script_core 0.2.2 → 0.2.7
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.rubocop.yml +41 -45
- data/.travis.yml +2 -1
- data/Gemfile +3 -3
- data/README.md +7 -1
- data/bootstrap.sh +2 -2
- data/ext/enterprise_script_service/libseccomp/.travis.yml +24 -12
- data/ext/enterprise_script_service/libseccomp/CHANGELOG +32 -0
- data/ext/enterprise_script_service/libseccomp/CONTRIBUTING.md +37 -26
- data/ext/enterprise_script_service/libseccomp/CREDITS +11 -0
- data/ext/enterprise_script_service/libseccomp/README.md +21 -1
- data/ext/enterprise_script_service/libseccomp/configure.ac +13 -8
- data/ext/enterprise_script_service/libseccomp/doc/Makefile.am +6 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_api_get.3 +12 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_arch_add.3 +38 -6
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_attr_set.3 +53 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_export_bpf.3 +20 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_init.3 +9 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_load.3 +32 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_merge.3 +16 -2
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_alloc.3 +113 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_fd.3 +1 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_free.3 +1 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_id_valid.3 +1 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_receive.3 +1 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_notify_respond.3 +1 -0
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_rule_add.3 +64 -3
- data/ext/enterprise_script_service/libseccomp/doc/man/man3/seccomp_syscall_priority.3 +18 -3
- data/ext/enterprise_script_service/libseccomp/include/seccomp-syscalls.h +19 -0
- data/ext/enterprise_script_service/libseccomp/include/seccomp.h.in +116 -0
- data/ext/enterprise_script_service/libseccomp/src/.gitignore +2 -0
- data/ext/enterprise_script_service/libseccomp/src/Makefile.am +31 -17
- data/ext/enterprise_script_service/libseccomp/src/api.c +254 -58
- data/ext/enterprise_script_service/libseccomp/src/arch-aarch64.h +1 -9
- data/ext/enterprise_script_service/libseccomp/src/arch-arm.c +47 -2
- data/ext/enterprise_script_service/libseccomp/src/arch-arm.h +1 -9
- data/ext/enterprise_script_service/libseccomp/src/arch-gperf-generate +40 -0
- data/ext/enterprise_script_service/libseccomp/src/arch-mips.c +41 -4
- data/ext/enterprise_script_service/libseccomp/src/arch-mips.h +2 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64.c +41 -4
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64.h +3 -11
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64n32.c +41 -4
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64n32.h +2 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-parisc.h +1 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-parisc64.c +3 -3
- data/ext/enterprise_script_service/libseccomp/src/arch-parisc64.h +29 -0
- data/ext/enterprise_script_service/libseccomp/src/arch-ppc.h +1 -9
- data/ext/enterprise_script_service/libseccomp/src/arch-ppc64.c +606 -8
- data/ext/enterprise_script_service/libseccomp/src/arch-ppc64.h +2 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-riscv64.c +31 -0
- data/ext/enterprise_script_service/libseccomp/src/arch-riscv64.h +22 -0
- data/ext/enterprise_script_service/libseccomp/src/arch-s390.c +171 -12
- data/ext/enterprise_script_service/libseccomp/src/arch-s390.h +1 -17
- data/ext/enterprise_script_service/libseccomp/src/arch-s390x.c +166 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-s390x.h +1 -20
- data/ext/enterprise_script_service/libseccomp/src/arch-syscall-dump.c +8 -1
- data/ext/enterprise_script_service/libseccomp/src/arch-syscall-validate +359 -143
- data/ext/enterprise_script_service/libseccomp/src/arch-x32.c +36 -2
- data/ext/enterprise_script_service/libseccomp/src/arch-x32.h +2 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-x86.c +172 -10
- data/ext/enterprise_script_service/libseccomp/src/arch-x86.h +1 -14
- data/ext/enterprise_script_service/libseccomp/src/arch-x86_64.h +1 -9
- data/ext/enterprise_script_service/libseccomp/src/arch.c +11 -3
- data/ext/enterprise_script_service/libseccomp/src/arch.h +7 -0
- data/ext/enterprise_script_service/libseccomp/src/db.c +268 -57
- data/ext/enterprise_script_service/libseccomp/src/db.h +16 -2
- data/ext/enterprise_script_service/libseccomp/src/gen_bpf.c +503 -148
- data/ext/enterprise_script_service/libseccomp/src/gen_bpf.h +2 -1
- data/ext/enterprise_script_service/libseccomp/src/gen_pfc.c +165 -37
- data/ext/enterprise_script_service/libseccomp/src/python/libseccomp.pxd +37 -1
- data/ext/enterprise_script_service/libseccomp/src/python/seccomp.pyx +295 -5
- data/ext/enterprise_script_service/libseccomp/src/syscalls.c +56 -0
- data/ext/enterprise_script_service/libseccomp/src/syscalls.csv +470 -0
- data/ext/enterprise_script_service/libseccomp/src/syscalls.h +62 -0
- data/ext/enterprise_script_service/libseccomp/src/syscalls.perf.template +82 -0
- data/ext/enterprise_script_service/libseccomp/src/system.c +196 -16
- data/ext/enterprise_script_service/libseccomp/src/system.h +68 -13
- data/ext/enterprise_script_service/libseccomp/tests/.gitignore +10 -2
- data/ext/enterprise_script_service/libseccomp/tests/06-sim-actions.tests +1 -1
- data/ext/enterprise_script_service/libseccomp/tests/11-basic-basic_errors.c +5 -5
- data/ext/enterprise_script_service/libseccomp/tests/13-basic-attrs.c +35 -1
- data/ext/enterprise_script_service/libseccomp/tests/13-basic-attrs.py +10 -1
- data/ext/enterprise_script_service/libseccomp/tests/15-basic-resolver.c +4 -3
- data/ext/enterprise_script_service/libseccomp/tests/16-sim-arch_basic.c +12 -0
- data/ext/enterprise_script_service/libseccomp/tests/16-sim-arch_basic.py +1 -0
