Comment by woodruffw

2 years ago

> You will only be able to use the gadget with its intended arguments, since other syscall types will be disallowed.

That makes sense, although "intended" arguments here means still being able to invoke `execve(2)`, etc., right? The gadget will still be able to mangle whatever it likes into the arguments for that syscall; it just won't be able to mangle a `wait(2)` into an `execve(2)`, I think.

Your points about JITs make sense, thanks.

1 comment

woodruffw

Reply
gary_0  2 years ago

Yes, that's how I understand it; you can't mangle one syscall into another, but you can still mangle the syscall's other argument values.