diff options
| author |   Mike Frysinger <vapier@gentoo.org> | 2021-10-23 00:35:14 -0400 |
|---|---|---|
| committer | Mike Frysinger <vapier@gentoo.org> | 2021-10-23 00:35:14 -0400 |
| commit | b9756c8938e2b5c7712c15ef0add7342790614a6 (patch) | |
| tree | f7e44090510f98c3fe81ab3b72e453833369f831 /libsandbox | |
| parent | libsandbox: regen trace headers when symbols header changes (diff) | |
| download | sandbox-b9756c8938e2b5c7712c15ef0add7342790614a6.tar.gz sandbox-b9756c8938e2b5c7712c15ef0add7342790614a6.tar.bz2 sandbox-b9756c8938e2b5c7712c15ef0add7342790614a6.zip | |
libsandbox: only lookup syscall number on entry
The ptrace API does not guarantee the syscall number lookup will be
valid on syscall exit (since the underlying register might have been
clobbered), so stop trying to look it up then. We only used it when
decoding entry anyways, so this is more minor housekeeping.
Signed-off-by: Mike Frysinger <vapier@gentoo.org>
Diffstat (limited to 'libsandbox')
| -rw-r--r-- | libsandbox/trace.c | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/libsandbox/trace.c b/libsandbox/trace.c index 77991e1..89bd591 100644 --- a/libsandbox/trace.c +++ b/libsandbox/trace.c @@ -390,8 +390,8 @@ static void trace_loop(void) bool before_exec, before_syscall, fake_syscall_ret; unsigned event; long ret; - int nr, status, sig; - const struct syscall_entry *se, *tbl_after_fork; + int status, sig; + const struct syscall_entry *tbl_after_fork; before_exec = true; before_syscall = false; @@ -461,10 +461,12 @@ static void trace_loop(void) } ret = trace_get_regs(®s); - nr = trace_get_sysnum(®s); - se = lookup_syscall_in_tbl(tbl_after_fork, nr); if (before_syscall) { + /* NB: The kernel guarantees syscall NR is valid only on entry. */ + int nr = trace_get_sysnum(®s); + const struct syscall_entry *se = lookup_syscall_in_tbl(tbl_after_fork, nr); + _sb_debug("%s:%i", se ? se->name : "IDK", nr); if (!trace_check_syscall(se, ®s)) { sb_debug_dyn("trace_loop: forcing EPERM after %s\n", se->name); |