- data/ext/enterprise_script_service/libseccomp/tests/{18-sim-basic_whitelist.c → 18-sim-basic_allowlist.c} +0 -0
- data/ext/enterprise_script_service/libseccomp/tests/{18-sim-basic_whitelist.py → 18-sim-basic_allowlist.py} +0 -0
- data/ext/enterprise_script_service/libseccomp/tests/18-sim-basic_allowlist.tests +32 -0
- data/ext/enterprise_script_service/libseccomp/tests/23-sim-arch_all_le_basic.c +3 -0
- data/ext/enterprise_script_service/libseccomp/tests/23-sim-arch_all_le_basic.py +1 -0
- data/ext/enterprise_script_service/libseccomp/tests/30-sim-socket_syscalls.c +3 -0
- data/ext/enterprise_script_service/libseccomp/tests/30-sim-socket_syscalls.py +1 -0
- data/ext/enterprise_script_service/libseccomp/tests/30-sim-socket_syscalls.tests +33 -17
- data/ext/enterprise_script_service/libseccomp/tests/{34-sim-basic_blacklist.c → 34-sim-basic_denylist.c} +0 -0
- data/ext/enterprise_script_service/libseccomp/tests/{34-sim-basic_blacklist.py → 34-sim-basic_denylist.py} +0 -0
- data/ext/enterprise_script_service/libseccomp/tests/34-sim-basic_denylist.tests +32 -0
- data/ext/enterprise_script_service/libseccomp/tests/36-sim-ipc_syscalls.c +3 -0
- data/ext/enterprise_script_service/libseccomp/tests/36-sim-ipc_syscalls.py +1 -0
- data/ext/enterprise_script_service/libseccomp/tests/36-sim-ipc_syscalls.tests +25 -25
- data/ext/enterprise_script_service/libseccomp/tests/39-basic-api_level.c +24 -3
- data/ext/enterprise_script_service/libseccomp/tests/39-basic-api_level.py +16 -1
- data/ext/enterprise_script_service/libseccomp/tests/47-live-kill_process.c +3 -3
- data/ext/enterprise_script_service/libseccomp/tests/51-live-user_notification.c +112 -0
- data/ext/enterprise_script_service/libseccomp/tests/51-live-user_notification.py +60 -0
- data/ext/enterprise_script_service/libseccomp/tests/51-live-user_notification.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/52-basic-load.c +48 -0
- data/ext/enterprise_script_service/libseccomp/tests/52-basic-load.py +38 -0
- data/ext/enterprise_script_service/libseccomp/tests/52-basic-load.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/53-sim-binary_tree.c +156 -0
- data/ext/enterprise_script_service/libseccomp/tests/53-sim-binary_tree.py +95 -0
- data/ext/enterprise_script_service/libseccomp/tests/53-sim-binary_tree.tests +65 -0
- data/ext/enterprise_script_service/libseccomp/tests/54-live-binary_tree.c +128 -0
- data/ext/enterprise_script_service/libseccomp/tests/54-live-binary_tree.py +95 -0
- data/ext/enterprise_script_service/libseccomp/tests/54-live-binary_tree.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/55-basic-pfc_binary_tree.c +134 -0
- data/ext/enterprise_script_service/libseccomp/tests/55-basic-pfc_binary_tree.sh +46 -0
- data/ext/enterprise_script_service/libseccomp/tests/55-basic-pfc_binary_tree.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/56-basic-iterate_syscalls.c +90 -0
- data/ext/enterprise_script_service/libseccomp/tests/56-basic-iterate_syscalls.py +65 -0
- data/ext/enterprise_script_service/libseccomp/tests/56-basic-iterate_syscalls.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/57-basic-rawsysrc.c +64 -0
- data/ext/enterprise_script_service/libseccomp/tests/57-basic-rawsysrc.py +46 -0
- data/ext/enterprise_script_service/libseccomp/tests/57-basic-rawsysrc.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/58-live-tsync_notify.c +116 -0
- data/ext/enterprise_script_service/libseccomp/tests/58-live-tsync_notify.py +61 -0
- data/ext/enterprise_script_service/libseccomp/tests/58-live-tsync_notify.tests +11 -0
- data/ext/enterprise_script_service/libseccomp/tests/Makefile.am +34 -10
- data/ext/enterprise_script_service/libseccomp/tests/regression +10 -3
- data/ext/enterprise_script_service/libseccomp/tests/util.c +3 -3
- data/ext/enterprise_script_service/libseccomp/tools/Makefile.am +0 -3
- data/ext/enterprise_script_service/libseccomp/tools/check-syntax +1 -1
- data/ext/enterprise_script_service/libseccomp/tools/scmp_arch_detect.c +3 -0
- data/ext/enterprise_script_service/libseccomp/tools/scmp_bpf_disasm.c +4 -2
- data/ext/enterprise_script_service/libseccomp/tools/scmp_bpf_sim.c +4 -0
- data/ext/enterprise_script_service/libseccomp/tools/util.c +14 -12
- data/ext/enterprise_script_service/libseccomp/tools/util.h +7 -0
- data/ext/enterprise_script_service/mruby/.github/workflows/build.yml +106 -0
- data/ext/enterprise_script_service/mruby/.github/workflows/codeql-analysis.yml +51 -0
- data/ext/enterprise_script_service/mruby/.github/workflows/main.yml +24 -0
- data/ext/enterprise_script_service/mruby/.gitignore +3 -0
- data/ext/enterprise_script_service/mruby/.travis.yml +6 -9
- data/ext/enterprise_script_service/mruby/AUTHORS +1 -0
- data/ext/enterprise_script_service/mruby/Doxyfile +1 -1
- data/ext/enterprise_script_service/mruby/LICENSE +1 -1
- data/ext/enterprise_script_service/mruby/README.md +6 -2
- data/ext/enterprise_script_service/mruby/appveyor.yml +9 -12
- data/ext/enterprise_script_service/mruby/appveyor_config.rb +9 -0
- data/ext/enterprise_script_service/mruby/build_config.rb +6 -6
- data/ext/enterprise_script_service/mruby/doc/guides/compile.md +6 -2
- data/ext/enterprise_script_service/mruby/doc/guides/debugger.md +1 -1
- data/ext/enterprise_script_service/mruby/doc/guides/mrbconf.md +4 -8
- data/ext/enterprise_script_service/mruby/doc/limitations.md +10 -10
- data/ext/enterprise_script_service/mruby/doc/opcode.md +108 -95
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_ArduinoDue.rb +2 -2
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_IntelEdison.rb +2 -2
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_IntelGalileo.rb +2 -2
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_RX630.rb +2 -2
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_chipKITMax32.rb +2 -2
- data/ext/enterprise_script_service/mruby/examples/targets/build_config_dreamcast_shelf.rb +108 -0
