Skip to content

Commit

Permalink
Bumped version to 0.10.0, handle empty module name
Browse files Browse the repository at this point in the history
  • Loading branch information
Avi Lumelsky committed May 20, 2024
1 parent 92f9b18 commit e86eeae
Show file tree
Hide file tree
Showing 3 changed files with 11 additions and 9 deletions.
11 changes: 6 additions & 5 deletions docker/docker/Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -39,11 +39,12 @@ RUN echo "Installing python with dtrace" && \
cd Python-${PYTHON_VERSION} && ./configure --with-dtrace --prefix=/usr/local/openssl --prefix=$(pwd) --with-ensurepip=install && make && make install

RUN echo "Installing bpftrace" && \
wget https://github.com/iovisor/bpftrace/releases/download/${BPFTRACE_VERSION}/bpftrace && \
chmod +x bpftrace && \
mv bpftrace /bin && \
echo "Done building bpftrace" && \
mv /kernel/usr/src/linux-headers* /kernel/usr/src/linux-headers
# wget https://github.com/iovisor/bpftrace/releases/download/${BPFTRACE_VERSION}/bpftrace && \
# chmod +x bpftrace && \
# mv bpftrace /bin && \
# echo "Done building bpftrace" && \
mv /kernel/usr/src/linux-headers* /kernel/usr/src/linux-headers && \
apt-get install bpftrace -y;

# Install nsjail: taken from https://github.com/google/nsjail/blob/master//Dockerfile=
#RUN git clone https://github.com/google/nsjail.git /nsjail && cd /nsjail && make && mv /nsjail/nsjail /bin && rm -rf -- /nsjail
Expand Down
4 changes: 2 additions & 2 deletions pyproject.toml
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
[tool.poetry]
name = "secimport"
version = "0.9.2"
description = "A sandbox/supervisor for python modules."
version = "0.10.0"
description = "A eBPF runtime sandbox for python that prevents RCE."
authors = ["Avi Lumelsky"]
license = "MIT"
homepage = "https://github.com/avilum/secimport"
Expand Down
5 changes: 3 additions & 2 deletions secimport/backends/common/utils.py
Original file line number Diff line number Diff line change
Expand Up @@ -58,9 +58,10 @@ def render_syscalls_filter(
# Translating syscall
_syscall_number = SYSCALLS_NAMES.get(_syscall)
if _syscall_number is None:
raise NotImplementedError(
print("Warning:", NotImplementedError(
f"The provided syscall it not a syscall mapped to a number: '{_syscall}'"
)
))
continue

# dtrace
if instrumentation_backend == InstrumentationBackend.DTRACE:
Expand Down

0 comments on commit e86eeae

Please sign in to comment.