feature/android 0fbe79727b0: Fix execution of /proc/self/exe within chil

emacs-diffs
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
feature/android 0fbe79727b0: Fix execution of /proc/self/exe within chil

From:	Po Lu
Subject:	feature/android 0fbe79727b0: Fix execution of /proc/self/exe within child processes
Date:	Fri, 5 May 2023 07:04:50 -0400 (EDT)
branch: feature/android
commit 0fbe79727b07879cb4f0a5cb8d7288353c082bd0
Author: Po Lu <luangruo@yahoo.com>
Commit: Po Lu <luangruo@yahoo.com>

    Fix execution of /proc/self/exe within child processes
    
    * exec/exec.h (struct exec_tracee): New field `new_child'.
    Also, make `waiting_for_syscall' a bitfield.
    * exec/trace.c (PTRACE_GETEVENTMSG): New declaration.
    (MAX_TRACEES): Bump to 4096.
    (handle_clone_prepare): New function.
    (handle_clone): If required, set `new_child' and wait for a
    ptrace event describing the parent to arrive.
    (after_fork): Clear new field.
    (exec_waitpid): Upon a ptrace event describing a clone, create
    the child's tracee if it doesn't already exist.  Otherwise, copy
    over the parent's cmdline and start running it.
---
 exec/exec.h  |   6 +-
 exec/trace.c | 187 +++++++++++++++++++++++++++++++++++++++++++++++------------
 2 files changed, 154 insertions(+), 39 deletions(-)

diff --git a/exec/exec.h b/exec/exec.h
index 625ad0bb219..8ee74d7ca8b 100644
--- a/exec/exec.h
+++ b/exec/exec.h
@@ -153,7 +153,11 @@ struct exec_tracee
 
   /* Whether or not the tracee is currently waiting for a system call
      to complete.  */
-  bool waiting_for_syscall;
+  bool waiting_for_syscall : 1;
+
+  /* Whether or not the tracee has been created but is not yet
+     processed by `handle_clone'.  */
+  bool new_child : 1;
 
 #ifndef REENTRANT
   /* Name of the executable being run.  */
diff --git a/exec/trace.c b/exec/trace.c
index b765b5cffa4..974df1dd5e1 100644
--- a/exec/trace.c
+++ b/exec/trace.c
@@ -50,6 +50,10 @@ along with GNU Emacs.  If not, see 
<https://www.gnu.org/licenses/>.  */
 #define SYS_SECCOMP 1
 #endif /* SYS_SECCOMP */
 
+#ifndef PTRACE_GETEVENTMSG
+#define PTRACE_GETEVENTMSG 0x4201
+#endif /* PTRACE_GETEVENTMSG */
+
 
 
 /* Program tracing functions.
@@ -63,7 +67,7 @@ along with GNU Emacs.  If not, see 
<https://www.gnu.org/licenses/>.  */
 
 
 /* Number of tracees children are allowed to create.  */
-#define MAX_TRACEES 1024
+#define MAX_TRACEES 4096
 
 #ifdef __aarch64__
 
@@ -381,23 +385,66 @@ remove_tracee (struct exec_tracee *tracee)
 
 /* Child process tracing.  */
 
-/* Handle the completion of a `clone' or `clone3' system call,
-   resulting in the creation of the process PID.  Allocate a new
-   tracee structure from a static area for the processes's pid.
+/* Array of `struct exec_tracees' that they are allocated from.  */
+static struct exec_tracee static_tracees[MAX_TRACEES];
 
-   Value is 0 upon success, 1 otherwise.  */
+/* Number of tracees currently allocated.  */
+static int tracees;
 
