X-Git-Url: http://git.ieval.ro/?p=linux-seccomp.git;a=blobdiff_plain;f=libseccomp%2Fsrc%2Farch-syscall-check.c;fp=libseccomp%2Fsrc%2Farch-syscall-check.c;h=71ec0b5c6db4d22d710e82cca1753c56f7f396b6;hp=0000000000000000000000000000000000000000;hb=8befd5cc4d2b478c697d81a5ac191083c203d081;hpb=bcf524c10c0ad85fcef711acffc3251bb8472352

diff --git a/libseccomp/src/arch-syscall-check.c b/libseccomp/src/arch-syscall-check.c
new file mode 100644
index 0000000..71ec0b5
--- /dev/null
+++ b/libseccomp/src/arch-syscall-check.c
@@ -0,0 +1,215 @@
+/**
+ * Enhanced Seccomp Architecture Sycall Checker
+ *
+ * Copyright (c) 2014 Red Hat <pmoore@redhat.com>
+ * Author: Paul Moore <paul@paul-moore.com>
+ *
+ */
+
+/*
+ * This library is free software; you can redistribute it and/or modify it
+ * under the terms of version 2.1 of the GNU Lesser General Public License as
+ * published by the Free Software Foundation.
+ *
+ * This library is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public License
+ * for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this library; if not, see <http://www.gnu.org/licenses>.
+ */
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+
+#include "arch.h"
+#include "arch-x86.h"
+#include "arch-x86_64.h"
+#include "arch-x32.h"
+#include "arch-arm.h"
+#include "arch-aarch64.h"
+#include "arch-mips.h"
+#include "arch-mips64.h"
+#include "arch-mips64n32.h"
+#include "arch-ppc.h"
+#include "arch-ppc64.h"
+#include "arch-s390.h"
+#include "arch-s390x.h"
+
+/**
+ * compare the syscall values
+ * @param str_miss the other bad architectures
+ * @param syscall the syscall string to compare against
+ * @param arch_name the name of the arch being tested
+ * @param arch_sys the syscall name to compare
+ *
+ * Compare the syscall names and update @str_miss if necessary.
+ *
+ */
+void syscall_check(char *str_miss, const char *syscall,
+		   const char *arch_name, const char *arch_sys)
+{
+	if (strcmp(syscall, arch_sys)) {
+		if (str_miss[0] != '\0')
+			strcat(str_miss, ",");
+		strcat(str_miss, arch_name);
+	}
+}
+
+/**
+ * main
+ */
+int main(int argc, char *argv[])
+{
+	int i_x86 = 0;
+	int i_x86_64 = 0;
+	int i_x32 = 0;
+	int i_arm = 0;
+	int i_aarch64 = 0;
+	int i_mips = 0;
+	int i_mips64 = 0;
+	int i_mips64n32 = 0;
+	int i_ppc = 0;
+	int i_ppc64 = 0;
+	int i_s390 = 0;
+	int i_s390x = 0;
+	const char *sys_name;
+	char str_miss[256];
+
+	do {
+		str_miss[0] = '\0';
+		sys_name = x86_syscall_iterate_name(i_x86);
+		if (sys_name == NULL) {
+			printf("FAULT\n");
+			return 1;
+		}
+
+		/* check each arch using x86 as the reference */
+		syscall_check(str_miss, sys_name, "x86_64",
+			      x86_64_syscall_iterate_name(i_x86_64));
+		syscall_check(str_miss, sys_name, "x32",
+			      x32_syscall_iterate_name(i_x32));
+		syscall_check(str_miss, sys_name, "arm",
+			      arm_syscall_iterate_name(i_arm));
+		syscall_check(str_miss, sys_name, "aarch64",
+			      aarch64_syscall_iterate_name(i_aarch64));
+		syscall_check(str_miss, sys_name, "mips",
+			      mips_syscall_iterate_name(i_mips));
+		syscall_check(str_miss, sys_name, "mips64",
+			      mips64_syscall_iterate_name(i_mips64));
+		syscall_check(str_miss, sys_name, "mips64n32",
+			      mips64n32_syscall_iterate_name(i_mips64n32));
+		syscall_check(str_miss, sys_name, "ppc",
