Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | demo: simplify and adjust scripts | Alice Frosi | 2023-06-14 | 4 | -29/+14 |
| | |||||
* | Merge branch 'devel' | Alice Frosi | 2023-06-14 | 4 | -10/+14 |
|\ | |||||
| * | cooker: fix initialization and variable type | Alice Frosi | 2023-06-14 | 2 | -7/+5 |
| | | |||||
| * | demo: update demo | Alice Frosi | 2023-06-14 | 2 | -3/+9 |
| | | |||||
* | | Makefile: Fix build | Stefano Brivio | 2023-06-14 | 1 | -1/+1 |
|/ | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker: Fix up debugging messages for "return" | Stefano Brivio | 2023-06-14 | 5 | -24/+47 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker/parse: Error out on 'continue' with value/error tag | Stefano Brivio | 2023-06-14 | 1 | -4/+4 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker/calls: Actually add io.{c,h} | Stefano Brivio | 2023-06-14 | 2 | -0/+135 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker/filter: Stop the sock_filter cast madness | Stefano Brivio | 2023-06-14 | 2 | -92/+65 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker: Support for read(), OP_STORE, field-based filters | Stefano Brivio | 2023-06-14 | 13 | -231/+386 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | gluten: remove unused blk op | Alice Frosi | 2023-06-12 | 1 | -1/+0 |
| | |||||
* | filter: increment counter only if call has args | Alice Frosi | 2023-06-12 | 1 | -0/+2 |
| | |||||
* | cooker: Pass arguments to filter | Stefano Brivio | 2023-06-09 | 7 | -11/+76 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | demo: with mknod and podman | Alice Frosi | 2023-06-09 | 4 | -105/+160 |
| | | | | | | Splited common functions in web/common.sh and created new script for mknod demo. The demo uses the mount namespace of the caller. Additionally, this removes extra commented lines in demo/mknod.hjson. | ||||
* | seitan,cooker: add wd to change work directory and mknod | Alice Frosi | 2023-06-09 | 9 | -102/+132 |
| | | | | | | | | | | | | | | | | | ./seitan-cooker demo/mknod.hjson demo/mknod.gluten demo/mknod.bpf Start seitan with the socket option: ./seitan -s /tmp/seitan.sock -i demo/mknod.gluten Start the container: sudo rm -f /dev/lol sudo chown $USER:$USER /tmp/seitan.sock podman run -ti --runtime /usr/bin/crun \ --security-opt label=disable \ -v $(pwd)/test:/test \ --annotation run.oci.seccomp_bpf_data="$(base64 -w0 demo/mknod.bpf)" \ --annotation run.oci.seccomp.receiver=/tmp/seitan.sock fedora \ sh -c 'mknod /dev/lol c 1 7 && ls -l /dev/lol' | ||||
* | cooker: Full support for flags and masks, assorted fixes | Stefano Brivio | 2023-06-08 | 12 | -52/+193 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | mknod/mknodat values, initial support for MASK flag, OP_BITWISE | Stefano Brivio | 2023-06-07 | 11 | -87/+225 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan, cooker: refactor op_return | Alice Frosi | 2023-06-07 | 8 | -89/+76 |
| | | | | | | | Refactor OP_RETURN: - merged OP_BLOCK and OP_CONT into OP_RETURN - add desc field for op_return - updated the demo files | ||||
* | seitan,cooker: op_resolvefd | Alice Frosi | 2023-06-07 | 8 | -18/+88 |
| | | | | | | | | | ops: - update resolvefd with the description - add debug prints cooker: - add emit_resolvefd when match has type FDPATH | ||||
* | web: generating connect demo with asciinema | Alice Frosi | 2023-06-07 | 1 | -0/+189 |
| | |||||
* | seitan, main: Più umano più vero (more human more true) | Stefano Brivio | 2023-06-07 | 1 | -20/+25 |
| | | | | | | ...and terminate on EPOLLHUP. Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | demo: Add mknod.hjson | Stefano Brivio | 2023-06-06 | 1 | -0/+42 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker: Draft quality: mknod/mknodat, sets of values with "in" | Stefano Brivio | 2023-06-06 | 12 | -42/+293 |
| | | | | | | | | While at it: - directly assign 'fd' in eater from install_filter() - turn op_cmp into a description-style thing Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan-run: Drop -x, refine cleanup | Stefano Brivio | 2023-06-05 | 1 | -2/+3 |
