/*
* Copyright (c) 2016 Dmitry V. Levin <ldv@strace.io>
* Copyright (c) 2016-2021 The strace developers.
* All rights reserved.
*
* SPDX-License-Identifier: LGPL-2.1-or-later
*/
#include "defs.h"
#include "nsig.h"
#include "number_set.h"
#include "filter.h"
#include "delay.h"
#include "poke.h"
#include "retval.h"
#include "static_assert.h"
#ifdef ENABLE_SECONTEXT
# include "secontext.h"
#endif
struct number_set *read_set;
struct number_set *write_set;
struct number_set *signal_set;
struct number_set *status_set;
struct number_set *quiet_set;
struct number_set *decode_fd_set;
struct number_set *decode_pid_set;
struct number_set *trace_set;
bool quiet_set_updated = false;
bool decode_fd_set_updated = false;
static struct number_set *abbrev_set;
static struct number_set *inject_set;
static struct number_set *raw_set;
static struct number_set *verbose_set;
/* Only syscall numbers are personality-specific so far. */
struct inject_personality_data {
uint16_t scno;
};
static int
sigstr_to_uint(const char *s)
{
if (*s >= '0' && *s <= '9')
return string_to_uint_upto(s, 255);
if (strncasecmp(s, "SIG", 3) == 0)
s += 3;
for (int i = 1; i <= 255; ++i) {
const char *name = signame(i);
if (!name)
continue;
if (strncasecmp(name, "SIG", 3) != 0)
continue;
name += 3;
if (strcasecmp(name, s) != 0)
continue;
return i;
}
return -1;
}
static int
statusstr_to_uint(const char *str)
{
static const struct xlat_data statuses[] = {
{ STATUS_SUCCESSFUL, "successful" },
{ STATUS_FAILED, "failed" },
{ STATUS_UNFINISHED, "unfinished" },
{ STATUS_UNAVAILABLE, "unavailable" },
{ STATUS_DETACHED, "detached" },
};
return (int) find_arg_val(str, statuses, -1ULL, -1ULL);
}
static int
quietstr_to_uint(const char *str)
{
static const struct xlat_data quiet_strs[] = {
{ QUIET_ATTACH, "attach" },
{ QUIET_EXIT, "exit" },
{ QUIET_EXIT, "exits" },
{ QUIET_PATH_RESOLVE, "path-resolution" },
{ QUIET_PERSONALITY, "personality" },
{ QUIET_THREAD_EXECVE, "superseded" },
{ QUIET_THREAD_EXECVE, "thread-execve" },
};
return (int) find_arg_val(str, quiet_strs, -1ULL, -1ULL);
}
static int
decode_fd_str_to_uint(const char *str)
{
static const struct xlat_data decode_fd_strs[] = {
{ DECODE_FD_PATH, "path" },
{ DECODE_FD_SOCKET, "socket" },
{ DECODE_FD_DEV, "dev" },
{ DECODE_FD_PIDFD, "pidfd" },
};
return (int) find_arg_val(str, decode_fd_strs, -1ULL, -1ULL);
}
static int
decode_pid_str_to_uint(const char *str)
{
static const struct xlat_data decode_pid_strs[] = {
{ DECODE_PID_NS_TRANSLATION, "pidns" },
{ DECODE_PID_COMM, "comm" },
};
return (int) find_arg_val(str, decode_pid_strs, -1ULL, -1ULL);
}
static int
find_errno_by_name(const char *name)
{
for (unsigned int i = 1; i < nerrnos; ++i) {
if (errnoent[i] && (strcasecmp(name, errnoent[i]) == 0))
return i;
}
return -1;
}
static bool
parse_delay_token(const char *input, struct inject_opts *fopts, bool isenter)
{
unsigned flag = isenter ? INJECT_F_DELAY_ENTER : INJECT_F_DELAY_EXIT;
if (fopts->data.flags & flag) /* duplicate */
return false;
struct timespec tsval;
if (parse_ts(input, &tsval) < 0) /* couldn't parse */
return false;
