From patchwork Mon Nov 20 21:21:38 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Riku Voipio <riku.voipio@linaro.org>
X-Patchwork-Id: 119325
Delivered-To: patch@linaro.org
Received: by 10.140.22.164 with SMTP id 33csp4397986qgn;
 Mon, 20 Nov 2017 13:30:25 -0800 (PST)
X-Google-Smtp-Source: AGs4zMYG1eD/o7h2nfikmly9JGqu3CD9KHJhWrfPAbuDCWp9mKDVdmbdqgEy0lbDyy/CHX8QJ3Gm
X-Received: by 10.129.118.74 with SMTP id j10mr1439708ywk.152.1511213425457; 
 Mon, 20 Nov 2017 13:30:25 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1511213425; cv=none;
 d=google.com; s=arc-20160816;
 b=LWWUr/hUfwSHxUc0JVRbzXh5s3ZghKw8Q6oEhUDIa9Bi8Lr80/gW0DqIiMw3trqPBn
 55pz/kk5LQ+fNs+nK4rWGmeRhCplf0MtKIavLI+hVIWFY4jRYdQxtmeONeCmBEJKIhKw
 2w27Zq3nz8GGO8nQ84GLXq8UGS1ffwmTAAuX+vlsOwugCcHIbNxqxT7QPZgNjcd4XADE
 lOcUgDc+SqBrny2TRGj9K4Vv33zNj3E6hecwizm4wID7nky8APy9BV9FUCSDZsceJLUK
 dN3v64q745UEupRkWr4JsovTwwItyO2Getdz1lCQYzRpqGu0Oc6bCd3OFMQWLuBoZZ6r
 7+kg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
 s=arc-20160816; 
 h=sender:errors-to:cc:list-subscribe:list-help:list-post:list-archive
 :list-unsubscribe:list-id:precedence:subject:references:in-reply-to
 :message-id:date:to:from:dkim-signature:arc-authentication-results;
 bh=hhsx5CA6sbOw77fMKH++zZhcMEV1dHmJ6/2FsTPNMOo=;
 b=zz2FcFAHrmuraZwsEX6D2Sb9uqL+6uNYid8/vvNwWIbLfni74gRfKJ8qTRGh6m2Wip
 PueOQ/Q9Wxr64t0Miifua3StT0Wv8J2M0PUviz4eoyE2VEeKgsJp4z4W5d9w36JiyNR9
 6tRE6iQqpeN15iZ2DOW/+4f2GwIWrI2NNZHJ///LZ7IsiFi0j6pU+4zFK8nXAGNI+/ry
 IKUxSoCFQE/RVsLFquE7TMYnOLhTZ4GWR9UO1uR0pbNDvA2A7SdOFcnTulAxl0lLG01k
 Kfi9/lOZfNHHkreGtddDkFaCoFiAT6u61pFwXKcMCv67C70dTAuB+djlmiztsgf2ns/S
 SotA==
ARC-Authentication-Results: i=1; mx.google.com;
 dkim=fail header.i=@linaro.org header.s=google header.b=HsGCLG26;
 spf=pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 2001:4830:134:3::11 as permitted sender)
 smtp.mailfrom=qemu-devel-bounces+patch=linaro.org@nongnu.org; 
 dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Return-Path: <qemu-devel-bounces+patch=linaro.org@nongnu.org>
Received: from lists.gnu.org (lists.gnu.org. [2001:4830:134:3::11])
 by mx.google.com with ESMTPS id j73si2343781ybj.3.2017.11.20.13.30.25
 for <patch@linaro.org> (version=TLS1 cipher=AES128-SHA bits=128/128);
 Mon, 20 Nov 2017 13:30:25 -0800 (PST)
Received-SPF: pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 2001:4830:134:3::11 as permitted sender)
 client-ip=2001:4830:134:3::11; 
Authentication-Results: mx.google.com;
 dkim=fail header.i=@linaro.org header.s=google header.b=HsGCLG26;
 spf=pass (google.com: domain of
 qemu-devel-bounces+patch=linaro.org@nongnu.org designates
 2001:4830:134:3::11 as permitted sender)
 smtp.mailfrom=qemu-devel-bounces+patch=linaro.org@nongnu.org; 
 dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: from localhost ([::1]:59835 helo=lists.gnu.org)
 by lists.gnu.org with esmtp (Exim 4.71)
 (envelope-from <qemu-devel-bounces+patch=linaro.org@nongnu.org>)
 id 1eGte4-0003Mv-Ty
 for patch@linaro.org; Mon, 20 Nov 2017 16:30:24 -0500
Received: from eggs.gnu.org ([2001:4830:134:3::10]:58235)
 by lists.gnu.org with esmtp (Exim 4.71)
 (envelope-from <riku.voipio@linaro.org>) id 1eGtVz-0004g1-1N
 for qemu-devel@nongnu.org; Mon, 20 Nov 2017 16:22:03 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <riku.voipio@linaro.org>) id 1eGtVy-0007xd-1i
 for qemu-devel@nongnu.org; Mon, 20 Nov 2017 16:22:03 -0500
Received: from mail-lf0-x241.google.com ([2a00:1450:4010:c07::241]:42559)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <riku.voipio@linaro.org>)
 id 1eGtVx-0007wv-QM
 for qemu-devel@nongnu.org; Mon, 20 Nov 2017 16:22:01 -0500
Received: by mail-lf0-x241.google.com with SMTP id m1so11692554lfj.9
 for <qemu-devel@nongnu.org>; Mon, 20 Nov 2017 13:22:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id:in-reply-to:references;
 bh=hhsx5CA6sbOw77fMKH++zZhcMEV1dHmJ6/2FsTPNMOo=;
 b=HsGCLG26V4lacFignAeS9UipmoSEkOgOYcjY/HAsgoiQDvBn2TB3DkIhkolqmnccEj
 Fkp/ob3WiSl4CbDn6h0fuqxwpvEHA/0MTJEPdDMOdRtxDAEc29Bg7OYkbHWFc52dTh4b
 KgBsfY08y3lWHqc/8IRspZo+jwIP1WZSSpTAY=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
 :references;
 bh=hhsx5CA6sbOw77fMKH++zZhcMEV1dHmJ6/2FsTPNMOo=;
 b=o+3h0ddAyI7g+eNljvfuaJnqWdJYWhoImJoQU0CqVjSBmyaGflEMtc66H9IxZNNdG5
 GHJfEkopB8TnV3Ulyn6sNmuCAi4r8j81YleSNSkHXohwgBZjW2the16DxFgg5Zul58jC
 sG/ReD/f4H8NN9b7tCAQhG8fJ7V7NoMvCDsexO/DUzbvSh5El9U8cf6TibKNfWawgJcv
 wwRga77jy6Qp8sS68dn4o0FOWTCbvJoGu0zmLhLKK5b5chIT5KyUZu9JhNx0ii9GA/lG
 djvUNmjYmaIF8aGFhiXG7ZaeIvOhuKHWWxdRGNou+ASlMIjXUJtXjy3ZIDJGlNCvKOv4
 iLrg==
X-Gm-Message-State: AJaThX6aYWOIdtvVCw89+vmjjfXRgTKKhgdjyvW0L5p5zygR/G3CVEui
 23a0gufX+3gQ/KFskXifbZkMC3fyOHg=
X-Received: by 10.25.18.146 with SMTP id 18mr3265678lfs.160.1511212920350;
 Mon, 20 Nov 2017 13:22:00 -0800 (PST)
Received: from beaming.home (91-157-170-157.elisa-laajakaista.fi.
 [91.157.170.157]) by smtp.gmail.com with ESMTPSA id
 v63sm1645409lje.39.2017.11.20.13.21.58
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Mon, 20 Nov 2017 13:21:59 -0800 (PST)
From: riku.voipio@linaro.org
To: qemu-devel@nongnu.org
Date: Mon, 20 Nov 2017 23:21:38 +0200
Message-Id: <a8b154a637b586441bad42259a8a9b9619cd117c.1511212753.git.riku.voipio@linaro.org>
X-Mailer: git-send-email 2.14.2
In-Reply-To: <cover.1511212753.git.riku.voipio@linaro.org>
References: <cover.1511212753.git.riku.voipio@linaro.org>
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
 recognized.
X-Received-From: 2a00:1450:4010:c07::241
Subject: [Qemu-devel] [PULL 10/15] linux-user: return EINVAL from
 prctl(PR_*_SECCOMP)
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel/>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Cc: James Cowgill <james.cowgill@mips.com>
Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org
Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>

