2017-04-21 06:55:53 +00:00
|
|
|
package native
|
2015-01-14 02:37:10 +00:00
|
|
|
|
|
|
|
|
import (
|
2020-02-15 19:55:19 +00:00
|
|
|
"bufio"
|
2016-05-16 12:22:40 +00:00
|
|
|
"bytes"
|
2021-10-25 19:37:36 +00:00
|
|
|
"debug/elf"
|
2015-07-11 06:43:47 +00:00
|
|
|
"errors"
|
2015-01-14 02:37:10 +00:00
|
|
|
"fmt"
|
|
|
|
|
"os"
|
2015-04-25 14:46:16 +00:00
|
|
|
"os/exec"
|
2018-07-27 08:22:35 +00:00
|
|
|
"os/signal"
|
2015-02-28 03:35:26 +00:00
|
|
|
"path/filepath"
|
2016-05-16 12:22:40 +00:00
|
|
|
"regexp"
|
2015-02-28 03:35:26 +00:00
|
|
|
"strconv"
|
2015-10-04 18:16:39 +00:00
|
|
|
"strings"
|
2015-01-14 02:37:10 +00:00
|
|
|
"syscall"
|
2015-06-26 14:00:34 +00:00
|
|
|
"time"
|
2015-01-14 02:37:10 +00:00
|
|
|
|
|
|
|
|
sys "golang.org/x/sys/unix"
|
2017-04-21 06:55:53 +00:00
|
|
|
|
2023-08-09 17:30:22 +00:00
|
|
|
"github.com/go-delve/delve/pkg/logflags"
|
2019-01-04 18:39:25 +00:00
|
|
|
"github.com/go-delve/delve/pkg/proc"
|
2021-07-31 15:16:26 +00:00
|
|
|
"github.com/go-delve/delve/pkg/proc/internal/ebpf"
|
2019-01-04 18:39:25 +00:00
|
|
|
"github.com/go-delve/delve/pkg/proc/linutil"
|
2018-11-12 22:52:13 +00:00
|
|
|
|
|
|
|
|
isatty "github.com/mattn/go-isatty"
|
2015-01-14 02:37:10 +00:00
|
|
|
)
|
|
|
|
|
|
2015-07-28 18:37:55 +00:00
|
|
|
// Process statuses
|
2015-01-14 02:37:10 +00:00
|
|
|
const (
|
2020-03-26 12:05:09 +00:00
|
|
|
statusSleeping = 'S'
|
|
|
|
|
statusRunning = 'R'
|
|
|
|
|
statusTraceStop = 't'
|
|
|
|
|
statusZombie = 'Z'
|
2016-03-14 16:40:24 +00:00
|
|
|
|
2016-03-11 15:55:10 +00:00
|
|
|
// Kernel 2.6 has TraceStop as T
|
2016-03-14 16:43:55 +00:00
|
|
|
// TODO(derekparker) Since this means something different based on the
|
|
|
|
|
// version of the kernel ('T' is job control stop on modern 3.x+ kernels) we
|
|
|
|
|
// may want to differentiate at some point.
|
2020-03-26 12:05:09 +00:00
|
|
|
statusTraceStopT = 'T'
|
2020-10-21 19:50:52 +00:00
|
|
|
|
|
|
|
|
personalityGetPersonality = 0xffffffff // argument to pass to personality syscall to get the current personality
|
|
|
|
|
_ADDR_NO_RANDOMIZE = 0x0040000 // ADDR_NO_RANDOMIZE linux constant
|
2015-01-14 02:37:10 +00:00
|
|
|
)
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
// osProcessDetails contains Linux specific
|
2016-01-10 08:57:52 +00:00
|
|
|
// process details.
|
2020-03-26 12:05:09 +00:00
|
|
|
type osProcessDetails struct {
|
2015-10-10 00:21:41 +00:00
|
|
|
comm string
|
2021-07-31 15:16:26 +00:00
|
|
|
|
|
|
|
|
ebpf *ebpf.EBPFContext
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (os *osProcessDetails) Close() {
|
|
|
|
|
if os.ebpf != nil {
|
|
|
|
|
os.ebpf.Close()
|
|
|
|
|
}
|
2015-10-10 00:21:41 +00:00
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
|
2016-01-10 08:57:52 +00:00
|
|
|
// Launch creates and begins debugging a new process. First entry in
|
2015-04-25 14:46:16 +00:00
|
|
|
// `cmd` is the program to run, and then rest are the arguments
|
2016-11-01 19:58:43 +00:00
|
|
|
// to be supplied to that process. `wd` is working directory of the program.
|
2018-11-07 22:21:35 +00:00
|
|
|
// If the DWARF information cannot be found in the binary, Delve will look
|
|
|
|
|
// for external debug files in the directories passed in.
|
2023-07-05 15:39:01 +00:00
|
|
|
func Launch(cmd []string, wd string, flags proc.LaunchFlags, debugInfoDirs []string, tty string, stdinPath string, stdoutOR proc.OutputRedirect, stderrOR proc.OutputRedirect) (*proc.TargetGroup, error) {
|
2015-06-13 04:47:30 +00:00
|
|
|
var (
|
2017-04-21 06:55:53 +00:00
|
|
|
process *exec.Cmd
|
|
|
|
|
err error
|
2015-06-13 04:47:30 +00:00
|
|
|
)
|
2018-07-27 08:22:35 +00:00
|
|
|
|
2020-10-21 19:50:52 +00:00
|
|
|
foreground := flags&proc.LaunchForeground != 0
|
|
|
|
|
|
2023-07-05 15:39:01 +00:00
|
|
|
stdin, stdout, stderr, closefn, err := openRedirects(stdinPath, stdoutOR, stderrOR, foreground)
|
2020-08-21 14:14:02 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if stdin == nil || !isatty.IsTerminal(stdin.Fd()) {
|
2018-07-27 08:22:35 +00:00
|
|
|
// exec.(*Process).Start will fail if we try to send a process to
|
|
|
|
|
// foreground but we are not attached to a terminal.
