Package: emacs;
Reported by: Glenn Morris <rgm <at> gnu.org>
Date: Sat, 2 Jul 2022 17:46:02 UTC
Severity: minor
Found in versions 29.0.50, 28.2.50, 28.1.90
To reply to this bug, email your comments to 56359 AT debbugs.gnu.org.
Toggle the display of automated, internal messages from the tracker.
View this report as an mbox folder, status mbox, maintainer mbox
p.stephani2 <at> gmail.com, bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Sat, 02 Jul 2022 17:46:02 GMT) Full text and rfc822 format available.Message #3 received at submit <at> debbugs.gnu.org (full text, mbox):
From: Glenn Morris <rgm <at> gnu.org> To: submit <at> debbugs.gnu.org Subject: seccomp test failures on RHEL 9.0 Date: Sat, 02 Jul 2022 13:45:08 -0400
Package: emacs
Version: 28.1.90
Severity: minor
emacs-28 at e390396e684 on RHEL 9.0:
2 unexpected results:
FAILED emacs-tests/bwrap/allows-stdout
FAILED emacs-tests/seccomp/allows-stdout
From audit.log:
type=SECCOMP msg=audit(1656773029.676:55047): auid=1000 uid=1000 gid=1000
ses=320 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
pid=2443726 comm="emacs" exe="/src/emacs" sig=31 arch=c000003e syscall=186
compat=0 ip=0x7f3c04d74dfd code=0x80000000AUID="gmorris" UID="gmorris"
GID="gmorris" ARCH=x86_64 SYSCALL=gettid
test/src/emacs-tests.log:
Running 7 tests (2022-07-02 10:39:57-0700, selector `(not (or (tag :unstable) (tag :nativecomp)))')
Test emacs-tests/bwrap/allows-stdout backtrace:
signal(ert-test-failed (((should (eql status 0)) :form (eql 159 0) :
ert-fail(((should (eql status 0)) :form (eql 159 0) :value nil))
(if (unwind-protect (setq value-166 (apply fn-164 args-165)) (setq f
(let (form-description-168) (if (unwind-protect (setq value-166 (app
(let ((value-166 'ert-form-evaluation-aborted-167)) (let (form-descr
(let* ((fn-164 #'eql) (args-165 (condition-case err (let ((signal-ho
(let ((ert--infos (cons (cons "Info: " (emacs-tests--seccomp-debug s
(let* ((command (concat (mapconcat #'shell-quote-argument (list (fil
(progn (let* ((command (concat (mapconcat #'shell-quote-argument (li
(unwind-protect (progn (let* ((command (concat (mapconcat #'shell-qu
(save-current-buffer (set-buffer temp-buffer) (unwind-protect (progn
(let ((temp-buffer (generate-new-buffer " *temp*" t))) (save-current
(let ((bash (executable-find "bash")) (bwrap (executable-find "bwrap
(let ((lexical-binding t)) (let ((bash (executable-find "bash")) (bw
(closure (t) nil (let ((lexical-binding t)) (let ((bash (executable-
ert--run-test-internal(#s(ert--test-execution-info :test #s(ert-test
ert-run-test(#s(ert-test :name emacs-tests/bwrap/allows-stdout :docu
ert-run-or-rerun-test(#s(ert--stats :selector ... :tests ... :test-m
ert-run-tests((not (or (tag :unstable) (tag :nativecomp))) #f(compil
ert-run-tests-batch((not (or (tag :unstable) (tag :nativecomp))))
ert-run-tests-batch-and-exit((not (or (tag :unstable) (tag :nativeco
eval((ert-run-tests-batch-and-exit '(not (or (tag :unstable) (tag :n
command-line-1(("-L" ":." "-l" "ert" "-l" "src/emacs-tests.el" "--ev
command-line()
normal-top-level()
Test emacs-tests/bwrap/allows-stdout condition:
Info: Process output:
Potentially relevant Seccomp audit events:
Error opening config file (Permission denied)
NOTE - using built-in logs: /var/log/audit/audit.log
Error opening /var/log/audit/audit.log (Permission denied)
Potentially useful coredump information:
Hint: You are currently not seeing messages from other users and the system.
Users in groups 'adm', 'systemd-journal', 'wheel' can see all messages.
Pass -q to turn off this notice.
PID: 2491169 (emacs)
UID: 1000 (gmorris)
GID: 1000 (gmorris)
Signal: 31 (SYS)
Timestamp: Sat 2022-07-02 10:39:57 PDT (287ms ago)
Command Line: src/emacs --quick --batch $'--eval=(message "Hi")'
Executable: src/emacs
Control Group: /user.slice/user-1000.slice/session-329.scope
Unit: session-329.scope
Slice: user-1000.slice
Session: 329
Owner UID: 1000 (gmorris)
Boot ID: xxx
Machine ID: xxx
Hostname: xxx
Storage: /var/lib/systemd/coredump/core.emacs.1000.2df2456209984f74a8449c5af10bbcc3.2491169.1656783597000000.zst (present)
Disk Size: 4.0M
Message: Process 2491169 (emacs) of user 1000 dumped core.