- data/ext/enterprise_script_service/mruby/include/mrbconf.h +10 -7
- data/ext/enterprise_script_service/mruby/include/mruby.h +24 -9
- data/ext/enterprise_script_service/mruby/include/mruby/array.h +4 -0
- data/ext/enterprise_script_service/mruby/include/mruby/boxing_nan.h +11 -2
- data/ext/enterprise_script_service/mruby/include/mruby/boxing_word.h +0 -10
- data/ext/enterprise_script_service/mruby/include/mruby/common.h +10 -0
- data/ext/enterprise_script_service/mruby/include/mruby/compile.h +11 -3
- data/ext/enterprise_script_service/mruby/include/mruby/dump.h +1 -17
- data/ext/enterprise_script_service/mruby/include/mruby/irep.h +10 -0
- data/ext/enterprise_script_service/mruby/include/mruby/istruct.h +4 -1
- data/ext/enterprise_script_service/mruby/include/mruby/khash.h +23 -5
- data/ext/enterprise_script_service/mruby/include/mruby/numeric.h +1 -0
- data/ext/enterprise_script_service/mruby/include/mruby/ops.h +3 -2
- data/ext/enterprise_script_service/mruby/include/mruby/proc.h +13 -8
- data/ext/enterprise_script_service/mruby/include/mruby/string.h +2 -1
- data/ext/enterprise_script_service/mruby/include/mruby/value.h +32 -41
- data/ext/enterprise_script_service/mruby/include/mruby/version.h +4 -4
- data/ext/enterprise_script_service/mruby/lib/mruby/build.rb +2 -30
- data/ext/enterprise_script_service/mruby/lib/mruby/build/command.rb +21 -46
- data/ext/enterprise_script_service/mruby/lib/mruby/gem.rb +9 -0
- data/ext/enterprise_script_service/mruby/lib/mruby/source.rb +3 -1
- data/ext/enterprise_script_service/mruby/mrbgems/default.gembox +7 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-array-ext/mrblib/array.rb +0 -31
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-array-ext/src/array.c +5 -8
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-array-ext/test/array.rb +0 -13
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-config/mrbgem.rake +5 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-debugger/tools/mrdb/mrdb.c +0 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-debugger/tools/mrdb/mrdbconf.h +5 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-mirb/tools/mirb/mirb.c +7 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-mrbc/tools/mrbc/mrbc.c +24 -21
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-mruby/mrbgem.rake +0 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-mruby/tools/mruby/mruby.c +6 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-bin-strip/tools/mruby-strip/mruby-strip.c +6 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-class-ext/src/class.c +6 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-compiler/core/codegen.c +76 -48
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-compiler/core/parse.y +107 -32
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-compiler/core/y.tab.c +13153 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-compiler/mrbgem.rake +13 -15
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-complex/mrblib/complex.rb +1 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-complex/src/complex.c +1 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-error/src/exception.c +3 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-eval/src/eval.c +3 -214
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-eval/test/eval.rb +21 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-fiber/src/fiber.c +1 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-hash-ext/src/hash-ext.c +1 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-inline-struct/test/inline.c +3 -4
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/include/mruby/ext/io.h +39 -7
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/mrbgem.rake +2 -8
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/mrblib/file_constants.rb +0 -16
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/mrblib/io.rb +7 -12
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/src/file.c +77 -32
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/src/file_test.c +18 -36
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/src/io.c +324 -122
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/test/file.rb +18 -12
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/test/io.rb +32 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-io/test/mruby_io_test.c +57 -49
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-kernel-ext/src/kernel.c +6 -8
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-metaprog/src/metaprog.c +15 -17
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-metaprog/test/metaprog.rb +9 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-method/src/method.c +4 -5
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-object-ext/src/object.c +3 -12
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-objectspace/src/mruby_objectspace.c +0 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-pack/src/pack.c +113 -10
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-print/src/print.c +6 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-proc-ext/src/proc.c +2 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-range-ext/src/range.c +1 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-rational/mrblib/rational.rb +1 -3
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-rational/src/rational.c +9 -9
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-sleep/src/mrb_sleep.c +1 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-socket/mrbgem.rake +1 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-socket/test/sockettest.c +3 -2
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-sprintf/src/sprintf.c +62 -25
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-sprintf/test/sprintf.rb +5 -23
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-string-ext/src/string.c +4 -5
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-struct/src/struct.c +5 -11
