libcosmos
Linux C++ System Programming Library
Loading...
Searching...
No Matches
Tracee.hxx
1#pragma once
2
3// C++
4#include <optional>
5#include <vector>
6
7// cosmos
8#include <cosmos/compiler.hxx>
9#include <cosmos/io/iovector.hxx>
10#include <cosmos/proc/ptrace.hxx>
11#include <cosmos/proc/signal.hxx>
12#include <cosmos/proc/SigSet.hxx>
13#include <cosmos/utils.hxx>
14
15// forward declaration of low-level structures found in sys/user.h.
16// avoid pulling in that low level header here, since this way of reading
17// registers is not common anymore.
18struct user_regs_struct;
19struct user_fpregs_struct;
20// seccomp instruction
21struct sock_filter;
22
23#ifdef COSMOS_X86
24struct user_desc;
25#endif
26
27namespace cosmos {
28
29struct InputMemoryRegion;
30class SigInfo;
31
33
41class COSMOS_API Tracee {
42public: // types
43
45
51 enum class RestartMode {
52 CONT = to_integral(ptrace::Request::CONT),
53 DETACH = to_integral(ptrace::Request::DETACH),
54 SYSCALL = to_integral(ptrace::Request::SYSCALL),
55 SINGLESTEP = to_integral(ptrace::Request::SINGLESTEP),
56#ifdef PTRACE_SYSEMU
57 SYSEMU = to_integral(ptrace::Request::SYSEMU),
58 SYSEMU_SINGLESTEP = to_integral(ptrace::Request::SYSEMU_SINGLESTEP),
59#endif
60 LISTEN = to_integral(ptrace::Request::LISTEN)
61 };
62
63public: // functions
64
65 explicit Tracee(const ProcessID pid = ProcessID::INVALID) :
66 m_pid{pid}
67 {}
68
69 ProcessID pid() const {
70 return m_pid;
71 }
72
73 bool valid() const {
74 return pid() != ProcessID::INVALID;
75 }
76
78
88 void seize(const ptrace::Opts opts) {
89 this->request(ptrace::Request::SEIZE, nullptr, opts.raw());
90 }
91
93
110 void attach() {
111 this->request(ptrace::Request::ATTACH);
112 }
113
115
120 void detach() {
121 this->request(ptrace::Request::DETACH);
122 }
123
125
134 void restart(const RestartMode mode, const std::optional<Signal> signal = {}) {
135 // data here takes the plain signal number, 0 means "don't inject a signal".
136 this->request(static_cast<ptrace::Request>(mode),
137 nullptr,
138 mode != RestartMode::LISTEN && signal ? signal->raw() : SignalNr{0});
139 }
140
142
156 void interrupt() {
157 this->request(ptrace::Request::INTERRUPT);
158 }
159
161
166 void setOptions(const ptrace::Opts opts) {
167 this->request(ptrace::Request::SETOPTIONS, nullptr, opts.raw());
168 }
169
171
179 long peekData(const long *addr) const {
180 return *(this->request(ptrace::Request::PEEKDATA, addr));
181 }
182
184 void pokeData(const long *addr, long value) {
185 this->request(ptrace::Request::POKEDATA, addr, value);
186 }
187
189
198 long peekUser(const long *offset) const {
199 return *(this->request(ptrace::Request::PEEKUSER, offset));
200 }
201
203
207 void pokeUser(const long *offset, long value) {
208 this->request(ptrace::Request::POKEUSER, offset, value);
209 }
210
212
219 void getRegisters(struct user_regs_struct &out) const {
220 // NOTE: on Sparc the address needs to be passed as third
221 // argument, not as fourth. If we should ever want to support
222 // it, we'd need an #ifdef of some sort.