if (fopts->data.delay_idx == (uint16_t) -1)
fopts->data.delay_idx = alloc_delay_data();
/* populate .ts_enter or .ts_exit */
fill_delay_data(fopts->data.delay_idx, &tsval, isenter);
fopts->data.flags |= flag;
return true;
}
static bool
parse_poke_token(const char *input, struct inject_opts *fopts, bool isenter)
{
unsigned flag = isenter ? INJECT_F_POKE_ENTER : INJECT_F_POKE_EXIT;
/* disallow duplicates */
if (fopts->data.flags & flag)
return false;
/* empty strings */
if (input[0] == '\0')
return false;
if (fopts->data.poke_idx == (uint16_t) -1)
fopts->data.poke_idx = alloc_poke_data();
char *saveptr = NULL;
char *str_tokenized = xstrdup(input);
struct poke_payload *poke;
for (char *token = strtok_r(str_tokenized, ",", &saveptr);
token;
token = strtok_r(NULL, ",", &saveptr)) {
poke = xcalloc(1, sizeof(*poke));
poke->is_enter = isenter;
const char *val = STR_STRIP_PREFIX(token, "@arg");
if (val == token)
goto err;
if ((val[0] >= '1') && (val[0] <= '7')) {
poke->arg_no = val[0] - '0';
} else {
goto err;
}
if (val[1] != '=')
goto err;
val += 2;
size_t data_len = strlen(val);
if ((data_len == 0) || (data_len % 2) || (data_len > 2048))
goto err;
data_len /= 2;
poke->data_len = data_len;
poke->data = xmalloc(data_len);
for (size_t i = 0; i < data_len; i++)
if (sscanf(&val[2 * i], "%2hhx", &poke->data[i]) != 1)
goto err;
if (poke_add(fopts->data.poke_idx, poke))
goto err;
}
free(str_tokenized);
fopts->data.flags |= flag;
return true;
err:
free(poke->data);
free(poke);
free(str_tokenized);
return false;
}
static void
check_inadvertent_fault_injection(unsigned long long ullval)
{
#if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
bool inadvertent_fault_injection = false;
#endif
#if !HAVE_ARCH_DEDICATED_ERR_REG
if ((kernel_long_t) ullval < 0
&& (kernel_long_t) ullval >= -MAX_ERRNO_VALUE) {
# if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
inadvertent_fault_injection = true;
# endif
error_msg("Inadvertent injection of error %" PRI_kld
" is possible for retval=%llu",
-(kernel_long_t) ullval, ullval);
}
# if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
else if ((int) ullval < 0 && (int) ullval >= -MAX_ERRNO_VALUE) {
inadvertent_fault_injection = true;
error_msg("Inadvertent injection of error %d is possible"
" in compat personality for retval=%llu",
-(int) ullval, ullval);
}
# endif
#endif
#if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
if (!inadvertent_fault_injection
&& (unsigned int) ullval != ullval) {
error_msg("Injected return value %llu will be"
" clipped to %u in compat personality",
ullval, (unsigned int) ullval);
}
#endif
}
static bool
parse_inject_token(const char *const token, struct inject_opts *const fopts,
struct inject_personality_data *const pdata,
const bool fault_tokens_only)
{
const char *val;
int intval;
if ((val = STR_STRIP_PREFIX(token, "when=")) != token) {
/*
* == 1..INF+1
* F == F..INF+0
* F+ == F..INF+1
* F+S == F..INF+S
* F..L == F..L+1
* F..L+S
*/
char *end;
intval = string_to_uint_ex(val, &end, 0xffff, "+.");
if (intval < 1)
return false;
fopts->first = intval;
if (end[0] == '.') {
if (end[1] != '.')