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-symbol-ext/src/symbol.c +1 -1
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-test/mrbgem.rake +1 -0
- data/ext/enterprise_script_service/mruby/mrbgems/mruby-time/src/time.c +11 -15
- data/ext/enterprise_script_service/mruby/mrblib/00class.rb +10 -0
- data/ext/enterprise_script_service/mruby/mrblib/hash.rb +3 -3
- data/ext/enterprise_script_service/mruby/src/array.c +25 -11
- data/ext/enterprise_script_service/mruby/src/backtrace.c +2 -2
- data/ext/enterprise_script_service/mruby/src/class.c +48 -32
- data/ext/enterprise_script_service/mruby/src/codedump.c +4 -0
- data/ext/enterprise_script_service/mruby/src/debug.c +8 -5
- data/ext/enterprise_script_service/mruby/src/dump.c +3 -65
- data/ext/enterprise_script_service/mruby/src/error.c +58 -7
- data/ext/enterprise_script_service/mruby/src/etc.c +13 -5
- data/ext/enterprise_script_service/mruby/src/fmt_fp.c +98 -21
- data/ext/enterprise_script_service/mruby/src/gc.c +15 -280
- data/ext/enterprise_script_service/mruby/src/hash.c +13 -21
- data/ext/enterprise_script_service/mruby/src/kernel.c +6 -9
- data/ext/enterprise_script_service/mruby/src/load.c +56 -30
- data/ext/enterprise_script_service/mruby/src/numeric.c +50 -70
- data/ext/enterprise_script_service/mruby/src/object.c +23 -5
- data/ext/enterprise_script_service/mruby/src/print.c +27 -3
- data/ext/enterprise_script_service/mruby/src/proc.c +26 -7
- data/ext/enterprise_script_service/mruby/src/range.c +4 -12
- data/ext/enterprise_script_service/mruby/src/state.c +34 -11
- data/ext/enterprise_script_service/mruby/src/string.c +93 -56
- data/ext/enterprise_script_service/mruby/src/symbol.c +13 -12
- data/ext/enterprise_script_service/mruby/src/vm.c +48 -53
- data/ext/enterprise_script_service/mruby/tasks/gitlab.rake +19 -22
- data/ext/enterprise_script_service/mruby/tasks/mrbgems.rake +1 -1
- data/ext/enterprise_script_service/mruby/tasks/toolchains/android.rake +46 -1
- data/ext/enterprise_script_service/mruby/tasks/toolchains/gcc.rake +3 -3
- data/ext/enterprise_script_service/mruby/tasks/toolchains/openwrt.rake +6 -6
- data/ext/enterprise_script_service/mruby/tasks/toolchains/visualcpp.rake +8 -8
- data/ext/enterprise_script_service/mruby/test/assert.rb +5 -4
- data/ext/enterprise_script_service/mruby/test/t/ensure.rb +8 -26
- data/ext/enterprise_script_service/mruby/test/t/exception.rb +2 -2
- data/ext/enterprise_script_service/mruby/test/t/kernel.rb +15 -24
- data/ext/enterprise_script_service/mruby/travis_config.rb +0 -14
- data/ext/enterprise_script_service/msgpack/.github/depends/boost.sh +56 -0
- data/ext/enterprise_script_service/msgpack/.github/workflows/coverage.yml +62 -0
- data/ext/enterprise_script_service/msgpack/.github/workflows/gha.yml +304 -0
- data/ext/enterprise_script_service/msgpack/CHANGELOG.md +11 -0
- data/ext/enterprise_script_service/msgpack/CMakeLists.txt +82 -39
- data/ext/enterprise_script_service/msgpack/Files.cmake +22 -12
- data/ext/enterprise_script_service/msgpack/QUICKSTART-C.md +26 -29
- data/ext/enterprise_script_service/msgpack/README.md +3 -2
- data/ext/enterprise_script_service/msgpack/appveyor.yml +6 -2
- data/ext/enterprise_script_service/msgpack/ci/build_cmake.sh +3 -1
- data/ext/enterprise_script_service/msgpack/cmake/CodeCoverage.cmake +55 -0
- data/ext/enterprise_script_service/msgpack/codecov.yml +36 -0
- data/ext/enterprise_script_service/msgpack/example/CMakeLists.txt +9 -5
- data/ext/enterprise_script_service/msgpack/example/boost/CMakeLists.txt +1 -1
- data/ext/enterprise_script_service/msgpack/example/c/CMakeLists.txt +17 -6
- data/ext/enterprise_script_service/msgpack/example/c/boundary.c +296 -0
- data/ext/enterprise_script_service/msgpack/example/c/jsonconv.c +419 -0
- data/ext/enterprise_script_service/msgpack/example/c/simple_c.c +1 -1
- data/ext/enterprise_script_service/msgpack/example/cpp03/CMakeLists.txt +3 -3
- data/ext/enterprise_script_service/msgpack/example/cpp11/CMakeLists.txt +2 -2
- data/ext/enterprise_script_service/msgpack/example/x3/CMakeLists.txt +2 -2
- data/ext/enterprise_script_service/msgpack/include/msgpack/pack.h +24 -1
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/array_ref.hpp +5 -4
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/boost/optional.hpp +4 -4
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/cpp17/vector_byte.hpp +8 -8
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/map.hpp +4 -4
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/vector.hpp +4 -4
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/vector_char.hpp +8 -8
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/vector_unsigned_char.hpp +8 -8
- data/ext/enterprise_script_service/msgpack/include/msgpack/v1/adaptor/wstring.hpp +4 -4
- data/ext/enterprise_script_service/msgpack/include/msgpack/v3/unpack.hpp +6 -6
- data/ext/enterprise_script_service/msgpack/include/msgpack/version_master.h +2 -2
- data/ext/enterprise_script_service/msgpack/include/msgpack/zbuffer.h +4 -4
- data/ext/enterprise_script_service/msgpack/make_file_list.sh +38 -11
- data/ext/enterprise_script_service/msgpack/src/vrefbuffer.c +6 -0
- data/ext/enterprise_script_service/msgpack/test/CMakeLists.txt +86 -64
- data/ext/enterprise_script_service/msgpack/test/array_ref.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/boost_fusion.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/boost_optional.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/boost_string_ref.cpp +4 -1
- data/ext/enterprise_script_service/msgpack/test/boost_string_view.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/boost_variant.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/buffer.cpp +4 -47
- data/ext/enterprise_script_service/msgpack/test/buffer_c.cpp +148 -0
