Inicio Explorar Ayuda
Iniciar sesión
ichrin
/
kernel_samsung_msm8974
Seguir 1
Destacar 0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Rama: 13.0
Ramas Etiquetas
kernel_samsu...
/
samples
/
seccomp
/
bpf-helper.c

bpf-helper.c 2.2 KB
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. /*
    2. 

  2.  * Seccomp BPF helper functions
    3. 

  3.  *
    4. 

  4.  * Copyright (c) 2012 The Chromium OS Authors <chromium-os-dev@chromium.org>
    5. 

  5.  * Author: Will Drewry <wad@chromium.org>
    6. 

  6.  *
    7. 

  7.  * The code may be used by anyone for any purpose,
    8. 

  8.  * and can serve as a starting point for developing
    9. 

  9.  * applications using prctl(PR_ATTACH_SECCOMP_FILTER).
    10. 

  10.  */
    11. 

  11. 

  12. #include <stdio.h>
    13. 

  13. #include <string.h>
    14. 

  14. 

  15. #include "bpf-helper.h"
    16. 

  16. 

  17. int bpf_resolve_jumps(struct bpf_labels *labels,
    18. 

  18. 		      struct sock_filter *filter, size_t count)
    19. 

  19. {
    20. 

  20. 	struct sock_filter *begin = filter;
    21. 

  21. 	__u8 insn = count - 1;
    22. 

  22. 

  23. 	if (count < 1)
    24. 

  24. 		return -1;
    25. 

  25. 	/*
    26. 

  26. 	* Walk it once, backwards, to build the label table and do fixups.
    27. 

  27. 	* Since backward jumps are disallowed by BPF, this is easy.
    28. 

  28. 	*/
    29. 

  29. 	filter += insn;
    30. 

  30. 	for (; filter >= begin; --insn, --filter) {
    31. 

  31. 		if (filter->code != (BPF_JMP+BPF_JA))
    32. 

  32. 			continue;
    33. 

  33. 		switch ((filter->jt<<8)|filter->jf) {
    34. 

  34. 		case (JUMP_JT<<8)|JUMP_JF:
    35. 

  35. 			if (labels->labels[filter->k].location == 0xffffffff) {
    36. 

  36. 				fprintf(stderr, "Unresolved label: '%s'\n",
    37. 

  37. 					labels->labels[filter->k].label);
    38. 

  38. 				return 1;
    39. 

  39. 			}
    40. 

  40. 			filter->k = labels->labels[filter->k].location -
    41. 

  41. 				    (insn + 1);
    42. 

  42. 			filter->jt = 0;
    43. 

  43. 			filter->jf = 0;
    44. 

  44. 			continue;
    45. 

  45. 		case (LABEL_JT<<8)|LABEL_JF:
    46. 

  46. 			if (labels->labels[filter->k].location != 0xffffffff) {
    47. 

  47. 				fprintf(stderr, "Duplicate label use: '%s'\n",
    48. 

  48. 					labels->labels[filter->k].label);
    49. 

  49. 				return 1;
    50. 

  50. 			}
    51. 

  51. 			labels->labels[filter->k].location = insn;
    52. 

  52. 			filter->k = 0; /* fall through */
    53. 

  53. 			filter->jt = 0;
    54. 

  54. 			filter->jf = 0;
    55. 

  55. 			continue;
    56. 

  56. 		}
    57. 

  57. 	}
    58. 

  58. 	return 0;
    59. 

  59. }
    60. 

  60. 

  61. /* Simple lookup table for labels. */
    62. 

  62. __u32 seccomp_bpf_label(struct bpf_labels *labels, const char *label)
    63. 

  63. {
    64. 

  64. 	struct __bpf_label *begin = labels->labels, *end;
    65. 

  65. 	int id;
    66. 

  66. 	if (labels->count == 0) {
    67. 

  67. 		begin->label = label;
    68. 

  68. 		begin->location = 0xffffffff;
    69. 

  69. 		labels->count++;
    70. 

  70. 		return 0;
    71. 

  71. 	}
    72. 

  72. 	end = begin + labels->count;
    73. 

  73. 	for (id = 0; begin < end; ++begin, ++id) {
    74. 

  74. 		if (!strcmp(label, begin->label))
    75. 

  75. 			return id;
    76. 

  76. 	}
    77. 

  77. 	begin->label = label;
    78. 

  78. 	begin->location = 0xffffffff;
    79. 

  79. 	labels->count++;
    80. 

  80. 	return id;
    81. 

  81. }
    82. 

  82. 

  83. void seccomp_bpf_print(struct sock_filter *filter, size_t count)
    84. 

  84. {
    85. 

  85. 	struct sock_filter *end = filter + count;
    86. 

  86. 	for ( ; filter < end; ++filter)
    87. 

  87. 		printf("{ code=%u,jt=%u,jf=%u,k=%u },\n",
    88. 

  88. 			filter->code, filter->jt, filter->jf, filter->k);
    89. 

  89. }
    90. 

  90.