-static int
-handle_clone (pid_t pid)
+/* Return the `struct exec_tracee' corresponding to the specified
+   PROCESS.  */
+
+static struct exec_tracee *
+find_tracee (pid_t process)
 {
-  static struct exec_tracee static_tracees[MAX_TRACEES];
-  static int tracees;
   struct exec_tracee *tracee;
+
+  for (tracee = tracing_processes; tracee; tracee = tracee->next)
+    {
+      if (tracee->pid == process)
+       return tracee;
+    }
+
+  return NULL;
+}
+
+/* Prepare to handle the completion of a `clone' system call.
+
+   If the new clone is not yet being traced, create a new tracee for
+   PARENT's child, copying over its current command line.  Then, set
+   `new_child' in the new tracee.  Otherwise, continue it until the
+   next syscall.  */
+
+static void
+handle_clone_prepare (struct exec_tracee *parent)
+{
+#ifndef REENTRANT
   long rc;
-  int flags;
+  unsigned long pid;
+  struct exec_tracee *tracee;
 
-  /* Now allocate a new tracee, either from static_tracees or the free
-     list.  */
+  rc = ptrace (PTRACE_GETEVENTMSG, parent->pid, NULL,
+              &pid);
+  if (rc)
+    return;
+
+  /* See if the tracee already exists.  */
+  tracee = find_tracee (pid);
+
+  if (tracee)
+    {
+      /* Continue the tracee.  Record its command line, as that has
+        not yet been done.  */
+
+      assert (tracee->new_child);
+      tracee->new_child = false;
+      tracee->exec_file = NULL;
+      ptrace (PTRACE_SYSCALL, tracee->pid, 0, 0);
+
+      if (parent->exec_file)
+       tracee->exec_file = strdup (parent->exec_file);
+      return;
+    }
 
   if (free_tracees)
     {
@@ -410,13 +457,75 @@ handle_clone (pid_t pid)
       tracees++;
     }
   else
-    return 1;
+    return;
 
   tracee->pid = pid;
   tracee->next = tracing_processes;
   tracee->waiting_for_syscall = false;
+  tracee->new_child = true;
+  tracee->exec_file = NULL;
   tracing_processes = tracee;
 
+  /* Copy over the command line.  */
+
+  if (parent->exec_file)
+    tracee->exec_file = strdup (parent->exec_file);
+#endif /* REENTRANT */
+}
+
+/* Handle the completion of a `clone' or `clone3' system call,
+   resulting in the creation of the process PID.  If TRACEE is NULL,
+   allocate a new tracee structure from a static area for the
+   processes's pid, then set TRACEE->new_child to true and await the
+   parent's corresponding ptrace event to arrive; otherwise, just
+   clear TRACEE->new_child.
+
+   Value is 0 upon success, 2 if TRACEE should remain suspended until
+   the parent's ptrace-stop, and 1 otherwise.  */
+
+static int
+handle_clone (struct exec_tracee *tracee, pid_t pid)
+{
+  long rc;
+  int flags, value;
+
+  /* Now allocate a new tracee, either from static_tracees or the free
+     list, if no tracee was supplied.  */
+
+  value = 0;
+
+  if (!tracee)
+    {
+      if (free_tracees)
+       {
+         tracee = free_tracees;
+         free_tracees = free_tracees->next;
+       }
+      else if (tracees < MAX_TRACEES)
+       {
+         tracee = &static_tracees[tracees];
+         tracees++;
+       }
+      else
+       return 1;
+
+      tracee->pid = pid;
+      tracee->next = tracing_processes;
+      tracee->waiting_for_syscall = false;
+#ifndef REENTRANT
+      tracee->exec_file = NULL;
+#endif /* REENTRANT */
+      tracing_processes = tracee;
+      tracee->new_child = true;
+
+      /* Wait for the ptrace-stop to happen in the parent.  */
+      value = 2;
+    }
+  else
+    /* Clear the flag saying that this is a newly created child
+       process.  */
+    tracee->new_child = false;
+
   /* Apply required options to the child, so that the kernel
      automatically traces children and makes it easy to differentiate
      between system call traps and other kinds of traps.  */
@@ -432,15 +541,18 @@ handle_clone (pid_t pid)
   if (rc)
     goto bail;
 