- data/ext/enterprise_script_service/msgpack/test/carray.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/cases.cpp +8 -4
- data/ext/enterprise_script_service/msgpack/test/convert.cpp +8 -4
- data/ext/enterprise_script_service/msgpack/test/fixint.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/fixint_c.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/fuzz_unpack_pack_fuzzer_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/iterator_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/json.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/limit.cpp +8 -4
- data/ext/enterprise_script_service/msgpack/test/msgpack_basic.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_c.cpp +159 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_container.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_cpp11.cpp +32 -27
- data/ext/enterprise_script_service/msgpack/test/msgpack_cpp17.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_stream.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_tuple.cpp +4 -1
- data/ext/enterprise_script_service/msgpack/test/msgpack_vref.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/msgpack_x3_parse.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/object.cpp +4 -1
- data/ext/enterprise_script_service/msgpack/test/object_with_zone.cpp +12 -8
- data/ext/enterprise_script_service/msgpack/test/pack_unpack.cpp +30 -26
- data/ext/enterprise_script_service/msgpack/test/pack_unpack_c.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/raw.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/reference.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/reference_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/reference_wrapper_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/shared_ptr_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/size_equal_only.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/streaming.cpp +8 -4
- data/ext/enterprise_script_service/msgpack/test/streaming_c.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/unique_ptr_cpp11.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/user_class.cpp +16 -12
- data/ext/enterprise_script_service/msgpack/test/version.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/visitor.cpp +4 -0
- data/ext/enterprise_script_service/msgpack/test/zone.cpp +4 -0
- data/lib/script_core/engine.rb +24 -5
- data/lib/script_core/executable.rb +4 -3
- data/lib/script_core/result.rb +1 -5
- data/lib/script_core/service_channel.rb +1 -0
- data/lib/script_core/version.rb +1 -1
- data/lib/tasks/script_core.rake +3 -1
- data/script_core.gemspec +2 -2
- data/spec/dummy/app/lib/script_engine.rb +64 -5
- metadata +68 -30
- data/ext/enterprise_script_service/libseccomp/src/arch-aarch64-syscalls.c +0 -559
- data/ext/enterprise_script_service/libseccomp/src/arch-arm-syscalls.c +0 -570
- data/ext/enterprise_script_service/libseccomp/src/arch-mips-syscalls.c +0 -562
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64-syscalls.c +0 -562
- data/ext/enterprise_script_service/libseccomp/src/arch-mips64n32-syscalls.c +0 -562
- data/ext/enterprise_script_service/libseccomp/src/arch-parisc-syscalls.c +0 -542
- data/ext/enterprise_script_service/libseccomp/src/arch-ppc-syscalls.c +0 -559
- data/ext/enterprise_script_service/libseccomp/src/arch-ppc64-syscalls.c +0 -559
- data/ext/enterprise_script_service/libseccomp/src/arch-s390-syscalls.c +0 -626
- data/ext/enterprise_script_service/libseccomp/src/arch-s390x-syscalls.c +0 -626
- data/ext/enterprise_script_service/libseccomp/src/arch-x32-syscalls.c +0 -558
- data/ext/enterprise_script_service/libseccomp/src/arch-x86-syscalls.c +0 -692
- data/ext/enterprise_script_service/libseccomp/src/arch-x86_64-syscalls.c +0 -559
- data/ext/enterprise_script_service/libseccomp/tests/18-sim-basic_whitelist.tests +0 -32
- data/ext/enterprise_script_service/libseccomp/tests/34-sim-basic_blacklist.tests +0 -32
- data/ext/enterprise_script_service/msgpack/.travis.yml +0 -258
@@ -0,0 +1,64 @@
|
|
1
|
+
/**
|
2
|
+
* Seccomp Library test program
|
3
|
+
*
|
4
|
+
* Copyright (c) 2020 Cisco Systems, Inc. <pmoore2@cisco.com>
|
5
|
+
* Author: Paul Moore <paul@paul-moore.com>
|
6
|
+
*/
|
7
|
+
|
8
|
+
/*
|
9
|
+
* This library is free software; you can redistribute it and/or modify it
|
10
|
+
* under the terms of version 2.1 of the GNU Lesser General Public License as
|
11
|
+
* published by the Free Software Foundation.
|
12
|
+
*
|
13
|
+
* This library is distributed in the hope that it will be useful, but WITHOUT
|
14
|
+
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
15
|
+
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License
|
16
|
+
* for more details.
|
17
|
+
*
|
18
|
+
* You should have received a copy of the GNU Lesser General Public License
|
19
|
+
* along with this library; if not, see <http://www.gnu.org/licenses>.
|
20
|
+
*/
|
21
|
+
|
22
|
+
#include <errno.h>
|
23
|
+
#include <fcntl.h>
|
24
|
+
#include <unistd.h>
|
25
|
+
#include <sys/types.h>
|
26
|
+
#include <sys/stat.h>
|
27
|
+
|
28
|
+
#include <seccomp.h>
|
29
|
+
|
30
|
+
#include "util.h"
|
31
|
+
|
32
|
+
int main(int argc, char *argv[])
|
33
|
+
{
|
34
|
+
int rc;
|
35
|
+
int fd;
|
36
|
+
scmp_filter_ctx ctx = NULL;
|
37
|
+
|
38
|
+
rc = seccomp_api_set(3);
|
39
|
+
if (rc != 0)
|
40
|
+
return EOPNOTSUPP;
|
41
|
+
|
42
|
+
ctx = seccomp_init(SCMP_ACT_ALLOW);
|
43
|
+
if (ctx == NULL) {
|
44
|
+
rc = ENOMEM;
|
45
|
+
goto out;
|
46
|
+
}
|
47
|
+
|
48
|
+
rc = seccomp_attr_set(ctx, SCMP_FLTATR_API_SYSRAWRC, 1);
|
49
|
+
if (rc != 0)
|
50
|
+
goto out;
|
51
|
+
|
52
|
+
/* we must use a closed/invalid fd for this to work */
|
53
|
+
fd = dup(2);
|
54
|
+
close(fd);
|
55
|
+
rc = seccomp_export_pfc(ctx, fd);
|
56
|
+
if (rc == -EBADF)
|
57
|
+
rc = 0;
|
58
|
+
else
|
59
|
+
rc = -1;
|
60
|
+
|
61
|
+
out:
|
62
|
+
seccomp_release(ctx);
|
63
|
+
return (rc < 0 ? -rc : rc);
