Seccomp Tools Versions Save

Provide powerful tools for seccomp analysis

v1.6.1

5 months ago

What's Changed

Full Changelog: https://github.com/david942j/seccomp-tools/compare/v1.6.0...v1.6.1

v1.6.0

8 months ago

Many enhancements in this release!

  • Support dumping seccomp on s390x (#167), thanks to @iii-i !
  • Add sasm.y as the backend of the new asm compiler (#206, #207)
    • This change makes the syntax of asm be significantly more flexible
  • disasm/asm: Support "arch.syscall" syntax (#212)
  • Raise an error on jump distance > 255 (#245)

v1.5.0

3 years ago

Features & Enhancements

  • Support dumping seccomp on aarch64 (#125) (Thanks to @saagarjha)
  • Add new seccomp return types (#147) (Thanks to @solarkennedy)
  • Ignore dump functionality while installing on macOS (#151) (Thanks to @P4N74)
  • Support x32 syscall numbers (#160)
  • Add syscall name aliases for ausyscall (#163)

v1.4.0

4 years ago
  • Dumps seccomp filters of existing processes (#97)
  • Supports assembling A = -A as the BPF neg operator
  • Enhances logging error message

1.3.0

4 years ago

Features

  • Supported syscall name in emulation (#32)
  • Supported asm output in c_source and x86 assembly (#37)
  • Supported display syscall arguments when possible (#71)

Fixes

  • Added sys_seccomp to i386
  • Allowed uppercase labels (#53)
  • Fixes token fetcher should match whole word instead of prefix only (#55)

Enhancements

  • Shows proper error message if syscall is not found (#54)
  • Reached 100% coverage (#61)
  • Drops Ruby 2.2, now requires Ruby >= 2.3
  • Refactored Disasm::Context to have ability to record known data (along with #71)

v1.2.0

6 years ago

v1.1.1

6 years ago
  • Support st/stx in asm
  • Support show errno in disasm
  • Fix lsh/rsh in asm

v1.1.0

6 years ago
  • Assembler
  • Show numbers in hex format in alu command

v1.0.0

6 years ago
  • Emulator
  • Tons of bugs

v0.1.0

6 years ago
  • Dump - Automatically dump seccomp bpf from execution file
  • Disasm - Disassemble seccomp bpf