2 * Copyright (c) 1991, 1992 Paul Kranenburg <pk@cs.few.eur.nl>
3 * Copyright (c) 1993 Branko Lankester <branko@hacktic.nl>
4 * Copyright (c) 1993, 1994, 1995, 1996 Rick Sladkey <jrs@world.std.com>
5 * Copyright (c) 2001-2018 The strace developers.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. The name of the author may not be used to endorse or promote products
17 * derived from this software without specific prior written permission.
19 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
20 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
21 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
22 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
23 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
24 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
25 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
28 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
42 #include <sys/types.h>
47 /* Open-coding isprint(ch) et al proved more efficient than calling
48 * generalized libc interface. We don't *want* to do non-ASCII anyway.
50 /* #include <ctype.h> */
56 #include "arch_defs.h"
57 #include "error_prints.h"
58 #include "gcc_compat.h"
59 #include "kernel_types.h"
61 #include "mpers_type.h"
62 #include "string_to_uint.h"
67 const char *strerror(int);
70 /* Some libc have stpcpy, some don't. Sigh...
71 * Roll our private implementation...
74 #define stpcpy strace_stpcpy
75 extern char *stpcpy(char *dst, const char *src);
78 /* Glibc has an efficient macro for sigemptyset
79 * (it just does one or two assignments of 0 to internal vector of longs).
81 #if defined(__GLIBC__) && defined(__sigemptyset) && !defined(sigemptyset)
82 # define sigemptyset __sigemptyset
85 /* Configuration section */
86 #ifndef DEFAULT_STRLEN
87 /* default maximum # of bytes printed in `printstr', change with -s switch */
88 # define DEFAULT_STRLEN 32
90 #ifndef DEFAULT_ACOLUMN
91 # define DEFAULT_ACOLUMN 40 /* default alignment column for results */
94 * Maximum number of args to a syscall.
96 * Make sure that all entries in all syscallent.h files have nargs <= MAX_ARGS!
97 * linux/<ARCH>/syscallent*.h:
98 * all have nargs <= 6 except mips o32 which has nargs <= 7.
101 # ifdef LINUX_MIPSO32
107 /* default sorting method for call profiling */
108 #ifndef DEFAULT_SORTBY
109 # define DEFAULT_SORTBY "time"
112 /* To force NOMMU build, set to 1 */
113 #define NOMMU_SYSTEM 0
116 # define ERESTARTSYS 512
118 #ifndef ERESTARTNOINTR
119 # define ERESTARTNOINTR 513
121 #ifndef ERESTARTNOHAND
122 # define ERESTARTNOHAND 514
124 #ifndef ERESTART_RESTARTBLOCK
125 # define ERESTART_RESTARTBLOCK 516
128 #define PERSONALITY0_WORDSIZE SIZEOF_LONG
129 #define PERSONALITY0_KLONGSIZE SIZEOF_KERNEL_LONG_T
130 #define PERSONALITY0_INCLUDE_PRINTERS_DECLS "native_printer_decls.h"
131 #define PERSONALITY0_INCLUDE_PRINTERS_DEFS "native_printer_defs.h"
133 #if SUPPORTED_PERSONALITIES > 1
134 # define PERSONALITY1_WORDSIZE 4
135 # define PERSONALITY1_KLONGSIZE PERSONALITY1_WORDSIZE
138 #if SUPPORTED_PERSONALITIES > 2
139 # define PERSONALITY2_WORDSIZE 4
140 # define PERSONALITY2_KLONGSIZE PERSONALITY0_KLONGSIZE
143 #if SUPPORTED_PERSONALITIES > 1 && defined HAVE_M32_MPERS
144 # define PERSONALITY1_INCLUDE_PRINTERS_DECLS "m32_printer_decls.h"
145 # define PERSONALITY1_INCLUDE_PRINTERS_DEFS "m32_printer_defs.h"
146 # define PERSONALITY1_INCLUDE_FUNCS "m32_funcs.h"
147 # define MPERS_m32_IOCTL_MACROS "ioctl_redefs1.h"
148 # define HAVE_PERSONALITY_1_MPERS 1
150 # define PERSONALITY1_INCLUDE_PRINTERS_DECLS "native_printer_decls.h"
151 # define PERSONALITY1_INCLUDE_PRINTERS_DEFS "native_printer_defs.h"
152 # define PERSONALITY1_INCLUDE_FUNCS "empty.h"
153 # define HAVE_PERSONALITY_1_MPERS 0
156 #if SUPPORTED_PERSONALITIES > 2 && defined HAVE_MX32_MPERS
157 # define PERSONALITY2_INCLUDE_FUNCS "mx32_funcs.h"
158 # define PERSONALITY2_INCLUDE_PRINTERS_DECLS "mx32_printer_decls.h"
159 # define PERSONALITY2_INCLUDE_PRINTERS_DEFS "mx32_printer_defs.h"
160 # define MPERS_mx32_IOCTL_MACROS "ioctl_redefs2.h"
161 # define HAVE_PERSONALITY_2_MPERS 1
163 # define PERSONALITY2_INCLUDE_PRINTERS_DECLS "native_printer_decls.h"
164 # define PERSONALITY2_INCLUDE_PRINTERS_DEFS "native_printer_defs.h"
165 # define PERSONALITY2_INCLUDE_FUNCS "empty.h"
166 # define HAVE_PERSONALITY_2_MPERS 0
169 typedef struct ioctlent {
174 #define INJECT_F_SIGNAL 0x01
175 #define INJECT_F_ERROR 0x02
176 #define INJECT_F_RETVAL 0x04
177 #define INJECT_F_DELAY_ENTER 0x08
178 #define INJECT_F_DELAY_EXIT 0x10
181 uint8_t flags; /* 5 of 8 flags are used so far */
182 uint8_t signo; /* NSIG <= 128 */
183 uint16_t rval_idx; /* index in retval_vec */
184 uint16_t delay_idx; /* index in delay_data_vec */
190 struct inject_data data;
193 #define MAX_ERRNO_VALUE 4095
195 /* Trace Control Block */
197 int flags; /* See below for TCB_ values */
198 int pid; /* If 0, this tcb is free */
199 int qual_flg; /* qual_flags[scno] or DEFAULT_QUAL_FLAGS + RAW */
200 unsigned long u_error; /* Error code */
201 kernel_ulong_t scno; /* System call number */
202 kernel_ulong_t u_arg[MAX_ARGS]; /* System call arguments */
203 kernel_long_t u_rval; /* Return value */
204 #if SUPPORTED_PERSONALITIES > 1
205 unsigned int currpers; /* Personality at the time of scno update */
207 int sys_func_rval; /* Syscall entry parser's return value */
208 int curcol; /* Output column for this process */
209 FILE *outf; /* Output file for this process */
210 const char *auxstr; /* Auxiliary info from syscall (see RVAL_STR) */
211 void *_priv_data; /* Private data for syscall decoding functions */
212 void (*_free_priv_data)(void *); /* Callback for freeing priv_data */
213 const struct_sysent *s_ent; /* sysent[scno] or dummy struct for bad scno */
214 const struct_sysent *s_prev_ent; /* for "resuming interrupted SYSCALL" msg */
215 struct inject_opts *inject_vec[SUPPORTED_PERSONALITIES];
216 struct timespec stime; /* System time usage as of last process wait */
217 struct timespec dtime; /* Delta for system time usage */
218 struct timespec etime; /* Syscall entry time */
219 struct timespec delay_expiration_time; /* When does the delay end */
221 struct mmap_cache_t *mmap_cache;
223 #ifdef ENABLE_STACKTRACE
225 struct unwind_queue_t *unwind_queue;
230 /* We have attached to this process, but did not see it stopping yet */
231 #define TCB_STARTUP 0x01
232 #define TCB_IGNORE_ONE_SIGSTOP 0x02 /* Next SIGSTOP is to be ignored */
234 * Are we in system call entry or in syscall exit?