|
|
|
|
|
foreground = false
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
dbp := newProcess(0)
|
2020-05-14 12:23:16 +00:00
|
|
|
defer func() {
|
|
|
|
|
if err != nil && dbp.pid != 0 {
|
2023-08-28 19:46:19 +00:00
|
|
|
_ = detachWithoutGroup(dbp, true)
|
2020-05-14 12:23:16 +00:00
|
|
|
}
|
|
|
|
|
}()
|
2015-06-13 04:47:30 +00:00
|
|
|
dbp.execPtraceFunc(func() {
|
2020-10-21 19:50:52 +00:00
|
|
|
if flags&proc.LaunchDisableASLR != 0 {
|
|
|
|
|
oldPersonality, _, err := syscall.Syscall(sys.SYS_PERSONALITY, personalityGetPersonality, 0, 0)
|
|
|
|
|
if err == syscall.Errno(0) {
|
|
|
|
|
newPersonality := oldPersonality | _ADDR_NO_RANDOMIZE
|
|
|
|
|
syscall.Syscall(sys.SYS_PERSONALITY, newPersonality, 0, 0)
|
|
|
|
|
defer syscall.Syscall(sys.SYS_PERSONALITY, oldPersonality, 0, 0)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2017-04-21 06:55:53 +00:00
|
|
|
process = exec.Command(cmd[0])
|
|
|
|
|
process.Args = cmd
|
2020-08-21 14:14:02 +00:00
|
|
|
process.Stdin = stdin
|
|
|
|
|
process.Stdout = stdout
|
|
|
|
|
process.Stderr = stderr
|
2020-04-04 22:19:35 +00:00
|
|
|
process.SysProcAttr = &syscall.SysProcAttr{
|
|
|
|
|
Ptrace: true,
|
|
|
|
|
Setpgid: true,
|
|
|
|
|
Foreground: foreground,
|
|
|
|
|
}
|
2018-04-16 10:01:08 +00:00
|
|
|
if foreground {
|
2018-07-27 08:22:35 +00:00
|
|
|
signal.Ignore(syscall.SIGTTOU, syscall.SIGTTIN)
|
2018-04-16 10:01:08 +00:00
|
|
|
}
|
2020-04-04 22:19:35 +00:00
|
|
|
if tty != "" {
|
|
|
|
|
dbp.ctty, err = attachProcessToTTY(process, tty)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
2016-11-01 19:58:43 +00:00
|
|
|
if wd != "" {
|
2017-04-21 06:55:53 +00:00
|
|
|
process.Dir = wd
|
2016-11-01 19:58:43 +00:00
|
|
|
}
|
2017-04-21 06:55:53 +00:00
|
|
|
err = process.Start()
|
2015-06-13 04:47:30 +00:00
|
|
|
})
|
2020-08-21 14:14:02 +00:00
|
|
|
closefn()
|
2015-06-13 04:47:30 +00:00
|
|
|
if err != nil {
|
2015-04-25 14:46:16 +00:00
|
|
|
return nil, err
|
|
|
|
|
}
|
2017-04-21 06:55:53 +00:00
|
|
|
dbp.pid = process.Process.Pid
|
2017-05-05 17:04:32 +00:00
|
|
|
dbp.childProcess = true
|
2017-04-21 06:55:53 +00:00
|
|
|
_, _, err = dbp.wait(process.Process.Pid, 0)
|
2015-04-25 14:46:16 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("waiting for target execve failed: %s", err)
|
|
|
|
|
}
|
2020-03-10 19:27:38 +00:00
|
|
|
tgt, err := dbp.initialize(cmd[0], debugInfoDirs)
|
|
|
|
|
if err != nil {
|
2018-11-12 22:52:13 +00:00
|
|
|
return nil, err
|
|
|
|
|
}
|
2020-03-10 19:27:38 +00:00
|
|
|
return tgt, nil
|
2015-04-25 14:46:16 +00:00
|
|
|
}
|
|
|
|
|
|
2018-11-07 22:21:35 +00:00
|
|
|
// Attach to an existing process with the given PID. Once attached, if
|
|
|
|
|
// the DWARF information cannot be found in the binary, Delve will look
|
|
|
|
|
// for external debug files in the directories passed in.
|
2023-08-09 17:30:22 +00:00
|
|
|
func Attach(pid int, waitFor *proc.WaitFor, debugInfoDirs []string) (*proc.TargetGroup, error) {
|
|
|
|
|
if waitFor.Valid() {
|
|
|
|
|
var err error
|
|
|
|
|
pid, err = WaitFor(waitFor)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
dbp := newProcess(pid)
|
2017-06-29 18:13:32 +00:00
|
|
|
|
|
|
|
|
var err error
|
2020-03-26 12:05:09 +00:00
|
|
|
dbp.execPtraceFunc(func() { err = ptraceAttach(dbp.pid) })
|
2017-06-29 18:13:32 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
_, _, err = dbp.wait(dbp.pid, 0)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-15 21:49:30 +00:00
|
|
|
tgt, err := dbp.initialize(findExecutable("", dbp.pid), debugInfoDirs)
|
2017-08-15 06:21:24 +00:00
|
|
|
if err != nil {
|
2023-08-28 19:46:19 +00:00
|
|
|
_ = detachWithoutGroup(dbp, false)
|
2017-08-15 06:21:24 +00:00
|
|
|
return nil, err
|
|
|
|
|
}
|
2019-11-27 16:06:13 +00:00
|
|
|
|
|
|
|
|
// ElfUpdateSharedObjects can only be done after we initialize because it
|
|
|
|
|
// needs an initialized BinaryInfo object to work.
|
|
|
|
|
err = linutil.ElfUpdateSharedObjects(dbp)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
2020-03-10 19:27:38 +00:00
|
|
|
return tgt, nil
|
2015-07-16 01:37:43 +00:00
|
|
|
}
|
|
|
|
|
|
2023-08-09 17:30:22 +00:00
|
|
|
func isProcDir(name string) bool {
|
|
|
|
|
for _, ch := range name {
|
|
|
|
|
if ch < '0' || ch > '9' {
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func waitForSearchProcess(pfx string, seen map[int]struct{}) (int, error) {
|
|
|
|
|
log := logflags.DebuggerLogger()
|
|
|
|
|
des, err := os.ReadDir("/proc")
|
|
|
|
|
if err != nil {
|
|
|
|
|
log.Errorf("error reading proc: %v", err)
|
|
|
|
|
return 0, nil
|
|
|
|
|
}
|
|
|
|
|
for _, de := range des {
|
|
|
|
|
if !de.IsDir() {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
name := de.Name()
|
|
|
|
|
if !isProcDir(name) {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
pid, _ := strconv.Atoi(name)
|
|
|
|
|
if _, isseen := seen[pid]; isseen {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
seen[pid] = struct{}{}
|
|
|
|
|
buf, err := os.ReadFile(filepath.Join("/proc", name, "cmdline"))
|
|
|
|
|
if err != nil {
|
|
|
|
|
// probably we just don't have permissions
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
for i := range buf {
|
|
|
|
|
if buf[i] == 0 {
|
|
|
|
|
buf[i] = ' '
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
log.Debugf("waitfor: new process %q", string(buf))
|
|
|
|
|
if strings.HasPrefix(string(buf), pfx) {
|
|
|
|
|
return pid, nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return 0, nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-09 18:40:00 +00:00
|
|
|
func initialize(dbp *nativeProcess) (string, error) {
|
2023-09-25 18:41:59 +00:00
|
|
|
comm, err := os.ReadFile(fmt.Sprintf("/proc/%d/comm", dbp.pid))
|
2018-11-12 22:52:13 +00:00
|
|
|
if err == nil {
|
|
|
|
|
// removes newline character
|
|
|
|
|
comm = bytes.TrimSuffix(comm, []byte("\n"))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if comm == nil || len(comm) <= 0 {
|
2023-09-25 18:41:59 +00:00
|
|
|
stat, err := os.ReadFile(fmt.Sprintf("/proc/%d/stat", dbp.pid))
|
2018-11-12 22:52:13 +00:00
|
|
|
if err != nil {
|
2023-05-09 18:40:00 +00:00
|
|
|
return "", fmt.Errorf("could not read proc stat: %v", err)
|
2018-11-12 22:52:13 +00:00
|
|
|
}
|
|
|
|
|
expr := fmt.Sprintf("%d\\s*\\((.*)\\)", dbp.pid)
|
|
|
|
|
rexp, err := regexp.Compile(expr)
|
|
|
|
|
if err != nil {
|
2023-05-09 18:40:00 +00:00
|
|
|
return "", fmt.Errorf("regexp compile error: %v", err)
|
2018-11-12 22:52:13 +00:00
|
|
|
}
|
|
|
|
|
match := rexp.FindSubmatch(stat)
|
|
|
|
|
if match == nil {
|
2023-05-09 18:40:00 +00:00
|
|
|
return "", fmt.Errorf("no match found using regexp '%s' in /proc/%d/stat", expr, dbp.pid)
|
2018-11-12 22:52:13 +00:00
|
|
|
}
|
|
|
|
|
comm = match[1]
|
|
|
|
|
}
|
2020-05-14 12:23:16 +00:00
|
|
|
dbp.os.comm = strings.ReplaceAll(string(comm), "%", "%%")
|
2021-07-31 15:16:26 +00:00
|
|
|
|
2023-05-09 18:40:00 +00:00
|
|
|
return getCmdLine(dbp.pid), nil
|
2018-11-12 22:52:13 +00:00
|
|
|
}
|
|
|
|
|
|
2021-07-31 15:16:26 +00:00
|
|
|
func (dbp *nativeProcess) GetBufferedTracepoints() []ebpf.RawUProbeParams {
|
|
|
|
|
if dbp.os.ebpf == nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
return dbp.os.ebpf.GetBufferedTracepoints()
|
|
|
|
|
}
|
|
|
|
|
|
2018-02-13 14:42:14 +00:00
|
|
|
// kill kills the target process.