Module linux-vdso.so.1 with build-id 987a2da0c3adf0de61f498aa19f074ce4369b168
Module libnss_sss.so.2 with build-id 24fde108de62a0496a81dc540f2144dabe1044bd
Module libdatrie.so.1 with build-id 82e6597b894c705023f5b506b28b555809d806ba
Module libgpg-error.so.0 with build-id 5489c46059340cb4d497235af1f8568d2445d69e
Module libbrotlicommon.so.1 with build-id db04eb63a9beddcde1319be962f5efc4a95d8a9e
Module libblkid.so.1 with build-id d2ca5e74365b5a58e5dca6b672513f4a576048e2
Module libthai.so.0 with build-id b3cdb18cb59b48c0f15c6d67a2f5b558559ae8c2
Module libfribidi.so.0 with build-id 69ac6c03889c58a5e7fd430a4100f21e103ba8d2
Module libgcrypt.so.20 with build-id 9933b5a9a51e38a4d47011e97ad8ec022e6de4be
Module libcap.so.2 with build-id 2e458559b89c79ad80c59a1082aef02c283b022d
Module liblz4.so.1 with build-id 7c5b7e60b06bfbd641512403f019e757cf4a8c08
Module libhogweed.so.6 with build-id 40632ecb97bd8bd45e8cf3d24291367c3b86e3db
Module libnettle.so.8 with build-id 2120e07233e0baf4802af62044a2274434eaa074
Module libtasn1.so.6 with build-id b0c551df320023b8309dddc7d56d2645cd81bd1f
Module libunistring.so.2 with build-id 32f5f73e10dfeeb93b54b2bc21e9e1e4e341c8ca
Module libidn2.so.0 with build-id 5f6a5ea74f06ef9bcc087bf8369c0a8dcaa7ff5d
Module libp11-kit.so.0 with build-id de88b9ea36d398dc2bafd29788204483f3aaccaf
Module libgraphite2.so.3 with build-id 0511434c742be039c731fee8ff37466a858566b0
Module libbrotlidec.so.1 with build-id 2e52b9cd432a4856594c463b96862b9292ecc192
Module libbz2.so.1 with build-id 6492ce13d4e640dd7f3de885da1db1f411768de8
Module libpcre2-8.so.0 with build-id d002c28473f32ac8a193721d04b710d45ac627e9
Module libdbus-glib-1.so.2 with build-id d05e42c8265a3d751bc1b0dbf0403071bbe27ff3
Module liblzma.so.5 with build-id e36b862796c14583e7936ecb7b83b694658e5afa
Module libattr.so.1 with build-id 9cfb2b1c1bb4f5ca5296dc1f4ad4762b87c9bca1
Module libxcb-render.so.0 with build-id c7830b6e0ba50270a73f1152188173c533bc4cd1
Module libxcb-shm.so.0 with build-id c99c063111e4dc85f2cb3463ca54db071e6a2cdc
Module libpixman-1.so.0 with build-id d29acf3201edebcf13f6112f6b1428b32a36bce4
Module libpcre.so.1 with build-id b917c5e8f59b034c94d7698b74de7d0830fede05
Module libffi.so.8 with build-id 7cd62ad687d6e2c299990b75edf97a72d61ed913
Module libmount.so.1 with build-id 2cb3370d622a16c653f486ac9d15a63902d0f73e
Module libgmodule-2.0.so.0 with build-id d3b8fd3ca7601e4e83aed67febd1aa150edd8da6
Module libgcc_s.so.1 with build-id c0fde791071c51b4c029c48e4af4100dc0e36f44
Module libpango-1.0.so.0 with build-id 9730eff2bb112c8765bb3ed72aa1840edf5ab44c
Module libpangoft2-1.0.so.0 with build-id d5af428dd75236e69e1caf25b1fd954672e7c01b
Module libpangocairo-1.0.so.0 with build-id a0464f49a4772d58fc257ae0b7d341c3a5be538a
Module libcairo-gobject.so.2 with build-id b12ae5ae1d2fccdc2ae7eb1e9b519782d74cc55e
Module ld-linux-x86-64.so.2 with build-id 6ae37ed0ebb1900854f7aa8675edddbbf33e8d2a
Module libXau.so.6 with build-id e1ca50098a4973f8d26b2f60297b45562e37d5fb
Module libuuid.so.1 with build-id 198bdb9dc720c8f23f21d512cea4589bd1a67e7b
Module libjbig.so.2.1 with build-id 6ddc11cadd3d7e47ae52ef68ebb422f63400b538
Module libzstd.so.1 with build-id 9bdaae147687d98b3f3a10aeac872a36332481fb
Module libwebp.so.7 with build-id 47de3cd4dcf14b062e6c7bb9dbe3b91fc9468583
Module libc.so.6 with build-id 992b882da302f0c924a40d3125b5164aa02347ce
Module libgmp.so.10 with build-id 37c945a37982b8b0c2e9c2c2e3ab4f88ae3707dd
Module libjansson.so.4 with build-id 3e5df495bbffe3eeac06c1c8f02e684acd825878
Module libsystemd.so.0 with build-id a5e73d43e12e85273392622cd91e93a497762c03
Module liblcms2.so.2 with build-id 96f18893400895adf35051cc1e1ce6c9c9aca199
Module libanl.so.1 with build-id 494c94ca812f48653608e98262aef02178c97523
Module libgnutls.so.30 with build-id 0d02be0970ed3d8251a506fde7e6a849b329b7fe
Module libharfbuzz.so.0 with build-id cce6ad79bc97e8624121c48af8ec2d9b42c536b3
Module libfontconfig.so.1 with build-id e7c14b6d2a0f0086bd1d66dffca67c44086d67b9
Module libfreetype.so.6 with build-id d10b2b13cb38460f96c4fef9a0ee1889f45a7d86
Module libselinux.so.1 with build-id 717e2e8f4427520f02441c0b5a4bc1b861fb648d
Module libgconf-2.so.4 with build-id 702c89120d00f4c7491508d66bc46ec856ab3949
Module libtinfo.so.6 with build-id 78bf96fc6e39f99589acb797b2066abc962a2662
Module libgpm.so.2 with build-id ae6a113bf82c1b3e0c1d27e977590a19e982792d
Module libxml2.so.2 with build-id a7555ce97d2ce3cadcd94f08a69e5ae0eabc36fe
Module libXfixes.so.3 with build-id 3c855bb9cb4a58ae64751084160acea8aeb375be
Module libXinerama.so.1 with build-id 0d12e95ae05fa7f388040742a36a31639cd44f95
Module libXrandr.so.2 with build-id dbac6ac3b299c5195ca18902bc3361c00e340b3a
Module libdbus-1.so.3 with build-id 705356e391bd831d9067687d0436c1c6904c6149
Module libacl.so.1 with build-id f6b78dd866dbad532dda15d7a1f752f62acaf92c
Module libcairo.so.2 with build-id 4feccb843aee923b3cbe9a7ed86fba68c5740f0f
Module libglib-2.0.so.0 with build-id bba9b87f86e5d2fd5c06ab74552f09876a75ecc3
Module libgobject-2.0.so.0 with build-id 385c4d487d0939de86e316114ea503e41e0e528d
Module libgdk_pixbuf-2.0.so.0 with build-id 90e3f7d06fbe40cee8a7f55289c00332b6b2b640
Module libgio-2.0.so.0 with build-id 884e459ede022d5bed173e82eebbc1e30d0496c0
Module libm.so.6 with build-id 06480257823b66b01706ba8224a9f24fc280a5e8