236 * This bit is set in syscall_entering_finish() and cleared in
237 * syscall_exiting_finish().
238 * Other stops which are possible directly after syscall entry (death, ptrace
239 * event stop) are handled without calling syscall_{entering,exiting}_*().
241 * Use entering(tcp) / exiting(tcp) to check this bit to make code more
244 #define TCB_INSYSCALL 0x04
245 #define TCB_ATTACHED 0x08 /* We attached to it already */
246 #define TCB_REPRINT 0x10 /* We should reprint this syscall on exit */
247 #define TCB_FILTERED 0x20 /* This system call has been filtered out */
248 #define TCB_TAMPERED 0x40 /* A syscall has been tampered with */
249 #define TCB_HIDE_LOG 0x80 /* We should hide everything (until execve) */
250 #define TCB_SKIP_DETACH_ON_FIRST_EXEC 0x100 /* -b execve should skip detach on first execve */
251 #define TCB_GRABBED 0x200 /* We grab the process and can catch it
252 * in the middle of a syscall */
253 #define TCB_RECOVERING 0x400 /* We try to recover after detecting incorrect
254 * syscall entering/exiting state */
255 #define TCB_INJECT_DELAY_EXIT 0x800 /* Current syscall needs to be delayed
257 #define TCB_DELAYED 0x1000 /* Current syscall has been delayed */
259 /* qualifier flags */
260 #define QUAL_TRACE 0x001 /* this system call should be traced */
261 #define QUAL_ABBREV 0x002 /* abbreviate the structures of this syscall */
262 #define QUAL_VERBOSE 0x004 /* decode the structures of this syscall */
263 #define QUAL_RAW 0x008 /* print all args in hex for this syscall */
264 #define QUAL_INJECT 0x010 /* tamper with this system call on purpose */
266 #define DEFAULT_QUAL_FLAGS (QUAL_TRACE | QUAL_ABBREV | QUAL_VERBOSE)
268 #define entering(tcp) (!((tcp)->flags & TCB_INSYSCALL))
269 #define exiting(tcp) ((tcp)->flags & TCB_INSYSCALL)
270 #define syserror(tcp) ((tcp)->u_error != 0)
271 #define traced(tcp) ((tcp)->qual_flg & QUAL_TRACE)
272 #define verbose(tcp) ((tcp)->qual_flg & QUAL_VERBOSE)
273 #define abbrev(tcp) ((tcp)->qual_flg & QUAL_ABBREV)
274 #define raw(tcp) ((tcp)->qual_flg & QUAL_RAW)
275 #define inject(tcp) ((tcp)->qual_flg & QUAL_INJECT)
276 #define filtered(tcp) ((tcp)->flags & TCB_FILTERED)
277 #define hide_log(tcp) ((tcp)->flags & TCB_HIDE_LOG)
278 #define syscall_tampered(tcp) ((tcp)->flags & TCB_TAMPERED)
279 #define recovering(tcp) ((tcp)->flags & TCB_RECOVERING)
280 #define inject_delay_exit(tcp) ((tcp)->flags & TCB_INJECT_DELAY_EXIT)
281 #define syscall_delayed(tcp) ((tcp)->flags & TCB_DELAYED)
285 extern const struct xlat addrfams[];
286 extern const struct xlat arp_hardware_types[];
287 extern const struct xlat at_flags[];
288 extern const struct xlat clocknames[];
289 extern const struct xlat dirent_types[];
291 /** Ethernet protocols list, sorted, defined in sockaddr.c. */
292 extern const struct xlat ethernet_protocols[];
293 /** Ethernet protocols array size without terminating record. */
294 extern const size_t ethernet_protocols_size;
296 extern const struct xlat evdev_abs[];
297 /** Number of elements in evdev_abs array without the terminating record. */
298 extern const size_t evdev_abs_size;
300 extern const struct xlat iffflags[];
301 extern const struct xlat inet_protocols[];
302 extern const struct xlat ip_type_of_services[];
303 extern const struct xlat ipc_private[];
304 extern const struct xlat msg_flags[];
305 extern const struct xlat netlink_protocols[];
306 extern const struct xlat nl_netfilter_msg_types[];
307 extern const struct xlat nl_route_types[];
308 extern const struct xlat open_access_modes[];
309 extern const struct xlat open_mode_flags[];
310 extern const struct xlat resource_flags[];
311 extern const struct xlat routing_scopes[];
312 extern const struct xlat routing_table_ids[];
313 extern const struct xlat routing_types[];