|
2023-08-28 19:46:19 +00:00
|
|
|
func (procgrp *processGroup) kill(dbp *nativeProcess) error {
|
2015-08-04 13:32:43 +00:00
|
|
|
if dbp.exited {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2017-02-08 00:23:47 +00:00
|
|
|
if !dbp.threads[dbp.pid].Stopped() {
|
2015-07-11 06:43:47 +00:00
|
|
|
return errors.New("process must be stopped in order to kill it")
|
|
|
|
|
}
|
2020-12-28 17:08:47 +00:00
|
|
|
if err := sys.Kill(-dbp.pid, sys.SIGKILL); err != nil {
|
2015-07-11 06:43:47 +00:00
|
|
|
return errors.New("could not deliver signal " + err.Error())
|
|
|
|
|
}
|
2020-12-28 17:08:47 +00:00
|
|
|
// wait for other threads first or the thread group leader (dbp.pid) will never exit.
|
|
|
|
|
for threadID := range dbp.threads {
|
|
|
|
|
if threadID != dbp.pid {
|
|
|
|
|
dbp.wait(threadID, 0)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
for {
|
|
|
|
|
wpid, status, err := dbp.wait(dbp.pid, 0)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
if wpid == dbp.pid && status != nil && status.Signaled() && status.Signal() == sys.SIGKILL {
|
|
|
|
|
dbp.postExit()
|
|
|
|
|
return err
|
|
|
|
|
}
|
2015-07-11 06:43:47 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) requestManualStop() (err error) {
|
2017-02-08 00:23:47 +00:00
|
|
|
return sys.Kill(dbp.pid, sys.SIGTRAP)
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
const (
|
|
|
|
|
ptraceOptionsNormal = syscall.PTRACE_O_TRACECLONE
|
|
|
|
|
ptraceOptionsFollowExec = syscall.PTRACE_O_TRACECLONE | syscall.PTRACE_O_TRACEVFORK | syscall.PTRACE_O_TRACEEXEC
|
|
|
|
|
)
|
|
|
|
|
|
2015-01-14 02:37:10 +00:00
|
|
|
// Attach to a newly created thread, and store that thread in our list of
|
|
|
|
|
// known threads.
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) addThread(tid int, attach bool) (*nativeThread, error) {
|
2017-02-08 00:23:47 +00:00
|
|
|
if thread, ok := dbp.threads[tid]; ok {
|
2015-01-14 02:37:10 +00:00
|
|
|
return thread, nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
ptraceOptions := ptraceOptionsNormal
|
|
|
|
|
if dbp.followExec {
|
|
|
|
|
ptraceOptions = ptraceOptionsFollowExec
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-13 04:47:30 +00:00
|
|
|
var err error
|
2015-01-14 02:37:10 +00:00
|
|
|
if attach {
|
2015-06-13 04:47:30 +00:00
|
|
|
dbp.execPtraceFunc(func() { err = sys.PtraceAttach(tid) })
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil && err != sys.EPERM {
|
|
|
|
|
// Do not return err if err == EPERM,
|
|
|
|
|
// we may already be tracing this thread due to
|
|
|
|
|
// PTRACE_O_TRACECLONE. We will surely blow up later
|
|
|
|
|
// if we truly don't have permissions.