return false;
/*
* F..L
* F..L+S
*/
val = end + 2;
intval = string_to_uint_ex(val, &end, 0xffff, "+");
if (intval < fopts->first || intval == INJECT_LAST_INF)
return false;
fopts->last = intval;
} else {
/*
* F == F..INF+0
* F+ == F..INF+1
* F+S == F..INF+S
*/
fopts->last = INJECT_LAST_INF;
}
if (end[0] != '\0') {
val = end + 1;
if (val[0] != '\0') {
/*
* F+S == F..INF+S
* F..L+S
*/
intval = string_to_uint_upto(val, 0xffff);
if (intval < 1)
return false;
fopts->step = intval;
} else {
/*
* F+ == F..INF+1
* F..L+ == F..L+1
*/
fopts->step = 1;
}
} else {
if (fopts->last == INJECT_LAST_INF) {
/* F == F..INF+0 */
fopts->step = 0;
} else {
/* F..L == F..L+1 */
fopts->step = 1;
}
}
} else if ((val = STR_STRIP_PREFIX(token, "syscall=")) != token) {
if (fopts->data.flags & INJECT_F_SYSCALL)
return false;
for (unsigned int p = 0; p < SUPPORTED_PERSONALITIES; ++p) {
kernel_long_t scno = scno_by_name(val, p, 0);
if (scno < 0)
return false;
/*
* We want to inject only pure system calls with no side
* effects.
*/
if (!(sysent_vec[p][scno].sys_flags & TRACE_PURE))
return false;
pdata[p].scno = scno;
}
fopts->data.flags |= INJECT_F_SYSCALL;
} else if ((val = STR_STRIP_PREFIX(token, "error=")) != token) {
if (fopts->data.flags & (INJECT_F_ERROR | INJECT_F_RETVAL))
return false;
intval = string_to_uint_upto(val, MAX_ERRNO_VALUE);
if (intval < 0)
intval = find_errno_by_name(val);
if (intval < 1)
return false;
fopts->data.rval_idx = retval_new(intval);
fopts->data.flags |= INJECT_F_ERROR;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "retval=")) != token) {
if (fopts->data.flags & (INJECT_F_ERROR | INJECT_F_RETVAL))
return false;
errno = 0;
char *endp;
unsigned long long ullval = strtoull(val, &endp, 0);
if (endp == val || *endp || (kernel_ulong_t) ullval != ullval
|| ((ullval == 0 || ullval == ULLONG_MAX) && errno))
return false;
check_inadvertent_fault_injection(ullval);
fopts->data.rval_idx = retval_new(ullval);
fopts->data.flags |= INJECT_F_RETVAL;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "signal=")) != token) {
if (fopts->data.flags & INJECT_F_SIGNAL)
return false;
intval = sigstr_to_uint(val);
if (intval < 1 || intval > NSIG_BYTES * 8)
return false;
fopts->data.signo = intval;
fopts->data.flags |= INJECT_F_SIGNAL;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "poke_enter=")) != token) {
if (!parse_poke_token(val, fopts, true))
return false;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "poke_exit=")) != token) {
if (!parse_poke_token(val, fopts, false))
return false;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "delay_enter=")) != token) {
if (!parse_delay_token(val, fopts, true))
return false;
} else if (!fault_tokens_only
&& (val = STR_STRIP_PREFIX(token, "delay_exit=")) != token) {
if (!parse_delay_token(val, fopts, false))
return false;
} else {
return false;
}
return true;
}
static const char *
parse_inject_expression(char *const str,
struct inject_opts *const fopts,
struct inject_personality_data *const pdata,
const bool fault_tokens_only)
{
if (str[0] == '\0' || str[0] == ':')
return "";
char *saveptr = NULL;
const char *name = strtok_r(str, ":", &saveptr);
char *token;
