2 * Check decoding of finit_module syscall.
4 * Copyright (c) 2016 Eugene Syromyatnikov <evgsyr@gmail.com>
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. The name of the author may not be used to endorse or promote products
16 * derived from this software without specific prior written permission.
18 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
19 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
21 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
22 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
23 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
24 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
25 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
26 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
27 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
32 #include <asm/unistd.h>
35 #if defined(__NR_finit_module)
40 # include "init_delete_module.h"
45 static const kernel_ulong_t bogus_fd =
46 (kernel_ulong_t) 0xdeb0d1edbeeff00dULL;
53 { (kernel_ulong_t) 0xffffffff00000002ULL,
54 "MODULE_INIT_IGNORE_VERMAGIC" },
55 { (kernel_ulong_t) 0xbadc0deddefaced0ULL,
56 "0xdefaced0 /* MODULE_INIT_??? */" },
57 { (kernel_ulong_t) 0xfacef157dec0ded1ULL,
58 "MODULE_INIT_IGNORE_MODVERSIONS|0xdec0ded0" },
59 { -1LL, "MODULE_INIT_IGNORE_MODVERSIONS|"
60 "MODULE_INIT_IGNORE_VERMAGIC|0xfffffffc" },
64 char *bogus_param1 = tail_alloc(PARAM1_LEN);
65 char *bogus_param2 = tail_alloc(PARAM2_LEN);
68 fill_memory_ex(bogus_param1, PARAM1_LEN, PARAM1_BASE, PARAM1_LEN);
69 fill_memory_ex(bogus_param2, PARAM2_LEN, PARAM2_BASE, PARAM2_LEN);
71 rc = syscall(__NR_finit_module, F8ILL_KULONG_MASK, NULL,
73 printf("finit_module(0, NULL, 0) = %s\n", sprintrc(rc));
75 rc = syscall(__NR_finit_module, bogus_fd, bogus_param1, flags[0].val);
76 errstr = sprintrc(rc);
78 printf("finit_module(%d, \"", (int) bogus_fd);
79 print_str(PARAM1_BASE, MAX_STRLEN, false);
80 printf("\"..., %s) = %s\n", flags[0].str, errstr);
82 bogus_param1[PARAM1_LEN - 1] = '\0';
84 rc = syscall(__NR_finit_module, bogus_fd, bogus_param1, flags[1].val);
85 errstr = sprintrc(rc);
87 printf("finit_module(%d, \"", (int) bogus_fd);
88 print_str(PARAM1_BASE, MAX_STRLEN, false);
89 printf("\", %s) = %s\n", flags[1].str, errstr);
91 rc = syscall(__NR_finit_module, bogus_fd, bogus_param2 + PARAM2_LEN,
93 printf("finit_module(%d, %p, %s) = %s\n",
94 (int) bogus_fd, bogus_param2 + PARAM2_LEN, flags[2].str,
97 rc = syscall(__NR_finit_module, bogus_fd, bogus_param2, flags[3].val);
98 printf("finit_module(%d, %p, %s) = %s\n",
99 (int) bogus_fd, bogus_param2, flags[3].str, sprintrc(rc));
101 bogus_param2[PARAM2_LEN - 1] = '\0';
103 rc = syscall(__NR_finit_module, bogus_fd, bogus_param2, flags[4].val);
104 errstr = sprintrc(rc);
106 printf("finit_module(%d, \"", (int) bogus_fd);
107 print_str(PARAM2_BASE, PARAM2_LEN - 1, true);
108 printf("\", %s) = %s\n", flags[4].str, errstr);
110 puts("+++ exited with 0 +++");
117 SKIP_MAIN_UNDEFINED("__NR_finit_module");