybl2J1IKxEazZum0WPyQ8pb/wm66/f+zlRJbE1oXc1lou0o
         j6jKFsM6dR7G56+xqF99DdSoST0PP4g0GqSKA=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:from:to:cc:subject:message-id:references
         :mime-version:content-disposition:in-reply-to;
        bh=9lBY9pYp9JUzVayxMXqZuU4yWSRYAwmBQ//oKA6K0hs=;
        b=Uy+gafKWeWy8hwskN7101FdudAYXAG7sVbj/e3eT3kK1O6cfnBA20IUhqgZVfjLoVG
         6nLD290HcsZCiG/kvHYTu2owHvgoJfkTe+neQsmeRoDRkf+N2hRR+O5CwVdOBnUHW4OS
         Uidoe6HTd4eftzsZummsd8VHpPPQQTyxGg2E1vomTx3vZlGakDLq7CnoXnMKGFMbT3Xq
         p8LawcIbXLFJAY0KwnAe2q4B7tjmp64gikLoWsVGX1lFVv1jMCgXaHYsZHmges+R1UQY
         oUf0fTms27aqXu+qutYrgW5O/bIhQNZht8Zr7m2lgO9PWyavMh3lIf2GqkPd/XYD7Oh/
         +1Og==
X-Gm-Message-State: AOAM533goYjIx02i75RMk8zee6t2n777KYt2s+o5voSTe8TzhcN3aKQ1
        lVBQvIrKb2Xjq58LS+mu/bGIEA==
X-Received: by 2002:aa7:94bc:: with SMTP id a28mr63725969pfl.94.1594397699224;
        Fri, 10 Jul 2020 09:14:59 -0700 (PDT)
Received: from www.outflux.net (smtp.outflux.net. [198.145.64.163])
        by smtp.gmail.com with ESMTPSA id v10sm6710589pfc.118.2020.07.10.09.14.58
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 10 Jul 2020 09:14:58 -0700 (PDT)
Date:   Fri, 10 Jul 2020 09:14:57 -0700
From:   Kees Cook <keescook@chromium.org>
To:     Will Deacon <will@kernel.org>
Cc:     Keno Fischer <keno@juliacomputing.com>,
        Linux Kernel Mailing List <linux-kernel@vger.kernel.org>,
        Oleg Nesterov <oleg@redhat.com>,
        Andy Lutomirski <luto@amacapital.net>,
        Will Drewry <wad@chromium.org>
Subject: Re: ptrace: seccomp: Return value when the call was already invalid
Message-ID: <202007100913.B43F8EE371@keescook>
References: <CABV8kRxA9mXPZwtYrjbAfOfFewhABHddipccgk-LQJO+ZYu4Xg@mail.gmail.com>
 <20200703083914.GA18516@willie-the-truck>
 <202007030815.744AAB35D@keescook>
 <20200703154426.GA19406@willie-the-truck>
 <202007030851.D11F1EFA@keescook>
 <20200704123355.GA21185@willie-the-truck>
 <202007042132.DAFA2C2@keescook>
 <20200710124253.GB30458@willie-the-truck>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20200710124253.GB30458@willie-the-truck>
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Jul 10, 2020 at 01:42:54PM +0100, Will Deacon wrote:
> On Sat, Jul 04, 2020 at 09:56:50PM -0700, Kees Cook wrote:
> > (What doesn't pass for you? I tried to go find kernelci.org test output,
> > but it doesn't appear to actually run selftests yet?)
> 
> Sorry, realised I forgot to reply to this point. I was seeing assertion
> failures in 'global.user_notification_with_tsync' and
> 'user_notification_sibling_pid_ns'. I started looking into the first one,
> saw an -EACCESS kicking around, re-ran the tests as root and now they all
> pass.
> 
> Are they expected to pass as a normal user?

Oh right, I still have that on my TODO list. Right now the tests are a
mix of root and normal, but since there are some root tests, it needs to
be run as root. I've been meaning to do the appropriate permission tests
and issue SKIPs for the ones needing root..

-- 
Kees Cook