diff options
| author |  netblue30 <netblue30@yahoo.com> | 2017-12-28 12:28:08 -0500 |
|---|---|---|
| committer | netblue30 <netblue30@yahoo.com> | 2017-12-28 12:28:08 -0500 |
| commit | f9c60d5a3aaecc11b1dbb933bca45c461b03ca83 (patch) | |
| tree | 4538785f5889ee8836afadb36f29308a4ccf7ccb /src/include | |
| parent | Add netlink and noblacklist openssl to teamspeak3 profile - potential fix for... (diff) | |
| download | firejail-f9c60d5a3aaecc11b1dbb933bca45c461b03ca83.tar.gz firejail-f9c60d5a3aaecc11b1dbb933bca45c461b03ca83.tar.zst firejail-f9c60d5a3aaecc11b1dbb933bca45c461b03ca83.zip | |
replacing seccomp printing with a seccomp disassembler
Diffstat (limited to 'src/include')
| -rw-r--r-- | src/include/seccomp.h | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/src/include/seccomp.h b/src/include/seccomp.h index b8bfce96b..6d8983b39 100644 --- a/src/include/seccomp.h +++ b/src/include/seccomp.h | |||
| @@ -67,6 +67,14 @@ | |||
| 67 | #include <sys/stat.h> | 67 | #include <sys/stat.h> |
| 68 | #include <fcntl.h> | 68 | #include <fcntl.h> |
| 69 | 69 | ||
| 70 | // From /usr/include/linux/filter.h | ||
| 71 | //struct sock_filter { /* Filter block */ | ||
| 72 | // __u16 code; /* Actual filter code */ | ||
| 73 | // __u8 jt; /* Jump true */ | ||
| 74 | // __u8 jf; /* Jump false */ | ||
| 75 | // __u32 k; /* Generic multiuse field */ | ||
| 76 | //}; | ||
| 77 | |||
| 70 | #include <sys/prctl.h> | 78 | #include <sys/prctl.h> |
| 71 | #ifndef PR_SET_NO_NEW_PRIVS | 79 | #ifndef PR_SET_NO_NEW_PRIVS |
| 72 | # define PR_SET_NO_NEW_PRIVS 38 | 80 | # define PR_SET_NO_NEW_PRIVS 38 |
| @@ -81,6 +89,7 @@ | |||
| 81 | #define SECCOMP_RET_ALLOW 0x7fff0000U | 89 | #define SECCOMP_RET_ALLOW 0x7fff0000U |
| 82 | #define SECCOMP_RET_ERRNO 0x00050000U | 90 | #define SECCOMP_RET_ERRNO 0x00050000U |
| 83 | #define SECCOMP_RET_DATA 0x0000ffffU | 91 | #define SECCOMP_RET_DATA 0x0000ffffU |
| 92 | |||
| 84 | struct seccomp_data { | 93 | struct seccomp_data { |
| 85 | int nr; | 94 | int nr; |
| 86 | __u32 arch; | 95 | __u32 arch; |
| @@ -89,6 +98,11 @@ struct seccomp_data { | |||
| 89 | }; | 98 | }; |
| 90 | #endif | 99 | #endif |
| 91 | 100 | ||
| 101 | #ifndef SECCOMP_RET_LOG | ||
| 102 | #define SECCOMP_RET_LOG 0x7ffc0000U | ||
| 103 | #endif | ||
| 104 | |||
| 105 | |||
| 92 | #if defined(__i386__) | 106 | #if defined(__i386__) |
| 93 | # define ARCH_NR AUDIT_ARCH_I386 | 107 | # define ARCH_NR AUDIT_ARCH_I386 |
| 94 | # define ARCH_32 AUDIT_ARCH_I386 | 108 | # define ARCH_32 AUDIT_ARCH_I386 |