|
64
|
+
}
|
@@ -0,0 +1,46 @@
|
|
1
|
+
#!/usr/bin/env python
|
2
|
+
|
3
|
+
#
|
4
|
+
# Seccomp Library test program
|
5
|
+
#
|
6
|
+
# Copyright (c) 2020 Cisco Systems, Inc. <pmoore2@cisco.com>
|
7
|
+
# Author: Paul Moore <paul@paul-moore.com>
|
8
|
+
#
|
9
|
+
|
10
|
+
#
|
11
|
+
# This library is free software; you can redistribute it and/or modify it
|
12
|
+
# under the terms of version 2.1 of the GNU Lesser General Public License as
|
13
|
+
# published by the Free Software Foundation.
|
14
|
+
#
|
15
|
+
# This library is distributed in the hope that it will be useful, but WITHOUT
|
16
|
+
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
17
|
+
# FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License
|
18
|
+
# for more details.
|
19
|
+
#
|
20
|
+
# You should have received a copy of the GNU Lesser General Public License
|
21
|
+
# along with this library; if not, see <http://www.gnu.org/licenses>.
|
22
|
+
#
|
23
|
+
|
24
|
+
import argparse
|
25
|
+
import sys
|
26
|
+
import os
|
27
|
+
|
28
|
+
import util
|
29
|
+
|
30
|
+
from seccomp import *
|
31
|
+
|
32
|
+
def test():
|
33
|
+
# this test really isn't conclusive, but considering how python does error
|
34
|
+
# handling it may be the best we can do
|
35
|
+
f = SyscallFilter(ALLOW)
|
36
|
+
dummy = open("/dev/null", "w")
|
37
|
+
os.close(dummy.fileno())
|
38
|
+
try:
|
39
|
+
f = f.export_pfc(dummy)
|
40
|
+
except RuntimeError:
|
41
|
+
pass
|
42
|
+
|
43
|
+
test()
|
44
|
+
|
45
|
+
# kate: syntax python;
|
46
|
+
# kate: indent-mode python; space-indent on; indent-width 4; mixedindent off;
|
@@ -0,0 +1,116 @@
|
|
1
|
+
/**
|
2
|
+
* Seccomp Library test program
|
3
|
+
*
|
4
|
+
* Copyright (c) 2019 Cisco Systems, Inc. <pmoore2@cisco.com>
|
5
|
+
* Author: Paul Moore <paul@paul-moore.com>
|
6
|
+
*/
|
7
|
+
|
8
|
+
/*
|
9
|
+
* This library is free software; you can redistribute it and/or modify it
|
10
|
+
* under the terms of version 2.1 of the GNU Lesser General Public License as
|
11
|
+
* published by the Free Software Foundation.
|
12
|
+
*
|
13
|
+
* This library is distributed in the hope that it will be useful, but WITHOUT
|
14
|
+
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
15
|
+
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License
|
16
|
+
* for more details.
|
17
|
+
*
|
18
|
+
* You should have received a copy of the GNU Lesser General Public License
|
19
|
+
* along with this library; if not, see <http://www.gnu.org/licenses>.
|
20
|
+
*/
|
21
|
+
|
22
|
+
#include <sys/types.h>
|
23
|
+
#include <sys/wait.h>
|
24
|
+
#include <unistd.h>
|
25
|
+
#include <seccomp.h>
|
26
|
+
#include <signal.h>
|
27
|
+
#include <syscall.h>
|
28
|
+
#include <errno.h>
|
29
|
+
#include <stdlib.h>
|
30
|
+
|
31
|
+
#include "util.h"
|
32
|
+
|
33
|
+
#define MAGIC 0x1122334455667788UL
|
34
|
+
|
35
|
+
int main(int argc, char *argv[])
|
36
|
+
{
|
37
|
+
int rc, fd = -1, status;
|
38
|
+
struct seccomp_notif *req = NULL;
|
39
|
+
struct seccomp_notif_resp *resp = NULL;
|
40
|
+
scmp_filter_ctx ctx = NULL;
|
41
|
+
pid_t pid = 0;
|
42
|
+
|
43
|
+
ctx = seccomp_init(SCMP_ACT_ALLOW);
|
44
|
+
if (ctx == NULL)
|
45
|
+
return ENOMEM;
|
46
|
+
|
47
|
+
rc = seccomp_attr_set(ctx, SCMP_FLTATR_CTL_TSYNC, 1);
|
48
|
+
if (rc)
|
49
|
+
goto out;
|
50
|
+
|
51
|
+
rc = seccomp_rule_add(ctx, SCMP_ACT_NOTIFY, SCMP_SYS(getpid), 0, NULL);
|
52
|
+
if (rc)
|
53
|
+
goto out;
|
54
|
+
|
55
|
+
rc = seccomp_load(ctx);
|
56
|
+
if (rc < 0)
|
57
|
+
goto out;
|
58
|
+
|
59
|
+
rc = seccomp_notify_fd(ctx);
|
60
|
+
if (rc < 0)
|
61
|
+
goto out;
|
62
|
+
fd = rc;
|
63
|
+
|
64
|
+
pid = fork();
|
65
|
+
if (pid == 0)
|
66
|
+
exit(syscall(SCMP_SYS(getpid)) != MAGIC);
|
67
|
+
|
68
|
+
rc = seccomp_notify_alloc(&req, &resp);
|
69
|
+
if (rc)
|
70
|
+
goto out;
|
71
|
+
|
72
|
+
rc = seccomp_notify_receive(fd, req);
|
73
|
+
if (rc)
|
74
|
+
goto out;
|
75
|
+
if (req->data.nr != SCMP_SYS(getpid)) {
|
76
|
+
rc = -EFAULT;
|
77
|
+
goto out;
|
78
|
+
}
|
79
|
+
rc = seccomp_notify_id_valid(fd, req->id);
|
80
|
+
if (rc)
|
81
|
+
goto out;
|
82
|
+
|
83
|
+
resp->id = req->id;
|
84
|
+
resp->val = MAGIC;
|
85
|
+
resp->error = 0;
|
86
|
+
resp->flags = 0;
|
87
|
+
rc = seccomp_notify_respond(fd, resp);
|
88
|
+
if (rc)
|
89
|
+
goto out;
|
90
|
+
|
91
|
+
if (waitpid(pid, &status, 0) != pid) {
|
92
|
+
rc = -EFAULT;
|
93
|
+
goto out;
|
94
|
+
}
|
95
|
+
|
96
|
+
if (!WIFEXITED(status)) {
|
97
|
+
rc = -EFAULT;
|
98
|
+
goto out;
|
99
|
+
}
|
100
|
+
if (WEXITSTATUS(status)) {
|
101
|
+
rc = -EFAULT;
|
102
|
+
goto out;
|
103
|
+
}
|
104
|
+
|
105
|
+
out:
|
106
|
+
if (fd >= 0)
|
107
|
+
close(fd);
|
108
|
+
if (pid)
|
109
|
+
kill(pid, SIGKILL);
|
110
|
+
seccomp_notify_free(req, resp);
|
111
|
+
seccomp_release(ctx);
|
112
|
+
|
113
|
+
if (rc != 0)
|
114
|
+
return (rc < 0 ? -rc : rc);
|
115
|
+
return 160;