-  /* The new tracee is currently stopped.  Continue it until the next
-     system call.  */
+  if (value != 2)
+    {
+      /* The new tracee is currently stopped.  Continue it until the next
+        system call.  */
 
-  rc = ptrace (PTRACE_SYSCALL, pid, 0, 0);
+      rc = ptrace (PTRACE_SYSCALL, pid, 0, 0);
 
-  if (rc)
-    goto bail;
+      if (rc)
+       goto bail;
+    }
 
-  return 0;
+  return value;
 
  bail:
   remove_tracee (tracee);
@@ -1148,6 +1260,7 @@ after_fork (pid_t pid)
   tracee->pid = pid;
   tracee->next = tracing_processes;
   tracee->waiting_for_syscall = false;
+  tracee->new_child = false;
 #ifndef REENTRANT
   tracee->exec_file = NULL;
 #endif /* REENTRANT */
@@ -1155,23 +1268,6 @@ after_fork (pid_t pid)
   return 0;
 }
 
-/* Return the `struct exec_tracee' corresponding to the specified
-   PROCESS.  */
-
-static struct exec_tracee *
-find_tracee (pid_t process)
-{
-  struct exec_tracee *tracee;
-
-  for (tracee = tracing_processes; tracee; tracee = tracee->next)
-    {
-      if (tracee->pid == process)
-       return tracee;
-    }
-
-  return NULL;
-}
-
 /* Wait for a child process to exit, like `waitpid'.  However, if a
    child stops to perform a system call, send it on its way and return
    -1.  OPTIONS must not contain WUNTRACED.  */
@@ -1199,12 +1295,12 @@ exec_waitpid (pid_t pid, int *wstatus, int options)
     {
       tracee = find_tracee (pid);
 
-      if (!tracee)
+      if (!tracee || tracee->new_child)
        {
          if (WSTOPSIG (status) == SIGSTOP)
            /* A new process has been created and stopped.  Record
               it now.  */
-           handle_clone (pid);
+           handle_clone (tracee, pid);
 
          return -1;
        }
@@ -1248,6 +1344,21 @@ exec_waitpid (pid_t pid, int *wstatus, int options)
        case SIGTRAP | (PTRACE_EVENT_FORK << 8):
        case SIGTRAP | (PTRACE_EVENT_VFORK << 8):
        case SIGTRAP | (PTRACE_EVENT_CLONE << 8):
+
+         /* Both PTRACE_EVENT_CLONE and SIGSTOP must arrive before a
+            process is continued.  Otherwise, its parent's cmdline
+            cannot be obtained and propagated.
+
+            If the PID of the new process is currently not being
+            traced, create a new tracee.  Set `new_child' to true,
+            and copy over the old command line in preparation for a
+            SIGSTOP signal being delivered to it.
+
+            Otherwise, start the tracee running until the next
+            syscall.  */
+
+         handle_clone_prepare (tracee);
+
          /* These events are handled by tracing SIGSTOP signals sent
             to unknown tracees.  Make sure not to pass through
             status, as there's no signal really being delivered.  */
[Prev in Thread]
Current Thread
[Next in Thread]
feature/android 0fbe79727b0: Fix execution of /proc/self/exe within child processes, Po Lu <=
Prev by Date: emacs-29 b4e90070f96: Fix arguments of xml.c functions as displayed in Help buffers
Next by Date: emacs-29 c0ab4e9ca93: Eglot: re-rename eglot-upgrade to eglot-upgrade-eglot
Previous by thread: emacs-29 b4e90070f96: Fix arguments of xml.c functions as displayed in Help buffers
Next by thread: emacs-29 c0ab4e9ca93: Eglot: re-rename eglot-upgrade to eglot-upgrade-eglot
Index(es):
- Date
- Thread