Received: by 2002:a05:6a10:22f:0:0:0:0 with SMTP id 15csp818395pxk; Wed, 23 Sep 2020 17:48:09 -0700 (PDT) X-Google-Smtp-Source: ABdhPJxqAU/KbYNYRrKC9HaCkTL1Pk5BC6A2/oed3u32buB5g1q2zTDC5MtvsxmTa8dQCfmyYBaO X-Received: by 2002:aa7:da09:: with SMTP id r9mr2055385eds.7.1600908489303; Wed, 23 Sep 2020 17:48:09 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1600908489; cv=none; d=google.com; s=arc-20160816; b=cFByZCnAS2eu+9wY2CBBrUlE10s6zYuzIhcVCsaNrtcR8hUEs0YTIsXlbARlBZjXLW z1H7m5uCfZk3w4SRwei1mhJLGyXo3j/SpBmV7MEGeXFpv/4DifeMYq4Btxocw5ILa1IT gJd/5O6J12hkWCh42Q1UDTsfZP/qwPMcmjGqSLJ5NcPzTA1IkdQngww851yZd/wyX/q8 AelA+opcSV0SjM/3gkeayt/WyUJ83PI9M3SXxxPDA6LSGRGm0hNMy7L5QN1PvHi8xTf4 eAb4fQ58FUcqrWVTk62BLF+Njb8UqcOo6G7xa59Ljc1CRNrr2TBbHJE1pE8dqPX1zhyF qPnA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=IRg8bdIf5EpG+3h++Ew0iu9r6E0witVaxm9lrud8jnM=; b=mrbq24eSIngk8baSXQd8wY/bJ5YEXByU2V/6GjPNUjJSfdKlcIZViDI+GnvivsW6j5 Y2H99qkvKugPlaiNDq5H8lOEXGslWgxHI9kYXLIYxjueGSmbPP3fG6OmVdiAioWdo2aC g+cOpeC3LA02xb/KSWwCbavZYl8+Rpw3c9B0pO8Es4L3AAIQL9ZHjZBx8pjD2QgjxUoQ 6oB/12wf/i4UT4gGyXswcbLu/22802/TspPkKR0CLFAI2mSd4JmwrKFizYLakfJUWGEN 86bvX0VaB9244Ze2SYPLof6E9P/mGJuQ/Qp0NjW6QFNAIMhUIuObh4VsOIeLx2f4uJli Lgxg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=Jm4qQfsF; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id p61si1018865edd.188.2020.09.23.17.47.46; Wed, 23 Sep 2020 17:48:09 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=Jm4qQfsF; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726863AbgIXAqN (ORCPT + 99 others); Wed, 23 Sep 2020 20:46:13 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:43900 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726466AbgIXAqN (ORCPT ); Wed, 23 Sep 2020 20:46:13 -0400 Received: from mail-ej1-x641.google.com (mail-ej1-x641.google.com [IPv6:2a00:1450:4864:20::641]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id B093DC0613CE for ; Wed, 23 Sep 2020 17:46:12 -0700 (PDT) Received: by mail-ej1-x641.google.com with SMTP id gx22so2104969ejb.5 for ; Wed, 23 Sep 2020 17:46:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=IRg8bdIf5EpG+3h++Ew0iu9r6E0witVaxm9lrud8jnM=; b=Jm4qQfsFbsCSvqsbWq7VzfNoNGVob5/4BshRZEiIMaLEiUAXQkk+Y3gcARpDMXU77J RNaw2tpVInTue7BsyBCtZUkwt1eYCijqBRs3vrwEJYWjEAwHJ8jLeLp72F/ENGNnzE/G EKLslOPjHX6mp2Z2Qnz3aMgbngWhizN8kdzLcINc5IUUtx9RxOv0ebO8UbHBC6gSmDIu FMCxqDS4rALBmlhRBAReUsXiYxckjsgN9L9hJAj6XCsRyzlTxLl/Flt+z8WTU64FZVbm sP3KAo4BFVXnMvrmr7UNX6TFr6Ec+XsfqaoZ3kZpDC57gQ1BxVuKxSN63q3jyaZxfJpd B6Hw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=IRg8bdIf5EpG+3h++Ew0iu9r6E0witVaxm9lrud8jnM=; b=kTSzWAH03EDj/GKEYbRF4sws8HX/OAaqb5uahjwXpUVsNubE3jIZq6ecu4mxHkgy+Y S8Y+46QUpUajGxc9zkD3hyO8AxeN+g4VNsRjlgGjbDkehNHzbreyac1N9XKt88pHlQ0L qTLdwoC6Ei84yyOZZV8jLItDu4vkrbwY3q/R7vvyde+ehRR1ZVWbALQFYCEO1ym6qMC/ wJ5fTXHhKR3tYLyjcVzQ3P2ED2MvGWhtTJ2iGxzgnnnI4ptN1OrFGgzwF2OdaJUN/lk2 18miNwrwK8tDvzf3CJaQF+cGrlRqks3WPoG8zkBpJe8c+frH+ymsnvEqQR4NVMVztQ7l O+VA== X-Gm-Message-State: AOAM533diZ/ddY+tm5KSC3aW8eMFIngHoDqZSy7Pf/xVvN6LKOp2WT7o RoP6DK2fMEhOjfym4Luwva9vnSBz5+ZFs93/QIJHMQ== X-Received: by 2002:a17:906:f6c9:: with SMTP id jo9mr2116692ejb.233.1600908371207; Wed, 23 Sep 2020 17:46:11 -0700 (PDT) MIME-Version: 1.0 References: <20200923232923.3142503-1-keescook@chromium.org> <20200923232923.3142503-3-keescook@chromium.org> In-Reply-To: <20200923232923.3142503-3-keescook@chromium.org> From: Jann Horn Date: Thu, 24 Sep 2020 02:45:45 +0200 Message-ID: Subject: Re: [PATCH 2/6] x86: Enable seccomp architecture tracking To: Kees Cook Cc: YiFei Zhu , Christian Brauner , Tycho Andersen , Andy Lutomirski , Will Drewry , Andrea Arcangeli , Giuseppe Scrivano , Tobin Feldman-Fitzthum , Dimitrios Skarlatos , Valentin Rothberg , Hubertus Franke , Jack Chen , Josep Torrellas , Tianyin Xu , bpf , Linux Containers , Linux API , kernel list Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Thu, Sep 24, 2020 at 1:29 AM Kees Cook wrote: > Provide seccomp internals with the details to calculate which syscall > table the running kernel is expecting to deal with. This allows for > efficient architecture pinning and paves the way for constant-action > bitmaps. [...] > diff --git a/arch/x86/include/asm/seccomp.h b/arch/x86/include/asm/seccomp.h [...] > +#ifdef CONFIG_X86_64 [...] > +#else /* !CONFIG_X86_64 */ > +# define SECCOMP_ARCH AUDIT_ARCH_I386 > +#endif If we are on a 32-bit kernel, performing architecture number checks in the kernel is completely pointless, because we know that there is only a single architecture identifier under which syscalls can happen. While this patch is useful for enabling the bitmap logic in the following patches, I think it adds unnecessary overhead in the context of the previous patch.