while ((token = strtok_r(NULL, ":", &saveptr))) {
if (!parse_inject_token(token, fopts, pdata, fault_tokens_only))
return NULL;
}
return name;
}
void
qualify_read(const char *const str)
{
if (!read_set)
read_set = alloc_number_set_array(1);
qualify_tokens(str, read_set, string_to_uint, "descriptor");
}
void
qualify_write(const char *const str)
{
if (!write_set)
write_set = alloc_number_set_array(1);
qualify_tokens(str, write_set, string_to_uint, "descriptor");
}
void
qualify_signals(const char *const str)
{
if (!signal_set)
signal_set = alloc_number_set_array(1);
qualify_tokens(str, signal_set, sigstr_to_uint, "signal");
}
void
qualify_status(const char *const str)
{
if (!status_set)
status_set = alloc_number_set_array(1);
qualify_tokens(str, status_set, statusstr_to_uint, "status");
}
void
qualify_quiet(const char *const str)
{
if (!quiet_set)
quiet_set = alloc_number_set_array(1);
else
quiet_set_updated = true;
qualify_tokens(str, quiet_set, quietstr_to_uint, "quiet");
}
void
qualify_decode_fd(const char *const str)
{
if (!decode_fd_set)
decode_fd_set = alloc_number_set_array(1);
else
decode_fd_set_updated = true;
qualify_tokens(str, decode_fd_set, decode_fd_str_to_uint,
"decode-fds");
}
void
qualify_decode_pid(const char *const str)
{
if (!decode_pid_set)
decode_pid_set = alloc_number_set_array(1);
qualify_tokens(str, decode_pid_set, decode_pid_str_to_uint,
"decode-pids");
}
void
qualify_trace(const char *const str)
{
if (!trace_set)
trace_set = alloc_number_set_array(SUPPORTED_PERSONALITIES);
qualify_syscall_tokens(str, trace_set);
}
void
qualify_abbrev(const char *const str)
{
if (!abbrev_set)
abbrev_set = alloc_number_set_array(SUPPORTED_PERSONALITIES);
qualify_syscall_tokens(str, abbrev_set);
}
void
qualify_verbose(const char *const str)
{
if (!verbose_set)
verbose_set = alloc_number_set_array(SUPPORTED_PERSONALITIES);
qualify_syscall_tokens(str, verbose_set);
}
void
qualify_raw(const char *const str)
{
if (!raw_set)
raw_set = alloc_number_set_array(SUPPORTED_PERSONALITIES);
qualify_syscall_tokens(str, raw_set);
}
static void
qualify_inject_common(const char *const str,
const bool fault_tokens_only,
const char *const description)
{
struct inject_opts opts = {
.first = 1,
.last = INJECT_LAST_INF,
.step = 1,
.data = {
.delay_idx = -1,
.poke_idx = -1
}
};
struct inject_personality_data pdata[SUPPORTED_PERSONALITIES] = { { 0 } };
char *copy = xstrdup(str);
const char *name =
parse_inject_expression(copy, &opts, pdata, fault_tokens_only);
if (!name)
error_msg_and_die("invalid %s '%s'", description, str);
struct number_set *tmp_set =
alloc_number_set_array(SUPPORTED_PERSONALITIES);
qualify_syscall_tokens(name, tmp_set);
free(copy);
/* If neither of retval, error, signal or delay is specified, then ... */
if (!(opts.data.flags & INJECT_ACTION_FLAGS)) {
if (fault_tokens_only) {
/* in fault= syntax the default error code is ENOSYS. */
opts.data.rval_idx = retval_new(ENOSYS);
opts.data.flags |= INJECT_F_ERROR;
} else {
/* in inject= syntax this is not allowed. */
error_msg_and_die("invalid %s '%s'", description, str);
}
}
/*
* Initialize inject_vec according to tmp_set.
* Merge tmp_set into inject_set.