|
|
|
|
|
return nil, fmt.Errorf("could not attach to new thread %d %s", tid, err)
|
|
|
|
|
}
|
2017-05-30 18:08:27 +00:00
|
|
|
pid, status, err := dbp.waitFast(tid)
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
if status.Exited() {
|
|
|
|
|
return nil, fmt.Errorf("thread already exited %d", pid)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
dbp.execPtraceFunc(func() { err = syscall.PtraceSetOptions(tid, ptraceOptions) })
|
2015-01-14 02:37:10 +00:00
|
|
|
if err == syscall.ESRCH {
|
2017-05-30 18:08:27 +00:00
|
|
|
if _, _, err = dbp.waitFast(tid); err != nil {
|
2015-01-14 02:37:10 +00:00
|
|
|
return nil, fmt.Errorf("error while waiting after adding thread: %d %s", tid, err)
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
dbp.execPtraceFunc(func() { err = syscall.PtraceSetOptions(tid, ptraceOptions) })
|
2015-09-26 19:36:13 +00:00
|
|
|
if err == syscall.ESRCH {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("could not set options for new traced thread %d %s", tid, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
dbp.threads[tid] = &nativeThread{
|
2016-01-10 08:57:52 +00:00
|
|
|
ID: tid,
|
2015-05-27 17:16:45 +00:00
|
|
|
dbp: dbp,
|
2020-03-26 12:05:09 +00:00
|
|
|
os: new(osSpecificDetails),
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2020-11-09 19:28:40 +00:00
|
|
|
if dbp.memthread == nil {
|
|
|
|
|
dbp.memthread = dbp.threads[tid]
|
2015-02-28 03:35:26 +00:00
|
|
|
}
|
2021-05-06 17:33:56 +00:00
|
|
|
for _, bp := range dbp.Breakpoints().M {
|
|
|
|
|
if bp.WatchType != 0 {
|
|
|
|
|
err := dbp.threads[tid].writeHardwareBreakpoint(bp.Addr, bp.WatchType, bp.HWBreakIndex)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2017-02-08 00:23:47 +00:00
|
|
|
return dbp.threads[tid], nil
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) updateThreadList() error {
|
2017-02-08 00:23:47 +00:00
|
|
|
tids, _ := filepath.Glob(fmt.Sprintf("/proc/%d/task/*", dbp.pid))
|
2015-02-28 03:35:26 +00:00
|
|
|
for _, tidpath := range tids {
|
|
|
|
|
tidstr := filepath.Base(tidpath)
|
|
|
|
|
tid, err := strconv.Atoi(tidstr)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2017-02-08 00:23:47 +00:00
|
|
|
if _, err := dbp.addThread(tid, tid != dbp.pid); err != nil {
|
2015-01-14 02:37:10 +00:00
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
}
|
2019-03-20 17:32:51 +00:00
|
|
|
return linutil.ElfUpdateSharedObjects(dbp)
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
|
|
|
|
|
2020-09-15 21:49:30 +00:00
|
|
|
func findExecutable(path string, pid int) string {
|
|
|
|
|
if path == "" {
|
|
|
|
|
path = fmt.Sprintf("/proc/%d/exe", pid)
|
|
|
|
|
}
|
|
|
|
|
return path
|
2015-03-28 01:12:07 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
func trapWait(procgrp *processGroup, pid int) (*nativeThread, error) {
|
|
|
|
|
return trapWaitInternal(procgrp, pid, 0)
|
2018-02-14 09:53:01 +00:00
|
|
|
}
|
|
|
|
|
|
2020-03-09 17:15:45 +00:00
|
|
|
type trapWaitOptions uint8
|
|
|
|
|
|
|
|
|
|
const (
|
|
|
|
|
trapWaitHalt trapWaitOptions = 1 << iota
|
|
|
|
|
trapWaitNohang
|
2020-10-12 22:02:55 +00:00
|
|
|
trapWaitDontCallExitGuard
|
2020-03-09 17:15:45 +00:00
|
|
|
)
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
func trapWaitInternal(procgrp *processGroup, pid int, options trapWaitOptions) (*nativeThread, error) {
|
|
|
|
|
var waitdbp *nativeProcess = nil
|
|
|
|
|
if len(procgrp.procs) == 1 {
|
|
|
|
|
// Note that waitdbp is only used to call (*nativeProcess).wait which will
|
|
|
|
|
// behave correctly if waitdbp == nil.
|
|
|
|
|
waitdbp = procgrp.procs[0]
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-09 17:15:45 +00:00
|
|
|
halt := options&trapWaitHalt != 0
|
2015-01-14 02:37:10 +00:00
|
|
|
for {
|
2020-03-09 17:15:45 +00:00
|
|
|
wopt := 0
|
|
|
|
|
if options&trapWaitNohang != 0 {
|
|
|
|
|
wopt = sys.WNOHANG
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
wpid, status, err := waitdbp.wait(pid, wopt)
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil {
|
2015-04-09 15:01:58 +00:00
|
|
|
return nil, fmt.Errorf("wait err %s %d", err, pid)
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
|
|
|
|
if wpid == 0 {
|
2020-03-09 17:15:45 +00:00
|
|
|
if options&trapWaitNohang != 0 {
|
|
|
|
|
return nil, nil
|
|
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
continue
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
dbp := procgrp.procForThread(wpid)
|
|
|
|
|
var th *nativeThread
|
|
|
|
|
if dbp != nil {
|
|
|
|
|
var ok bool
|
|
|
|
|
th, ok = dbp.threads[wpid]
|
|
|
|
|
if ok {
|
|
|
|
|
th.Status = (*waitStatus)(status)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
dbp = procgrp.procs[0]
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2015-04-25 14:46:16 +00:00
|
|
|
if status.Exited() {
|
2017-02-08 00:23:47 +00:00
|
|
|
if wpid == dbp.pid {
|
2015-10-09 23:30:28 +00:00
|
|
|
dbp.postExit()
|
2023-02-22 17:26:28 +00:00
|
|
|
if procgrp.numValid() == 0 {
|
|
|
|
|
return nil, proc.ErrProcessExited{Pid: wpid, Status: status.ExitStatus()}
|
|
|
|
|
}
|
|
|
|
|
if halt {
|
|
|
|
|
return nil, nil
|
|
|
|
|
}
|
|
|
|
|
continue
|
2015-04-25 14:46:16 +00:00
|
|
|
}
|
2017-02-08 00:23:47 +00:00
|
|
|
delete(dbp.threads, wpid)
|
2015-04-25 14:46:16 +00:00
|
|
|
continue
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2021-05-17 16:48:48 +00:00
|
|
|
if status.Signaled() {
|
|
|
|
|
// Signaled means the thread was terminated due to a signal.
|
|
|
|
|
if wpid == dbp.pid {
|
|
|
|
|
dbp.postExit()
|
2023-02-22 17:26:28 +00:00
|
|
|
if procgrp.numValid() == 0 {
|
|
|
|
|
return nil, proc.ErrProcessExited{Pid: wpid, Status: -int(status.Signal())}
|
|
|
|
|
}
|
|
|
|
|
if halt {
|
|
|
|
|
return nil, nil
|
|
|
|
|
}
|
|
|
|
|
continue
|
2021-05-17 16:48:48 +00:00
|
|
|
}
|
|
|
|
|
// does this ever happen?
|
|
|
|
|
delete(dbp.threads, wpid)
|
|
|
|
|
continue
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
if status.StopSignal() == sys.SIGTRAP && (status.TrapCause() == sys.PTRACE_EVENT_CLONE || status.TrapCause() == sys.PTRACE_EVENT_VFORK) {
|
2015-01-14 02:37:10 +00:00
|
|
|
// A traced thread has cloned a new thread, grab the pid and
|
|
|
|
|
// add it to our list of traced threads.
|
2023-02-22 17:26:28 +00:00
|
|
|
// If TrapCause() is sys.PTRACE_EVENT_VFORK this is actually a new
|
|
|
|
|
// process, but treat it as a normal thread until exec happens, so that
|
|
|
|
|
// we can initialize the new process normally.
