Received: by 2002:a05:6a10:6d10:0:0:0:0 with SMTP id gq16csp57679pxb; Tue, 12 Apr 2022 16:43:47 -0700 (PDT) X-Google-Smtp-Source: ABdhPJymFZfZZXmSBUB8fXyACQdiVH0/GylhLzEsfzai314KlGMp0INiMefQ457V1qx8DLw9nPLc X-Received: by 2002:a63:7e48:0:b0:398:5eed:a768 with SMTP id o8-20020a637e48000000b003985eeda768mr32332176pgn.519.1649807027277; Tue, 12 Apr 2022 16:43:47 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1649807027; cv=none; d=google.com; s=arc-20160816; b=xro3QQBuUmU8c/oYaJiD5PIH5r86b6plcpqZv59J/FQUgsd3zWgY0nE3Wn0VCCK6pL yB7zMWti39KS8/9NFlvoX84VvmaN2465jTZt9cu8lg9NJVGNbbV0H/cKKjNfhXfGTI8X 51TPxKfR5Hoe9BVxTkRu3VZa9NmgZDGH7yNqCIWW1tR0WtlFWcG1UumvofKoviqP02AG 4ofah/3d5XNpFjGtRFnRroePcemmS2h8C3pPtiPLn8gg60l5O016ON5b6xNo2CK0Vpil wB2DeBkPYWQze6J3WYOxwKhUHwbdxa4daFVl14tHqafh2HRng/ynlQK+ksi9ccVNjtu0 sW+g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=wFSlDAEzxG2DmB4Xo/jpKWlcMReBrQbKvAja9Mz03WY=; b=MqrTmVQhX3QYdcop8FKMw6sHshtPnB7EZqQpSu1Qau05S5DWTzi8JPVoRUt3pen8HN Cyt0Z/cgCXQaIGKwe7G+HjmIoKqOyxsqbQ23gvnD9KN+n3n+NS/7X9RfB7kieTp4YsxH diRREUljKAf5ArAsBH+aT8IwNDcNoxKsiDrVFOUvglvg+dwQDfTbW2fE1feI+3WM54mR YFPCyC3++2k3VZRk2I3i5bjdqN1c+MkpExW/T5K+ZHgB5WqBTMXGjBKOF1++cyB2nm5g s11mauMVHvaMZy7VyvVEwMN3dkr7/Y+oBUl2t9KmuV6gHcznaqynv139YKu//+WPPRhD Ca1g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=BAgyN2cj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id i4-20020aa79084000000b004fe543a9e60si11923260pfa.156.2022.04.12.16.43.32; Tue, 12 Apr 2022 16:43:47 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@chromium.org header.s=google header.b=BAgyN2cj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=chromium.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229912AbiDLXZD (ORCPT + 99 others); Tue, 12 Apr 2022 19:25:03 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:39066 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229710AbiDLXY3 (ORCPT ); Tue, 12 Apr 2022 19:24:29 -0400 Received: from mail-vs1-xe30.google.com (mail-vs1-xe30.google.com [IPv6:2607:f8b0:4864:20::e30]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 87C4932EDF for ; Tue, 12 Apr 2022 15:43:53 -0700 (PDT) Received: by mail-vs1-xe30.google.com with SMTP id e11so4996vso.7 for ; Tue, 12 Apr 2022 15:43:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=wFSlDAEzxG2DmB4Xo/jpKWlcMReBrQbKvAja9Mz03WY=; b=BAgyN2cjIkVkau6NaxZfdrINA1JnGPeOxEMSQIuNw88cOd9poeQU7JYlOrJo65FxMh SBZgNZs5Eozgz9MxeaLL6P9JPOH5DJW1eYYB93FJ2KdIzLY35CGr7lfUEU8C4VpTHqN3 NKIU5fUui4D5BaZHPQ5Pgq3P7eJ2M8bgOu89A= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=wFSlDAEzxG2DmB4Xo/jpKWlcMReBrQbKvAja9Mz03WY=; b=IwxrX5Qf3hBk5S/PHz5fo3YbTvs+f9qaAMs8QTjp5+moYeV8oGSCbWjRyWpdi8BrVc PVEJ4DtsOTx7Zik127eYYd7O0a6gjbkMrfUtOb3+SoQoa+T8rgxgJ4P9ZvKiVaU1o+oq drKUdnPaDYC/9Y0Bniea4N+R8yY/Jk/gdVM2htvn708H9XI42iBE5UD9IlchNoVXoaY8 83HZTrfMKemTx6xDmE1LMB3J1wZm/FNDMKOvLZhoW8vFDL2U+HgBj5foRqyZsKEy5zq0 