sandbox/linux/seccomp/maps.h


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105

#ifndef MAPS_H__
#define MAPS_H__

#include <elf.h>
#include <string>
#include <vector>

#if defined(__x86_64__)
typedef Elf64_Addr Elf_Addr;
#elif defined(__i386__)
typedef Elf32_Addr Elf_Addr;
#else
#error Undefined target platform
#endif

namespace playground {

class Library;
class Maps {
  friend class Library;
 public:
  Maps(const std::string& maps_file);
  ~Maps();

 protected:
  char *forwardGetRequest(Library *library, Elf_Addr offset, char *buf,
                          size_t length) const;
  std::string forwardGetRequest(Library *library, Elf_Addr offset) const;

  // A map with all the libraries currently loaded into the application.
  // The key is a unique combination of device number, inode number, and
  // file name. It should be treated as opaque.
  typedef std::map<std::string, Library> LibraryMap;
  friend class Iterator;
  class Iterator {
    friend class Maps;

   protected:
    explicit Iterator(Maps* maps);
    Iterator(Maps* maps, bool at_beginning, bool at_end);
    Maps::LibraryMap::iterator& getIterator() const;

   public:
    Iterator begin();
    Iterator end();
    Iterator& operator++();
    Iterator operator++(int i);
    Library* operator*() const;
    bool operator==(const Iterator& iter) const;
    bool operator!=(const Iterator& iter) const;
    std::string name() const;

   protected:
    mutable LibraryMap::iterator iter_;
    Maps *maps_;
    bool at_beginning_;
    bool at_end_;
  };

 public:
  typedef class Iterator const_iterator;

  const_iterator begin() {
    return begin_iter_;
  }

  const_iterator end() {
    return end_iter_;
  }

  char* allocNearAddr(char *addr, size_t size, int prot) const;

  char* vsyscall() const { return vsyscall_; }

 private:
  struct Request {
    enum Type { REQ_GET, REQ_GET_STR };

    Request() { }

    Request(enum Type t, Library* i, Elf_Addr o, ssize_t l) :
        library(i), offset(o), length(l), type(t), padding(0) {
    }

    Library*   library;
    Elf_Addr   offset;
    ssize_t    length;
    enum Type  type;
    int        padding; // for valgrind
  };

 protected:
  const std::string maps_file_;
  const Iterator    begin_iter_;
  const Iterator    end_iter_;

  LibraryMap  libs_;
  pid_t       pid_;
  int         fds_[2];
  char*       vsyscall_;
};

} // namespace

#endif // MAPS_H__