|
 |
aacff36 |
From da52663deec77f705d7d58b18484c3e28e563f10 Mon Sep 17 00:00:00 2001
|
|
|
aacff36 |
From: Shawn Anastasio <shawnanastasio@yahoo.com>
|
|
|
aacff36 |
Date: Tue, 18 Sep 2018 18:39:28 -0500
|
|
|
aacff36 |
Subject: [PATCH] sandbox/linux: Update syscall helpers/lists for ppc64
|
|
|
aacff36 |
|
|
|
aacff36 |
---
|
|
|
aacff36 |
.../seccomp-bpf-helpers/baseline_policy.cc | 8 +-
|
|
|
aacff36 |
.../syscall_parameters_restrictions.cc | 2 +-
|
|
|
aacff36 |
.../syscall_parameters_restrictions.h | 2 +-
|
|
|
aacff36 |
.../linux/seccomp-bpf-helpers/syscall_sets.cc | 108 ++++++++++--------
|
|
|
aacff36 |
.../linux/seccomp-bpf-helpers/syscall_sets.h | 6 +-
|
|
|
aacff36 |
sandbox/linux/services/syscall_wrappers.cc | 2 +-
|
|
|
aacff36 |
6 files changed, 73 insertions(+), 55 deletions(-)
|
|
|
aacff36 |
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/baseline_policy.cc
|
|
|
aacff36 |
@@ -90,7 +90,8 @@ bool IsBaselinePolicyWatched(int sysno)
|
|
|
aacff36 |
SyscallSets::IsPrctl(sysno) ||
|
|
|
aacff36 |
SyscallSets::IsProcessGroupOrSession(sysno) ||
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
SyscallSets::IsSocketCall(sysno) ||
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__arm__)
|
|
|
aacff36 |
@@ -255,7 +256,7 @@ ResultExpr EvaluateSyscallImpl(int fs_de
|
|
|
aacff36 |
}
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
if (sysno == __NR_mmap)
|
|
|
aacff36 |
return RestrictMmapFlags();
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -276,7 +277,7 @@ ResultExpr EvaluateSyscallImpl(int fs_de
|
|
|
aacff36 |
return RestrictPrctl();
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
if (sysno == __NR_socketpair) {
|
|
|
aacff36 |
// Only allow AF_UNIX, PF_UNIX. Crash if anything else is seen.
|
|
|
aacff36 |
static_assert(AF_UNIX == PF_UNIX,
|
|
|
aacff36 |
@@ -340,7 +341,8 @@ ResultExpr EvaluateSyscallImpl(int fs_de
|
|
|
aacff36 |
}
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
if (SyscallSets::IsSocketCall(sysno))
|
|
|
aacff36 |
return RestrictSocketcallCommand();
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc
|
|
|
aacff36 |
@@ -36,7 +36,7 @@
|
|
|
aacff36 |
#include "sandbox/linux/system_headers/linux_time.h"
|
|
|
aacff36 |
|
|
|
aacff36 |
#if (BUILDFLAG(IS_LINUX) || BUILDFLAG(IS_CHROMEOS_LACROS)) && \
|
|
|
aacff36 |
- !defined(__arm__) && !defined(__aarch64__) && \
|
|
|
aacff36 |
+ !defined(__arm__) && !defined(__aarch64__) && !defined(__powerpc64__) && \
|
|
|
aacff36 |
!defined(PTRACE_GET_THREAD_AREA)
|
|
|
aacff36 |
// Also include asm/ptrace-abi.h since ptrace.h in older libc (for instance
|
|
|
aacff36 |
// the one in Ubuntu 16.04 LTS) is missing PTRACE_GET_THREAD_AREA.