Module librsvg-2.so.2 with build-id 3ed67d7a2eaca05545e6c2e57649b7c44116e8f9
Module libasound.so.2 with build-id d353d160b999019eff238dc24b705865194c6b3f
Module libXrender.so.1 with build-id 8e7c0f4d95e4b65c7be4da42cf4ea4d170e8fa24
Module libxcb.so.1 with build-id 939092fb35541949d60cd73e5d7d943afb9548c2
Module libX11-xcb.so.1 with build-id 9db5e672cff44e417333f6f4c3304be335e1b2b6
Module libX11.so.6 with build-id 9613169aedfb98686eb7dd9114a4d961f5b2c1ca
Module libXext.so.6 with build-id 929e4bf4589e515be6dcab46fae56dbf08f9a686
Module libICE.so.6 with build-id da7b04fa765ba354ad98c2f59d92aff737210dc5
Module libSM.so.6 with build-id 96e7a6c9c5e9b728749b5a97440b8e371b709070
Module libXt.so.6 with build-id 86eae3c9a48e8a214caa2a2ab38b917d46d9823b
Module libXmu.so.6 with build-id e1ecf40edbaac4d482a28a86b7be7654093330b0
Module libXaw.so.7 with build-id 006560e397cf8488a72c65325311be3568fb85eb
Module libXpm.so.4 with build-id 12abc048dd1b3a07d985de672165851448603c80
Module libgif.so.7 with build-id 70bc91735704c1d0e15ef8563c5e3772a6502f94
Module libz.so.1 with build-id 6e327bb976d53cd6a5efe10a74ffa8a7aa051f98
Module libpng16.so.16 with build-id dcba4562fa9caf49ba355d2ccc9f06f7aaa60b8a
Module libjpeg.so.62 with build-id 9c341ea0f2be4009211f9d5df1f481e12e81ab9a
Module libtiff.so.5 with build-id 9bf8445584b606a444bdd481f1bf5cf4d2307164
Module emacs with build-id 3652fdfcc9aadb451b031c89fe025d13c11c43da
Stack trace of thread 2491169:
#0 0x00007fa2fb4e7dfd syscall (libc.so.6 + 0x43dfd)
#1 0x00007fa2fc0c436e sysprof_collector_get (libglib-2.0.so.0 + 0xaa36e)
#2 0x00007fa2fc0c4bfd sysprof_collector_mark_vprintf (libglib-2.0.so.0 + 0xaabfd)
#3 0x00007fa2fc0c1500 g_trace_mark.constprop.0 (libglib-2.0.so.0 + 0xa7500)
#4 0x00007fa2fc09bfa4 g_thread_new_internal (libglib-2.0.so.0 + 0x81fa4)
#5 0x00007fa2fc09c254 g_thread_new (libglib-2.0.so.0 + 0x82254)
#6 0x00007fa2fc06f917 g_get_worker_context (libglib-2.0.so.0 + 0x55917)
#7 0x00007fa2fc06f9ac g_child_watch_source_new (libglib-2.0.so.0 + 0x559ac)
#8 0x0000000000686261 init_process_emacs (emacs + 0x286261)
#9 0x000000000056878c main (emacs + 0x16878c)
#10 0x00007fa2fb4e8e50 __libc_start_call_main (libc.so.6 + 0x44e50)
#11 0x00007fa2fb4e8efc __libc_start_main@@GLIBC_2.34 (libc.so.6 + 0x44efc)
#12 0x00000000004199e5 _start (emacs + 0x199e5)
ELF object binary architecture: AMD x86-64
(ert-test-failed
((should
(eql status 0))
:form
(eql 159 0)
:value nil))
FAILED 1/7 emacs-tests/bwrap/allows-stdout (0.234728 sec)
passed 2/7 emacs-tests/seccomp/absent-file (0.011437 sec)
Test emacs-tests/seccomp/allows-stdout backtrace:
signal(ert-test-failed (((should (eql status 0)) :form (eql "Bad sys
ert-fail(((should (eql status 0)) :form (eql "Bad system call" 0) :v
(if (unwind-protect (setq value-102 (apply fn-100 args-101)) (setq f
(let (form-description-104) (if (unwind-protect (setq value-102 (app
(let ((value-102 'ert-form-evaluation-aborted-103)) (let (form-descr
(let* ((fn-100 #'eql) (args-101 (condition-case err (let ((signal-ho
(let ((ert--infos (cons (cons "Info: " (emacs-tests--seccomp-debug s
(let ((start-time (current-time)) (status (call-process emacs nil t
(progn (let ((start-time (current-time)) (status (call-process emacs
(unwind-protect (progn (let ((start-time (current-time)) (status (ca
(save-current-buffer (set-buffer temp-buffer) (unwind-protect (progn
(let ((temp-buffer (generate-new-buffer " *temp*" t))) (save-current
(let ((emacs (expand-file-name invocation-name invocation-directory)
(let ((lexical-binding t)) (let* ((fn-80 #'string-match-p) (args-81
(closure (t) nil (let ((lexical-binding t)) (let* ((fn-80 #'string-m
ert--run-test-internal(#s(ert--test-execution-info :test #s(ert-test
ert-run-test(#s(ert-test :name emacs-tests/seccomp/allows-stdout :do
ert-run-or-rerun-test(#s(ert--stats :selector ... :tests ... :test-m
ert-run-tests((not (or (tag :unstable) (tag :nativecomp))) #f(compil
ert-run-tests-batch((not (or (tag :unstable) (tag :nativecomp))))
ert-run-tests-batch-and-exit((not (or (tag :unstable) (tag :nativeco
eval((ert-run-tests-batch-and-exit '(not (or (tag :unstable) (tag :n
command-line-1(("-L" ":." "-l" "ert" "-l" "src/emacs-tests.el" "--ev
command-line()
normal-top-level()
Test emacs-tests/seccomp/allows-stdout condition:
Info: Process output:
Potentially relevant Seccomp audit events:
Error opening config file (Permission denied)
NOTE - using built-in logs: /var/log/audit/audit.log
Error opening /var/log/audit/audit.log (Permission denied)
Potentially useful coredump information:
Hint: You are currently not seeing messages from other users and the system.
Users in groups 'adm', 'systemd-journal', 'wheel' can see all messages.
Pass -q to turn off this notice.
PID: 2491181 (emacs)
UID: 1000 (gmorris)
GID: 1000 (gmorris)
Signal: 31 (SYS)
Timestamp: Sat 2022-07-02 10:39:57 PDT (882ms ago)
Command Line: src/emacs --quick --batch --seccomp=lib-src/seccomp-filter.bpf $'--eval=(message "Hi")'
Executable: src/emacs
Control Group: /user.slice/user-1000.slice/session-329.scope
Unit: session-329.scope
Slice: user-1000.slice
Session: 329
Owner UID: 1000 (gmorris)
Boot ID: xxx
Machine ID: xxx
Hostname: xxx
Storage: /var/lib/systemd/coredump/core.emacs.1000.2df2456209984f74a8449c5af10bbcc3.2491181.1656783597000000.zst (present)
Disk Size: 4.0M
Message: Process 2491181 (emacs) of user 1000 dumped core.
