Home Verkennen Help
Registreren Inloggen
dingyu
/
CooCenter-System-kernel
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Boom: e68e7644fa
Aftakkingen Labels
CooCenter-Sy...
/
samples
/
bpf
/
tracex5_user.c

tracex5_user.c 973 B
Geschiedenis Ruwe

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. #include <stdio.h>
    2. 

  2. #include <linux/bpf.h>
    3. 

  3. #include <unistd.h>
    4. 

  4. #include <linux/filter.h>
    5. 

  5. #include <linux/seccomp.h>
    6. 

  6. #include <sys/prctl.h>
    7. 

  7. #include "libbpf.h"
    8. 

  8. #include "bpf_load.h"
    9. 

  9. 

  10. /* install fake seccomp program to enable seccomp code path inside the kernel,
    11. 

  11.  * so that our kprobe attached to seccomp_phase1() can be triggered
    12. 

  12.  */
    13. 

  13. static void install_accept_all_seccomp(void)
    14. 

  14. {
    15. 

  15. 	struct sock_filter filter[] = {
    16. 

  16. 		BPF_STMT(BPF_RET+BPF_K, SECCOMP_RET_ALLOW),
    17. 

  17. 	};
    18. 

  18. 	struct sock_fprog prog = {
    19. 

  19. 		.len = (unsigned short)(sizeof(filter)/sizeof(filter[0])),
    20. 

  20. 		.filter = filter,
    21. 

  21. 	};
    22. 

  22. 	if (prctl(PR_SET_SECCOMP, 2, &prog))
    23. 

  23. 		perror("prctl");
    24. 

  24. }
    25. 

  25. 

  26. int main(int ac, char **argv)
    27. 

  27. {
    28. 

  28. 	FILE *f;
    29. 

  29. 	char filename[256];
    30. 

  30. 

  31. 	snprintf(filename, sizeof(filename), "%s_kern.o", argv[0]);
    32. 

  32. 

  33. 	if (load_bpf_file(filename)) {
    34. 

  34. 		printf("%s", bpf_log_buf);
    35. 

  35. 		return 1;
    36. 

  36. 	}
    37. 

  37. 

  38. 	install_accept_all_seccomp();
    39. 

  39. 

  40. 	f = popen("dd if=/dev/zero of=/dev/null count=5", "r");
    41. 

  41. 	(void) f;
    42. 

  42. 

  43. 	read_trace_pipe();
    44. 

  44. 

  45. 	return 0;
    46. 

  46. }
    47.