|
|
|
aacff36 |
@@ -45,6 +45,11 @@
|
|
|
aacff36 |
#include <asm/ptrace-abi.h>
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
+// On PPC64, TCGETS is defined in terms of struct termios, so we must include termios.h
|
|
|
aacff36 |
+#ifdef __powerpc64__
|
|
|
aacff36 |
+#include <termios.h>
|
|
|
aacff36 |
+#endif
|
|
|
aacff36 |
+
|
|
|
aacff36 |
#if BUILDFLAG(IS_ANDROID)
|
|
|
aacff36 |
|
|
|
aacff36 |
#if !defined(F_DUPFD_CLOEXEC)
|
|
|
aacff36 |
@@ -102,6 +107,15 @@ inline bool IsArchitectureMips() {
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
}
|
|
|
aacff36 |
|
|
|
aacff36 |
+inline bool IsArchitecturePPC64() {
|
|
|
aacff36 |
+#if defined(__powerpc64__)
|
|
|
aacff36 |
+ return true;
|
|
|
aacff36 |
+#else
|
|
|
aacff36 |
+ return false;
|
|
|
aacff36 |
+#endif
|
|
|
aacff36 |
+}
|
|
|
aacff36 |
+
|
|
|
aacff36 |
+
|
|
|
aacff36 |
// Ubuntu's version of glibc has a race condition in sem_post that can cause
|
|
|
aacff36 |
// it to call futex(2) with bogus op arguments. To workaround this, we need
|
|
|
aacff36 |
// to allow those futex(2) calls to fail with EINVAL, instead of crashing the
|
|
|
aacff36 |
@@ -269,9 +283,11 @@ ResultExpr RestrictFcntlCommands() {
|
|
|
aacff36 |
// operator.
|
|
|
aacff36 |
// Glibc overrides the kernel's O_LARGEFILE value. Account for this.
|
|
|
aacff36 |
uint64_t kOLargeFileFlag = O_LARGEFILE;
|
|
|
aacff36 |
- if (IsArchitectureX86_64() || IsArchitectureI386() || IsArchitectureMips())
|
|
|
aacff36 |
+ if (IsArchitectureX86_64() || IsArchitectureI386() || IsArchitectureMips() \
|
|
|
aacff36 |
+ || IsArchitecturePPC64())
|
|
|
aacff36 |
kOLargeFileFlag = 0100000;
|
|
|
aacff36 |
|
|
|
aacff36 |
+
|
|
|
aacff36 |
const Arg<int> cmd(1);
|
|
|
aacff36 |
const Arg<long> long_arg(2);
|
|
|
aacff36 |
|
|
|
aacff36 |
@@ -294,8 +310,17 @@ ResultExpr RestrictFcntlCommands() {
|
|
|
aacff36 |
F_SETLKW,
|
|
|
aacff36 |
F_GETLK,
|
|
|
aacff36 |
F_DUPFD,
|
|
|
aacff36 |
- F_DUPFD_CLOEXEC},
|
|
|
aacff36 |
- Allow())
|
|
|
aacff36 |
+ F_DUPFD_CLOEXEC
|
|
|
aacff36 |
+#if defined(__powerpc64__)
|
|
|
aacff36 |
+// On PPC64, F_SETLK, F_GETLK, F_SETLKW are defined as the 64-bit variants
|
|
|
aacff36 |
+// but glibc will sometimes still use the 32-bit versions. Allow both.
|
|
|
aacff36 |
+ ,
|
|
|
aacff36 |
+ 5, /* F_GETLK (32) */
|
|
|
aacff36 |
+ 6, /* F_SETLK (32) */
|
|
|
aacff36 |
+ 7 /* F_SETLKW (32) */
|
|
|
aacff36 |
+#endif
|
|
|
aacff36 |
+ },
|
|
|
aacff36 |
+ Allow())
|
|
|
aacff36 |
.Case(F_SETFL,
|
|
|
aacff36 |
If((long_arg & ~kAllowedMask) == 0, Allow()).Else(CrashSIGSYS()))
|
|
|
aacff36 |
.Case(F_ADD_SEALS,
|
|
|
aacff36 |
@@ -304,7 +329,7 @@ ResultExpr RestrictFcntlCommands() {
|
|
|
aacff36 |
// clang-format on
|
|
|
aacff36 |
}
|
|
|
aacff36 |
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__mips__) || defined(__powerpc64__)
|
|
|
aacff36 |
ResultExpr RestrictSocketcallCommand() {
|
|
|
aacff36 |
// Unfortunately, we are unable to restrict the first parameter to
|
|
|
aacff36 |
// socketpair(2). Whilst initially sounding bad, it's noteworthy that very
|
|
|
aacff36 |
@@ -459,7 +484,7 @@ ResultExpr RestrictPtrace() {
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return Switch(request)
|
|
|
aacff36 |
.Cases({
|
|
|
aacff36 |
-#if !defined(__aarch64__)
|
|
|
aacff36 |
+#if !defined(__aarch64__) && !defined(__powerpc64__)
|
|
|
aacff36 |
PTRACE_GETREGS, PTRACE_GETFPREGS, PTRACE_GET_THREAD_AREA,
|
|
|
aacff36 |
PTRACE_GETREGSET,
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.h
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.h
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.h
|
|
|
aacff36 |
@@ -52,7 +52,7 @@ SANDBOX_EXPORT bpf_dsl::ResultExpr Restr
|
|
|
aacff36 |
// O_NONBLOCK | O_SYNC | O_LARGEFILE | O_CLOEXEC | O_NOATIME.