Module linux-vdso.so.1 with build-id 987a2da0c3adf0de61f498aa19f074ce4369b168
Module libnss_sss.so.2 with build-id 24fde108de62a0496a81dc540f2144dabe1044bd
Module libdatrie.so.1 with build-id 82e6597b894c705023f5b506b28b555809d806ba
Module libgpg-error.so.0 with build-id 5489c46059340cb4d497235af1f8568d2445d69e
Module libbrotlicommon.so.1 with build-id db04eb63a9beddcde1319be962f5efc4a95d8a9e
Module libblkid.so.1 with build-id d2ca5e74365b5a58e5dca6b672513f4a576048e2
Module libthai.so.0 with build-id b3cdb18cb59b48c0f15c6d67a2f5b558559ae8c2
Module libfribidi.so.0 with build-id 69ac6c03889c58a5e7fd430a4100f21e103ba8d2
Module libgcrypt.so.20 with build-id 9933b5a9a51e38a4d47011e97ad8ec022e6de4be
Module libcap.so.2 with build-id 2e458559b89c79ad80c59a1082aef02c283b022d
Module liblz4.so.1 with build-id 7c5b7e60b06bfbd641512403f019e757cf4a8c08
Module libhogweed.so.6 with build-id 40632ecb97bd8bd45e8cf3d24291367c3b86e3db
Module libnettle.so.8 with build-id 2120e07233e0baf4802af62044a2274434eaa074
Module libtasn1.so.6 with build-id b0c551df320023b8309dddc7d56d2645cd81bd1f
Module libunistring.so.2 with build-id 32f5f73e10dfeeb93b54b2bc21e9e1e4e341c8ca
Module libidn2.so.0 with build-id 5f6a5ea74f06ef9bcc087bf8369c0a8dcaa7ff5d
Module libp11-kit.so.0 with build-id de88b9ea36d398dc2bafd29788204483f3aaccaf
Module libgraphite2.so.3 with build-id 0511434c742be039c731fee8ff37466a858566b0
Module libbrotlidec.so.1 with build-id 2e52b9cd432a4856594c463b96862b9292ecc192
Module libbz2.so.1 with build-id 6492ce13d4e640dd7f3de885da1db1f411768de8
Module libpcre2-8.so.0 with build-id d002c28473f32ac8a193721d04b710d45ac627e9
Module libdbus-glib-1.so.2 with build-id d05e42c8265a3d751bc1b0dbf0403071bbe27ff3
Module liblzma.so.5 with build-id e36b862796c14583e7936ecb7b83b694658e5afa
Module libattr.so.1 with build-id 9cfb2b1c1bb4f5ca5296dc1f4ad4762b87c9bca1
Module libxcb-render.so.0 with build-id c7830b6e0ba50270a73f1152188173c533bc4cd1
Module libxcb-shm.so.0 with build-id c99c063111e4dc85f2cb3463ca54db071e6a2cdc
Module libpixman-1.so.0 with build-id d29acf3201edebcf13f6112f6b1428b32a36bce4
Module libpcre.so.1 with build-id b917c5e8f59b034c94d7698b74de7d0830fede05
Module libffi.so.8 with build-id 7cd62ad687d6e2c299990b75edf97a72d61ed913
Module libmount.so.1 with build-id 2cb3370d622a16c653f486ac9d15a63902d0f73e
Module libgmodule-2.0.so.0 with build-id d3b8fd3ca7601e4e83aed67febd1aa150edd8da6
Module libgcc_s.so.1 with build-id c0fde791071c51b4c029c48e4af4100dc0e36f44
Module libpango-1.0.so.0 with build-id 9730eff2bb112c8765bb3ed72aa1840edf5ab44c
Module libpangoft2-1.0.so.0 with build-id d5af428dd75236e69e1caf25b1fd954672e7c01b
Module libpangocairo-1.0.so.0 with build-id a0464f49a4772d58fc257ae0b7d341c3a5be538a
Module libcairo-gobject.so.2 with build-id b12ae5ae1d2fccdc2ae7eb1e9b519782d74cc55e
Module ld-linux-x86-64.so.2 with build-id 6ae37ed0ebb1900854f7aa8675edddbbf33e8d2a
Module libXau.so.6 with build-id e1ca50098a4973f8d26b2f60297b45562e37d5fb
Module libuuid.so.1 with build-id 198bdb9dc720c8f23f21d512cea4589bd1a67e7b
Module libjbig.so.2.1 with build-id 6ddc11cadd3d7e47ae52ef68ebb422f63400b538
Module libzstd.so.1 with build-id 9bdaae147687d98b3f3a10aeac872a36332481fb
Module libwebp.so.7 with build-id 47de3cd4dcf14b062e6c7bb9dbe3b91fc9468583
Module libc.so.6 with build-id 992b882da302f0c924a40d3125b5164aa02347ce
Module libgmp.so.10 with build-id 37c945a37982b8b0c2e9c2c2e3ab4f88ae3707dd
Module libjansson.so.4 with build-id 3e5df495bbffe3eeac06c1c8f02e684acd825878
Module libsystemd.so.0 with build-id a5e73d43e12e85273392622cd91e93a497762c03
Module liblcms2.so.2 with build-id 96f18893400895adf35051cc1e1ce6c9c9aca199
Module libanl.so.1 with build-id 494c94ca812f48653608e98262aef02178c97523
Module libgnutls.so.30 with build-id 0d02be0970ed3d8251a506fde7e6a849b329b7fe
Module libharfbuzz.so.0 with build-id cce6ad79bc97e8624121c48af8ec2d9b42c536b3
Module libfontconfig.so.1 with build-id e7c14b6d2a0f0086bd1d66dffca67c44086d67b9
Module libfreetype.so.6 with build-id d10b2b13cb38460f96c4fef9a0ee1889f45a7d86
Module libselinux.so.1 with build-id 717e2e8f4427520f02441c0b5a4bc1b861fb648d
Module libgconf-2.so.4 with build-id 702c89120d00f4c7491508d66bc46ec856ab3949
Module libtinfo.so.6 with build-id 78bf96fc6e39f99589acb797b2066abc962a2662
Module libgpm.so.2 with build-id ae6a113bf82c1b3e0c1d27e977590a19e982792d
Module libxml2.so.2 with build-id a7555ce97d2ce3cadcd94f08a69e5ae0eabc36fe
Module libXfixes.so.3 with build-id 3c855bb9cb4a58ae64751084160acea8aeb375be
Module libXinerama.so.1 with build-id 0d12e95ae05fa7f388040742a36a31639cd44f95
Module libXrandr.so.2 with build-id dbac6ac3b299c5195ca18902bc3361c00e340b3a