|
116
|
+
}
|
@@ -0,0 +1,61 @@
|
|
1
|
+
#!/usr/bin/env python
|
2
|
+
|
3
|
+
#
|
4
|
+
# Seccomp Library test program
|
5
|
+
#
|
6
|
+
# Copyright (c) 2019 Cisco Systems, Inc. <pmoore2@cisco.com>
|
7
|
+
# Author: Paul Moore <paul@paul-moore.com>
|
8
|
+
#
|
9
|
+
|
10
|
+
#
|
11
|
+
# This library is free software; you can redistribute it and/or modify it
|
12
|
+
# under the terms of version 2.1 of the GNU Lesser General Public License as
|
13
|
+
# published by the Free Software Foundation.
|
14
|
+
#
|
15
|
+
# This library is distributed in the hope that it will be useful, but WITHOUT
|
16
|
+
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
17
|
+
# FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License
|
18
|
+
# for more details.
|
19
|
+
#
|
20
|
+
# You should have received a copy of the GNU Lesser General Public License
|
21
|
+
# along with this library; if not, see <http://www.gnu.org/licenses>.
|
22
|
+
#
|
23
|
+
|
24
|
+
import argparse
|
25
|
+
import os
|
26
|
+
import signal
|
27
|
+
import sys
|
28
|
+
|
29
|
+
import util
|
30
|
+
|
31
|
+
from seccomp import *
|
32
|
+
|
33
|
+
def test():
|
34
|
+
magic = os.getuid() + 1
|
35
|
+
f = SyscallFilter(ALLOW)
|
36
|
+
f.set_attr(Attr.CTL_TSYNC, 1)
|
37
|
+
f.add_rule(NOTIFY, "getuid")
|
38
|
+
f.load()
|
39
|
+
pid = os.fork()
|
40
|
+
if pid == 0:
|
41
|
+
val = os.getuid()
|
42
|
+
if val != magic:
|
43
|
+
raise RuntimeError("Response return value failed")
|
44
|
+
quit(1)
|
45
|
+
quit(0)
|
46
|
+
else:
|
47
|
+
notify = f.receive_notify()
|
48
|
+
if notify.syscall != resolve_syscall(Arch(), "getuid"):
|
49
|
+
raise RuntimeError("Notification failed")
|
50
|
+
f.respond_notify(NotificationResponse(notify, magic, 0, 0))
|
51
|
+
wpid, rc = os.waitpid(pid, 0)
|
52
|
+
if os.WIFEXITED(rc) == 0:
|
53
|
+
raise RuntimeError("Child process error")
|
54
|
+
if os.WEXITSTATUS(rc) != 0:
|
55
|
+
raise RuntimeError("Child process error")
|
56
|
+
quit(160)
|
57
|
+
|
58
|
+
test()
|
59
|
+
|
60
|
+
# kate: syntax python;
|
61
|
+
# kate: indent-mode python; space-indent on; indent-width 4; mixedindent off;
|
@@ -57,7 +57,7 @@ check_PROGRAMS = \
|
|
57
57
|
15-basic-resolver \
|
58
58
|
16-sim-arch_basic \
|
59
59
|
17-sim-arch_merge \
|
60
|
-
18-sim-
|
60
|
+
18-sim-basic_allowlist \
|
61
61
|
19-sim-missing_syscalls \
|
62
62
|
20-live-basic_die \
|
63
63
|
21-live-basic_allow \
|
@@ -73,7 +73,7 @@ check_PROGRAMS = \
|
|
73
73
|
31-basic-version_check \
|
74
74
|
32-live-tsync_allow \
|
75
75
|
33-sim-socket_syscalls_be \
|
76
|
-
34-sim-
|
76
|
+
34-sim-basic_denylist \
|
77
77
|
35-sim-negative_one \
|
78
78
|
36-sim-ipc_syscalls \
|
79
79
|
37-sim-ipc_syscalls_be \
|
@@ -89,7 +89,15 @@ check_PROGRAMS = \
|
|
89
89
|
47-live-kill_process \
|
90
90
|
48-sim-32b_args \
|
91
91
|
49-sim-64b_comparisons \
|
92
|
-
50-sim-hash_collision
|
92
|
+
50-sim-hash_collision \
|
93
|
+
51-live-user_notification \
|
94
|
+
52-basic-load \
|
95
|
+
53-sim-binary_tree \
|
96
|
+
54-live-binary_tree \
|
97
|
+
55-basic-pfc_binary_tree \
|
98
|
+
56-basic-iterate_syscalls \
|
99
|
+
57-basic-rawsysrc \
|
100
|
+
58-live-tsync_notify
|
93
101
|
|
94
102
|
EXTRA_DIST_TESTPYTHON = \
|
95
103
|
util.py \
|
@@ -110,7 +118,7 @@ EXTRA_DIST_TESTPYTHON = \
|
|
110
118
|
15-basic-resolver.py \
|
111
119
|
16-sim-arch_basic.py \
|
112
120
|
17-sim-arch_merge.py \
|
113
|
-
18-sim-
|
121
|
+
18-sim-basic_allowlist.py \
|
114
122
|
19-sim-missing_syscalls.py \
|
115
123
|
20-live-basic_die.py \
|
116
124
|
21-live-basic_allow.py \
|
@@ -126,7 +134,7 @@ EXTRA_DIST_TESTPYTHON = \
|
|
126
134
|
31-basic-version_check.py \
|
127
135
|
32-live-tsync_allow.py \
|
128
136
|
33-sim-socket_syscalls_be.py \
|
129
|
-
34-sim-
|
137
|
+
34-sim-basic_denylist.py \
|
130
138
|
35-sim-negative_one.py \
|
131
139
|
36-sim-ipc_syscalls.py \
|
132
140
|
37-sim-ipc_syscalls_be.py \
|
@@ -141,7 +149,14 @@ EXTRA_DIST_TESTPYTHON = \
|
|
141
149
|
47-live-kill_process.py \
|
142
150
|
48-sim-32b_args.py \
|
143
151
|
49-sim-64b_comparisons.py \
|
144
|
-
50-sim-hash_collision.py
