core/entry: Respect syscall number rewrites

KAGA-KOKO · KAGA-KOKO · commit d88d59b64ca3 · 2020-08-21T16:17:29.000+02:00
The transcript of the x86 entry code to the generic version failed to reload the syscall number from ptregs after ptrace and seccomp have run, which both can modify the syscall number in ptregs. It returns the original syscall number instead which is obviously not the right thing to do. Reload the syscall number to fix that. Fixes: 142781e ("entry: Provide generic syscall entry functionality") Reported-by: Kyle Huey <me@kylehuey.com> Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Tested-by: Kyle Huey <me@kylehuey.com> Tested-by: Kees Cook <keescook@chromium.org> Acked-by: Kees Cook <keescook@chromium.org> Link: https://lore.kernel.org/r/87blj6ifo8.fsf@nanos.tec.linutronix.de
diff --git a/kernel/entry/common.c b/kernel/entry/common.c
@@ -65,7 +65,8 @@ static long syscall_trace_enter(struct pt_regs *regs, long syscall,
 
 	syscall_enter_audit(regs, syscall);
 
-	return ret ? : syscall;
+	/* The above might have changed the syscall number */
+	return ret ? : syscall_get_nr(current, regs);
 }
 
 noinstr long syscall_enter_from_user_mode(struct pt_regs *regs, long syscall)

Original file line number	Diff line number	Diff line change
`@@ -65,7 +65,8 @@ static long syscall_trace_enter(struct pt_regs *regs, long syscall,`
`65`	`65`
`66`	`66`	`syscall_enter_audit(regs, syscall);`
`67`	`67`
`68`		`- return ret ? : syscall;`
	`68`	`+ /* The above might have changed the syscall number */`
	`69`	`+ return ret ? : syscall_get_nr(current, regs);`
`69`	`70`	`}`
`70`	`71`
`71`	`72`	`noinstr long syscall_enter_from_user_mode(struct pt_regs *regs, long syscall)`