[google/syzkaller] 3160a1: executor: linux: chroot into tmpfs with sandbox=none
2 views
Skip to first unread message
Alexander Potapenko
Jul 2, 2024, 4:53:10 AMJul 2
to syzk...@googlegroups.com
Branch: refs/heads/gh-readonly-queue/master/pr-4959-dc6047a330327f6253591d8d98301e6f5949cf9c
Home: https://github.com/google/syzkaller
Commit: 3160a12dd1047174becc935fbaae965b3d00ea59
https://github.com/google/syzkaller/commit/3160a12dd1047174becc935fbaae965b3d00ea59
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M executor/common_linux.h
Log Message:
-----------
executor: linux: chroot into tmpfs with sandbox=none
To prevent the executor from accidentally making the whole root file system
immutable (which breaks fuzzing), modify sandbox=none to create a tmpfs mount
and chroot into it before executing programs in a process.
According to `syz-manager -mode=smoke-test`, the number of enabled syscalls on
x86 doesn't change with this patch.
Fixes #4939, #2933, #971.
Commit: 4b42962bfebc45ea22f9a5af63b49aa5ed418749
https://github.com/google/syzkaller/commit/4b42962bfebc45ea22f9a5af63b49aa5ed418749
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M sys/linux/init.go
M sys/linux/init_test.go
Log Message:
-----------
sys/linux: re-enable EXT4_IOC_SHUTDOWN and EXT4_IOC_RESIZE_FS
Now that we chroot into tmpfs with sandbox=none, it should be safe to allow
using these ioctls, because they won't break the whole VM.
Update #971.
Commit: 07f0a0a0ac9cfea6c05a26b70bfc086822d55184
https://github.com/google/syzkaller/commit/07f0a0a0ac9cfea6c05a26b70bfc086822d55184
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M sys/linux/init.go
Log Message:
-----------
sys/linux: drop EXT4_IOC_MIGRATE and USB_MAJOR from init.go
These two constants are not used anywhere.
No functional change.
Compare: https://github.com/google/syzkaller/compare/3160a12dd104%5E...07f0a0a0ac9c
To unsubscribe from these emails, change your notification settings at https://github.com/google/syzkaller/settings/notifications
Home: https://github.com/google/syzkaller
Commit: 3160a12dd1047174becc935fbaae965b3d00ea59
https://github.com/google/syzkaller/commit/3160a12dd1047174becc935fbaae965b3d00ea59
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M executor/common_linux.h
Log Message:
-----------
executor: linux: chroot into tmpfs with sandbox=none
To prevent the executor from accidentally making the whole root file system
immutable (which breaks fuzzing), modify sandbox=none to create a tmpfs mount
and chroot into it before executing programs in a process.
According to `syz-manager -mode=smoke-test`, the number of enabled syscalls on
x86 doesn't change with this patch.
Fixes #4939, #2933, #971.
Commit: 4b42962bfebc45ea22f9a5af63b49aa5ed418749
https://github.com/google/syzkaller/commit/4b42962bfebc45ea22f9a5af63b49aa5ed418749
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M sys/linux/init.go
M sys/linux/init_test.go
Log Message:
-----------
sys/linux: re-enable EXT4_IOC_SHUTDOWN and EXT4_IOC_RESIZE_FS
Now that we chroot into tmpfs with sandbox=none, it should be safe to allow
using these ioctls, because they won't break the whole VM.
Update #971.
Commit: 07f0a0a0ac9cfea6c05a26b70bfc086822d55184
https://github.com/google/syzkaller/commit/07f0a0a0ac9cfea6c05a26b70bfc086822d55184
Author: Alexander Potapenko <gli...@google.com>
Date: 2024-07-02 (Tue, 02 Jul 2024)
Changed paths:
M sys/linux/init.go
Log Message:
-----------
sys/linux: drop EXT4_IOC_MIGRATE and USB_MAJOR from init.go
These two constants are not used anywhere.
No functional change.
Compare: https://github.com/google/syzkaller/compare/3160a12dd104%5E...07f0a0a0ac9c
To unsubscribe from these emails, change your notification settings at https://github.com/google/syzkaller/settings/notifications
Alexander Potapenko
Jul 2, 2024, 5:01:27 AMJul 2
to syzk...@googlegroups.com
Branch: refs/heads/master
Compare: https://github.com/google/syzkaller/compare/dc6047a33032...07f0a0a0ac9c
Reply all
Reply to author
Forward
0 new messages