|
2015-06-13 04:47:30 +00:00
|
|
|
var cloned uint
|
|
|
|
|
dbp.execPtraceFunc(func() { cloned, err = sys.PtraceGetEventMsg(wpid) })
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil {
|
2016-07-20 22:36:31 +00:00
|
|
|
if err == sys.ESRCH {
|
|
|
|
|
// thread died while we were adding it
|
|
|
|
|
continue
|
|
|
|
|
}
|
2015-04-09 15:01:58 +00:00
|
|
|
return nil, fmt.Errorf("could not get event message: %s", err)
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2015-04-25 14:46:16 +00:00
|
|
|
th, err = dbp.addThread(int(cloned), false)
|
2015-01-14 02:37:10 +00:00
|
|
|
if err != nil {
|
2015-09-26 19:36:13 +00:00
|
|
|
if err == sys.ESRCH {
|
|
|
|
|
// thread died while we were adding it
|
2018-01-29 10:07:38 +00:00
|
|
|
delete(dbp.threads, int(cloned))
|
2015-09-26 19:36:13 +00:00
|
|
|
continue
|
|
|
|
|
}
|
2015-04-09 15:01:58 +00:00
|
|
|
return nil, err
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2018-01-29 10:07:38 +00:00
|
|
|
if halt {
|
2018-02-14 08:28:51 +00:00
|
|
|
th.os.running = false
|
|
|
|
|
dbp.threads[int(wpid)].os.running = false
|
2018-01-29 10:07:38 +00:00
|
|
|
return nil, nil
|
|
|
|
|
}
|
2023-09-20 07:17:45 +00:00
|
|
|
if err = th.resume(); err != nil {
|
2015-09-26 19:36:13 +00:00
|
|
|
if err == sys.ESRCH {
|
|
|
|
|
// thread died while we were adding it
|
2017-02-08 00:23:47 +00:00
|
|
|
delete(dbp.threads, th.ID)
|
2015-09-26 19:36:13 +00:00
|
|
|
continue
|
|
|
|
|
}
|
2015-04-09 15:01:58 +00:00
|
|
|
return nil, fmt.Errorf("could not continue new thread %d %s", cloned, err)
|
2015-03-01 03:34:55 +00:00
|
|
|
}
|
2023-09-20 07:17:45 +00:00
|
|
|
if err = dbp.threads[int(wpid)].resume(); err != nil {
|
2015-11-19 15:16:55 +00:00
|
|
|
if err != sys.ESRCH {
|
|
|
|
|
return nil, fmt.Errorf("could not continue existing thread %d %s", wpid, err)
|
|
|
|
|
}
|
2015-03-01 03:34:55 +00:00
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
continue
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
if status.StopSignal() == sys.SIGTRAP && (status.TrapCause() == sys.PTRACE_EVENT_EXEC) {
|
|
|
|
|
// A thread called exec and we now have a new process. Retrieve the
|
|
|
|
|
// thread ID of the exec'ing thread with PtraceGetEventMsg to remove it
|
|
|
|
|
// and create a new nativeProcess object to track the new process.
|
|
|
|
|
var tid uint
|
|
|
|
|
dbp.execPtraceFunc(func() { tid, err = sys.PtraceGetEventMsg(wpid) })
|
|
|
|
|
if err == nil {
|
|
|
|
|
delete(dbp.threads, int(tid))
|
|
|
|
|
}
|
|
|
|
|
dbp = newChildProcess(procgrp.procs[0], wpid)
|
|
|
|
|
dbp.followExec = true
|
2023-05-09 18:40:00 +00:00
|
|
|
cmdline, _ := dbp.initializeBasic()
|
|
|
|
|
tgt, err := procgrp.add(dbp, dbp.pid, dbp.memthread, findExecutable("", dbp.pid), proc.StopLaunched, cmdline)
|
2023-02-22 17:26:28 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
if halt {
|
|
|
|
|
return nil, nil
|
|
|
|
|
}
|
2023-05-09 18:40:00 +00:00
|
|
|
if tgt != nil {
|
|
|
|
|
// If tgt is nil we decided we are not interested in debugging this
|
|
|
|
|
// process, and we have already detached from it.
|
2023-09-20 07:17:45 +00:00
|
|
|
err = dbp.threads[dbp.pid].resume()
|
2023-05-09 18:40:00 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
}
|
2023-05-09 18:40:00 +00:00
|
|
|
//TODO(aarzilli): if we want to give users the ability to stop the target
|
|
|
|
|
//group on exec here is where we should return
|
2023-02-22 17:26:28 +00:00
|
|
|
continue
|
|
|
|
|
}
|
2015-06-26 14:00:34 +00:00
|
|
|
if th == nil {
|
|
|
|
|
// Sometimes we get an unknown thread, ignore it?
|
|
|
|
|
continue
|
|
|
|
|
}
|
2018-02-14 09:53:01 +00:00
|
|
|
if (halt && status.StopSignal() == sys.SIGSTOP) || (status.StopSignal() == sys.SIGTRAP) {
|
2018-02-14 08:28:51 +00:00
|
|
|
th.os.running = false
|
2020-03-09 17:15:45 +00:00
|
|
|
if status.StopSignal() == sys.SIGTRAP {
|
|
|
|
|
th.os.setbp = true
|
|
|
|
|
}
|
2015-11-24 21:48:28 +00:00
|
|
|
return th, nil
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2019-07-13 01:28:04 +00:00
|
|
|
|
|
|
|
|
// TODO(dp) alert user about unexpected signals here.
|
2019-11-12 14:58:54 +00:00
|
|
|
if halt && !th.os.running {
|
|
|
|
|
// We are trying to stop the process, queue this signal to be delivered
|
|
|
|
|
// to the thread when we resume.
|
|
|
|
|
// Do not do this for threads that were running because we sent them a
|
|
|
|
|
// STOP signal and we need to observe it so we don't mistakenly deliver
|
|
|
|
|
// it later.
|
|
|
|
|
th.os.delayedSignal = int(status.StopSignal())
|
|
|
|
|
th.os.running = false
|
|
|
|
|
return th, nil
|
2020-05-14 12:23:16 +00:00
|
|
|
} else if err := th.resumeWithSig(int(status.StopSignal())); err != nil {
|
2021-01-04 16:42:08 +00:00
|
|
|
if err != sys.ESRCH {
|
2020-10-12 22:02:55 +00:00
|
|
|
return nil, err
|
2015-04-25 14:46:16 +00:00
|
|
|
}
|
2021-01-04 16:42:08 +00:00
|
|
|
// do the same thing we do if a thread quit
|
|
|
|
|
if wpid == dbp.pid {
|
|
|
|
|
dbp.postExit()
|
2023-02-22 17:26:28 +00:00
|
|
|
if procgrp.numValid() == 0 {
|
|
|
|
|
return nil, proc.ErrProcessExited{Pid: wpid, Status: status.ExitStatus()}
|
|
|
|
|
}
|
|
|
|
|
continue
|
2021-01-04 16:42:08 +00:00
|
|
|
}
|
|
|
|
|
delete(dbp.threads, wpid)
|
2015-04-25 14:46:16 +00:00
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-10-04 18:16:39 +00:00
|
|
|
func status(pid int, comm string) rune {
|
2015-04-23 15:42:28 +00:00
|
|
|
f, err := os.Open(fmt.Sprintf("/proc/%d/stat", pid))
|
|
|
|
|
if err != nil {
|
2015-06-26 14:00:34 +00:00
|
|
|
return '\000'
|
2015-04-23 15:42:28 +00:00
|
|
|
}
|
|
|
|
|
defer f.Close()
|
2020-02-15 19:55:19 +00:00
|
|
|
rd := bufio.NewReader(f)
|
2015-04-23 15:42:28 +00:00
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
p int
|
|
|
|
|
state rune
|
|
|
|
|
)
|
2015-10-04 18:16:39 +00:00
|
|
|
|
2022-12-28 11:41:13 +00:00
|
|
|
// The second field of /proc/pid/stat is the name of the task in parentheses.
