sandbox/linux/bpf_dsl/policy_compiler.cc - Issue 1302043002: sandbox/linux: refactor bpf_dsl dependency on die.h

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sandbox/linux/bpf_dsl/policy_compiler.cc

Issue 1302043002: sandbox/linux: refactor bpf_dsl dependency on die.h (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Change default panic behavior to simply Kill Created 5 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: sandbox/linux/bpf_dsl/policy_compiler.cc

diff --git a/sandbox/linux/bpf_dsl/policy_compiler.cc b/sandbox/linux/bpf_dsl/policy_compiler.cc

index f38232f85f929fd0ed2331bc248807c4cfd93b55..7a9d8ad1137f24b381ef369b14ad5ed0264a8b27 100644

--- a/sandbox/linux/bpf_dsl/policy_compiler.cc

+++ b/sandbox/linux/bpf_dsl/policy_compiler.cc

@@ -56,6 +56,10 @@ bool HasExactlyOneBit(uint64_t x) {

return x != 0 && (x & (x - 1)) == 0;

}

+ResultExpr DefaultPanic(const char* error) {

+ return Kill();

// A Trap() handler that returns an "errno" value. The value is encoded

// in the "aux" parameter.

intptr_t ReturnErrno(const struct arch_seccomp_data&, void* aux) {

@@ -88,6 +92,7 @@ PolicyCompiler::PolicyCompiler(const Policy* policy, TrapRegistry* registry)

: policy_(policy),

registry_(registry),

escapepc_(0),

+ panic_func_(DefaultPanic),

conds_(),

gen_(),

has_unsafe_traps_(HasUnsafeTraps(policy_)) {

@@ -137,6 +142,10 @@ void PolicyCompiler::DangerousSetEscapePC(uint64_t escapepc) {

escapepc_ = escapepc;

}

+void PolicyCompiler::SetPanicFunc(PanicFunc panic_func) {

+ panic_func_ = panic_func;

CodeGen::Node PolicyCompiler::AssemblePolicy() {

// A compiled policy consists of three logical parts:

// 1. Check that the "arch" field matches the expected architecture.

@@ -152,9 +161,9 @@ CodeGen::Node PolicyCompiler::CheckArch(CodeGen::Node passed) {

// system call.

return gen_.MakeInstruction(

BPF_LD + BPF_W + BPF_ABS, SECCOMP_ARCH_IDX,

- gen_.MakeInstruction(

- BPF_JMP + BPF_JEQ + BPF_K, SECCOMP_ARCH, passed,

- CompileResult(Kill("Invalid audit architecture in BPF filter"))));

+ gen_.MakeInstruction(BPF_JMP + BPF_JEQ + BPF_K, SECCOMP_ARCH, passed,

+ CompileResult(panic_func_(

+ "Invalid audit architecture in BPF filter"))));

}

CodeGen::Node PolicyCompiler::MaybeAddEscapeHatch(CodeGen::Node rest) {

@@ -209,7 +218,7 @@ CodeGen::Node PolicyCompiler::CheckSyscallNumber(CodeGen::Node passed) {

// On Intel architectures, verify that system call numbers are in the

// expected number range.

CodeGen::Node invalidX32 =

- CompileResult(Kill("Illegal mixing of system call ABIs"));

+ CompileResult(panic_func_("Illegal mixing of system call ABIs"));

if (kIsX32) {

// The newer x32 API always sets bit 30.

return gen_.MakeInstruction(

@@ -445,7 +454,7 @@ CodeGen::Node PolicyCompiler::CondExpressionHalf(const ErrorCode& cond,

}

ErrorCode PolicyCompiler::Unexpected64bitArgument() {

- return Kill("Unexpected 64bit argument detected")->Compile(this);

+ return panic_func_("Unexpected 64bit argument detected")->Compile(this);

}

ErrorCode PolicyCompiler::Error(int err) {

« no previous file with comments | « sandbox/linux/bpf_dsl/policy_compiler.h ('k') | sandbox/linux/bpf_dsl/verifier.cc » ('j') | no next file with comments »