1 files changed, 91 insertions, 0 deletions
diff --git a/src/fseccomp/main.c b/src/fseccomp/main.c
new file mode 100644
index 000000000..22b13bcd9
--- /dev/null
+++ b/src/fseccomp/main.c
@@ -0,0 +1,91 @@
+/*
+ * Copyright (C) 2014-2016 Firejail Authors
+ *
+ * This file is part of firejail project
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License along
+ * with this program; if not, write to the Free Software Foundation, Inc.,
+ * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+*/
+#include "fseccomp.h"
+static void usage(void) {
+        printf("Usage:\n");
+        printf("\tfseccomp debug-syscalls\n");
+        printf("\tfseccomp debug-errnos\n");
+        printf("\tfseccomp debug-protocols\n");
+        printf("\tfseccomp protocol build list file\n");
+        printf("\tfseccomp secondary 64 file\n");
+        printf("\tfseccomp secondary 32 file\n");
+        printf("\tfseccomp default file\n");
+        printf("\tfseccomp default file allow-debuggers\n");
+        printf("\tfseccomp drop file list\n");
+        printf("\tfseccomp drop file list allow-debuggers\n");
+        printf("\tfseccomp default drop file list\n");
+        printf("\tfseccomp default drop file list allow-debuggers\n");
+        printf("\tfseccomp keep file list\n");
+        printf("\tfseccomp print file\n");
+}
+int main(int argc, char **argv) {
+#if 0
+{
+system("cat /proc/self/status");
+int i;
+for (i = 0; i < argc; i++)
+        printf("*%s* ", argv[i]);
+printf("\n");
+}       
+#endif
+        if (argc < 2)
+                return 1;
+                
+        if (strcmp(argv[1], "-h") == 0 || strcmp(argv[1], "--help") == 0 || strcmp(argv[1], "-?") ==0) {
+                usage();
+                return 0;
+        }
+        else if (argc == 2 && strcmp(argv[1], "debug-syscalls") == 0)
+                syscall_print();
+        else if (argc == 2 && strcmp(argv[1], "debug-errnos") == 0)
+                errno_print();
+        else if (argc == 2 && strcmp(argv[1], "debug-protocols") == 0)
+                protocol_print();
+        else if (argc == 5 && strcmp(argv[1], "protocol") == 0 && strcmp(argv[2], "build") == 0)
+                protocol_build_filter(argv[3], argv[4]);
+        else if (argc == 4 && strcmp(argv[1], "secondary") == 0 && strcmp(argv[2], "64") == 0)
+                seccomp_secondary_64(argv[3]);
+        else if (argc == 4 && strcmp(argv[1], "secondary") == 0 && strcmp(argv[2], "32") == 0) 
+                seccomp_secondary_32(argv[3]);
+        else if (argc == 3 && strcmp(argv[1], "default") == 0)
+                seccomp_default(argv[2], 0);
+        else if (argc == 4 && strcmp(argv[1], "default") == 0 && strcmp(argv[3], "allow-debuggers") == 0)
+                seccomp_default(argv[2], 1);
+        else if (argc == 4 && strcmp(argv[1], "drop") == 0)
+                seccomp_drop(argv[2], argv[3], 0);
+        else if (argc == 5 && strcmp(argv[1], "drop") == 0 && strcmp(argv[4], "allow-debuggers") == 0)
+                seccomp_drop(argv[2], argv[3], 1);
+        else if (argc == 5 && strcmp(argv[1], "default") == 0 && strcmp(argv[2], "drop") == 0)
+                seccomp_default_drop(argv[3], argv[4], 0);
+        else if (argc == 6 && strcmp(argv[1], "default") == 0 && strcmp(argv[2], "drop") == 0 && strcmp(argv[5], "allow-debuggers") == 0)
+                seccomp_default_drop(argv[3], argv[4], 1);
+        else if (argc == 4 && strcmp(argv[1], "keep") == 0)
+                seccomp_keep(argv[2], argv[3]);
+        else if (argc == 3 && strcmp(argv[1], "print") == 0)
+                filter_print(argv[2]);
+        else {
+                fprintf(stderr, "Error fseccomp: invalid arguments\n");
+                return 1;
+        }
+        return 0;
+}
+\ No newline at end of file

diff --git a/src/fseccomp/main.c b/src/fseccomp/main.c new file mode 100644 index 000000000..22b13bcd9 --- /dev/null +++ b/src/fseccomp/main.c
@@ -0,0 +1,91 @@
	1	/*
	2	* Copyright (C) 2014-2016 Firejail Authors
	3	*
	4	* This file is part of firejail project
	5	*
	6	* This program is free software; you can redistribute it and/or modify
	7	* it under the terms of the GNU General Public License as published by
	8	* the Free Software Foundation; either version 2 of the License, or
	9	* (at your option) any later version.