mzQJ+XC6yvE8b6vynEpn1zfWw/m2ldCbribVPnNOlPJknls3HMHqGrgs/AhhWZb2y0fW ps/w== X-Gm-Message-State: AOAM53338kcQJQ63Zwwl71bbKqcDg34cV7uGOWcS+rjhEQMFw79hnSQt diZIt5evLAiGEHUpu91lzH53T+0jGypnLw== X-Received: by 2002:a17:902:e84d:b0:156:bf35:6449 with SMTP id t13-20020a170902e84d00b00156bf356449mr39376031plg.26.1649798738080; Tue, 12 Apr 2022 14:25:38 -0700 (PDT) Received: from www.outflux.net (smtp.outflux.net. [198.145.64.163]) by smtp.gmail.com with ESMTPSA id 123-20020a620681000000b004fa7c20d732sm38747092pfg.133.2022.04.12.14.25.37 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 12 Apr 2022 14:25:37 -0700 (PDT) From: Kees Cook To: Nathan Chancellor , Andrew Morton Cc: Kees Cook , Masahiro Yamada , x86@kernel.org, linux-arch@vger.kernel.org, linux-kernel@vger.kernel.org, linux-hardening@vger.kernel.org Subject: [PATCH] init/Kconfig: Remove USELIB syscall by default Date: Tue, 12 Apr 2022 14:25:20 -0700 Message-Id: <20220412212519.4113845-1-keescook@chromium.org> X-Mailer: git-send-email 2.32.0 MIME-Version: 1.0 X-Developer-Signature: v=1; a=openpgp-sha256; l=804; h=from:subject; bh=6oMzRtW3jqjXSXD7mwm7E3NvhHShAvTH9FoLSWVAO4M=; b=owEBbQKS/ZANAwAKAYly9N/cbcAmAcsmYgBiVe4+5UcWIk2DLvOe8RGsuRpGeIvF3QQi+b9keWfe ae+3yXGJAjMEAAEKAB0WIQSlw/aPIp3WD3I+bhOJcvTf3G3AJgUCYlXuPgAKCRCJcvTf3G3AJkLiD/ 96HnJHanZQA4f1r3EyXeSCTJK9Br96PbdgM0mL+dn+KI2TY5vNV9yastv+A68vDF1obNNVqoReykC5 5FN5BcdjFCoiim0fnBWl4jfiIL2cWZh5j4Yy24c2l6fo18d5VLT1I72U1VTkxOtR8M+oywg0x7RUj3 oWVEcGIBOfHJ49YBhM+Y/suTJEuCVy/+WMLl2miWyTj5iO1mNfn5mClXdG5B5HJlwxlULu9LijoC5L LUw+yx5pA6uq+8TCkkkMqg3L+242aXJ9qrUsNPbzQOertituEAg6BTEcLB+0mvw56CjNLSKeuXCujP VhSbgWg9jIfAwh4njrUTNuhpCdsvQcpHwq2EVl6M58ZEgW/r55JXgZ7GEqvHy/EXU130mZ01OcyBOD PWsleIP4AuCncIMwLoJdmCct7m76kqBt+tpD9eapWSat6+Rm1+21ajAidllEIIguzs12iXm35LCpiC IT2f/oKL99C79d34/n8pCbsaSJiIVW8TjmNQX2NtFt84SyM/ScriTvsbQIQ3WD3qIedxUGg8iEkQ+I 2oDnhfLQ0J0leXj7EqVIgepP9NEd+dGTxVnbg3OlYRbCbbx2RilC5zweK4hQoim5epE4p4oSWOg1Tb kHXFcL/j/XLHkgOrIC3BmKfszU+YZK6oJBJNO3fhyuHnHzshnZ/OurXaEt4A== X-Developer-Key: i=keescook@chromium.org; a=openpgp; fpr=A5C3F68F229DD60F723E6E138972F4DFDC6DC026 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE, SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org The uselib syscall has been long deprecated. There's no need to keep this enabled by default under X86_32. Signed-off-by: Kees Cook --- init/Kconfig | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/init/Kconfig b/init/Kconfig index ddcbefe535e9..5cddb9ba0eef 100644 --- a/init/Kconfig +++ b/init/Kconfig @@ -435,8 +435,8 @@ config CROSS_MEMORY_ATTACH See the man page for more details. config USELIB - bool "uselib syscall" - def_bool ALPHA || M68K || SPARC || X86_32 || IA32_EMULATION + bool "uselib syscall (for libc5 and earlier)" + default ALPHA || M68K || SPARC help This option enables the uselib syscall, a system call used in the dynamic linker from libc5 and earlier. glibc does not use this -- 2.32.0