From: James Cowgill <james.cowgill@mips.com>

If an application tries to install a seccomp filter using
prctl(PR_SET_SECCOMP), the filter is likely for the target instead of the host
architecture. This will probably cause qemu to be immediately killed when it
executes another syscall.

Prevent this from happening by returning EINVAL from both seccomp prctl
calls. This is the error returned by the kernel when seccomp support is
disabled.

Fixes: https://bugs.launchpad.net/qemu/+bug/1726394
Reviewed-by: Laurent Vivier <laurent@vivier.eu>
Signed-off-by: James Cowgill <james.cowgill@mips.com>
Signed-off-by: Riku Voipio <riku.voipio@linaro.org>
---
 linux-user/syscall.c | 6 ++++++
 1 file changed, 6 insertions(+)

-- 
2.14.2

diff --git a/linux-user/syscall.c b/linux-user/syscall.c
index 84e123b67b..f31b853bb7 100644
--- a/linux-user/syscall.c
+++ b/linux-user/syscall.c
@@ -10505,6 +10505,12 @@ abi_long do_syscall(void *cpu_env, int num, abi_long arg1,
             break;
         }
 #endif
+        case PR_GET_SECCOMP:
+        case PR_SET_SECCOMP:
+            /* Disable seccomp to prevent the target disabling syscalls we
+             * need. */
+            ret = -TARGET_EINVAL;
+            break;
         default:
             /* Most prctl options have no pointer arguments */
             ret = get_errno(prctl(arg1, arg2, arg3, arg4, arg5));