|
152
|
+
50-sim-hash_collision.py \
|
153
|
+
51-live-user_notification.py \
|
154
|
+
52-basic-load.py \
|
155
|
+
53-sim-binary_tree.py \
|
156
|
+
54-live-binary_tree.py \
|
157
|
+
56-basic-iterate_syscalls.py \
|
158
|
+
57-basic-rawsysrc.py \
|
159
|
+
58-live-tsync_notify.py
|
145
160
|
|
146
161
|
EXTRA_DIST_TESTCFGS = \
|
147
162
|
01-sim-allow.tests \
|
@@ -161,7 +176,7 @@ EXTRA_DIST_TESTCFGS = \
|
|
161
176
|
15-basic-resolver.tests \
|
162
177
|
16-sim-arch_basic.tests \
|
163
178
|
17-sim-arch_merge.tests \
|
164
|
-
18-sim-
|
179
|
+
18-sim-basic_allowlist.tests \
|
165
180
|
19-sim-missing_syscalls.tests \
|
166
181
|
20-live-basic_die.tests \
|
167
182
|
21-live-basic_allow.tests \
|
@@ -177,7 +192,7 @@ EXTRA_DIST_TESTCFGS = \
|
|
177
192
|
31-basic-version_check.tests \
|
178
193
|
32-live-tsync_allow.tests \
|
179
194
|
33-sim-socket_syscalls_be.tests \
|
180
|
-
34-sim-
|
195
|
+
34-sim-basic_denylist.tests \
|
181
196
|
35-sim-negative_one.tests \
|
182
197
|
36-sim-ipc_syscalls.tests \
|
183
198
|
37-sim-ipc_syscalls_be.tests \
|
@@ -193,10 +208,19 @@ EXTRA_DIST_TESTCFGS = \
|
|
193
208
|
47-live-kill_process.tests \
|
194
209
|
48-sim-32b_args.tests \
|
195
210
|
49-sim-64b_comparisons.tests \
|
196
|
-
50-sim-hash_collision.tests
|
211
|
+
50-sim-hash_collision.tests \
|
212
|
+
51-live-user_notification.tests \
|
213
|
+
52-basic-load.tests \
|
214
|
+
53-sim-binary_tree.tests \
|
215
|
+
54-live-binary_tree.tests \
|
216
|
+
55-basic-pfc_binary_tree.tests \
|
217
|
+
56-basic-iterate_syscalls.tests \
|
218
|
+
57-basic-rawsysrc.tests \
|
219
|
+
58-live-tsync_notify.tests
|
197
220
|
|
198
221
|
EXTRA_DIST_TESTSCRIPTS = \
|
199
|
-
38-basic-pfc_coverage.sh 38-basic-pfc_coverage.pfc
|
222
|
+
38-basic-pfc_coverage.sh 38-basic-pfc_coverage.pfc \
|
223
|
+
55-basic-pfc_binary_tree.sh 55-basic-pfc_binary_tree.pfc
|
200
224
|
|
201
225
|
EXTRA_DIST_TESTTOOLS = regression testdiff testgen
|
202
226
|
|
@@ -25,7 +25,8 @@ GLBL_ARCH_LE_SUPPORT=" \
|
|
25
25
|
x86 x86_64 x32 \
|
26
26
|
arm aarch64 \
|
27
27
|
mipsel mipsel64 mipsel64n32 \
|
28
|
-
ppc64le
|
28
|
+
ppc64le \
|
29
|
+
riscv64"
|
29
30
|
GLBL_ARCH_BE_SUPPORT=" \
|
30
31
|
mips mips64 mips64n32 \
|
31
32
|
parisc parisc64 \
|
@@ -46,6 +47,7 @@ GLBL_ARCH_64B_SUPPORT=" \
|
|
46
47
|
mips64 \
|
47
48
|
parisc64 \
|
48
49
|
ppc64 \
|
50
|
+
riscv64 \
|
49
51
|
s390x"
|
50
52
|
|
51
53
|
GLBL_SYS_ARCH="../tools/scmp_arch_detect"
|
@@ -94,6 +96,7 @@ libseccomp regression test automation script
|
|
94
96
|
optional arguments:
|
95
97
|
-h show this help message and exit
|
96
98
|
-m MODE specified the test mode [c (default), python]
|
99
|
+
can also be set via LIBSECCOMP_TSTCFG_MODE_LIST env variable
|
97
100
|
-a specifies all tests are to be run
|
98
101
|
-b BATCH_NAME specifies batch of tests to be run
|
99
102
|
-l [LOG] specifies log file to write test results to
|
@@ -269,7 +272,8 @@ function generate_random_data() {
|
|
269
272
|
else
|
270
273
|
rcount=$[ ($RANDOM % 8) + 1 ]
|
271
274
|
fi
|
272
|
-
rdata=$(
|
275
|
+
rdata=$(dd if=/dev/urandom bs=64 count=1 status=none | \
|
276
|
+
md5sum | awk '{ print $1 }' | head -c"$rcount")
|
273
277
|
echo "$rdata"
|
274
278
|
}
|
275
279
|
|
@@ -776,7 +780,7 @@ function run_test_live() {
|
|
776
780
|
|
777
781
|
# setup the arch specific return values
|
778
782
|
case "$arch" in
|
779
|
-
x86|x86_64|x32|arm|aarch64|parisc|parisc64|ppc|ppc64|ppc64le|ppc|s390|s390x)
|
783
|
+
x86|x86_64|x32|arm|aarch64|parisc|parisc64|ppc|ppc64|ppc64le|ppc|s390|s390x|riscv64)
|
780
784
|
rc_kill_process=159
|
781
785
|
rc_kill=159
|
782
786
|
rc_allow=160
|
@@ -1025,6 +1029,9 @@ while getopts "ab:gl:m:s:t:T:vh" opt; do
|
|
1025
1029
|
esac
|
1026
1030
|
done
|
1027
1031
|
|
1032
|
+
# use mode list from environment if provided
|
1033
|
+
[[ -z $mode_list && -n $LIBSECCOMP_TSTCFG_MODE_LIST ]] && mode_list=$LIBSECCOMP_TSTCFG_MODE_LIST
|
1034
|
+
|
1028
1035
|
# determine the mode test automatically
|
1029
1036
|
if [[ -z $mode_list ]]; then
|
1030
1037
|
# always perform the native c tests
|