Comments (4)
virusdefender
commented on September 28, 2024
话说你是直接在 18.04 系统上使用的 Judger 还是用的我的 docker 镜像但是外边操作系统是 18.04?
看你 strace 结果,感觉是系统启动可执行文件的时候的行为有改变,这个结果一般和编译器和 libc 版本有关系。
openat 感觉可以像 open 可以加入白名单,只要 flag 没有 read 就行。
from judger.
virusdefender
commented on September 28, 2024
看了下,general 的 rule 中处理了 openat,但是是黑名单
Line 47 in 27e0cc0
from judger.
WangRest
commented on September 28, 2024
我们是在自己的服务器上跑这个沙盒,今天在自己ubuntu18.04上开发时发现这个问题。
之前我也使用过这个库,是在centos环境下,那时候没问题。同时在ubuntu16.04下也没有问题,只有在ubuntu18.04中会出现这个问题,主要是因为在18.04中gcc编译会默认以动态链接库的形式生成可执行程序,所以程序在执行过程中会调用openat查看相关动态库链接。而在centos和ubuntu16.04中则不会出现openat系统调用。所以在18.04下,gcc编译选项添加 -static选项,就不会出现这个系统调用了。
from judger.
virusdefender
commented on September 28, 2024
感谢
已经允许 openat
b6414e7#diff-580a4009fdbe55d9aeb1029d53082709R40
from judger.
Related Issues (20)
- Judger的文档网站挂了 HOT 1
- M1 无法正常运行沙盒 HOT 4
- 运行demo时,result=4,请问大佬有解决办法么? HOT 2
- 你好,这个 OJ 要怎么用? HOT 1
- 有没有办法可以给远程进程安装seccomp-filter? HOT 2
- Tip: use native executable with Java JNI
- Wrong Answer because of last blank in the printf HOT 2
- 一个用go调用judger.so的第三方库
- Run judger on alpine linux container (for cloud environments) HOT 3
- Question: Do we really need root user privileges to run this Judger?
- 对于 python 文件运行,有没有对应的规则程序,现在使用c_cpp会报"signal": 31
- 关于rusage的值
- 如果你正在被设置seccomp所困扰 HOT 1
- libseccomp seems to be not working as expected
- 编译报错 HOT 3
- Problem while building module in nodejs HOT 3
- Import pandas, scipy, numpy
- Arm64 需要额外的系统调用 HOT 1
- Stack Trace is missing for Result- 4 [Runtime Error] for C and CPP languages HOT 1
- go 语言沙箱编译资源报错
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from judger.