Skip setting seccomp filter when running with ASan. Also add an example build target for an ASan-ified libminijail (useful for debugging). Bug: 28052772 Change-Id: Ib36a0303d635becaa8802dee56d486f11060ea47

commit: 2413f3713ae8a306a23550e2eecd59f380f34eae [log] [tgz]
author: Jorge Lucangeli Obes <jorgelo@google.com> Wed Apr 06 18:43:10 2016 -0700
committer: Jorge Lucangeli Obes <jorgelo@google.com> Wed Apr 06 18:43:10 2016 -0700
tree: 097849fef9aa6b967da6e828533764b918bfb01a
parent: f783b5273d66d19a78705276a38ae68ef2e3e165 [diff] [blame]
diff --git a/libminijail.c b/libminijail.c
index fcfee1e..a0c4c86 100644
--- a/libminijail.c
+++ b/libminijail.c

@@ -1355,6 +1355,21 @@
 	}
 
 	/*
+	 * Code running with ASan
+	 * (https://github.com/google/sanitizers/wiki/AddressSanitizer)
+	 * will make system calls not included in the syscall filter policy,
+	 * which will likely crash the program. Skip setting seccomp filter in
+	 * that case.
+	 * 'running_with_asan()' has no inputs and is completely defined at
+	 * build time, so this cannot be used by an attacker to skip setting
+	 * seccomp filter.
+	 */
+	if (j->flags.seccomp_filter && running_with_asan()) {
+		warn("running with ASan, not setting seccomp filter");
+		return;
+	}
+
+	/*
 	 * If we're logging seccomp filter failures,
 	 * install the SIGSYS handler first.
 	 */
commit	2413f3713ae8a306a23550e2eecd59f380f34eae	[log] [tgz]
author	Jorge Lucangeli Obes <jorgelo@google.com>	Wed Apr 06 18:43:10 2016 -0700
committer	Jorge Lucangeli Obes <jorgelo@google.com>	Wed Apr 06 18:43:10 2016 -0700
tree	097849fef9aa6b967da6e828533764b918bfb01a
parent	f783b5273d66d19a78705276a38ae68ef2e3e165 [diff] [blame]