314 extern const struct xlat seccomp_filter_flags[];
315 extern const struct xlat seccomp_ret_action[];
316 extern const struct xlat setns_types[];
317 extern const struct xlat sg_io_info[];
318 extern const struct xlat socketlayers[];
319 extern const struct xlat socktypes[];
320 extern const struct xlat tcp_state_flags[];
321 extern const struct xlat tcp_states[];
322 extern const struct xlat whence_codes[];
324 /* Format of syscall return values */
325 #define RVAL_UDECIMAL 000 /* unsigned decimal format */
326 #define RVAL_HEX 001 /* hex format */
327 #define RVAL_OCTAL 002 /* octal format */
328 #define RVAL_FD 010 /* file descriptor */
329 #define RVAL_MASK 013 /* mask for these values */
331 #define RVAL_STR 020 /* Print `auxstr' field after return val */
332 #define RVAL_NONE 040 /* Print nothing */
334 #define RVAL_DECODED 0100 /* syscall decoding finished */
335 #define RVAL_IOCTL_DECODED 0200 /* ioctl sub-parser successfully decoded
338 #define IOCTL_NUMBER_UNKNOWN 0
339 #define IOCTL_NUMBER_HANDLED 1
340 #define IOCTL_NUMBER_STOP_LOOKUP 010
342 #define indirect_ipccall(tcp) (tcp->s_ent->sys_flags & TRACE_INDIRECT_SUBCALL)
353 extern enum sock_proto get_proto_by_name(const char *);
366 extern cflag_t cflag;
369 extern bool count_wallclock;
370 extern unsigned int qflag;
371 extern bool not_failing_only;
372 extern unsigned int show_fd_path;
373 /* are we filtering traces based on paths? */
374 extern struct path_set {
375 const char **paths_selected;
379 #define tracing_paths (global_path_set.num_selected != 0)
380 extern unsigned xflag;
381 extern unsigned followfork;
382 #ifdef ENABLE_STACKTRACE
383 /* if this is true do the stack trace for every system call */
384 extern bool stack_trace_enabled;
386 extern unsigned ptrace_setoptions;
387 extern unsigned max_strlen;
388 extern unsigned os_release;
389 #undef KERNEL_VERSION
390 #define KERNEL_VERSION(a, b, c) (((a) << 16) + ((b) << 8) + (c))
392 extern int read_int_from_file(struct tcb *, const char *, int *);
394 extern void set_sortby(const char *);
395 extern void set_overhead(int);
396 extern void print_pc(struct tcb *);
398 extern int syscall_entering_decode(struct tcb *);
399 extern int syscall_entering_trace(struct tcb *, unsigned int *);
400 extern void syscall_entering_finish(struct tcb *, int);
402 extern int syscall_exiting_decode(struct tcb *, struct timespec *);
403 extern int syscall_exiting_trace(struct tcb *, struct timespec *, int);
404 extern void syscall_exiting_finish(struct tcb *);
406 extern void count_syscall(struct tcb *, const struct timespec *);
407 extern void call_summary(FILE *);
409 extern void clear_regs(struct tcb *tcp);
410 extern int get_scno(struct tcb *);
411 extern kernel_ulong_t get_rt_sigframe_addr(struct tcb *);
414 * Convert a (shuffled) syscall number to the corresponding syscall name.
416 * @param scno Syscall number.
417 * @return String literal corresponding to the syscall number in case latter
418 * is valid; NULL otherwise.
420 extern const char *syscall_name(kernel_ulong_t scno);
422 * Convert a syscall name to the corresponding (shuffled) syscall number.
424 * @param s Syscall name.
425 * @param p Personality.
426 * @param start From which position in syscall entry table resume the search.
427 * @return Shuffled syscall number (ready to use against sysent_vec)
428 * if syscall name is found; -1 otherwise.
430 extern kernel_long_t scno_by_name(const char *s, unsigned p,
431 kernel_long_t start);
433 * Shuffle syscall numbers so that we don't have huge gaps in syscall table.
434 * The shuffling should be an involution: shuffle_scno(shuffle_scno(n)) == n.
436 * @param scno Raw or shuffled syscall number.
437 * @return Shuffled or raw syscall number, respectively.
