Bundle libseccomp 2.3.1

[linux-seccomp.git] / libseccomp / src / arch-syscall-check.c

diff --git a/libseccomp/src/arch-syscall-check.c b/libseccomp/src/arch-syscall-check.c
new file mode 100644 (file)
index 0000000..71ec0b5
--- /dev/null
+++ b/libseccomp/src/arch-syscall-check.c
@@ -0,0 +1,215 @@
+/**
+ * Enhanced Seccomp Architecture Sycall Checker
+ *
+ * Copyright (c) 2014 Red Hat <pmoore@redhat.com>
+ * Author: Paul Moore <paul@paul-moore.com>
+ *
+ */
+
+/*
+ * This library is free software; you can redistribute it and/or modify it
+ * under the terms of version 2.1 of the GNU Lesser General Public License as
+ * published by the Free Software Foundation.
+ *
+ * This library is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public License
+ * for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this library; if not, see <http://www.gnu.org/licenses>.
+ */
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+
+#include "arch.h"
+#include "arch-x86.h"
+#include "arch-x86_64.h"
+#include "arch-x32.h"
+#include "arch-arm.h"
+#include "arch-aarch64.h"
+#include "arch-mips.h"
+#include "arch-mips64.h"
+#include "arch-mips64n32.h"
+#include "arch-ppc.h"
+#include "arch-ppc64.h"
+#include "arch-s390.h"
+#include "arch-s390x.h"
+
+/**
+ * compare the syscall values
+ * @param str_miss the other bad architectures
+ * @param syscall the syscall string to compare against
+ * @param arch_name the name of the arch being tested
+ * @param arch_sys the syscall name to compare
+ *
+ * Compare the syscall names and update @str_miss if necessary.
+ *
+ */
+void syscall_check(char *str_miss, const char *syscall,
+                  const char *arch_name, const char *arch_sys)
+{
+       if (strcmp(syscall, arch_sys)) {
+               if (str_miss[0] != '\0')
+                       strcat(str_miss, ",");
+               strcat(str_miss, arch_name);
+       }
+}
+
+/**
+ * main
+ */
+int main(int argc, char *argv[])
+{
+       int i_x86 = 0;
+       int i_x86_64 = 0;
+       int i_x32 = 0;
+       int i_arm = 0;
+       int i_aarch64 = 0;
+       int i_mips = 0;
+       int i_mips64 = 0;
+       int i_mips64n32 = 0;
+       int i_ppc = 0;
+       int i_ppc64 = 0;
+       int i_s390 = 0;
+       int i_s390x = 0;
+       const char *sys_name;
+       char str_miss[256];
+
+       do {
+               str_miss[0] = '\0';
+               sys_name = x86_syscall_iterate_name(i_x86);
+               if (sys_name == NULL) {
+                       printf("FAULT\n");
+                       return 1;
+               }
+
+               /* check each arch using x86 as the reference */
+               syscall_check(str_miss, sys_name, "x86_64",
+                             x86_64_syscall_iterate_name(i_x86_64));
+               syscall_check(str_miss, sys_name, "x32",
+                             x32_syscall_iterate_name(i_x32));
+               syscall_check(str_miss, sys_name, "arm",
+                             arm_syscall_iterate_name(i_arm));
+               syscall_check(str_miss, sys_name, "aarch64",
+                             aarch64_syscall_iterate_name(i_aarch64));
+               syscall_check(str_miss, sys_name, "mips",
+                             mips_syscall_iterate_name(i_mips));
+               syscall_check(str_miss, sys_name, "mips64",
+                             mips64_syscall_iterate_name(i_mips64));
+               syscall_check(str_miss, sys_name, "mips64n32",
+                             mips64n32_syscall_iterate_name(i_mips64n32));
+               syscall_check(str_miss, sys_name, "ppc",
+                             ppc_syscall_iterate_name(i_ppc));
+               syscall_check(str_miss, sys_name, "ppc64",
+                             ppc64_syscall_iterate_name(i_ppc64));
+               syscall_check(str_miss, sys_name, "s390",
+                             s390_syscall_iterate_name(i_s390));
+               syscall_check(str_miss, sys_name, "s390x",
+                             s390x_syscall_iterate_name(i_s390x));
+
+               /* output the results */
+               printf("%s: ", sys_name);