Module libdbus-1.so.3 with build-id 705356e391bd831d9067687d0436c1c6904c6149
Module libacl.so.1 with build-id f6b78dd866dbad532dda15d7a1f752f62acaf92c
Module libcairo.so.2 with build-id 4feccb843aee923b3cbe9a7ed86fba68c5740f0f
Module libglib-2.0.so.0 with build-id bba9b87f86e5d2fd5c06ab74552f09876a75ecc3
Module libgobject-2.0.so.0 with build-id 385c4d487d0939de86e316114ea503e41e0e528d
Module libgdk_pixbuf-2.0.so.0 with build-id 90e3f7d06fbe40cee8a7f55289c00332b6b2b640
Module libgio-2.0.so.0 with build-id 884e459ede022d5bed173e82eebbc1e30d0496c0
Module libm.so.6 with build-id 06480257823b66b01706ba8224a9f24fc280a5e8
Module librsvg-2.so.2 with build-id 3ed67d7a2eaca05545e6c2e57649b7c44116e8f9
Module libasound.so.2 with build-id d353d160b999019eff238dc24b705865194c6b3f
Module libXrender.so.1 with build-id 8e7c0f4d95e4b65c7be4da42cf4ea4d170e8fa24
Module libxcb.so.1 with build-id 939092fb35541949d60cd73e5d7d943afb9548c2
Module libX11-xcb.so.1 with build-id 9db5e672cff44e417333f6f4c3304be335e1b2b6
Module libX11.so.6 with build-id 9613169aedfb98686eb7dd9114a4d961f5b2c1ca
Module libXext.so.6 with build-id 929e4bf4589e515be6dcab46fae56dbf08f9a686
Module libICE.so.6 with build-id da7b04fa765ba354ad98c2f59d92aff737210dc5
Module libSM.so.6 with build-id 96e7a6c9c5e9b728749b5a97440b8e371b709070
Module libXt.so.6 with build-id 86eae3c9a48e8a214caa2a2ab38b917d46d9823b
Module libXmu.so.6 with build-id e1ecf40edbaac4d482a28a86b7be7654093330b0
Module libXaw.so.7 with build-id 006560e397cf8488a72c65325311be3568fb85eb
Module libXpm.so.4 with build-id 12abc048dd1b3a07d985de672165851448603c80
Module libgif.so.7 with build-id 70bc91735704c1d0e15ef8563c5e3772a6502f94
Module libz.so.1 with build-id 6e327bb976d53cd6a5efe10a74ffa8a7aa051f98
Module libpng16.so.16 with build-id dcba4562fa9caf49ba355d2ccc9f06f7aaa60b8a
Module libjpeg.so.62 with build-id 9c341ea0f2be4009211f9d5df1f481e12e81ab9a
Module libtiff.so.5 with build-id 9bf8445584b606a444bdd481f1bf5cf4d2307164
Module emacs with build-id 3652fdfcc9aadb451b031c89fe025d13c11c43da
Stack trace of thread 2491181:
#0 0x00007ff001575dfd syscall (libc.so.6 + 0x43dfd)
#1 0x00007ff00215236e sysprof_collector_get (libglib-2.0.so.0 + 0xaa36e)
#2 0x00007ff002152bfd sysprof_collector_mark_vprintf (libglib-2.0.so.0 + 0xaabfd)
#3 0x00007ff00214f500 g_trace_mark.constprop.0 (libglib-2.0.so.0 + 0xa7500)
#4 0x00007ff002129fa4 g_thread_new_internal (libglib-2.0.so.0 + 0x81fa4)
#5 0x00007ff00212a254 g_thread_new (libglib-2.0.so.0 + 0x82254)
#6 0x00007ff0020fd917 g_get_worker_context (libglib-2.0.so.0 + 0x55917)
#7 0x00007ff0020fd9ac g_child_watch_source_new (libglib-2.0.so.0 + 0x559ac)
#8 0x0000000000686261 init_process_emacs (emacs + 0x286261)
#9 0x000000000056878c main (emacs + 0x16878c)
#10 0x00007ff001576e50 __libc_start_call_main (libc.so.6 + 0x44e50)
#11 0x00007ff001576efc __libc_start_main@@GLIBC_2.34 (libc.so.6 + 0x44efc)
#12 0x00000000004199e5 _start (emacs + 0x199e5)
ELF object binary architecture: AMD x86-64
(ert-test-failed
((should
(eql status 0))
:form
(eql "Bad system call" 0)
:value nil))
FAILED 3/7 emacs-tests/seccomp/allows-stdout (0.229277 sec)
passed 4/7 emacs-tests/seccomp/empty-file (0.012597 sec)
passed 5/7 emacs-tests/seccomp/file-too-large (0.093114 sec)
passed 6/7 emacs-tests/seccomp/forbids-subprocess (0.200229 sec)
passed 7/7 emacs-tests/seccomp/invalid-file-size (0.030348 sec)
Ran 7 tests, 5 results as expected, 2 unexpected (2022-07-02 10:39:58-0700, 1.496530 sec)
2 unexpected results:
FAILED emacs-tests/bwrap/allows-stdout
FAILED emacs-tests/seccomp/allows-stdout
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Fri, 15 Jul 2022 14:13:01 GMT) Full text and rfc822 format available.Message #6 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Philipp Stephani <p.stephani2 <at> gmail.com> To: Glenn Morris <rgm <at> gnu.org> Cc: 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Fri, 15 Jul 2022 16:12:06 +0200
[Message part 1 (text/plain, inline)]
Am Sa., 2. Juli 2022 um 19:46 Uhr schrieb Glenn Morris <rgm <at> gnu.org>: > > Package: emacs > Version: 28.1.90 > Severity: minor > > emacs-28 at e390396e684 on RHEL 9.0: > > 2 unexpected results: > FAILED emacs-tests/bwrap/allows-stdout > FAILED emacs-tests/seccomp/allows-stdout > > From audit.log: > > type=SECCOMP msg=audit(1656773029.676:55047): auid=1000 uid=1000 gid=1000 > ses=320 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 > pid=2443726 comm="emacs" exe="/src/emacs" sig=31 arch=c000003e syscall=186 > compat=0 ip=0x7f3c04d74dfd code=0x80000000AUID="gmorris" UID="gmorris" > GID="gmorris" ARCH=x86_64 SYSCALL=gettid Does the attached patch fix the issue?