	10	*
	11	* This program is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	14	* GNU General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU General Public License along
	17	* with this program; if not, write to the Free Software Foundation, Inc.,
	18	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
	19	*/
	20	#include "fseccomp.h"
	21
	22	static void usage(void) {
	23	printf("Usage:\n");
	24	printf("\tfseccomp debug-syscalls\n");
	25	printf("\tfseccomp debug-errnos\n");
	26	printf("\tfseccomp debug-protocols\n");
	27	printf("\tfseccomp protocol build list file\n");
	28	printf("\tfseccomp secondary 64 file\n");
	29	printf("\tfseccomp secondary 32 file\n");
	30	printf("\tfseccomp default file\n");
	31	printf("\tfseccomp default file allow-debuggers\n");
	32	printf("\tfseccomp drop file list\n");
	33	printf("\tfseccomp drop file list allow-debuggers\n");
	34	printf("\tfseccomp default drop file list\n");
	35	printf("\tfseccomp default drop file list allow-debuggers\n");
	36	printf("\tfseccomp keep file list\n");
	37	printf("\tfseccomp print file\n");
	38	}
	39
	40	int main(int argc, char **argv) {
	41	#if 0
	42	{
	43	system("cat /proc/self/status");
	44	int i;
	45	for (i = 0; i < argc; i++)
	46	printf("%s ", argv[i]);
	47	printf("\n");
	48	}
	49	#endif
	50	if (argc < 2)
	51	return 1;
	52
	53	if (strcmp(argv[1], "-h") == 0 \|\| strcmp(argv[1], "--help") == 0 \|\| strcmp(argv[1], "-?") ==0) {
	54	usage();
	55	return 0;
	56	}
	57	else if (argc == 2 && strcmp(argv[1], "debug-syscalls") == 0)
	58	syscall_print();
	59	else if (argc == 2 && strcmp(argv[1], "debug-errnos") == 0)
	60	errno_print();
	61	else if (argc == 2 && strcmp(argv[1], "debug-protocols") == 0)
	62	protocol_print();
	63	else if (argc == 5 && strcmp(argv[1], "protocol") == 0 && strcmp(argv[2], "build") == 0)
	64	protocol_build_filter(argv[3], argv[4]);
	65	else if (argc == 4 && strcmp(argv[1], "secondary") == 0 && strcmp(argv[2], "64") == 0)
	66	seccomp_secondary_64(argv[3]);
	67	else if (argc == 4 && strcmp(argv[1], "secondary") == 0 && strcmp(argv[2], "32") == 0)
	68	seccomp_secondary_32(argv[3]);
	69	else if (argc == 3 && strcmp(argv[1], "default") == 0)
	70	seccomp_default(argv[2], 0);
	71	else if (argc == 4 && strcmp(argv[1], "default") == 0 && strcmp(argv[3], "allow-debuggers") == 0)
	72	seccomp_default(argv[2], 1);
	73	else if (argc == 4 && strcmp(argv[1], "drop") == 0)
	74	seccomp_drop(argv[2], argv[3], 0);
	75	else if (argc == 5 && strcmp(argv[1], "drop") == 0 && strcmp(argv[4], "allow-debuggers") == 0)
	76	seccomp_drop(argv[2], argv[3], 1);
	77	else if (argc == 5 && strcmp(argv[1], "default") == 0 && strcmp(argv[2], "drop") == 0)
	78	seccomp_default_drop(argv[3], argv[4], 0);
	79	else if (argc == 6 && strcmp(argv[1], "default") == 0 && strcmp(argv[2], "drop") == 0 && strcmp(argv[5], "allow-debuggers") == 0)
	80	seccomp_default_drop(argv[3], argv[4], 1);
	81	else if (argc == 4 && strcmp(argv[1], "keep") == 0)
	82	seccomp_keep(argv[2], argv[3]);
	83	else if (argc == 3 && strcmp(argv[1], "print") == 0)
	84	filter_print(argv[2]);
	85	else {
	86	fprintf(stderr, "Error fseccomp: invalid arguments\n");
	87	return 1;
	88	}
	89
	90	return 0;
	91	} \ No newline at end of file