Skip to content

ksud: Implement SIGSYS handler#3080

Closed
aviraxp wants to merge 7 commits intomainfrom
aviraxp-patch-1
Closed

ksud: Implement SIGSYS handler#3080
aviraxp wants to merge 7 commits intomainfrom
aviraxp-patch-1

Conversation

@aviraxp
Copy link
Copy Markdown
Collaborator

@aviraxp aviraxp commented Dec 20, 2025
edited
Loading

Prevent crash if there is no root access.

Copilot AI review requested due to automatic review settings December 20, 2025 08:15
Copilot AI reviewed Dec 20, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR implements a SIGSYS signal handler in ksud to gracefully handle system calls blocked by seccomp filters. When a syscall is blocked, instead of terminating, the handler catches the signal and returns -EPERM to the caller.

Key changes:

  • Added a SIGSYS signal handler function that modifies CPU context to return EPERM for blocked syscalls
  • Implemented architecture-specific register handling for aarch64 and x86_64
  • Integrated handler setup into the application initialization in the run() function

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread userspace/ksud/src/cli.rs Outdated
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs Outdated
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs
@aviraxp
Improve SIGSYS handler with null checks
66f4e65 
Added null checks for info and ctx in sigsys_handler.
@aviraxp
Enhance SIGSYS handling and logging
1020511 
Improved signal handling by adding logging for invalid signals and updating context casting.
@aviraxp
Update cli.rs
73dd2a4
@aviraxp
Refactor error assignment to use i64::from
fc98841
@aviraxp aviraxp requested a review from Copilot December 21, 2025 04:15
Copilot AI reviewed Dec 21, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 4 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs
Comment thread userspace/ksud/src/cli.rs Outdated
@aviraxp
Update sigsys_handler to ignore ctx parameter
dfe1c35
@aviraxp
Add context parameter to sigsys_handler function
d878637 
Updated the sigsys_handler function to include a context parameter.
@Ylarod Ylarod force-pushed the main branch 4 times, most recently from f99db52 to b3d034d Compare March 27, 2026 13:38
@aviraxp aviraxp closed this Apr 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aviraxp