+			      ppc_syscall_iterate_name(i_ppc));
+		syscall_check(str_miss, sys_name, "ppc64",
+			      ppc64_syscall_iterate_name(i_ppc64));
+		syscall_check(str_miss, sys_name, "s390",
+			      s390_syscall_iterate_name(i_s390));
+		syscall_check(str_miss, sys_name, "s390x",
+			      s390x_syscall_iterate_name(i_s390x));
+
+		/* output the results */
+		printf("%s: ", sys_name);
+		if (str_miss[0] != '\0') {
+			printf("MISS(%s)\n", str_miss);
+			return 1;
+		} else
+			printf("OK\n");
+
+		/* next */
+		if (x86_syscall_iterate_name(i_x86 + 1))
+			i_x86++;
+		if (!x86_64_syscall_iterate_name(++i_x86_64))
+			i_x86_64 = -1;
+		if (!x32_syscall_iterate_name(++i_x32))
+			i_x32 = -1;
+		if (!arm_syscall_iterate_name(++i_arm))
+			i_arm = -1;
+		if (!aarch64_syscall_iterate_name(++i_aarch64))
+			i_aarch64 = -1;
+		if (!mips_syscall_iterate_name(++i_mips))
+			i_mips = -1;
+		if (!mips64_syscall_iterate_name(++i_mips64))
+			i_mips64 = -1;
+		if (!mips64n32_syscall_iterate_name(++i_mips64n32))
+			i_mips64n32 = -1;
+		if (!ppc_syscall_iterate_name(++i_ppc))
+			i_ppc = -1;
+		if (!ppc64_syscall_iterate_name(++i_ppc64))
+			i_ppc64 = -1;
+		if (!s390_syscall_iterate_name(++i_s390))
+			i_s390 = -1;
+		if (!s390x_syscall_iterate_name(++i_s390x))
+			i_s390x = -1;
+	} while (i_x86_64 >= 0 && i_x32 >= 0 &&
+		 i_arm >= 0 && i_aarch64 >= 0 &&
+		 i_mips >= 0 && i_mips64 >= 0 && i_mips64n32 >= 0 &&
+		 i_ppc >= 0 && i_ppc64 >= 0 &&
+		 i_s390 >= 0 && i_s390x >= 0);
+
+	/* check for any leftovers */
+	sys_name = x86_syscall_iterate_name(i_x86 + 1);
+	if (sys_name) {
+		printf("%s: ERROR, x86 has additional syscalls\n", sys_name);
+		return 1;
+	}
+	if (i_x86_64 >= 0) {
+		printf("%s: ERROR, x86_64 has additional syscalls\n",
+		       x86_64_syscall_iterate_name(i_x86_64));
+		return 1;
+	}
+	if (i_x32 >= 0) {
+		printf("%s: ERROR, x32 has additional syscalls\n",
+		       x32_syscall_iterate_name(i_x32));
+		return 1;
+	}
+	if (i_arm >= 0) {
+		printf("%s: ERROR, arm has additional syscalls\n",
+		       arm_syscall_iterate_name(i_arm));
+		return 1;
+	}
+	if (i_aarch64 >= 0) {
+		printf("%s: ERROR, aarch64 has additional syscalls\n",
+		       aarch64_syscall_iterate_name(i_aarch64));
+		return 1;
+	}
+	if (i_mips >= 0) {
+		printf("%s: ERROR, mips has additional syscalls\n",
+		       mips_syscall_iterate_name(i_mips));
+		return 1;
+	}
+	if (i_mips64 >= 0) {
+		printf("%s: ERROR, mips64 has additional syscalls\n",
+		       mips64_syscall_iterate_name(i_mips64));
+		return 1;
+	}
+	if (i_mips64n32 >= 0) {
+		printf("%s: ERROR, mips64n32 has additional syscalls\n",
+		       mips64n32_syscall_iterate_name(i_mips64n32));
+		return 1;
+	}
+	if (i_ppc >= 0) {
+		printf("%s: ERROR, ppc has additional syscalls\n",
+		       ppc_syscall_iterate_name(i_ppc));
+	}
+	if (i_ppc64 >= 0) {
+		printf("%s: ERROR, ppc64 has additional syscalls\n",
+		       ppc64_syscall_iterate_name(i_ppc64));
+		return 1;
+	}
+	if (i_s390 >= 0) {
+		printf("%s: ERROR, s390 has additional syscalls\n",
+		       s390_syscall_iterate_name(i_s390));
+		return 1;
+	}
+	if (i_s390x >= 0) {
+		printf("%s: ERROR, s390x has additional syscalls\n",
+		       s390x_syscall_iterate_name(i_s390x));
+		return 1;
+	}
+
+	/* if we made it here, all is good */
+	return 0;
+}