[gettid.patch (application/octet-stream, attachment)]
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Fri, 15 Jul 2022 23:36:02 GMT) Full text and rfc822 format available.Message #9 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Glenn Morris <rgm <at> gnu.org> To: Philipp Stephani <p.stephani2 <at> gmail.com> Cc: 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Fri, 15 Jul 2022 19:35:01 -0400
Philipp Stephani wrote: > Does the attached patch fix the issue? Not entirely. I have to also allow "clone3", then it passes.
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Sat, 16 Jul 2022 10:51:02 GMT) Full text and rfc822 format available.Message #12 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Philipp Stephani <p.stephani2 <at> gmail.com> To: Glenn Morris <rgm <at> gnu.org> Cc: 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Sat, 16 Jul 2022 12:50:01 +0200
> Am 16.07.2022 um 01:35 schrieb Glenn Morris <rgm <at> gnu.org>: > > Philipp Stephani wrote: > >> Does the attached patch fix the issue? > > Not entirely. I have to also allow "clone3", then it passes. Hmm, I'm not sure we should allow clone3 unconditionally since it can do lots of things, and I'd expect that its capabilities will only grow over time. OTOH, BPF (or at least the libseccomp library) don't support pointer indirections which would be needed to inspect the structure fields. See https://lwn.net/Articles/822256/. Any opinions?
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Sat, 20 Aug 2022 12:38:01 GMT) Full text and rfc822 format available.Message #15 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: "Basil L. Contovounesios" <contovob <at> tcd.ie> To: Philipp Stephani <p.stephani2 <at> gmail.com> Cc: Glenn Morris <rgm <at> gnu.org>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Sat, 20 Aug 2022 15:37:16 +0300
[Message part 1 (text/plain, inline)]
Philipp Stephani [2022-07-16 12:50 +0200] wrote: >> Am 16.07.2022 um 01:35 schrieb Glenn Morris <rgm <at> gnu.org>: >> >> Philipp Stephani wrote: >> >>> Does the attached patch fix the issue? >> >> Not entirely. I have to also allow "clone3", then it passes. Just adding that I get the same on Debian:
[test-out.log (text/plain, attachment)]
[Message part 3 (text/plain, inline)]
This with: $ /lib/x86_64-linux-gnu/libc.so.6 GNU C Library (Debian GLIBC 2.34-3) stable release version 2.34. Copyright (C) 2021 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. Compiled by GNU CC version 11.3.0. libc ABIs: UNIQUE IFUNC ABSOLUTE > Hmm, I'm not sure we should allow clone3 unconditionally since it can do lots of > things, and I'd expect that its capabilities will only grow over time. OTOH, BPF > (or at least the libseccomp library) don't support pointer indirections which > would be needed to inspect the structure fields. See > https://lwn.net/Articles/822256/. > Any opinions? No opinion from me, but FWIW Docker seems to allow clone3 in its default policy: https://github.com/docker/docker-ce/commit/522fcd0056 https://github.com/containerd/containerd/pull/5982 Thanks, -- Basil In GNU Emacs 29.0.50 (build 1, x86_64-pc-linux-gnu, X toolkit, cairo version 1.16.0, Xaw3d scroll bars) of 2022-08-20 built on tia Repository revision: 3312710fd672021b17983ef2287dbd57a9a110a1 Repository branch: master Windowing system distributor 'The X.Org Foundation', version 11.0.12101004 System Description: Debian GNU/Linux bookworm/sid Configured using: 'configure 'CFLAGS=-Og -ggdb3' --config-cache --prefix=/home/blc/.local --enable-checking=structs --with-file-notification=yes --with-x-toolkit=lucid --with-x' Configured features: ACL CAIRO DBUS FREETYPE GIF GLIB GMP GNUTLS GPM GSETTINGS HARFBUZZ JPEG JSON LCMS2 LIBOTF LIBSELINUX LIBSYSTEMD LIBXML2 M17N_FLT MODULES NOTIFY INOTIFY PDUMPER PNG RSVG SECCOMP SOUND SQLITE3 THREADS TIFF TOOLKIT_SCROLL_BARS WEBP X11 XAW3D XDBE XIM XINPUT2 XPM LUCID ZLIB Important settings: value of $LANG: en_IE.UTF-8 value of $XMODIFIERS: @im=ibus locale-coding-system: utf-8-unix Major mode: Lisp Interaction Minor modes in effect: tooltip-mode: t global-eldoc-mode: t eldoc-mode: t show-paren-mode: t electric-indent-mode: t mouse-wheel-mode: t tool-bar-mode: t menu-bar-mode: t file-name-shadow-mode: t global-font-lock-mode: t font-lock-mode: t blink-cursor-mode: t line-number-mode: t indent-tabs-mode: t transient-mark-mode: t auto-composition-mode: t auto-encryption-mode: t auto-compression-mode: t Load-path shadows: None found. Features: (shadow sort mail-extr emacsbug message mailcap yank-media puny dired dired-loaddefs rfc822 mml mml-sec password-cache epa derived epg rfc6068 epg-config gnus-util text-property-search time-date subr-x mm-decode mm-bodies mm-encode mail-parse rfc2231 mailabbrev gmm-utils mailheader cl-loaddefs cl-lib sendmail rfc2047 rfc2045 ietf-drums mm-util mail-prsvr mail-utils rmc iso-transl tooltip eldoc paren electric uniquify ediff-hook vc-hooks lisp-float-type elisp-mode mwheel term/x-win x-win term/common-win x-dnd tool-bar dnd fontset image regexp-opt fringe tabulated-list replace newcomment text-mode lisp-mode prog-mode register page tab-bar menu-bar rfn-eshadow isearch easymenu timer select scroll-bar mouse jit-lock font-lock syntax font-core term/tty-colors frame minibuffer nadvice seq simple cl-generic indonesian philippine cham georgian utf-8-lang misc-lang vietnamese tibetan thai tai-viet lao korean japanese eucjp-ms cp51932 hebrew greek romanian slovak czech european ethiopic indian cyrillic chinese composite emoji-zwj charscript charprop case-table epa-hook jka-cmpr-hook help abbrev obarray oclosure cl-preloaded button loaddefs faces cus-face macroexp files window text-properties overlay sha1 md5 base64 format env code-pages mule custom widget keymap hashtable-print-readable backquote threads dbusbind inotify lcms2 dynamic-setting system-font-setting font-render-setting cairo x-toolkit xinput2 x multi-tty make-network-process emacs) Memory information: ((conses 16 36336 7449) (symbols 48 5084 0) (strings 32 13829 1888) (string-bytes 1 381827) (vectors 16 9205) (vector-slots 8 145425 12943) (floats 8 23 25) (intervals 56 236 0) (buffers 992 10))
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Thu, 06 Oct 2022 16:57:02 GMT) Full text and rfc822 format available.Message #18 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: "Basil L. Contovounesios" <contovob <at> tcd.ie> To: p.stephani2 <at> gmail.com Cc: 56359 <at> debbugs.gnu.org, Glenn Morris <rgm <at> gnu.org> Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Thu, 06 Oct 2022 19:56:21 +0300
found 56359 28.2.50 found 56359 29.0.50 quit Glenn Morris [2022-07-02 13:45 -0400] wrote: > emacs-28 at e390396e684 on RHEL 9.0: > > 2 unexpected results: > FAILED emacs-tests/bwrap/allows-stdout > FAILED emacs-tests/seccomp/allows-stdout I'm still seeing these failures. Considering their history (bug#47708, bug#47828, bug#51073, bug#53504, bug#57301), perhaps these tests should be tagged as :unstable? Thanks, -- Basil
"Basil L. Contovounesios" <contovob <at> tcd.ie>
to control <at> debbugs.gnu.org.
