diff options
| author | jln@chromium.org <jln@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2014-04-30 00:28:13 +0000 |
|---|---|---|
| committer | jln@chromium.org <jln@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2014-04-30 00:28:13 +0000 |
| commit | 01cd469fdafbf1b53235202368c93629f817ec88 (patch) | |
| tree | 3d2bb5509cfcf8329570aecf7874b612eec21d8b | |
| parent | 0719003081d154ce22ab01006f183b17abf45c00 (diff) | |
| download | chromium_src-01cd469fdafbf1b53235202368c93629f817ec88.zip chromium_src-01cd469fdafbf1b53235202368c93629f817ec88.tar.gz chromium_src-01cd469fdafbf1b53235202368c93629f817ec88.tar.bz2 | |
Linux sandbox: allow *kill on ASAN
Restricting *kill on ASAN is crashing somehow. Allow *kill on ASAN for
now.
BUG=367986
R=jorgelo@chromium.org, mdempsky@chromium.org
Review URL: https://codereview.chromium.org/261543003
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@267005 0039d316-1c4b-4281-b951-d872f2087c98
| -rw-r--r-- | sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc | 42 |
1 files changed, 30 insertions, 12 deletions
diff --git a/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc b/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc index e0e1ddca..2b002b4 100644 --- a/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc +++ b/sandbox/linux/seccomp-bpf-helpers/syscall_parameters_restrictions.cc @@ -65,6 +65,7 @@ namespace sandbox { ErrorCode RestrictCloneToThreadsAndEPERMFork(SandboxBPF* sandbox) { // Glibc's pthread. + // TODO(jln): fix this on ASAN. if (!RunningOnASAN()) { return sandbox->Cond(0, ErrorCode::TP_32BIT, ErrorCode::OP_EQUAL, CLONE_VM | CLONE_FS | CLONE_FILES | CLONE_SIGHAND | @@ -212,18 +213,35 @@ ErrorCode RestrictSocketcallCommand(SandboxBPF* sandbox) { #endif ErrorCode RestrictKillTarget(pid_t target_pid, SandboxBPF* sandbox, int sysno) { - switch (sysno) { - case __NR_kill: - case __NR_tgkill: - return sandbox->Cond(0, ErrorCode::TP_32BIT, ErrorCode::OP_EQUAL, - target_pid, - ErrorCode(ErrorCode::ERR_ALLOWED), - sandbox->Trap(SIGSYSKillFailure, NULL)); - case __NR_tkill: - return sandbox->Trap(SIGSYSKillFailure, NULL); - default: - NOTREACHED(); - return sandbox->Trap(CrashSIGSYS_Handler, NULL); + if (!RunningOnASAN()) { + switch (sysno) { + case __NR_kill: + case __NR_tgkill: + return sandbox->Cond(0, + ErrorCode::TP_32BIT, + ErrorCode::OP_EQUAL, + target_pid, + ErrorCode(ErrorCode::ERR_ALLOWED), + sandbox->Trap(SIGSYSKillFailure, NULL)); + case __NR_tkill: + return sandbox->Trap(SIGSYSKillFailure, NULL); + default: + NOTREACHED(); + return sandbox->Trap(CrashSIGSYS_Handler, NULL); + } + } else { + switch (sysno) { + case __NR_kill: + case __NR_tgkill: + case __NR_tkill: + // On ASAN, fork() is not properly denied. This could lead to the + // strange failures we're observing with this policy on ASAN. + // TODO(jln): fix this. + return ErrorCode(ErrorCode::ERR_ALLOWED); + default: + NOTREACHED(); + return sandbox->Trap(CrashSIGSYS_Handler, NULL); + } } } |