|
2015-10-04 19:03:39 +00:00
|
|
|
// The name of the task is the base name of the executable for this process limited to TASK_COMM_LEN characters
|
|
|
|
|
// Since both parenthesis and spaces can appear inside the name of the task and no escaping happens we need to read the name of the executable first
|
|
|
|
|
// See: include/linux/sched.c:315 and include/linux/sched.c:1510
|
2020-05-14 12:23:16 +00:00
|
|
|
_, _ = fmt.Fscanf(rd, "%d ("+comm+") %c", &p, &state)
|
2015-06-26 14:00:34 +00:00
|
|
|
return state
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-07 21:08:11 +00:00
|
|
|
// waitFast is like wait but does not handle process-exit correctly
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) waitFast(pid int) (int, *sys.WaitStatus, error) {
|
2017-02-07 21:08:11 +00:00
|
|
|
var s sys.WaitStatus
|
|
|
|
|
wpid, err := sys.Wait4(pid, &s, sys.WALL, nil)
|
|
|
|
|
return wpid, &s, err
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) wait(pid, options int) (int, *sys.WaitStatus, error) {
|
2015-06-26 14:00:34 +00:00
|
|
|
var s sys.WaitStatus
|
2023-02-22 17:26:28 +00:00
|
|
|
if (dbp == nil) || (pid != dbp.pid) || (options != 0) {
|
2015-06-26 14:00:34 +00:00
|
|
|
wpid, err := sys.Wait4(pid, &s, sys.WALL|options, nil)
|
|
|
|
|
return wpid, &s, err
|
2016-01-10 08:57:52 +00:00
|
|
|
}
|
|
|
|
|
// If we call wait4/waitpid on a thread that is the leader of its group,
|
|
|
|
|
// with options == 0, while ptracing and the thread leader has exited leaving
|
|
|
|
|
// zombies of its own then waitpid hangs forever this is apparently intended
|
|
|
|
|
// behaviour in the linux kernel because it's just so convenient.
|
|
|
|
|
// Therefore we call wait4 in a loop with WNOHANG, sleeping a while between
|
|
|
|
|
// calls and exiting when either wait4 succeeds or we find out that the thread
|
|
|
|
|
// has become a zombie.
|
|
|
|
|
// References:
|
|
|
|
|
// https://sourceware.org/bugzilla/show_bug.cgi?id=12702
|
|
|
|
|
// https://sourceware.org/bugzilla/show_bug.cgi?id=10095
|
|
|
|
|
// https://sourceware.org/bugzilla/attachment.cgi?id=5685
|
|
|
|
|
for {
|
|
|
|
|
wpid, err := sys.Wait4(pid, &s, sys.WNOHANG|sys.WALL|options, nil)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return 0, nil, err
|
|
|
|
|
}
|
|
|
|
|
if wpid != 0 {
|
|
|
|
|
return wpid, &s, err
|
|
|
|
|
}
|
2020-03-26 12:05:09 +00:00
|
|
|
if status(pid, dbp.os.comm) == statusZombie {
|
2016-01-10 08:57:52 +00:00
|
|
|
return pid, nil, nil
|
2015-06-26 14:00:34 +00:00
|
|
|
}
|
2016-01-10 08:57:52 +00:00
|
|
|
time.Sleep(200 * time.Millisecond)
|
2015-06-26 14:00:34 +00:00
|
|
|
}
|
2015-01-14 02:37:10 +00:00
|
|
|
}
|
2015-10-02 16:17:07 +00:00
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
func exitGuard(dbp *nativeProcess, procgrp *processGroup, err error) error {
|
2015-10-02 16:17:07 +00:00
|
|
|
if err != sys.ESRCH {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2020-03-26 12:05:09 +00:00
|
|
|
if status(dbp.pid, dbp.os.comm) == statusZombie {
|
2023-02-22 17:26:28 +00:00
|
|
|
_, err := trapWaitInternal(procgrp, -1, trapWaitDontCallExitGuard)
|
2015-10-02 16:17:07 +00:00
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return err
|
|
|
|
|
}
|
2015-11-19 15:16:55 +00:00
|
|
|
|
2023-08-28 19:46:19 +00:00
|
|
|
func (procgrp *processGroup) resume() error {
|
2015-11-19 15:16:55 +00:00
|
|
|
// all threads stopped over a breakpoint are made to step over it
|
2023-08-28 19:46:19 +00:00
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if valid, _ := dbp.Valid(); valid {
|
|
|
|
|
for _, thread := range dbp.threads {
|
|
|
|
|
if thread.CurrentBreakpoint.Breakpoint != nil {
|
2023-09-20 07:17:45 +00:00
|
|
|
if err := procgrp.stepInstruction(thread); err != nil {
|
2023-08-28 19:46:19 +00:00
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
thread.CurrentBreakpoint.Clear()
|
|
|
|
|
}
|
2015-11-19 15:16:55 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// everything is resumed
|
2023-08-28 19:46:19 +00:00
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if valid, _ := dbp.Valid(); valid {
|
|
|
|
|
for _, thread := range dbp.threads {
|
|
|
|
|
if err := thread.resume(); err != nil && err != sys.ESRCH {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-11-19 15:16:55 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2016-01-15 05:26:54 +00:00
|
|
|
|
2019-07-13 01:28:04 +00:00
|
|
|
// stop stops all running threads and sets breakpoints
|
2023-02-22 17:26:28 +00:00
|
|
|
func (procgrp *processGroup) stop(cctx *proc.ContinueOnceContext, trapthread *nativeThread) (*nativeThread, error) {
|
|
|
|
|
if procgrp.numValid() == 0 {
|
|
|
|
|
return nil, proc.ErrProcessExited{Pid: procgrp.procs[0].pid}
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
2020-03-09 17:15:45 +00:00
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if dbp.exited {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
for _, th := range dbp.threads {
|
|
|
|
|
th.os.setbp = false
|
|
|
|
|
}
|
2020-03-09 17:15:45 +00:00
|
|
|
}
|
|
|
|
|
trapthread.os.setbp = true
|
|
|
|
|
|
|
|
|
|
// check if any other thread simultaneously received a SIGTRAP
|
|
|
|
|
for {
|
2023-02-22 17:26:28 +00:00
|
|
|
th, err := trapWaitInternal(procgrp, -1, trapWaitNohang)
|
2020-04-16 14:08:20 +00:00
|
|
|
if err != nil {
|
2023-02-22 17:26:28 +00:00
|
|
|
p := procgrp.procForThread(th.ID)
|
|
|
|
|
return nil, exitGuard(p, procgrp, err)
|
2020-04-16 14:08:20 +00:00
|
|
|
}
|
2020-03-09 17:15:45 +00:00
|
|
|
if th == nil {
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// stop all threads that are still running
|
2023-02-22 17:26:28 +00:00
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if dbp.exited {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
for _, th := range dbp.threads {
|
|
|
|
|
if th.os.running {
|
|
|
|
|
if err := th.stop(); err != nil {
|
|
|
|
|
if err == sys.ESRCH {
|
|
|
|
|
// thread exited
|
|
|
|
|
delete(dbp.threads, th.ID)
|
|
|
|
|
} else {
|
|
|
|
|
return nil, exitGuard(dbp, procgrp, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// wait for all threads to stop