(Thu, 06 Oct 2022 16:57:02 GMT) Full text and rfc822 format available."Basil L. Contovounesios" <contovob <at> tcd.ie>
to control <at> debbugs.gnu.org.
(Thu, 06 Oct 2022 16:57:02 GMT) Full text and rfc822 format available.bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Fri, 07 Oct 2022 11:57:01 GMT) Full text and rfc822 format available.Message #25 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Lars Ingebrigtsen <larsi <at> gnus.org> To: p.stephani2 <at> gmail.com Cc: "Basil L. Contovounesios" <contovob <at> tcd.ie>, 56359 <at> debbugs.gnu.org, Glenn Morris <rgm <at> gnu.org> Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Fri, 07 Oct 2022 13:56:32 +0200
"Basil L. Contovounesios" via "Bug reports for GNU Emacs, the Swiss army knife of text editors" <bug-gnu-emacs <at> gnu.org> writes: > Glenn Morris [2022-07-02 13:45 -0400] wrote: > >> emacs-28 at e390396e684 on RHEL 9.0: >> >> 2 unexpected results: >> FAILED emacs-tests/bwrap/allows-stdout >> FAILED emacs-tests/seccomp/allows-stdout > > I'm still seeing these failures. Considering their history (bug#47708, > bug#47828, bug#51073, bug#53504, bug#57301), perhaps these tests should > be tagged as :unstable? They've certainly been problematic, so perhaps that's the best solution as this point. Perhaps it would be possible to avoid marking them as unstable on platforms they're known to be working (and should continue working)? I'm not at all sure how to get as such a list, though.
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Tue, 11 Oct 2022 00:55:01 GMT) Full text and rfc822 format available.Message #28 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Lars Ingebrigtsen <larsi <at> gnus.org> To: "Basil L. Contovounesios" <contovob <at> tcd.ie> Cc: Glenn Morris <rgm <at> gnu.org>, Philipp Stephani <p.stephani2 <at> gmail.com>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Tue, 11 Oct 2022 02:54:13 +0200
I've now applied Philipp's patch (adding gettid), and Paul has fixed other bits here in 345de32a. Does the tests pass on RHEL on "master" now?
Lars Ingebrigtsen <larsi <at> gnus.org>
to control <at> debbugs.gnu.org.
(Tue, 11 Oct 2022 00:55:02 GMT) Full text and rfc822 format available.bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Tue, 11 Oct 2022 12:38:01 GMT) Full text and rfc822 format available.Message #33 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: "Basil L. Contovounesios" <contovob <at> tcd.ie> To: Lars Ingebrigtsen <larsi <at> gnus.org> Cc: Glenn Morris <rgm <at> gnu.org>, Philipp Stephani <p.stephani2 <at> gmail.com>, Paul Eggert <eggert <at> cs.ucla.edu>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Tue, 11 Oct 2022 15:36:59 +0300
[Message part 1 (text/plain, inline)]
Lars Ingebrigtsen [2022-10-11 02:54 +0200] wrote: > I've now applied Philipp's patch (adding gettid), and Paul has fixed > other bits here in 345de32a. Thanks. > Does the tests pass on RHEL on "master" now? Can't say for RHEL, but on Debian I get an error for syscall=pidfd_open:
[emacs-tests.log (text/plain, attachment)]
[Message part 3 (text/plain, inline)]
-- Basil In GNU Emacs 29.0.50 (build 1, x86_64-pc-linux-gnu, X toolkit, cairo version 1.16.0, Xaw3d scroll bars) of 2022-10-11 built on tia Repository revision: 61b6da5acef2d550022c664e628346539ba1852f Repository branch: master Windowing system distributor 'The X.Org Foundation', version 11.0.12101004 System Description: Debian GNU/Linux bookworm/sid Configured using: 'configure 'CFLAGS=-Og -ggdb3' -C --prefix=/home/blc/.local --enable-checking=structs --with-file-notification=yes --with-x-toolkit=lucid --with-x' Configured features: ACL CAIRO DBUS FREETYPE GIF GLIB GMP GNUTLS GPM GSETTINGS HARFBUZZ JPEG JSON LCMS2 LIBOTF LIBSELINUX LIBSYSTEMD LIBXML2 M17N_FLT MODULES NOTIFY INOTIFY PDUMPER PNG RSVG SECCOMP SOUND SQLITE3 THREADS TIFF TOOLKIT_SCROLL_BARS WEBP X11 XAW3D XDBE XIM XINPUT2 XPM LUCID ZLIB Important settings: value of $LANG: en_IE.UTF-8 value of $XMODIFIERS: @im=ibus locale-coding-system: utf-8-unix Major mode: Lisp Interaction Minor modes in effect: tooltip-mode: t global-eldoc-mode: t eldoc-mode: t show-paren-mode: t electric-indent-mode: t mouse-wheel-mode: t tool-bar-mode: t menu-bar-mode: t file-name-shadow-mode: t global-font-lock-mode: t font-lock-mode: t blink-cursor-mode: t line-number-mode: t indent-tabs-mode: t transient-mark-mode: t auto-composition-mode: t auto-encryption-mode: t auto-compression-mode: t Load-path shadows: None found. Features: (shadow sort mail-extr emacsbug message mailcap yank-media puny dired dired-loaddefs rfc822 mml mml-sec password-cache epa derived epg rfc6068 epg-config gnus-util text-property-search time-date subr-x mm-decode mm-bodies mm-encode mail-parse rfc2231 mailabbrev gmm-utils mailheader cl-loaddefs cl-lib sendmail rfc2047 rfc2045 ietf-drums mm-util mail-prsvr mail-utils rmc iso-transl tooltip eldoc paren electric uniquify ediff-hook vc-hooks lisp-float-type elisp-mode mwheel term/x-win x-win term/common-win x-dnd tool-bar dnd fontset image regexp-opt fringe tabulated-list replace newcomment text-mode lisp-mode prog-mode register page tab-bar menu-bar rfn-eshadow isearch easymenu timer select scroll-bar mouse jit-lock font-lock syntax font-core term/tty-colors frame minibuffer nadvice seq simple cl-generic indonesian philippine cham georgian utf-8-lang misc-lang vietnamese tibetan thai tai-viet lao korean japanese eucjp-ms cp51932 hebrew greek romanian slovak czech european ethiopic indian cyrillic chinese composite emoji-zwj charscript charprop case-table epa-hook jka-cmpr-hook help abbrev obarray oclosure cl-preloaded button loaddefs faces cus-face macroexp files window text-properties overlay sha1 md5 base64 format env code-pages mule custom widget keymap hashtable-print-readable backquote threads dbusbind inotify lcms2 dynamic-setting system-font-setting font-render-setting cairo x-toolkit xinput2 x multi-tty make-network-process emacs) Memory information: ((conses 16 36541 7827) (symbols 48 5112 0) (strings 32 13858 1890) (string-bytes 1 380306) (vectors 16 9260) (vector-slots 8 147216 12174) (floats 8 23 25) (intervals 56 242 0) (buffers 1000 10))
