|
Packit Service |
8eee21 |
/**
|
|
Packit Service |
8eee21 |
* Seccomp Library test program
|
|
Packit Service |
8eee21 |
*
|
|
Packit Service |
8eee21 |
* Copyright (c) 2012 Red Hat <pmoore@redhat.com>
|
|
Packit Service |
8eee21 |
* Author: Paul Moore <paul@paul-moore.com>
|
|
Packit Service |
8eee21 |
*/
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
/*
|
|
Packit Service |
8eee21 |
* This library is free software; you can redistribute it and/or modify it
|
|
Packit Service |
8eee21 |
* under the terms of version 2.1 of the GNU Lesser General Public License as
|
|
Packit Service |
8eee21 |
* published by the Free Software Foundation.
|
|
Packit Service |
8eee21 |
*
|
|
Packit Service |
8eee21 |
* This library is distributed in the hope that it will be useful, but WITHOUT
|
|
Packit Service |
8eee21 |
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
Packit Service |
8eee21 |
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License
|
|
Packit Service |
8eee21 |
* for more details.
|
|
Packit Service |
8eee21 |
*
|
|
Packit Service |
8eee21 |
* You should have received a copy of the GNU Lesser General Public License
|
|
Packit Service |
8eee21 |
* along with this library; if not, see <http://www.gnu.org/licenses>.
|
|
Packit Service |
8eee21 |
*/
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
#include <errno.h>
|
|
Packit Service |
8eee21 |
#include <string.h>
|
|
Packit Service |
8eee21 |
#include <stdlib.h>
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
#include <seccomp.h>
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
unsigned int arch_list[] = {
|
|
Packit Service |
8eee21 |
SCMP_ARCH_NATIVE,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_X86,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_X86_64,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_X32,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_ARM,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_AARCH64,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPS,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPS64,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPS64N32,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPSEL,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPSEL64,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_MIPSEL64N32,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_PPC,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_PPC64,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_PPC64LE,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_S390,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_S390X,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_PARISC,
|
|
Packit Service |
8eee21 |
SCMP_ARCH_PARISC64,
|
|
Packit Service |
8eee21 |
-1
|
|
Packit Service |
8eee21 |
};
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
int main(int argc, char *argv[])
|
|
Packit Service |
8eee21 |
{
|
|
Packit Service |
8eee21 |
int rc;
|
|
Packit Service |
8eee21 |
int iter = 0;
|
|
Packit Service |
8eee21 |
unsigned int arch;
|
|
Packit Service |
8eee21 |
char *name = NULL;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
if (seccomp_syscall_resolve_name("open") != __SNR_open)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
if (seccomp_syscall_resolve_name("read") != __SNR_read)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
if (seccomp_syscall_resolve_name("INVALID") != __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
rc = seccomp_syscall_resolve_name_rewrite(SCMP_ARCH_NATIVE, "openat");
|
|
Packit Service |
8eee21 |
if (rc != __SNR_openat)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
while ((arch = arch_list[iter++]) != -1) {
|
|
Packit Service |
8eee21 |
int nr_open;
|
|
Packit Service |
8eee21 |
int nr_read;
|
|
Packit Service |
8eee21 |
int nr_socket;
|
|
Packit Service |
8eee21 |
int nr_shmctl;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
if (seccomp_syscall_resolve_name_arch(arch,
|
|
Packit Service |
8eee21 |
"INVALID") != __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
name = seccomp_syscall_resolve_num_arch(arch, __NR_SCMP_ERROR);
|
|
Packit Service |
8eee21 |
if (name != NULL)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
nr_open = seccomp_syscall_resolve_name_arch(arch, "open");
|
|
Packit Service |
8eee21 |
if (nr_open == __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
nr_read = seccomp_syscall_resolve_name_arch(arch, "read");
|
|
Packit Service |
8eee21 |
if (nr_read == __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
nr_socket = seccomp_syscall_resolve_name_rewrite(arch, "socket");
|
|
Packit Service |
8eee21 |
if (nr_socket == __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
nr_shmctl = seccomp_syscall_resolve_name_rewrite(arch, "shmctl");
|
|
Packit Service |
8eee21 |
if (nr_shmctl == __NR_SCMP_ERROR)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
name = seccomp_syscall_resolve_num_arch(arch, nr_open);
|
|
Packit Service |
8eee21 |
if (name == NULL || strcmp(name, "open") != 0)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
free(name);
|
|
Packit Service |
8eee21 |
name = NULL;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
name = seccomp_syscall_resolve_num_arch(arch, nr_read);
|
|
Packit Service |
8eee21 |
if (name == NULL || strcmp(name, "read") != 0)
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
free(name);
|
|
Packit Service |
8eee21 |
name = NULL;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
name = seccomp_syscall_resolve_num_arch(arch, nr_socket);
|
|
Packit Service |
8eee21 |
if (name == NULL ||
|
|
Packit Service |
8eee21 |
(strcmp(name, "socket") != 0 &&
|
|
Packit Service |
8eee21 |
strcmp(name, "socketcall") != 0))
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
free(name);
|
|
Packit Service |
8eee21 |
name = NULL;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
name = seccomp_syscall_resolve_num_arch(arch, nr_shmctl);
|
|
Packit Service |
8eee21 |
if (name == NULL ||
|
|
Packit Service |
8eee21 |
(strcmp(name, "shmctl") != 0 && strcmp(name, "ipc") != 0))
|
|
Packit Service |
8eee21 |
goto fail;
|
|
Packit Service |
8eee21 |
free(name);
|
|
Packit Service |
8eee21 |
name = NULL;
|
|
Packit Service |
8eee21 |
}
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
return 0;
|
|
Packit Service |
8eee21 |
|
|
Packit Service |
8eee21 |
fail:
|
|
Packit Service |
8eee21 |
if (name != NULL)
|
|
Packit Service |
8eee21 |
free(name);
|
|
Packit Service |
8eee21 |
return 1;
|
|
Packit Service |
8eee21 |
}
|