|
|
|
aacff36 |
SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictFcntlCommands();
|
|
|
aacff36 |
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__mips__) || defined(__powerpc64__)
|
|
|
aacff36 |
// Restrict socketcall(2) to only allow socketpair(2), send(2), recv(2),
|
|
|
aacff36 |
// sendto(2), recvfrom(2), shutdown(2), sendmsg(2) and recvmsg(2).
|
|
|
aacff36 |
SANDBOX_EXPORT bpf_dsl::ResultExpr RestrictSocketcallCommand();
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_sets.cc
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/seccomp-bpf-helpers/syscall_sets.cc
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_sets.cc
|
|
|
aacff36 |
@@ -29,7 +29,8 @@ bool SyscallSets::IsAllowedGettime(int s
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_gettimeofday:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_time:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
@@ -52,12 +53,14 @@ bool SyscallSets::IsAllowedGettime(int s
|
|
|
aacff36 |
case __NR_clock_nanosleep_time64: // Parameters filtered by RestrictClockID().
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_ftime: // Obsolete.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_settimeofday: // Privileged.
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_stime:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
default:
|
|
|
aacff36 |
@@ -136,7 +139,7 @@ bool SyscallSets::IsFileSystem(int sysno
|
|
|
aacff36 |
case __NR_faccessat2:
|
|
|
aacff36 |
case __NR_fchmodat:
|
|
|
aacff36 |
case __NR_fchownat: // Should be called chownat ?
|
|
|
aacff36 |
-#if defined(__x86_64__) || defined(__aarch64__)
|
|
|
aacff36 |
+#if defined(__x86_64__) || defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_newfstatat: // fstatat(). EPERM not a valid errno.
|
|
|
aacff36 |
#elif defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
(defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
@@ -155,7 +158,7 @@ bool SyscallSets::IsFileSystem(int sysno
|
|
|
aacff36 |
case __NR_memfd_create:
|
|
|
aacff36 |
case __NR_mkdirat:
|
|
|
aacff36 |
case __NR_mknodat:
|
|
|
aacff36 |
-#if defined(__i386__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_oldlstat:
|
|
|
aacff36 |
case __NR_oldstat:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -169,7 +172,8 @@ bool SyscallSets::IsFileSystem(int sysno
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_statfs: // EPERM not a valid errno.
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_statfs64:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_statx: // EPERM not a valid errno.
|
|
|
aacff36 |
@@ -180,7 +184,8 @@ bool SyscallSets::IsFileSystem(int sysno
|
|
|
aacff36 |
case __NR_truncate64:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_unlinkat:
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_utime:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_utimensat: // New.
|
|
|
aacff36 |
@@ -220,7 +225,8 @@ bool SyscallSets::IsAllowedFileSystemAcc
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
// TODO(jln): these should be denied gracefully as well (moved below).
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_fadvise64: // EPERM not a valid errno.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__)
|
|
|
aacff36 |
@@ -233,11 +239,12 @@ bool SyscallSets::IsAllowedFileSystemAcc
|
|
|
aacff36 |
case __NR_flock: // EPERM not a valid errno.
|
|
|
aacff36 |
case __NR_fstatfs: // Give information about the whole filesystem.