*/
for (unsigned int p = 0; p < SUPPORTED_PERSONALITIES; ++p) {
if (number_set_array_is_empty(tmp_set, p))
continue;
if (!inject_set) {
inject_set =
alloc_number_set_array(SUPPORTED_PERSONALITIES);
}
if (!inject_vec[p]) {
inject_vec[p] = xcalloc(nsyscall_vec[p],
sizeof(*inject_vec[p]));
}
for (unsigned int i = 0; i < nsyscall_vec[p]; ++i) {
if (is_number_in_set_array(i, tmp_set, p)) {
add_number_to_set_array(i, inject_set, p);
inject_vec[p][i] = opts;
/* Copy per-personality data. */
inject_vec[p][i].data.scno =
pdata[p].scno;
}
}
}
free_number_set_array(tmp_set, SUPPORTED_PERSONALITIES);
}
void
qualify_fault(const char *const str)
{
qualify_inject_common(str, true, "fault argument");
}
void
qualify_inject(const char *const str)
{
qualify_inject_common(str, false, "inject argument");
}
void
qualify_kvm(const char *const str)
{
if (strcmp(str, "vcpu") == 0) {
#ifdef HAVE_LINUX_KVM_H
if (os_release >= KERNEL_VERSION(4, 16, 0))
kvm_run_structure_decoder_init();
else
error_msg("-e kvm=vcpu option needs"
" Linux 4.16.0 or higher");
#else
error_msg("-e kvm=vcpu option is not implemented"
" for this architecture");
#endif
} else {
error_msg_and_die("invalid -e kvm= argument: '%s'", str);
}
}
#ifdef ENABLE_SECONTEXT
struct number_set *secontext_set;
static int
secontextstr_to_uint(const char *s)
{
static const struct xlat_data secontext_strs[] = {
{ SECONTEXT_FULL, "full" },
{ SECONTEXT_MISMATCH, "mismatch" },
};
return (int) find_arg_val(s, secontext_strs, -1ULL, -1ULL);
}
void
qualify_secontext(const char *const str)
{
if (!secontext_set)
secontext_set = alloc_number_set_array(1);
qualify_tokens(str, secontext_set, secontextstr_to_uint, "secontext");
}
#endif
static const struct qual_options {
const char *name;
void (*qualify)(const char *);
} qual_options[] = {
{ "trace", qualify_trace },
{ "t", qualify_trace },
{ "abbrev", qualify_abbrev },
{ "a", qualify_abbrev },
{ "verbose", qualify_verbose },
{ "v", qualify_verbose },
{ "raw", qualify_raw },
{ "x", qualify_raw },
{ "signal", qualify_signals },
{ "signals", qualify_signals },
{ "status", qualify_status },
{ "s", qualify_signals },
{ "quiet", qualify_quiet },
{ "silent", qualify_quiet },
{ "silence", qualify_quiet },
{ "q", qualify_quiet },
{ "read", qualify_read },
{ "reads", qualify_read },
{ "r", qualify_read },
{ "write", qualify_write },
{ "writes", qualify_write },
{ "w", qualify_write },
{ "fault", qualify_fault },
{ "inject", qualify_inject },
{ "kvm", qualify_kvm },
{ "decode-fd", qualify_decode_fd },
{ "decode-fds", qualify_decode_fd },
{ "decode-pid", qualify_decode_pid },
{ "decode-pids", qualify_decode_pid },
#ifdef ENABLE_SECONTEXT
{ "secontext", qualify_secontext },
#endif
};
void
qualify(const char *str)
{
const struct qual_options *opt = qual_options;
for (unsigned int i = 0; i < ARRAY_SIZE(qual_options); ++i) {
const char *name = qual_options[i].name;
const size_t len = strlen(name);
const char *val = str_strip_prefix_len(str, name, len);
if (val == str || *val != '=')
continue;
str = val + 1;
opt = &qual_options[i];
break;
}
opt->qualify(str);
}
unsigned int
qual_flags(const unsigned int scno)
{
return (is_number_in_set_array(scno, trace_set, current_personality)
? QUAL_TRACE : 0)
| (is_number_in_set_array(scno, abbrev_set, current_personality)
? QUAL_ABBREV : 0)
| (is_number_in_set_array(scno, verbose_set, current_personality)
? QUAL_VERBOSE : 0)
| (is_number_in_set_array(scno, raw_set, current_personality)
? QUAL_RAW : 0)
| (is_number_in_set_array(scno, inject_set, current_personality)
? QUAL_INJECT : 0);
}