439 extern kernel_ulong_t shuffle_scno(kernel_ulong_t scno);
440 extern const char *err_name(unsigned long err);
442 extern bool is_erestart(struct tcb *);
443 extern void temporarily_clear_syserror(struct tcb *);
444 extern void restore_cleared_syserror(struct tcb *);
446 extern void *get_tcb_priv_data(const struct tcb *);
447 extern int set_tcb_priv_data(struct tcb *, void *priv_data,
448 void (*free_priv_data)(void *));
449 extern void free_tcb_priv_data(struct tcb *);
451 static inline unsigned long get_tcb_priv_ulong(const struct tcb *tcp)
453 return (unsigned long) get_tcb_priv_data(tcp);
456 static inline int set_tcb_priv_ulong(struct tcb *tcp, unsigned long val)
458 return set_tcb_priv_data(tcp, (void *) val, 0);
462 umoven(struct tcb *, kernel_ulong_t addr, unsigned int len, void *laddr);
463 #define umove(pid, addr, objp) \
464 umoven((pid), (addr), sizeof(*(objp)), (void *) (objp))
467 umoven_or_printaddr64(struct tcb *, uint64_t addr,
468 unsigned int len, void *laddr);
469 #define umove_or_printaddr64(pid, addr, objp) \
470 umoven_or_printaddr64((pid), (addr), sizeof(*(objp)), (void *) (objp))
473 umoven_or_printaddr(struct tcb *tcp, const kernel_ulong_t addr,
474 unsigned int len, void *laddr)
476 return umoven_or_printaddr64(tcp, addr, len, laddr);
478 #define umove_or_printaddr(pid, addr, objp) \
479 umoven_or_printaddr((pid), (addr), sizeof(*(objp)), (void *) (objp))
482 umoven_or_printaddr64_ignore_syserror(struct tcb *, uint64_t addr,
483 unsigned int len, void *laddr);
484 #define umove_or_printaddr64_ignore_syserror(pid, addr, objp) \
485 umoven_or_printaddr64_ignore_syserror((pid), (addr), sizeof(*(objp)), \
489 umoven_or_printaddr_ignore_syserror(struct tcb *tcp, const kernel_ulong_t addr,
490 unsigned int len, void *laddr)
492 return umoven_or_printaddr64_ignore_syserror(tcp, addr, len, laddr);
494 #define umove_or_printaddr_ignore_syserror(pid, addr, objp) \
495 umoven_or_printaddr_ignore_syserror((pid), (addr), sizeof(*(objp)), \
499 umovestr(struct tcb *, kernel_ulong_t addr, unsigned int len, char *laddr);
501 extern int upeek(struct tcb *tcp, unsigned long, kernel_ulong_t *);
502 extern int upoke(struct tcb *tcp, unsigned long, kernel_ulong_t);
504 extern bool print_uint64_array_member(struct tcb *tcp, void *elem_buf,
505 size_t elem_size, void *data);
507 print_array(struct tcb *,
508 kernel_ulong_t start_addr,
512 int (*umoven_func)(struct tcb *,
516 bool (*print_func)(struct tcb *,
522 #if HAVE_ARCH_GETRVAL2
523 extern long getrval2(struct tcb *);
526 extern const char *signame(const int);
527 extern void pathtrace_select_set(const char *, struct path_set *);
528 extern bool pathtrace_match_set(struct tcb *, struct path_set *);
529 #define pathtrace_select(tcp) \
530 pathtrace_select_set(tcp, &global_path_set)
531 #define pathtrace_match(tcp) \
532 pathtrace_match_set(tcp, &global_path_set)
533 extern int getfdpath(struct tcb *, int, char *, unsigned);
534 extern unsigned long getfdinode(struct tcb *, int);
535 extern enum sock_proto getfdproto(struct tcb *, int);
537 extern const char *xlookup(const struct xlat *, const uint64_t);
538 extern const char *xlat_search(const struct xlat *, const size_t, const uint64_t);
541 struct dyxlat *dyxlat_alloc(size_t nmemb);
542 void dyxlat_free(struct dyxlat *);
543 const struct xlat *dyxlat_get(const struct dyxlat *);
544 void dyxlat_add_pair(struct dyxlat *, uint64_t val, const char *str, size_t len);
546 const struct xlat *genl_families_xlat(struct tcb *tcp);
548 extern unsigned long get_pagesize(void);
549 extern int next_set_bit(const void *bit_array, unsigned cur_bit, unsigned size_bits);
552 * Returns STR if it does not start with PREFIX,
553 * or a pointer to the first char in STR after PREFIX.
554 * The length of PREFIX is specified by PREFIX_LEN.
556 static inline const char *
557 str_strip_prefix_len(const char *str, const char *prefix, size_t prefix_len)
559 return strncmp(str, prefix, prefix_len) ? str : str + prefix_len;
562 #define STR_STRIP_PREFIX(str, prefix) \
563 str_strip_prefix_len((str), (prefix), sizeof(prefix) - 1)
565 #define QUOTE_0_TERMINATED 0x01
566 #define QUOTE_OMIT_LEADING_TRAILING_QUOTES 0x02
567 #define QUOTE_OMIT_TRAILING_0 0x08
568 #define QUOTE_FORCE_HEX 0x10
569 #define QUOTE_EMIT_COMMENT 0x20
571 extern int string_quote(const char *, char *, unsigned int, unsigned int,
572 const char *escape_chars);
573 extern int print_quoted_string_ex(const char *, unsigned int, unsigned int,
574 const char *escape_chars);
575 extern int print_quoted_string(const char *, unsigned int, unsigned int);
576 extern int print_quoted_cstring(const char *, unsigned int);
578 /* a refers to the lower numbered u_arg,
579 * b refers to the higher numbered u_arg
581 #ifdef WORDS_BIGENDIAN
582 # define ULONG_LONG(a, b) \
583 ((unsigned long long)(unsigned)(b) | ((unsigned long long)(a)<<32))
585 # define ULONG_LONG(a, b) \
586 ((unsigned long long)(unsigned)(a) | ((unsigned long long)(b)<<32))
588 extern int getllval(struct tcb *, unsigned long long *, int);
589 extern int printllval(struct tcb *, const char *, int)
590 ATTRIBUTE_FORMAT((printf, 2, 0));
592 extern void printaddr64(uint64_t addr);
593 extern void printaddr(kernel_ulong_t addr);
595 #define XLAT_STYLE_VERBOSITY_MASK (XLAT_STYLE_RAW | XLAT_STYLE_ABBREV)
596 #define XLAT_STYLE_FORMAT_SHIFT 2
597 #define XLAT_STYLE_FORMAT_MASK (3 << XLAT_STYLE_FORMAT_SHIFT)
599 #define xlat_verbose(style_) ((style_) & XLAT_STYLE_VERBOSITY_MASK)
600 #define xlat_format(style_) ((style_) & XLAT_STYLE_FORMAT_MASK)
604 * Special value that is used for passing to *print{xval,flags}*_ex
605 * routines that indicates that no overriding of user-supplied xlat
606 * verbosity/formatting configuration is intended.
608 XLAT_STYLE_DEFAULT = 0,
610 /** Print xlat value as is without xlat processing */
611 XLAT_STYLE_RAW = 1 << 0,
613 * Historic strace style, process xlat and print the result (xlat
614 * constant name/combination of flags), raw number only if nothing is
617 XLAT_STYLE_ABBREV = 1 << 1,
618 /** Always print both raw number and xlat processing result. */
619 XLAT_STYLE_VERBOSE = XLAT_STYLE_RAW | XLAT_STYLE_ABBREV,
621 XLAT_STYLE_FMT_X = 0 << XLAT_STYLE_FORMAT_SHIFT,
622 XLAT_STYLE_FMT_U = 1 << XLAT_STYLE_FORMAT_SHIFT,
623 XLAT_STYLE_FMT_D = 2 << XLAT_STYLE_FORMAT_SHIFT,
626 extern enum xlat_style xlat_verbosity;
628 extern int printxvals_ex(uint64_t val, const char *dflt,
629 enum xlat_style style, const struct xlat *, ...)