+               if (str_miss[0] != '\0') {
+                       printf("MISS(%s)\n", str_miss);
+                       return 1;
+               } else
+                       printf("OK\n");
+
+               /* next */
+               if (x86_syscall_iterate_name(i_x86 + 1))
+                       i_x86++;
+               if (!x86_64_syscall_iterate_name(++i_x86_64))
+                       i_x86_64 = -1;
+               if (!x32_syscall_iterate_name(++i_x32))
+                       i_x32 = -1;
+               if (!arm_syscall_iterate_name(++i_arm))
+                       i_arm = -1;
+               if (!aarch64_syscall_iterate_name(++i_aarch64))
+                       i_aarch64 = -1;
+               if (!mips_syscall_iterate_name(++i_mips))
+                       i_mips = -1;
+               if (!mips64_syscall_iterate_name(++i_mips64))
+                       i_mips64 = -1;
+               if (!mips64n32_syscall_iterate_name(++i_mips64n32))
+                       i_mips64n32 = -1;
+               if (!ppc_syscall_iterate_name(++i_ppc))
+                       i_ppc = -1;
+               if (!ppc64_syscall_iterate_name(++i_ppc64))
+                       i_ppc64 = -1;
+               if (!s390_syscall_iterate_name(++i_s390))
+                       i_s390 = -1;
+               if (!s390x_syscall_iterate_name(++i_s390x))
+                       i_s390x = -1;
+       } while (i_x86_64 >= 0 && i_x32 >= 0 &&
+                i_arm >= 0 && i_aarch64 >= 0 &&
+                i_mips >= 0 && i_mips64 >= 0 && i_mips64n32 >= 0 &&
+                i_ppc >= 0 && i_ppc64 >= 0 &&
+                i_s390 >= 0 && i_s390x >= 0);
+
+       /* check for any leftovers */
+       sys_name = x86_syscall_iterate_name(i_x86 + 1);
+       if (sys_name) {
+               printf("%s: ERROR, x86 has additional syscalls\n", sys_name);
+               return 1;
+       }
+       if (i_x86_64 >= 0) {
+               printf("%s: ERROR, x86_64 has additional syscalls\n",
+                      x86_64_syscall_iterate_name(i_x86_64));
+               return 1;
+       }
+       if (i_x32 >= 0) {
+               printf("%s: ERROR, x32 has additional syscalls\n",
+                      x32_syscall_iterate_name(i_x32));
+               return 1;
+       }
+       if (i_arm >= 0) {
+               printf("%s: ERROR, arm has additional syscalls\n",
+                      arm_syscall_iterate_name(i_arm));
+               return 1;
+       }
+       if (i_aarch64 >= 0) {
+               printf("%s: ERROR, aarch64 has additional syscalls\n",
+                      aarch64_syscall_iterate_name(i_aarch64));
+               return 1;
+       }
+       if (i_mips >= 0) {
+               printf("%s: ERROR, mips has additional syscalls\n",
+                      mips_syscall_iterate_name(i_mips));
+               return 1;
+       }
+       if (i_mips64 >= 0) {
+               printf("%s: ERROR, mips64 has additional syscalls\n",
+                      mips64_syscall_iterate_name(i_mips64));
+               return 1;
+       }
+       if (i_mips64n32 >= 0) {
+               printf("%s: ERROR, mips64n32 has additional syscalls\n",
+                      mips64n32_syscall_iterate_name(i_mips64n32));
+               return 1;
+       }
+       if (i_ppc >= 0) {
+               printf("%s: ERROR, ppc has additional syscalls\n",
+                      ppc_syscall_iterate_name(i_ppc));
+       }
+       if (i_ppc64 >= 0) {
+               printf("%s: ERROR, ppc64 has additional syscalls\n",
+                      ppc64_syscall_iterate_name(i_ppc64));
+               return 1;
+       }
+       if (i_s390 >= 0) {
+               printf("%s: ERROR, s390 has additional syscalls\n",
+                      s390_syscall_iterate_name(i_s390));
+               return 1;
+       }
+       if (i_s390x >= 0) {
+               printf("%s: ERROR, s390x has additional syscalls\n",
+                      s390x_syscall_iterate_name(i_s390x));
+               return 1;
+       }
+
+       /* if we made it here, all is good */
+       return 0;
+}