[SRU,ZESTY,0/8] - Patchwork

Message ID	1507265099-17845-1-git-send-email-tyhicks@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Tyler Hicks <tyhicks@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU][ZESTY][PATCH 0/8] Date: Fri, 6 Oct 2017 04:44:51 +0000 Message-Id: <1507265099-17845-1-git-send-email-tyhicks@canonical.com> Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	[SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" \| expand [SRU,ZESTY,0/8] [SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" [SRU,ZESTY,2/8] seccomp: Provide matching filter for introspection [SRU,ZESTY,3/8] seccomp: Sysctl to display available actions [SRU,ZESTY,4/8] seccomp: Operation for checking if an action is available [SRU,ZESTY,5/8] seccomp: Sysctl to configure actions that are allowed to be logged [SRU,ZESTY,6/8] seccomp: Selftest for detection of filter flag support [SRU,ZESTY,7/8] seccomp: Filter flag to log all actions except SECCOMP_RET_ALLOW [SRU,ZESTY,8/8] seccomp: Action to log before allowing

Message ID

1507265099-17845-1-git-send-email-tyhicks@canonical.com

Headers

From: Tyler Hicks <tyhicks@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU][ZESTY][PATCH 0/8]
Date: Fri,  6 Oct 2017 04:44:51 +0000
Message-Id: <1507265099-17845-1-git-send-email-tyhicks@canonical.com>
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

[SRU,ZESTY,1/8] Revert "UBUNTU: SAUCE: seccomp: log actions even when audit is disabled" | expand

Message

Tyler Hicks Oct. 6, 2017, 4:44 a.m. UTC

This is a backport of a patch set that improves seccomp logging controls for
applications and for adminstrators. Snappy needs these patches in order to
provide proper logging of syscalls that are not allowed while running in
developer mode (LP: #1567597). Snappy also needs these patches in order to move
away from the default action of killing snaps when they bump into the sandbox
walls and, instead, return an errno that is properly logged (LP: #1721676).

The patches have been acked by seccomp maintainer Kees Cook and they've been
merged into 4.14:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0a3a64e723324ae6dda53214061a71de63808c3

See the test case descriptions in the bugs mentioned above for a list of
successful tests that I've performed (they all pass).

Thanks!

Tyler

Comments

Stefan Bader Oct. 6, 2017, 8:37 a.m. UTC | #1

On 06.10.2017 06:44, Tyler Hicks wrote:
> This is a backport of a patch set that improves seccomp logging controls for
> applications and for adminstrators. Snappy needs these patches in order to
> provide proper logging of syscalls that are not allowed while running in
> developer mode (LP: #1567597). Snappy also needs these patches in order to move
> away from the default action of killing snaps when they bump into the sandbox
> walls and, instead, return an errno that is properly logged (LP: #1721676).
> 
> The patches have been acked by seccomp maintainer Kees Cook and they've been
> merged into 4.14:
> 
> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0a3a64e723324ae6dda53214061a71de63808c3
> 
> See the test case descriptions in the bugs mentioned above for a list of
> successful tests that I've performed (they all pass).

Same about missing BugLinks. All patches should have them. And actually the when
looking at the Zesty batch I realized the last two patches have bug links. Each
to one of the two mentioned bugs. So I would proposed to either add both bugs to
all patches or at least both to all pre-req changes. But probably the former is
the better approach, even if that will show the set twice in the generated
changelog.

The delta is substantial and I would not trust myself to evaluate its
correctness. I have to trust you and Kees, upstream review, the statement of not
changing the default behaviour and testing. Based on that:

Acked-by: Stefan Bader <stefan.bader@canonical.com>

> 
> Thanks!
> 
> Tyler
> 
>

Colin Ian King Oct. 6, 2017, 4:33 p.m. UTC | #2

On 06.10.2017 06:44, Tyler Hicks wrote:
> This is a backport of a patch set that improves seccomp logging controls for
> applications and for adminstrators. Snappy needs these patches in order to
> provide proper logging of syscalls that are not allowed while running in
> developer mode (LP: #1567597). Snappy also needs these patches in order to move
> away from the default action of killing snaps when they bump into the sandbox
> walls and, instead, return an errno that is properly logged (LP: #1721676).
>
> The patches have been acked by seccomp maintainer Kees Cook and they've been
> merged into 4.14:
>
> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0a3a64e723324ae6dda53214061a71de63808c3
>
> See the test case descriptions in the bugs mentioned above for a list of
> successful tests that I've performed (they all pass).
> 
Similar to Stefan's comments.  The backports and cherry picks look good
to me.  Given that these are from upstream, have been tested and are
from trusted developers I'm OK with these changes even though they are a
large changeset and I'm not 100% sure if these changes are fully correct
because I don't have the seccomp domain knowledge.

Acked-by: Colin Ian King <colin.king@canonical.com>

Thadeu Lima de Souza Cascardo Oct. 6, 2017, 6:27 p.m. UTC | #3

Applied to zesty master-next branch.

Thanks.
Cascardo.

Applied-to: zesty/master-next