631 #define printxvals(val_, dflt_, ...) \
632 printxvals_ex((val_), (dflt_), XLAT_STYLE_DEFAULT, __VA_ARGS__)
633 extern int printxval_searchn_ex(const struct xlat *xlat, size_t xlat_size,
634 uint64_t val, const char *dflt,
635 enum xlat_style style);
636 #define printxval_searchn(xlat_, xlat_size_, val_, dflt_) \
637 printxval_searchn_ex((xlat_), (xlat_size_), (val_), (dflt_), \
640 * Wrapper around printxval_searchn that passes ARRAY_SIZE - 1
641 * as the array size, as all arrays are XLAT_END-terminated and
642 * printxval_searchn expects a size without the terminating record.
644 #define printxval_search(xlat__, val__, dflt__) \
645 printxval_searchn(xlat__, ARRAY_SIZE(xlat__) - 1, val__, dflt__)
646 #define printxval_search_ex(xlat__, val__, dflt__) \
647 printxval_searchn_ex((xlat__), ARRAY_SIZE(xlat__) - 1, (val__), \
648 (dflt__), XLAT_STYLE_DEFAULT)
649 extern int printxval_indexn_ex(const struct xlat *xlat, size_t xlat_size,
650 uint64_t val, const char *dflt, enum xlat_style style);
651 #define printxval_indexn(xlat_, xlat_size_, val_, dflt_) \
652 printxval_indexn_ex((xlat_), (xlat_size_), (val_), (dflt_), \
654 #define printxval_index(xlat__, val__, dflt__) \
655 printxval_indexn(xlat__, ARRAY_SIZE(xlat__) - 1, val__, dflt__)
656 #define printxval_index_ex(xlat__, val__, dflt__) \
657 printxval_indexn_ex((xlat__), ARRAY_SIZE(xlat__) - 1, (val__), \
658 (dflt__), XLAT_STYLE_DEFAULT)
659 extern int sprintxval_ex(char *buf, size_t size, const struct xlat *xlat,
660 unsigned int val, const char *dflt,
661 enum xlat_style style);
662 #define sprintxval(buf_, size_, xlat_, val_, dflt_) \
663 sprintxval_ex((buf_), (size_), (xlat_), (val_), (dflt_), \
665 /** Print a value in accordance with xlat formatting settings. */
666 extern void print_xlat_ex(uint64_t val, const char *str, enum xlat_style style);
667 #define print_xlat(val_) \
668 print_xlat_ex((val_), #val_, XLAT_STYLE_DEFAULT)
669 #define print_xlat32(val_) \
670 print_xlat_ex((uint32_t) (val_), #val_, XLAT_STYLE_DEFAULT)
671 #define print_xlat_u(val_) \
672 print_xlat_ex((val_), #val_, XLAT_STYLE_FMT_U)
673 #define print_xlat_d(val_) \
674 print_xlat_ex((val_), #val_, XLAT_STYLE_FMT_D)
676 extern int printargs(struct tcb *);
677 extern int printargs_u(struct tcb *);
678 extern int printargs_d(struct tcb *);
680 extern int printflags_ex(uint64_t flags, const char *dflt,
681 enum xlat_style style, const struct xlat *, ...)
683 extern const char *sprintflags_ex(const char *prefix, const struct xlat *xlat,
684 uint64_t flags, enum xlat_style style);
685 #define sprintflags(prefix_, xlat_, flags_) \
686 sprintflags_ex((prefix_), (xlat_), (flags_), XLAT_STYLE_DEFAULT)
687 extern const char *sprinttime(long long sec);
688 extern const char *sprinttime_nsec(long long sec, unsigned long long nsec);
689 extern const char *sprinttime_usec(long long sec, unsigned long long usec);
691 extern const char *sprint_mac_addr(const uint8_t addr[], size_t size);
693 extern void print_symbolic_mode_t(unsigned int);
694 extern void print_numeric_umode_t(unsigned short);
695 extern void print_numeric_long_umask(unsigned long);
696 extern void print_dev_t(unsigned long long dev);
697 extern void print_abnormal_hi(kernel_ulong_t);
699 extern kernel_ulong_t *
700 fetch_indirect_syscall_args(struct tcb *, kernel_ulong_t addr, unsigned int n_args);
703 dumpiov_in_msghdr(struct tcb *, kernel_ulong_t addr, kernel_ulong_t data_size);
706 dumpiov_in_mmsghdr(struct tcb *, kernel_ulong_t addr);
709 dumpiov_upto(struct tcb *, int len, kernel_ulong_t addr, kernel_ulong_t data_size);
712 dumpstr(struct tcb *, kernel_ulong_t addr, int len);
715 printstr_ex(struct tcb *, kernel_ulong_t addr, kernel_ulong_t len,
716 unsigned int user_style);
719 printpathn(struct tcb *, kernel_ulong_t addr, unsigned int n);
722 printpath(struct tcb *, kernel_ulong_t addr);
724 #define TIMESPEC_TEXT_BUFSIZE \
725 (sizeof(long long) * 3 * 2 + sizeof("{tv_sec=-, tv_nsec=}"))
726 extern void printfd(struct tcb *, int);
727 extern void print_sockaddr(const void *sa, int len);
729 print_inet_addr(int af, const void *addr, unsigned int len, const char *var_name);
731 decode_inet_addr(struct tcb *, kernel_ulong_t addr,
732 unsigned int len, int family, const char *var_name);
733 extern const char *get_sockaddr_by_inode(struct tcb *, int fd, unsigned long inode);
734 extern bool print_sockaddr_by_inode(struct tcb *, int fd, unsigned long inode);
735 extern void print_dirfd(struct tcb *, int);
738 decode_sockaddr(struct tcb *, kernel_ulong_t addr, int addrlen);
740 extern void printuid(const char *, const unsigned int);
743 print_sigset_addr_len(struct tcb *, kernel_ulong_t addr, kernel_ulong_t len);
745 print_sigset_addr(struct tcb *, kernel_ulong_t addr);
