From 513820302b2d74d82a835f7c91bebf536fbc0c6c Mon Sep 17 00:00:00 2001
From: ben kittner <benkittner@gmail.com>
Date: Wed, 5 Mar 2025 12:41:57 -0500
Subject: [PATCH] executor: mount bin and lib dirs to fuzzing sandbox

Added bin and lib dirs to fuzzing sandbox to support system system calls that require provisioning utilities (fs)
---
 executor/common_linux.h | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/executor/common_linux.h b/executor/common_linux.h
index 3cf9b87af9b9..63d5473cf601 100644
--- a/executor/common_linux.h
+++ b/executor/common_linux.h
@@ -3963,6 +3963,28 @@ static void sandbox_common_mount_tmpfs(void)
 	if (mount("/syz-inputs", "./syz-tmp/newroot/syz-inputs", NULL, bind_mount_flags | MS_RDONLY, NULL) && errno != ENOENT)
 		fail("mount(syz-inputs) failed");
 
+	if (mkdir("./syz-tmp/newroot/bin", 0700))
+		fail("mkdir(/bin) failed");
+	if (mount("/bin", "./syz-tmp/newroot/bin", 0, bind_mount_flags | MS_RDONLY, NULL))
+		fail("mount(bin) failed");
+
+	if (mkdir("./syz-tmp/newroot/usr", 0700))
+		fail("mkdir(/usr) failed");
+	if (mkdir("./syz-tmp/newroot/usr/bin", 0700))
+		fail("mkdir(/usr/bin) failed");
+	if (mount("/usr/bin", "./syz-tmp/newroot/usr/bin", 0, bind_mount_flags | MS_RDONLY, NULL))
+		fail("mount(usr/bin) failed");
+
+	if (mkdir("./syz-tmp/newroot/lib", 0700))
+		fail("mkdir(/lib) failed");
+	if (mount("/lib", "./syz-tmp/newroot/lib", 0, bind_mount_flags | MS_RDONLY, NULL))
+		fail("mount(lib) failed");
+
+	if (mkdir("./syz-tmp/newroot/lib64", 0700))
+		fail("mkdir(/lib64) failed");
+	if (mount("/lib64", "./syz-tmp/newroot/lib64", 0, bind_mount_flags | MS_RDONLY, NULL))
+		fail("mount(lib64) failed");
+
 #if SYZ_EXECUTOR || SYZ_CGROUPS
 	initialize_cgroups();
 #endif