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Tue, 11 Oct 2022 17:44:02 GMT) Full text and rfc822 format available.Message #36 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Paul Eggert <eggert <at> cs.ucla.edu> To: "Basil L. Contovounesios" <contovob <at> tcd.ie>, Lars Ingebrigtsen <larsi <at> gnus.org> Cc: Glenn Morris <rgm <at> gnu.org>, Philipp Stephani <p.stephani2 <at> gmail.com>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Tue, 11 Oct 2022 10:43:45 -0700
On 2022-10-11 05:36, Basil L. Contovounesios wrote: > Lars Ingebrigtsen [2022-10-11 02:54 +0200] wrote: > >> I've now applied Philipp's patch (adding gettid), and Paul has fixed >> other bits here in 345de32a. I didn't know about Bug#56359 when I "fixed" those other bits. My "fix" involved allowing all uses of clone3, which (as Philipp noted in August) is problematic. I'm not sure what's being tested for, but if clone3 lets you evade the checks then the test is arguably more trouble than it's worth. Would marking it as :unstable lessen the number of false alarms we're getting? If not, perhaps we should remove it or mark it as :dont-use-unless-you-know-what-youre-doing or whatever.
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Tue, 11 Oct 2022 19:48:02 GMT) Full text and rfc822 format available.Message #39 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Lars Ingebrigtsen <larsi <at> gnus.org> To: Paul Eggert <eggert <at> cs.ucla.edu> Cc: "Basil L. Contovounesios" <contovob <at> tcd.ie>, Glenn Morris <rgm <at> gnu.org>, Philipp Stephani <p.stephani2 <at> gmail.com>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Tue, 11 Oct 2022 21:47:28 +0200
Paul Eggert <eggert <at> cs.ucla.edu> writes: > My "fix" involved allowing all uses of clone3, which (as Philipp noted > in August) is problematic. I'm not sure what's being tested for, but > if clone3 lets you evade the checks then the test is arguably more > trouble than it's worth. Would marking it as :unstable lessen the > number of false alarms we're getting? If not, perhaps we should remove > it or mark it as :dont-use-unless-you-know-what-youre-doing or > whatever. And pidfd_open also sounds like a non-safe call (without looking at it closely). Skimming the tests, they seem to test pretty basic functionality in the seccomp area -- that is, without allowing pidfd_open/clone3, nothing will be able to run using the seccomp functionality. But since those are somewhat unsafe, then... what's the point? But I may be missing how this is supposed to be used altogether.
bug-gnu-emacs <at> gnu.org:bug#56359; Package emacs.
(Tue, 18 Oct 2022 09:34:02 GMT) Full text and rfc822 format available.Message #42 received at 56359 <at> debbugs.gnu.org (full text, mbox):
From: Philipp Stephani <p.stephani2 <at> gmail.com> To: Lars Ingebrigtsen <larsi <at> gnus.org> Cc: "Basil L. Contovounesios" <contovob <at> tcd.ie>, Glenn Morris <rgm <at> gnu.org>, Paul Eggert <eggert <at> cs.ucla.edu>, 56359 <at> debbugs.gnu.org Subject: Re: bug#56359: seccomp test failures on RHEL 9.0 Date: Tue, 18 Oct 2022 11:32:46 +0200
Am Di., 11. Okt. 2022 um 21:47 Uhr schrieb Lars Ingebrigtsen <larsi <at> gnus.org>: > > Paul Eggert <eggert <at> cs.ucla.edu> writes: > > > My "fix" involved allowing all uses of clone3, which (as Philipp noted > > in August) is problematic. I'm not sure what's being tested for, but > > if clone3 lets you evade the checks then the test is arguably more > > trouble than it's worth. Would marking it as :unstable lessen the > > number of false alarms we're getting? If not, perhaps we should remove > > it or mark it as :dont-use-unless-you-know-what-youre-doing or > > whatever. > > And pidfd_open also sounds like a non-safe call (without looking at it > closely). > > Skimming the tests, they seem to test pretty basic functionality in the > seccomp area -- that is, without allowing pidfd_open/clone3, nothing > will be able to run using the seccomp functionality. But since those > are somewhat unsafe, then... what's the point? Neither pidfd_open nor clone3 are "unsafe". The concern is that clone3 might expand its functionality to eventually allow unsafe operations like opening network sockets, and with its interface there's no way for a seccomp filter to prevent that. One option might be to have clone3 return ENOSYS, if the caller falls back to clone in that case.
Stefan Kangas <stefankangas <at> gmail.com>
to control <at> debbugs.gnu.org.
(Sun, 03 Sep 2023 09:12:02 GMT) Full text and rfc822 format available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.