747 extern const char *sprintsigmask_n(const char *, const void *, unsigned int);
748 #define tprintsigmask_addr(prefix, mask) \
749 tprints(sprintsigmask_n((prefix), (mask), sizeof(mask)))
750 extern void printsignal(int);
753 tprint_iov_upto(struct tcb *, kernel_ulong_t len, kernel_ulong_t addr,
754 enum iov_decode, kernel_ulong_t data_size);
757 decode_netlink(struct tcb *, int fd, kernel_ulong_t addr, kernel_ulong_t len);
759 extern void tprint_open_modes(unsigned int);
760 extern const char *sprint_open_modes(unsigned int);
763 decode_seccomp_fprog(struct tcb *, kernel_ulong_t addr);
766 print_seccomp_fprog(struct tcb *, kernel_ulong_t addr, unsigned short len);
769 decode_sock_fprog(struct tcb *, kernel_ulong_t addr);
772 print_sock_fprog(struct tcb *, kernel_ulong_t addr, unsigned short len);
775 extern void print_struct_stat(struct tcb *, const struct strace_stat *const st);
777 struct strace_statfs;
778 struct strace_keyctl_kdf_params;
781 print_struct_statfs(struct tcb *, kernel_ulong_t addr);
784 print_struct_statfs64(struct tcb *, kernel_ulong_t addr, kernel_ulong_t size);
786 extern void print_ifindex(unsigned int);
788 extern void print_bpf_filter_code(const uint16_t code, bool extended);
790 extern void qualify(const char *);
791 extern unsigned int qual_flags(const unsigned int);
793 #define DECL_IOCTL(name) \
795 name ## _ioctl(struct tcb *, unsigned int request, kernel_ulong_t arg) \
796 /* End of DECL_IOCTL definition. */
811 extern int decode_sg_io_v4(struct tcb *, const kernel_ulong_t arg);
812 extern void print_evdev_ff_type(const kernel_ulong_t val);
816 typedef bool (*netlink_decoder_t)(struct tcb *, const struct nlmsghdr *,
817 kernel_ulong_t addr, unsigned int len);
819 #define DECL_NETLINK(name) \
821 decode_netlink_ ## name(struct tcb *, const struct nlmsghdr *, \
822 kernel_ulong_t addr, unsigned int len) \
823 /* End of DECL_NETLINK definition. */
825 DECL_NETLINK(crypto);
826 DECL_NETLINK(netfilter);
828 DECL_NETLINK(selinux);
829 DECL_NETLINK(sock_diag);
832 decode_netlink_kobject_uevent(struct tcb *, kernel_ulong_t addr,
835 extern int ts_nz(const struct timespec *);
836 extern int ts_cmp(const struct timespec *, const struct timespec *);
837 extern double ts_float(const struct timespec *);
838 extern void ts_add(struct timespec *, const struct timespec *, const struct timespec *);
839 extern void ts_sub(struct timespec *, const struct timespec *, const struct timespec *);
840 extern void ts_mul(struct timespec *, const struct timespec *, int);
841 extern void ts_div(struct timespec *, const struct timespec *, int);
843 #ifdef ENABLE_STACKTRACE
844 extern void unwind_init(void);
845 extern void unwind_tcb_init(struct tcb *);
846 extern void unwind_tcb_fin(struct tcb *);
847 extern void unwind_tcb_print(struct tcb *);
848 extern void unwind_tcb_capture(struct tcb *);
852 printstrn(struct tcb *tcp, kernel_ulong_t addr, kernel_ulong_t len)
854 return printstr_ex(tcp, addr, len, 0);
858 printstr(struct tcb *tcp, kernel_ulong_t addr)
860 return printstr_ex(tcp, addr, -1, QUOTE_0_TERMINATED);
864 printflags64(const struct xlat *x, uint64_t flags, const char *dflt)
866 return printflags_ex(flags, dflt, XLAT_STYLE_DEFAULT, x, NULL);
870 printflags(const struct xlat *x, unsigned int flags, const char *dflt)
872 return printflags64(x, flags, dflt);
876 printxval64(const struct xlat *x, const uint64_t val, const char *dflt)
878 return printxvals(val, dflt, x, NULL);
882 printxval(const struct xlat *x, const unsigned int val, const char *dflt)
884 return printxvals(val, dflt, x, NULL);
888 printxval64_u(const struct xlat *x, const uint64_t val, const char *dflt)
890 return printxvals_ex(val, dflt, XLAT_STYLE_FMT_U, x, NULL);
894 printxval_u(const struct xlat *x, const unsigned int val, const char *dflt)
896 return printxvals_ex(val, dflt, XLAT_STYLE_FMT_U, x, NULL);
900 printxval64_d(const struct xlat *x, const int64_t val, const char *dflt)
902 return printxvals_ex(val, dflt, XLAT_STYLE_FMT_D, x, NULL);
906 printxval_d(const struct xlat *x, const int val, const char *dflt)
908 return printxvals_ex(val, dflt, XLAT_STYLE_FMT_D, x, NULL);
912 tprint_iov(struct tcb *tcp, kernel_ulong_t len, kernel_ulong_t addr,
913 enum iov_decode decode_iov)
915 tprint_iov_upto(tcp, len, addr, decode_iov, -1);
923 extern void print_timeval32_t(const timeval32_t *);
924 extern void printrusage32(struct tcb *, kernel_ulong_t);
925 extern const char *sprint_timeval32(struct tcb *, kernel_ulong_t addr);
926 extern void print_timeval32(struct tcb *, kernel_ulong_t addr);
927 extern void print_timeval32_utimes(struct tcb *, kernel_ulong_t addr);
928 extern void print_itimerval32(struct tcb *, kernel_ulong_t addr);
931 #ifdef HAVE_STRUCT_USER_DESC
933 * Filter what to print from the point of view of the get_thread_area syscall.