| | | | | | | If DIR already exists, just remove our entries. Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan-run: restore old behavior | Alice Frosi | 2023-06-05 | 1 | -2/+1 |
| | | | | Clean-up the entire DIR. | ||||
* | seitan: add debug message for op_load/op_cmp | Alice Frosi | 2023-06-05 | 1 | -4/+9 |
| | |||||
* | cooker: use unsigned short for family with connect | Alice Frosi | 2023-06-05 | 6 | -3/+9 |
| | |||||
* | cooker: missing size set for op_load | Alice Frosi | 2023-06-05 | 1 | -0/+1 |
| | |||||
* | seitan: fix jmp in op_nr | Alice Frosi | 2023-06-05 | 1 | -6/+2 |
| | |||||
* | seitan: use jmp.offset as absolute value | Alice Frosi | 2023-06-05 | 1 | -4/+2 |
| | |||||
* | seitan: operations | Alice Frosi | 2023-06-05 | 2 | -23/+28 |
| | | | | | | | | Added: - fix offset for jumping to the next block (use absolute jump and not relative. - fix op_cmp, jump if the comparison is true. - added a couple of debug print | ||||
* | demo: extend demo with additional matches | Alice Frosi | 2023-06-05 | 2 | -2/+15 |
| | | | | | Add matches for injecting error and faking the connect syscall. Fix seitan-run clean-up: delete only *.bpf and *.gluten files | ||||
* | cooker: add emit_end | Alice Frosi | 2023-06-05 | 3 | -1/+18 |
| | |||||
* | cooker: Generic attributes and ATTR_SIZE | Stefano Brivio | 2023-06-04 | 8 | -31/+89 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | demo: Start with a connect() example | Stefano Brivio | 2023-06-04 | 2 | -0/+15 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | treewide: Change to GPLv2, add LICENSES, missing headers | Stefano Brivio | 2023-06-04 | 65 | -204/+418 |
| | | | | | | As discussed with Alice -- 'reuse lint' passes now. Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan-run: Assorted cleanups | Stefano Brivio | 2023-06-03 | 1 | -14/+18 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | Introduce seitan-run | Stefano Brivio | 2023-06-02 | 1 | -0/+37 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan: Minor header cleanup | Stefano Brivio | 2023-06-02 | 1 | -2/+3 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker: json_object_get_boolean() can return true for missing key | Stefano Brivio | 2023-06-02 | 1 | -2/+2 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | gluten: What's const is const | Stefano Brivio | 2023-06-02 | 2 | -2/+2 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | seitan: whoops | Stefano Brivio | 2023-06-02 | 2 | -8/+5 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker, seitan: OP_FD | Stefano Brivio | 2023-06-02 | 7 | -37/+107 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker, seitan: fix some bugs for op call | Alice Frosi | 2023-06-02 | 4 | -21/+34 |
| | | | | | | | | | | | | | | cooker: - added missing OP_CALL type - local copy of the offset for the type STRUCT - fix return offset - added type LONG in emit_data seitan: - check context if NULL - fix ptr dereference - added a couple of debug print - added error message in seitan for eval | ||||
* | cooker, seitan: OP_CALL arguments and context | Stefano Brivio | 2023-06-02 | 10 | -198/+314 |
| | | | | Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | cooker: OP_CALL and OP_COPY stuff | Stefano Brivio | 2023-06-01 | 19 | -357/+1025 |
| | | | | | | ...mostly. Signed-off-by: Stefano Brivio <sbrivio@redhat.com> | ||||
* | ops: adjust op_call | Alice Frosi | 2023-06-01 | 4 | -55/+102 |
| | |||||
* | filter: fix filter build and adjust tests | Alice Frosi | 2023-05-22 | 2 | -282/+261 |
| | | | | | | | Changes: - fix initialization of size - addedfew comments - finish to fix the test_filter_build tests | ||||
* | filter: adjust filter build | Alice Frosi | 2023-05-19 | 6 | -320/+327 |
| | | | | | | | Add filter_flush_args() to flush the arguments when finish to add the syscall arguments. Fixed test compilation after refactoring. | ||||
* | test: fix compilation and adjust changes | Alice Frosi | 2023-05-19 | 2 | -24/+31 |
| |