223 this->request(ptrace::Request::GETREGS, nullptr, &out);
224 }
225
227
231 void setRegisters(const struct user_regs_struct &out) {
232 // NOTE: see getRegisters() about Sparc architecture
233 this->request(ptrace::Request::SETREGS, nullptr, &out);
234 }
235
237
243 void getFloatRegisters(struct user_fpregs_struct &out) const {
244 // NOTE: see getRegisters() about Sparc architecture
245 this->request(ptrace::Request::GETFPREGS, nullptr, &out);
246 }
247
249
252 void setFloatRegisters(const struct user_fpregs_struct &out) {
253 this->request(ptrace::Request::SETFPREGS, nullptr, &out);
254 }
255
257
265 void getRegisterSet(const ptrace::RegisterType type, InputMemoryRegion &iovec) const {
266 this->request(ptrace::Request::GETREGSET, type, iovec.asIovec());
267 }
268
270 void setRegisterSet(const ptrace::RegisterType type, OutputMemoryRegion &iovec) {
271 this->request(ptrace::Request::SETREGSET, type, iovec.asIovec());
272 }
273
275 void getSigInfo(SigInfo &info) const;
276
278
286 void setSigInfo(const SigInfo &info);
287
289
299 std::vector<SigInfo> peekSigInfo(const ptrace::PeekSigInfo &settings);
300
302 void getSigMask(SigSet &set) const {
303 this->request(ptrace::Request::GETSIGMASK, sizeof(*set.raw()), set.raw());
304 }
305
307 void setSigMask(const SigSet &set) {
308 this->request(ptrace::Request::SETSIGMASK, sizeof(*set.raw()), set.raw());
309 }
310
312
319 ProcessID getPIDEventMsg() const {
320 const auto pid = getEventMsg();
321 return static_cast<ProcessID>(pid);
322 }
323
325
331 ExitStatus getExitEventMsg() const {
332 const auto status = getEventMsg();
333 return static_cast<ExitStatus>(status);
334 }
335
337
344 uint16_t getSeccompRetDataEventMsg() const {
345 const auto seccomp_ret_data = getEventMsg();
346 return static_cast<uint16_t>(seccomp_ret_data);
347 }
348
350
366 void getSeccompFilter(std::vector<struct sock_filter> &instructions, const unsigned long prog_index) const;
367
368#ifdef COSMOS_X86
369
370 // these operations are also supported on MIPS, m68k and C-SKY but
371 // they're using different data structures.
372 // for the definition of `struct user_desc` you need to include <asm/ldt.h>.
373
375
379 void getThreadArea(struct user_desc &desc) const;
380
382
386 void setThreadArea(const struct user_desc &desc);
387
388#endif // X86
389
391
399 void getSyscallInfo(ptrace::SyscallInfo &info) const;
400
401protected: // functions
402
404
409 unsigned long getEventMsg() const {
410 unsigned long msg = 0;
411 this->request(ptrace::Request::GETEVENTMSG, nullptr, &msg);
412 return msg;
413 }
414
415 template <typename ADDR=void*, typename DATA=void*>
416 std::optional<long> request(const ptrace::Request req, ADDR addr = nullptr, DATA data = nullptr) const {
417 // First cast to const void* then remove const, this allows to
418 // pass in const pointers. The compiler cannot understand that
419 // ptrace() won't change the pointed-to data according to
420 // contract.
421 return cosmos::ptrace::trace(req, m_pid,
422 const_cast<void*>(reinterpret_cast<const void*>(addr)),
423 const_cast<void*>(reinterpret_cast<const void*>(data)));
424 }
425
426 /*
427 * Template specialization in case `nullptr` is passed for addr.
428 * This avoids invalid cast from nullptr_t to void* errors.
429 */
430 template <typename DATA=void*>
431 std::optional<long> request(const ptrace::Request req, std::nullptr_t, DATA data = nullptr) const {
432 return request(req, static_cast<void*>(nullptr), data);
433 }
434
435protected: // data
436
437 ProcessID m_pid;
438};
439
440} // end ns
cosmos::BitMask
A typesafe bit mask representation using class enums.
Definition BitMask.hxx:19
cosmos::BitMask::raw
EnumBaseType raw() const
Returns the raw bitfield integer.
Definition BitMask.hxx:56
cosmos::SigInfo
Signal information struct used when receiving signals.
Definition SigInfo.hxx:79
cosmos::SigSet
A bit set of signal numbers for use in system calls.
Definition SigSet.hxx:25
cosmos::Tracee
Thin wrapper class around the ptrace() system call.
Definition Tracee.hxx:41
cosmos::Tracee::setFloatRegisters
void setFloatRegisters(const struct user_fpregs_struct &out)
Modify the tracee's floating point registers.
Definition Tracee.hxx:252
cosmos::Tracee::getSeccompRetDataEventMsg
uint16_t getSeccompRetDataEventMsg() const
Returns the SECCOMP_RET_DATA in the context of a ptrace-event-stop.
Definition Tracee.hxx:344
cosmos::Tracee::RestartMode
RestartMode
Different ways to restart a tracee.