934 * Kernel copies only entry_number field at first and then tries to write the
937 enum user_desc_print_filter {
938 /* Print the "entering" part of struct user_desc - entry_number. */
939 USER_DESC_ENTERING = 1,
940 /* Print the "exiting" part of the structure. */
941 USER_DESC_EXITING = 2,
942 USER_DESC_BOTH = USER_DESC_ENTERING | USER_DESC_EXITING,
945 extern void print_user_desc(struct tcb *, kernel_ulong_t addr,
946 enum user_desc_print_filter filter);
949 /* Strace log generation machinery.
951 * printing_tcp: tcb which has incomplete line being printed right now.
952 * NULL if last line has been completed ('\n'-terminated).
953 * printleader(tcp) examines it, finishes incomplete line if needed,
954 * the sets it to tcp.
955 * line_ended() clears printing_tcp and resets ->curcol = 0.
956 * tcp->curcol == 0 check is also used to detect completeness
957 * of last line, since in -ff mode just checking printing_tcp for NULL
960 * If you change this code, test log generation in both -f and -ff modes
962 * strace -oLOG -f[f] test/threaded_execve
963 * strace -oLOG -f[f] test/sigkill_rain
964 * strace -oLOG -f[f] -p "`pidof web_browser`"
966 extern struct tcb *printing_tcp;
967 extern void printleader(struct tcb *);
968 extern void line_ended(void);
969 extern void tabto(void);
970 extern void tprintf(const char *fmt, ...) ATTRIBUTE_FORMAT((printf, 1, 2));
971 extern void tprints(const char *str);
972 extern void tprintf_comment(const char *fmt, ...) ATTRIBUTE_FORMAT((printf, 1, 2));
973 extern void tprints_comment(const char *str);
976 print_mac_addr(const char *prefix, const uint8_t addr[], size_t size)
979 tprints(sprint_mac_addr(addr, size));
982 #if SUPPORTED_PERSONALITIES > 1
983 extern void set_personality(unsigned int personality);
984 extern unsigned current_personality;
986 # define set_personality(personality) ((void)0)
987 # define current_personality 0
990 #if SUPPORTED_PERSONALITIES == 1
991 # define current_wordsize PERSONALITY0_WORDSIZE
992 # define current_klongsize PERSONALITY0_KLONGSIZE
994 # if SUPPORTED_PERSONALITIES == 2 && PERSONALITY0_WORDSIZE == PERSONALITY1_WORDSIZE
995 # define current_wordsize PERSONALITY0_WORDSIZE
997 extern unsigned current_wordsize;
999 # if SUPPORTED_PERSONALITIES == 2 && PERSONALITY0_KLONGSIZE == PERSONALITY1_KLONGSIZE
1000 # define current_klongsize PERSONALITY0_KLONGSIZE
1002 extern unsigned current_klongsize;
1006 #define max_addr() (~0ULL >> ((8 - current_wordsize) * 8))
1007 #define max_kaddr() (~0ULL >> ((8 - current_klongsize) * 8))
1010 * When u64 is interpreted by the kernel as an address, there is a difference
1011 * in behaviour between 32-bit and 64-bit kernel in the way u64_to_user_ptr
1012 * works (32-bit kernel trims higher bits during conversion which may result
1013 * to a valid address). Since 32-bit strace cannot figure out what kind of
1014 * kernel the tracee is running on, it has to account for both possibilities.
1016 #if CAN_ARCH_BE_COMPAT_ON_64BIT_KERNEL
1019 * Print raw 64-bit value as an address if it's too big to fit in strace's
1023 print_big_u64_addr(const uint64_t addr)
1025 if (sizeof(kernel_long_t) < 8 && addr > max_kaddr()) {
1030 #else /* !CAN_ARCH_BE_COMPAT_ON_64BIT_KERNEL */
1031 # define print_big_u64_addr(addr_) ((void) 0)
1032 #endif /* CAN_ARCH_BE_COMPAT_ON_64BIT_KERNEL */
1034 #if SIZEOF_KERNEL_LONG_T > 4 \
1035 && (SIZEOF_LONG < SIZEOF_KERNEL_LONG_T || !defined(current_wordsize))
1036 # define ANY_WORDSIZE_LESS_THAN_KERNEL_LONG 1
1038 # define ANY_WORDSIZE_LESS_THAN_KERNEL_LONG 0
1041 #define DECL_PRINTNUM(name) \
1043 printnum_ ## name(struct tcb *, kernel_ulong_t addr, const char *fmt) \
1044 ATTRIBUTE_FORMAT((printf, 3, 0)) \
1045 /* End of DECL_PRINTNUM definition. */
1047 DECL_PRINTNUM(short);
1049 DECL_PRINTNUM(int64);
1050 #undef DECL_PRINTNUM
1052 #define DECL_PRINTNUM_ADDR(name) \
1054 printnum_addr_ ## name(struct tcb *, kernel_ulong_t addr) \
1055 /* End of DECL_PRINTNUM_ADDR definition. */
1057 DECL_PRINTNUM_ADDR(int);
1058 DECL_PRINTNUM_ADDR(int64);
1059 #undef DECL_PRINTNUM_ADDR
1061 #ifndef current_wordsize
1063 printnum_long_int(struct tcb *, kernel_ulong_t addr,
1064 const char *fmt_long, const char *fmt_int)
1065 ATTRIBUTE_FORMAT((printf, 3, 0))
1066 ATTRIBUTE_FORMAT((printf, 4, 0));
1067 extern bool printnum_addr_long_int(struct tcb *, kernel_ulong_t addr);
1068 # define printnum_slong(tcp, addr) \
1069 printnum_long_int((tcp), (addr), "%" PRId64, "%d")
1070 # define printnum_ulong(tcp, addr) \
1071 printnum_long_int((tcp), (addr), "%" PRIu64, "%u")
1072 # define printnum_ptr(tcp, addr) \
1073 printnum_addr_long_int((tcp), (addr))
1074 #elif current_wordsize > 4
1075 # define printnum_slong(tcp, addr) \
1076 printnum_int64((tcp), (addr), "%" PRId64)
