glebfm/strace
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
e0057a578f
strace/tests/seccomp-strict.c

75 lines
2.6 KiB
C
Raw Normal View History

tests: add seccomp-strict.test * tests/seccomp-strict.c: New file. * tests/seccomp-strict.test: New test. * tests/.gitignore: Add seccomp-strict. * tests/Makefile.am (check_PROGRAMS): Likewise. (DECODER_TESTS): Add seccomp-strict.test.
2016-04-11 18:09:09 +03:00
/*
* Check how seccomp SECCOMP_SET_MODE_STRICT is decoded.
*
* Copyright (c) 2016 Dmitry V. Levin <ldv@altlinux.org>
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* 3. The name of the author may not be used to endorse or promote products
* derived from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include "tests.h"
#include <sys/syscall.h>
#if defined __NR_seccomp && defined __NR_exit
# include <assert.h>
# include <errno.h>
# include <stdio.h>
# include <unistd.h>
int
main(void)
{
static const char text1[] =
"seccomp(SECCOMP_SET_MODE_STRICT, 0, NULL) = 0\n";
static const char text2[] = "+++ exited with 0 +++\n";
const unsigned long addr = (unsigned long) 0xfacefeeddeadbeef;
int rc = 0;
assert(syscall(__NR_seccomp, -1L, -1L, addr) == -1);
printf("seccomp(%#x /* SECCOMP_SET_MODE_??? */, %u, %#lx) = -1 %s (%m)\n",
-1, -1, addr, ENOSYS == errno ? "ENOSYS" : "EINVAL");
fflush(stdout);
if (syscall(__NR_seccomp, 0, 0, 0)) {
printf("seccomp(SECCOMP_SET_MODE_STRICT, 0, NULL) = -1 %s (%m)\n",
ENOSYS == errno ? "ENOSYS" : "EINVAL");
fflush(stdout);
} else {
tests: workaround kernel bugs in seccomp-strict.test and prctl-seccomp-strict.test If kernel implementation of strict seccomp mode is buggy, test programs will be killed by SIGKILL. This is a known problem at least on x32 and mips. Skip affected tests if this is the case. This change partially revert commit 9c1a72cd3f3d52d573876ce474b620a5f141fb1b. * tests/seccomp-strict.c (main): Remove workaround for x32. * tests/prctl-seccomp-strict.c: Likewise. * tests/seccomp-strict.test: Skip the test if the test program has been killed by SIGKILL. * tests/prctl-seccomp-strict.test: Likewise.
2016-04-20 17:30:43 +03:00
/*
* If kernel implementaton of SECCOMP_MODE_STRICT is buggy,
* the following syscall will result to SIGKILL.
*/
tests: add seccomp-strict.test * tests/seccomp-strict.c: New file. * tests/seccomp-strict.test: New test. * tests/.gitignore: Add seccomp-strict. * tests/Makefile.am (check_PROGRAMS): Likewise. (DECODER_TESTS): Add seccomp-strict.test.
2016-04-11 18:09:09 +03:00
rc += write(1, text1, LENGTH_OF(text1)) != LENGTH_OF(text1);
}
rc += write(1, text2, LENGTH_OF(text2)) != LENGTH_OF(text2);
return !!syscall(__NR_exit, rc);
}
#else
SKIP_MAIN_UNDEFINED("__NR_seccomp && __NR_exit")
#endif
Reference in New Issue Copy Permalink