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_fstatfs64:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_fsync: // EPERM not a valid errno.
|
|
|
aacff36 |
-#if defined(__i386__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_oldfstat:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
@@ -245,6 +252,8 @@ bool SyscallSets::IsAllowedFileSystemAcc
|
|
|
aacff36 |
case __NR_sync_file_range: // EPERM not a valid errno.
|
|
|
aacff36 |
#elif defined(__arm__)
|
|
|
aacff36 |
case __NR_arm_sync_file_range: // EPERM not a valid errno.
|
|
|
aacff36 |
+#elif defined(__powerpc64__)
|
|
|
aacff36 |
+ case __NR_sync_file_range2: // EPERM not a valid errno.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
default:
|
|
|
aacff36 |
return false;
|
|
|
aacff36 |
@@ -265,7 +274,8 @@ bool SyscallSets::IsDeniedFileSystemAcce
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_getdents64: // EPERM not a valid errno.
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_readdir:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
@@ -306,7 +316,7 @@ bool SyscallSets::IsGetSimpleId(int sysn
|
|
|
aacff36 |
bool SyscallSets::IsProcessPrivilegeChange(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_capset:
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_ioperm: // Intel privilege.
|
|
|
aacff36 |
case __NR_iopl: // Intel privilege.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -362,7 +372,8 @@ bool SyscallSets::IsAllowedSignalHandlin
|
|
|
aacff36 |
// overflow.
|
|
|
aacff36 |
case __NR_sigaltstack:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_rt_sigtimedwait_time64:
|
|
|
aacff36 |
case __NR_sigaction:
|
|
|
aacff36 |
case __NR_sigprocmask:
|
|
|
aacff36 |
@@ -378,7 +389,8 @@ bool SyscallSets::IsAllowedSignalHandlin
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_signalfd4:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_sigpending:
|
|
|
aacff36 |
case __NR_sigsuspend:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -402,7 +414,7 @@ bool SyscallSets::IsAllowedOperationOnFd
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_dup3:
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_shutdown:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
@@ -435,7 +447,7 @@ bool SyscallSets::IsAllowedProcessStartO
|
|
|
aacff36 |
case __NR_exit_group:
|
|
|
aacff36 |
case __NR_wait4:
|
|
|
aacff36 |
case __NR_waitid:
|
|
|
aacff36 |
-#if defined(__i386__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_waitpid:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
@@ -452,7 +464,7 @@ bool SyscallSets::IsAllowedProcessStartO
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_set_tid_address:
|
|
|
aacff36 |
case __NR_unshare:
|
|
|
aacff36 |
-#if !defined(__mips__) && !defined(__aarch64__)
|
|
|
aacff36 |
+#if !defined(__mips__) && !defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_vfork:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
default:
|
|
|
aacff36 |
@@ -499,7 +511,7 @@ bool SyscallSets::IsAllowedEpoll(int sys
|
|
|
aacff36 |
bool SyscallSets::IsDeniedGetOrModifySocket(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_accept:
|
|
|
aacff36 |
case __NR_accept4:
|
|
|
aacff36 |
case __NR_bind:
|
|
|
aacff36 |
@@ -514,7 +526,8 @@ bool SyscallSets::IsDeniedGetOrModifySoc
|
|
|
aacff36 |
}
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// Big multiplexing system call for sockets.
|
|
|
aacff36 |
bool SyscallSets::IsSocketCall(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
@@ -528,7 +541,8 @@ bool SyscallSets::IsSocketCall(int sysno
|
|
|
aacff36 |
}
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
-#if defined(__x86_64__) || defined(__arm__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
bool SyscallSets::IsNetworkSocketInformation(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_getpeername:
|
|
|
aacff36 |
@@ -553,7 +567,7 @@ bool SyscallSets::IsAllowedAddressSpaceA
|
|
|
aacff36 |
case __NR_mincore:
|
|
|
aacff36 |
case __NR_mlockall:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_mmap:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
@@ -583,7 +597,8 @@ bool SyscallSets::IsAllowedGeneralIo(int
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_lseek:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR__llseek:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if !defined(__aarch64__)
|
|
|
aacff36 |
@@ -603,26 +618,28 @@ bool SyscallSets::IsAllowedGeneralIo(int
|
|
|
aacff36 |
case __NR_readv:
|
|
|
aacff36 |
case __NR_pread64:
|
|
|
aacff36 |
#if defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_recv:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_recvfrom: // Could specify source.
|
|
|
aacff36 |
case __NR_recvmsg: // Could specify source.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_select:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__arm__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__arm__) || defined(__mips__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR__newselect:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_send:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_sendmsg: // Could specify destination.
|
|
|
aacff36 |
case __NR_sendto: // Could specify destination.