Definition Tracee.hxx:51
cosmos::Tracee::setSigMask
void setSigMask(const SigSet &set)
Change the tracee's mask of blocked signals.
Definition Tracee.hxx:307
cosmos::Tracee::setRegisters
void setRegisters(const struct user_regs_struct &out)
Modify the tracee's general purpose registers.
Definition Tracee.hxx:231
cosmos::Tracee::getExitEventMsg
ExitStatus getExitEventMsg() const
Returns the exit code of the tracee in the context of a ptrace-event-stop.
Definition Tracee.hxx:331
cosmos::Tracee::getRegisterSet
void getRegisterSet(const ptrace::RegisterType type, InputMemoryRegion &iovec) const
Retrieve a set of registers from the tracee.
Definition Tracee.hxx:265
cosmos::Tracee::getPIDEventMsg
ProcessID getPIDEventMsg() const
Returns the PID of a newly created child of the tracee in the context of a ptrace-event-stop.
Definition Tracee.hxx:319
cosmos::Tracee::interrupt
void interrupt()
Interrupt the tracee.
Definition Tracee.hxx:156
cosmos::Tracee::setRegisterSet
void setRegisterSet(const ptrace::RegisterType type, OutputMemoryRegion &iovec)
Modify a set of registers in the tracee.
Definition Tracee.hxx:270
cosmos::Tracee::pokeData
void pokeData(const long *addr, long value)
Write one word of data into the tracee's memory.
Definition Tracee.hxx:184
cosmos::Tracee::seize
void seize(const ptrace::Opts opts)
Seize a tracee.
Definition Tracee.hxx:88
cosmos::Tracee::peekData
long peekData(const long *addr) const
Read one word of data from the tracee's memory.
Definition Tracee.hxx:179
cosmos::Tracee::setOptions
void setOptions(const ptrace::Opts opts)
Set tracing options for the given tracee.
Definition Tracee.hxx:166
cosmos::Tracee::peekUser
long peekUser(const long *offset) const
Read one word of data from the tracee's user area.
Definition Tracee.hxx:198
cosmos::Tracee::attach
void attach()
Attach to a process, making it a tracee.
Definition Tracee.hxx:110
cosmos::Tracee::detach
void detach()
Detach from and restart the tracee.
Definition Tracee.hxx:120
cosmos::Tracee::pokeUser
void pokeUser(const long *offset, long value)
Change one word of data in the tracee's user area.
Definition Tracee.hxx:207
cosmos::Tracee::getSigMask
void getSigMask(SigSet &set) const
Obtain the tracee's mask of blocked signals.
Definition Tracee.hxx:302
cosmos::Tracee::getFloatRegisters
void getFloatRegisters(struct user_fpregs_struct &out) const
Copy the tracee's floating point registers into the provided structure.
Definition Tracee.hxx:243
cosmos::Tracee::restart
void restart(const RestartMode mode, const std::optional< Signal > signal={})
Continues a traced process, optionally delivering signal.
Definition Tracee.hxx:134
cosmos::Tracee::getEventMsg
unsigned long getEventMsg() const
Returns the current event message for a ptrace-event-stop.
Definition Tracee.hxx:409
cosmos::Tracee::getRegisters
void getRegisters(struct user_regs_struct &out) const
Copy the tracee's general purpose registers into the provided structure.
Definition Tracee.hxx:219
cosmos::ptrace::PeekSigInfo
Wrapper around data structure used with ptrace::Request::PEEKSIGINFO.
Definition ptrace.hxx:239
cosmos::ProcessID
ProcessID
Definition types.hxx:25
cosmos::ExitStatus
ExitStatus
Represents an exit status code from a child process.
Definition types.hxx:43
cosmos::SignalNr
SignalNr
A primitive signal number specification.
Definition types.hxx:50
cosmos::ptrace::Request
Request
Basic requests that can be passed to the ptrace() system call.
Definition ptrace.hxx:89
cosmos::ptrace::RegisterType
RegisterType
Different types of register sets that can be read from a tracee via Request::GETREGSET.
Definition ptrace.hxx:78
cosmos::InputMemoryRegion
IOMemoryRegion for input (read) operations.
Definition iovector.hxx:101
cosmos::OutputMemoryRegion
IOMemoryRegion for output (write) operations.
Definition iovector.hxx:126
cosmos::ptrace::SyscallInfo
Wrapper around data structure used with ptrace::Request::GET_SYSCALL_INFO.
Definition ptrace.hxx:180