1077 # define printnum_ulong(tcp, addr) \
1078 printnum_int64((tcp), (addr), "%" PRIu64)
1079 # define printnum_ptr(tcp, addr) \
1080 printnum_addr_int64((tcp), (addr))
1081 #else /* current_wordsize == 4 */
1082 # define printnum_slong(tcp, addr) \
1083 printnum_int((tcp), (addr), "%d")
1084 # define printnum_ulong(tcp, addr) \
1085 printnum_int((tcp), (addr), "%u")
1086 # define printnum_ptr(tcp, addr) \
1087 printnum_addr_int((tcp), (addr))
1090 #ifndef current_klongsize
1091 extern bool printnum_addr_klong_int(struct tcb *, kernel_ulong_t addr);
1092 # define printnum_kptr(tcp, addr) \
1093 printnum_addr_klong_int((tcp), (addr))
1094 #elif current_klongsize > 4
1095 # define printnum_kptr(tcp, addr) \
1096 printnum_addr_int64((tcp), (addr))
1097 #else /* current_klongsize == 4 */
1098 # define printnum_kptr(tcp, addr) \
1099 printnum_addr_int((tcp), (addr))
1102 #define DECL_PRINTPAIR(name) \
1104 printpair_ ## name(struct tcb *, kernel_ulong_t addr, const char *fmt) \
1105 ATTRIBUTE_FORMAT((printf, 3, 0)) \
1106 /* End of DECL_PRINTPAIR definition. */
1108 DECL_PRINTPAIR(int);
1109 DECL_PRINTPAIR(int64);
1110 #undef DECL_PRINTPAIR
1112 static inline kernel_long_t
1113 truncate_klong_to_current_wordsize(const kernel_long_t v)
1115 #if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
1116 if (current_wordsize < sizeof(v)) {
1125 static inline kernel_ulong_t
1126 truncate_kulong_to_current_wordsize(const kernel_ulong_t v)
1128 #if ANY_WORDSIZE_LESS_THAN_KERNEL_LONG
1129 if (current_wordsize < sizeof(v)) {
1130 return (unsigned int) v;
1139 * Cast a pointer or a pointer-sized integer to kernel_ulong_t.
1141 #define ptr_to_kulong(v) ((kernel_ulong_t) (unsigned long) (v))
1144 * Zero-extend a signed integer type to unsigned long long.
1146 #define zero_extend_signed_to_ull(v) \
1147 (sizeof(v) == sizeof(char) ? (unsigned long long) (unsigned char) (v) : \
1148 sizeof(v) == sizeof(short) ? (unsigned long long) (unsigned short) (v) : \
1149 sizeof(v) == sizeof(int) ? (unsigned long long) (unsigned int) (v) : \
1150 sizeof(v) == sizeof(long) ? (unsigned long long) (unsigned long) (v) : \
1151 (unsigned long long) (v))
1154 * Sign-extend an unsigned integer type to long long.
1156 #define sign_extend_unsigned_to_ll(v) \
1157 (sizeof(v) == sizeof(char) ? (long long) (char) (v) : \
1158 sizeof(v) == sizeof(short) ? (long long) (short) (v) : \
1159 sizeof(v) == sizeof(int) ? (long long) (int) (v) : \
1160 sizeof(v) == sizeof(long) ? (long long) (long) (v) : \
1163 extern const struct_sysent sysent0[];
1164 extern const char *const errnoent0[];
1165 extern const char *const signalent0[];
1166 extern const struct_ioctlent ioctlent0[];
1168 extern const char *const personality_names[];
1170 #if SUPPORTED_PERSONALITIES > 1
1171 extern const struct_sysent *sysent;
1172 extern const char *const *errnoent;
1173 extern const char *const *signalent;
1174 extern const struct_ioctlent *ioctlent;
1176 # define sysent sysent0
1177 # define errnoent errnoent0
1178 # define signalent signalent0
1179 # define ioctlent ioctlent0
1182 extern unsigned nsyscalls;
1183 extern unsigned nerrnos;
1184 extern unsigned nsignals;
1185 extern unsigned nioctlents;
1187 extern const unsigned int nsyscall_vec[SUPPORTED_PERSONALITIES];
1188 extern const struct_sysent *const sysent_vec[SUPPORTED_PERSONALITIES];
1189 extern struct inject_opts *inject_vec[SUPPORTED_PERSONALITIES];
1191 #ifdef IN_MPERS_BOOTSTRAP
1192 /* Transform multi-line MPERS_PRINTER_DECL statements to one-liners. */
1193 # define MPERS_PRINTER_DECL(type, name, ...) MPERS_PRINTER_DECL(type, name, __VA_ARGS__)
1194 #else /* !IN_MPERS_BOOTSTRAP */
1195 # if SUPPORTED_PERSONALITIES > 1
1196 # include "printers.h"
1198 # include "native_printer_decls.h"
1200 # define MPERS_PRINTER_DECL(type, name, ...) type MPERS_FUNC_NAME(name)(__VA_ARGS__)
1201 #endif /* !IN_MPERS_BOOTSTRAP */
1203 /* Checks that sysent[scno] is not out of range. */
1205 scno_in_range(kernel_ulong_t scno)
1207 return scno < nsyscalls;
1211 * Checks whether scno is not out of range,
1212 * its corresponding sysent[scno].sys_func is non-NULL,
1213 * and its sysent[scno].sys_flags has no TRACE_INDIRECT_SUBCALL flag set.
1216 scno_is_valid(kernel_ulong_t scno)
1218 return scno_in_range(scno)
1219 && sysent[scno].sys_func
1220 && !(sysent[scno].sys_flags & TRACE_INDIRECT_SUBCALL);
1223 #define MPERS_FUNC_NAME__(prefix, name) prefix ## name
1224 #define MPERS_FUNC_NAME_(prefix, name) MPERS_FUNC_NAME__(prefix, name)
1225 #define MPERS_FUNC_NAME(name) MPERS_FUNC_NAME_(MPERS_PREFIX, name)
1227 #define SYS_FUNC_NAME(syscall_name) MPERS_FUNC_NAME(syscall_name)
1229 #define SYS_FUNC(syscall_name) int SYS_FUNC_NAME(sys_ ## syscall_name)(struct tcb *tcp)
1231 #endif /* !STRACE_DEFS_H */