Hi,
As i was testing the blacklisting of finit_modules, I ran across what appears
to be a systematic (cut-paste?) error in src/arch-x86_64-syscalls.c. It has
for instance
{ "fchown32", __PNR_fchown32 },
...
{ "finit_module", __PNR_finit_module },
However, seccomp.h.in has stanzas like
#define __PNR_fchown32 -10008
#ifndef __NR_fchown32
#define __NR_fchown32 __PNR_fchown32
#endif /* __NR_fchown32 */
#define __PNR_finit_module -10085
#ifndef __NR_finit_module
#define __NR_finit_module __PNR_finit_module
#endif /* __NR_finit_module */
As a result, on my 3.15 host I'm getting a negative return value when
resolving finit_module and fchown32, and am not able to blacklist them.
It seems to me therefore that src/arch-x86_64-syscalls.c should have
{ "fchown32", __NR_fchown32 },
...
{ "finit_module", __NR_finit_module },
and the same for all other __PNR entries. In fact looking at grep output
it seems
sed -i 's/__PNR_/__NR_/ src/arch-*-syscalls.c
should be safe...
Am I misreading something?
thanks,
-serge
------------------------------------------------------------------------------
HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions
Find What Matters Most in Your Big Data with HPCC Systems
Open Source. Fast. Scalable. Simple. Ideal for Dirty Data.
Leverages Graph Analysis for Fast Processing & Easy Data Exploration
http://p.sf.net/sfu/hpccsystems
_______________________________________________
libseccomp-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/libseccomp-discuss
