selftests/seccomp: Avoid using "sysctl" for report

Instead of depending on "sysctl" being installed, just use "grep -H" for
sysctl status reporting. Additionally report kernel version for easier
comparisons.

Signed-off-by: Kees Cook <keescook@chromium.org>
This commit is contained in:
Kees Cook 2021-06-17 16:18:34 -07:00
parent 62ddb91b77
commit 9a03abc16c
1 changed files with 6 additions and 2 deletions

View File

@ -145,9 +145,13 @@ int main(int argc, char *argv[])
setbuf(stdout, NULL); setbuf(stdout, NULL);
printf("Running on:\n");
system("uname -a");
printf("Current BPF sysctl settings:\n"); printf("Current BPF sysctl settings:\n");
system("sysctl net.core.bpf_jit_enable"); /* Avoid using "sysctl" which may not be installed. */
system("sysctl net.core.bpf_jit_harden"); system("grep -H . /proc/sys/net/core/bpf_jit_enable");
system("grep -H . /proc/sys/net/core/bpf_jit_harden");
if (argc > 1) if (argc > 1)
samples = strtoull(argv[1], NULL, 0); samples = strtoull(argv[1], NULL, 0);