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -678,7 +695,8 @@ bool SyscallSets::IsAllowedBasicSchedule
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
case __NR_getpriority:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_nice:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_setpriority:
|
|
|
aacff36 |
@@ -690,7 +708,8 @@ bool SyscallSets::IsAllowedBasicSchedule
|
|
|
aacff36 |
bool SyscallSets::IsAdminOperation(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
#if defined(__i386__) || defined(__arm__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_bdflush:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_kexec_load:
|
|
|
aacff36 |
@@ -706,7 +725,8 @@ bool SyscallSets::IsAdminOperation(int s
|
|
|
aacff36 |
|
|
|
aacff36 |
bool SyscallSets::IsKernelModule(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_create_module:
|
|
|
aacff36 |
case __NR_get_kernel_syms: // Should ENOSYS.
|
|
|
aacff36 |
case __NR_query_module:
|
|
|
aacff36 |
@@ -739,7 +759,8 @@ bool SyscallSets::IsFsControl(int sysno)
|
|
|
aacff36 |
case __NR_swapoff:
|
|
|
aacff36 |
case __NR_swapon:
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_umount:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_umount2:
|
|
|
aacff36 |
@@ -755,7 +776,7 @@ bool SyscallSets::IsNuma(int sysno) {
|
|
|
aacff36 |
case __NR_getcpu:
|
|
|
aacff36 |
case __NR_mbind:
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_migrate_pages:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_move_pages:
|
|
|
aacff36 |
@@ -790,14 +811,15 @@ bool SyscallSets::IsGlobalProcessEnviron
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_acct: // Privileged.
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_getrlimit:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__arm__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__arm__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_ugetrlimit:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_ulimit:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_getrusage:
|
|
|
aacff36 |
@@ -831,7 +853,7 @@ bool SyscallSets::IsGlobalSystemStatus(i
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_sysinfo:
|
|
|
aacff36 |
case __NR_uname:
|
|
|
aacff36 |
-#if defined(__i386__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_olduname:
|
|
|
aacff36 |
case __NR_oldolduname:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -915,7 +937,8 @@ bool SyscallSets::IsSystemVSemaphores(in
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__arm__) || \
|
|
|
aacff36 |
defined(__aarch64__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_64_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_64_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// These give a lot of ambient authority and bypass the setuid sandbox.
|
|
|
aacff36 |
bool SyscallSets::IsSystemVSharedMemory(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
@@ -946,7 +969,8 @@ bool SyscallSets::IsSystemVMessageQueue(
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// Big system V multiplexing system call.
|
|
|
aacff36 |
bool SyscallSets::IsSystemVIpc(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
@@ -966,7 +990,8 @@ bool SyscallSets::IsAnySystemV(int sysno
|
|
|
aacff36 |
return IsSystemVMessageQueue(sysno) || IsSystemVSemaphores(sysno) ||
|
|
|
aacff36 |
IsSystemVSharedMemory(sysno);
|
|
|
aacff36 |
#elif defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
return IsSystemVIpc(sysno);
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
}
|
|
|
aacff36 |
@@ -1023,7 +1048,8 @@ bool SyscallSets::IsFaNotify(int sysno)
|
|
|
aacff36 |
bool SyscallSets::IsTimer(int sysno) {
|
|
|
aacff36 |
switch (sysno) {
|
|
|
aacff36 |
case __NR_getitimer:
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_alarm:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
case __NR_setitimer:
|
|
|
aacff36 |
@@ -1105,18 +1131,22 @@ bool SyscallSets::IsMisc(int sysno) {
|
|
|
aacff36 |
case __NR_syncfs:
|
|
|
aacff36 |
case __NR_vhangup:
|
|
|
aacff36 |
// The system calls below are not implemented.