|
|
|
|
|
for {
|
|
|
|
|
allstopped := true
|
2023-02-22 17:26:28 +00:00
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if dbp.exited {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
for _, th := range dbp.threads {
|
|
|
|
|
if th.os.running {
|
|
|
|
|
allstopped = false
|
|
|
|
|
break
|
|
|
|
|
}
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if allstopped {
|
|
|
|
|
break
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
_, err := trapWaitInternal(procgrp, -1, trapWaitHalt)
|
2018-02-13 16:10:44 +00:00
|
|
|
if err != nil {
|
2020-11-03 18:28:37 +00:00
|
|
|
return nil, err
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
switchTrapthread := false
|
|
|
|
|
|
|
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if dbp.exited {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
err := stop1(cctx, dbp, trapthread, &switchTrapthread)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
2019-03-20 17:32:51 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
if switchTrapthread {
|
|
|
|
|
trapthreadID := trapthread.ID
|
|
|
|
|
trapthread = nil
|
|
|
|
|
for _, dbp := range procgrp.procs {
|
|
|
|
|
if dbp.exited {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
for _, th := range dbp.threads {
|
|
|
|
|
if th.os.setbp && th.ThreadID() != trapthreadID {
|
|
|
|
|
return th, nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return trapthread, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func stop1(cctx *proc.ContinueOnceContext, dbp *nativeProcess, trapthread *nativeThread, switchTrapthread *bool) error {
|
|
|
|
|
if err := linutil.ElfUpdateSharedObjects(dbp); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2020-11-03 18:28:37 +00:00
|
|
|
|
2020-03-09 17:15:45 +00:00
|
|
|
// set breakpoints on SIGTRAP threads
|
2021-05-17 16:56:42 +00:00
|
|
|
var err1 error
|
2018-02-13 16:10:44 +00:00
|
|
|
for _, th := range dbp.threads {
|
2021-05-17 16:56:42 +00:00
|
|
|
pc, _ := th.PC()
|
|
|
|
|
|
|
|
|
|
if !th.os.setbp && pc != th.os.phantomBreakpointPC {
|
|
|
|
|
// check if this could be a breakpoint hit anyway that the OS hasn't notified us about, yet.
|
|
|
|
|
if _, ok := dbp.FindBreakpoint(pc, dbp.BinInfo().Arch.BreakInstrMovesPC()); ok {
|
|
|
|
|
th.os.phantomBreakpointPC = pc
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if pc != th.os.phantomBreakpointPC {
|
|
|
|
|
th.os.phantomBreakpointPC = 0
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-09 17:15:45 +00:00
|
|
|
if th.CurrentBreakpoint.Breakpoint == nil && th.os.setbp {
|
2019-08-12 22:11:19 +00:00
|
|
|
if err := th.SetCurrentBreakpoint(true); err != nil {
|
2021-05-17 16:56:42 +00:00
|
|
|
err1 = err
|
|
|
|
|
continue
|
2020-11-03 18:28:37 +00:00
|
|
|
}
|
|
|
|
|
}
|
2021-05-17 16:56:42 +00:00
|
|
|
|
2020-11-03 18:28:37 +00:00
|
|
|
if th.CurrentBreakpoint.Breakpoint == nil && th.os.setbp && (th.Status != nil) && ((*sys.WaitStatus)(th.Status).StopSignal() == sys.SIGTRAP) && dbp.BinInfo().Arch.BreakInstrMovesPC() {
|
|
|
|
|
manualStop := false
|
|
|
|
|
if th.ThreadID() == trapthread.ThreadID() {
|
2022-03-21 19:42:37 +00:00
|
|
|
manualStop = cctx.GetManualStopRequested()
|
2020-11-03 18:28:37 +00:00
|
|
|
}
|
2021-05-17 16:56:42 +00:00
|
|
|
if !manualStop && th.os.phantomBreakpointPC == pc {
|
2020-11-03 18:28:37 +00:00
|
|
|
// Thread received a SIGTRAP but we don't have a breakpoint for it and
|
|
|
|
|
// it wasn't sent by a manual stop request. It's either a hardcoded
|
|
|
|
|
// breakpoint or a phantom breakpoint hit (a breakpoint that was hit but
|
|
|
|
|
// we have removed before we could receive its signal). Check if it is a
|
|
|
|
|
// hardcoded breakpoint, otherwise rewind the thread.
|
|
|
|
|
isHardcodedBreakpoint := false
|
|
|
|
|
pc, _ := th.PC()
|
|
|
|
|
for _, bpinstr := range [][]byte{
|
|
|
|
|
dbp.BinInfo().Arch.BreakpointInstruction(),
|
|
|
|
|
dbp.BinInfo().Arch.AltBreakpointInstruction()} {
|
|
|
|
|
if bpinstr == nil {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
buf := make([]byte, len(bpinstr))
|
|
|
|
|
_, _ = th.ReadMemory(buf, pc-uint64(len(buf)))
|
|
|
|
|
if bytes.Equal(buf, bpinstr) {
|
|
|
|
|
isHardcodedBreakpoint = true
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if !isHardcodedBreakpoint {
|
|
|
|
|
// phantom breakpoint hit
|
2021-03-04 18:28:28 +00:00
|
|
|
_ = th.setPC(pc - uint64(len(dbp.BinInfo().Arch.BreakpointInstruction())))
|
2020-11-03 18:28:37 +00:00
|
|
|
th.os.setbp = false
|
|
|
|
|
if trapthread.ThreadID() == th.ThreadID() {
|
|
|
|
|
// Will switch to a different thread for trapthread because we don't
|
|
|
|
|
// want pkg/proc to believe that this thread was stopped by a
|
|
|
|
|
// hardcoded breakpoint.
|
2023-02-22 17:26:28 +00:00
|
|
|
*switchTrapthread = true
|
2020-11-03 18:28:37 +00:00
|
|
|
}
|
|
|
|
|
}
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-02-22 17:26:28 +00:00
|
|
|
return err1
|
2018-02-13 16:10:44 +00:00
|
|
|
}
|
|
|
|
|
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) detach(kill bool) error {
|
2017-03-28 16:30:27 +00:00
|
|
|
for threadID := range dbp.threads {
|
2020-03-26 12:05:09 +00:00
|
|
|
err := ptraceDetach(threadID, 0)
|
2017-03-28 16:30:27 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
}
|
2017-04-06 18:14:01 +00:00
|
|
|
if kill {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2017-03-28 16:30:27 +00:00
|
|
|
// For some reason the process will sometimes enter stopped state after a
|
|
|
|
|
// detach, this doesn't happen immediately either.
|
|
|
|
|
// We have to wait a bit here, then check if the main thread is stopped and
|
|
|
|
|
// SIGCONT it if it is.
|
|
|
|
|
time.Sleep(50 * time.Millisecond)
|
|
|
|
|
if s := status(dbp.pid, dbp.os.comm); s == 'T' {
|
2020-05-14 12:23:16 +00:00
|
|
|
_ = sys.Kill(dbp.pid, sys.SIGCONT)
|
2017-03-28 16:30:27 +00:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-12 22:52:13 +00:00
|
|
|
// EntryPoint will return the process entry point address, useful for
|
|
|
|
|
// debugging PIEs.
|
2020-03-26 12:05:09 +00:00
|
|
|
func (dbp *nativeProcess) EntryPoint() (uint64, error) {
|
2023-09-25 18:41:59 +00:00
|
|
|
auxvbuf, err := os.ReadFile(fmt.Sprintf("/proc/%d/auxv", dbp.pid))
|
2018-05-29 15:01:51 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return 0, fmt.Errorf("could not read auxiliary vector: %v", err)
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-10 16:34:40 +00:00
|
|
|
return linutil.EntryPointFromAuxv(auxvbuf, dbp.bi.Arch.PtrSize()), nil
|
2018-05-29 15:01:51 +00:00
|
|
|
}
|
|
|
|
|
|
2021-08-24 12:53:27 +00:00
|
|
|
func (dbp *nativeProcess) SetUProbe(fnName string, goidOffset int64, args []ebpf.UProbeArgMap) error {
|
2021-07-31 15:16:26 +00:00
|
|
|
// Lazily load and initialize the BPF program upon request to set a uprobe.
|
|
|
|
|
if dbp.os.ebpf == nil {
|
2021-10-25 19:37:36 +00:00
|
|
|
var err error
|
2021-11-03 15:58:04 +00:00
|
|
|
dbp.os.ebpf, err = ebpf.LoadEBPFTracingProgram(dbp.bi.Images[0].Path)
|
2021-10-25 19:37:36 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-07-31 15:16:26 +00:00
|
|
|
}
|
|
|
|
|
|
2021-10-25 19:37:36 +00:00
|
|
|
// We only allow up to 12 args for a BPF probe.
|
|
|
|
|
// 6 inputs + 6 outputs.
|
2021-07-31 15:16:26 +00:00
|
|
|
// Return early if we have more.
|
2021-10-25 19:37:36 +00:00
|
|
|
if len(args) > 12 {
|
|
|
|
|
return errors.New("too many arguments in traced function, max is 12 input+return")
|
2021-07-31 15:16:26 +00:00
|
|
|
}
|
|
|
|
|
|
2023-03-22 18:38:09 +00:00
|
|
|
fns := dbp.bi.LookupFunc()[fnName]
|
|
|
|
|
if len(fns) != 1 {
|
2021-07-31 15:16:26 +00:00
|
|
|
return fmt.Errorf("could not find function: %s", fnName)
|
|
|
|
|
}
|
2023-03-22 18:38:09 +00:00
|
|
|
fn := fns[0]
|
2021-07-31 15:16:26 +00:00
|
|
|
|
2022-09-21 20:39:44 +00:00
|
|
|
offset, err := dbp.BinInfo().GStructOffset(dbp.Memory())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-07-31 15:16:26 +00:00
|
|
|
key := fn.Entry
|
2022-09-21 20:39:44 +00:00
|
|
|
err = dbp.os.ebpf.UpdateArgMap(key, goidOffset, args, offset, false)
|
2021-08-24 12:53:27 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
debugname := dbp.bi.Images[0].Path
|
2021-10-25 19:37:36 +00:00
|
|
|
|
|
|
|
|
// First attach a uprobe at all return addresses. We do this instead of using a uretprobe
|
|
|
|
|
// for two reasons:
|
|
|
|
|
// 1. uretprobes do not play well with Go
|
|
|
|
|
// 2. uretprobes seem to not restore the function return addr on the stack when removed, destroying any
|
|
|
|
|
// kind of workaround we could come up with.
|
|
|
|
|
// TODO(derekparker): this whole thing could likely be optimized a bit.
|
|
|
|
|
img := dbp.BinInfo().PCToImage(fn.Entry)
|
|
|
|
|
f, err := elf.Open(img.Path)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("could not open elf file to resolve symbol offset: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var regs proc.Registers
|
|
|
|
|
mem := dbp.Memory()
|
|
|
|
|
regs, _ = dbp.memthread.Registers()
|
|
|
|
|
instructions, err := proc.Disassemble(mem, regs, &proc.BreakpointMap{}, dbp.BinInfo(), fn.Entry, fn.End)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var addrs []uint64
|
|
|
|
|
for _, instruction := range instructions {
|
|
|
|
|
if instruction.IsRet() {
|
|
|
|
|
addrs = append(addrs, instruction.Loc.PC)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
addrs = append(addrs, proc.FindDeferReturnCalls(instructions)...)
|
|
|
|
|
for _, addr := range addrs {
|
2022-09-21 20:39:44 +00:00
|
|
|
err := dbp.os.ebpf.UpdateArgMap(addr, goidOffset, args, offset, true)
|
2021-10-25 19:37:36 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
off, err := ebpf.AddressToOffset(f, addr)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2021-11-26 16:06:23 +00:00
|
|
|
err = dbp.os.ebpf.AttachUprobe(dbp.pid, debugname, off)
|
2021-10-25 19:37:36 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-03 15:58:04 +00:00
|
|
|
off, err := ebpf.AddressToOffset(f, fn.Entry)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2021-11-26 16:06:23 +00:00
|
|
|
return dbp.os.ebpf.AttachUprobe(dbp.pid, debugname, off)
|
2021-07-31 15:16:26 +00:00
|
|
|
}
|
|
|
|
|
|
2023-02-22 17:26:28 +00:00
|
|
|
// FollowExec enables (or disables) follow exec mode
|
|
|
|
|
func (dbp *nativeProcess) FollowExec(v bool) error {
|
|
|
|
|
dbp.followExec = v
|
|
|
|
|
ptraceOptions := ptraceOptionsNormal
|
|
|
|
|
if dbp.followExec {
|
|
|
|
|
ptraceOptions = ptraceOptionsFollowExec
|
|
|
|
|
}
|
|
|
|
|
var err error
|
|
|
|
|
dbp.execPtraceFunc(func() {
|
|
|
|
|
for tid := range dbp.threads {
|
|
|
|
|
err = syscall.PtraceSetOptions(tid, ptraceOptions)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
2016-01-15 05:26:54 +00:00
|
|
|
func killProcess(pid int) error {
|
|
|
|
|
return sys.Kill(pid, sys.SIGINT)
|
|
|
|
|
}
|
2023-05-09 18:40:00 +00:00
|
|
|
|
|
|
|
|
func getCmdLine(pid int) string {
|
2023-09-25 18:41:59 +00:00
|
|
|
buf, _ := os.ReadFile(fmt.Sprintf("/proc/%d/cmdline", pid))
|
2023-05-09 18:40:00 +00:00
|
|
|
args := strings.SplitN(string(buf), "\x00", -1)
|
|
|
|
|
for i := range args {
|
|
|
|
|
if strings.Contains(args[i], " ") {
|
|
|
|
|
args[i] = strconv.Quote(args[i])
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if len(args) > 0 && args[len(args)-1] == "" {
|
|
|
|
|
args = args[:len(args)-1]
|
|
|
|
|
}
|
|
|
|
|
return strings.Join(args, " ")
|
|
|
|
|
}
|