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_afs_syscall:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_break:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_getpmsg:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_gtty:
|
|
|
aacff36 |
case __NR_idle:
|
|
|
aacff36 |
case __NR_lock:
|
|
|
aacff36 |
@@ -1124,20 +1154,22 @@ bool SyscallSets::IsMisc(int sysno) {
|
|
|
aacff36 |
case __NR_prof:
|
|
|
aacff36 |
case __NR_profil:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__i386__) || defined(__x86_64__) || defined(__mips__)
|
|
|
aacff36 |
+#if defined(__i386__) || defined(__x86_64__) || defined(__mips__) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_putpmsg:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__x86_64__)
|
|
|
aacff36 |
case __NR_security:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_stty:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if defined(__x86_64__)
|
|
|
aacff36 |
+#if defined(__x86_64__) || defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_tuxcall:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
-#if !defined(__aarch64__)
|
|
|
aacff36 |
+#if !defined(__aarch64__) && !defined(__powerpc64__)
|
|
|
aacff36 |
case __NR_vserver:
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
return true;
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_sets.h
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/seccomp-bpf-helpers/syscall_sets.h
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/seccomp-bpf-helpers/syscall_sets.h
|
|
|
aacff36 |
@@ -46,13 +46,14 @@ class SANDBOX_EXPORT SyscallSets {
|
|
|
aacff36 |
static bool IsDeniedGetOrModifySocket(int sysno);
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// Big multiplexing system call for sockets.
|
|
|
aacff36 |
static bool IsSocketCall(int sysno);
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__x86_64__) || defined(__arm__) || defined(__mips__) || \
|
|
|
aacff36 |
- defined(__aarch64__)
|
|
|
aacff36 |
+ defined(__aarch64__) || defined(__powerpc64__)
|
|
|
aacff36 |
static bool IsNetworkSocketInformation(int sysno);
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
@@ -84,7 +85,8 @@ class SANDBOX_EXPORT SyscallSets {
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
#if defined(__i386__) || defined(__x86_64__) || defined(__arm__) || \
|
|
|
aacff36 |
defined(__aarch64__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_64_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_64_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// These give a lot of ambient authority and bypass the setuid sandbox.
|
|
|
aacff36 |
static bool IsSystemVSharedMemory(int sysno);
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
@@ -95,7 +97,8 @@ class SANDBOX_EXPORT SyscallSets {
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
|
|
|
aacff36 |
#if defined(__i386__) || \
|
|
|
aacff36 |
- (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS))
|
|
|
aacff36 |
+ (defined(ARCH_CPU_MIPS_FAMILY) && defined(ARCH_CPU_32_BITS)) || \
|
|
|
aacff36 |
+ defined(__powerpc64__)
|
|
|
aacff36 |
// Big system V multiplexing system call.
|
|
|
aacff36 |
static bool IsSystemVIpc(int sysno);
|
|
|
aacff36 |
#endif
|
|
|
aacff36 |
Index: chromium-120.0.6099.71/sandbox/linux/services/syscall_wrappers.cc
|
|
|
aacff36 |
===================================================================
|
|
|
aacff36 |
--- chromium-120.0.6099.71.orig/sandbox/linux/services/syscall_wrappers.cc
|
|
|
aacff36 |
+++ chromium-120.0.6099.71/sandbox/linux/services/syscall_wrappers.cc
|
|
|
aacff36 |
@@ -61,7 +61,7 @@ long sys_clone(unsigned long flags,
|
|
|
aacff36 |
#if defined(ARCH_CPU_X86_64)
|
|
|
aacff36 |
return syscall(__NR_clone, flags, child_stack, ptid, ctid, tls);
|
|
|
aacff36 |
#elif defined(ARCH_CPU_X86) || defined(ARCH_CPU_ARM_FAMILY) || \
|
|
|
aacff36 |
- defined(ARCH_CPU_MIPS_FAMILY)
|
|
|
aacff36 |
+ defined(ARCH_CPU_MIPS_FAMILY) || defined(ARCH_CPU_PPC64_FAMILY)
|
|
|
aacff36 |
// CONFIG_CLONE_BACKWARDS defined.
|
|
|
aacff36 |
return syscall(__NR_clone, flags, child_stack, ptid, tls, ctid);
|
|
|
aacff36 |
#endif
|