2 * Check decoding of ptrace syscall.
4 * Copyright (c) 2016 Dmitry V. Levin <ldv@altlinux.org>
5 * Copyright (c) 2016-2018 The strace developers.
8 * SPDX-License-Identifier: GPL-2.0-or-later
12 #include <asm/unistd.h>
23 #include <linux/audit.h>
25 static const char *errstr;
28 do_ptrace(unsigned long request, unsigned long pid,
29 unsigned long addr, unsigned long data)
31 long rc = syscall(__NR_ptrace, request, pid, addr, data);
32 errstr = sprintrc(rc);
37 test_peeksiginfo(unsigned long pid, const unsigned long bad_request)
39 do_ptrace(PTRACE_PEEKSIGINFO, pid, 0, bad_request);
40 printf("ptrace(PTRACE_PEEKSIGINFO, %u, NULL, %#lx) = %s\n",
41 (unsigned) pid, bad_request, errstr);
44 unsigned long long off;
45 unsigned int flags, nr;
47 TAIL_ALLOC_OBJECT_CONST_PTR(struct psi, psi);
49 psi->off = 0xdeadbeeffacefeedULL;
53 do_ptrace(PTRACE_PEEKSIGINFO, pid, (unsigned long) psi, bad_request);
54 printf("ptrace(PTRACE_PEEKSIGINFO, %u, {off=%llu"
55 ", flags=PTRACE_PEEKSIGINFO_SHARED, nr=%u}, %#lx) = %s\n",
56 (unsigned) pid, psi->off, psi->nr, bad_request, errstr);
60 perror_msg_and_fail("fork");
65 sigaddset(&mask, SIGUSR1);
66 sigaddset(&mask, SIGUSR2);
67 sigaddset(&mask, SIGALRM);
69 if (sigprocmask(SIG_BLOCK, &mask, NULL))
70 perror_msg_and_fail("sigprocmask");
76 if (do_ptrace(PTRACE_TRACEME, 0, 0, 0))
77 perror_msg_and_fail("child: PTRACE_TRACEME");
83 const unsigned int nsigs = 4;
84 const uid_t uid = geteuid();
85 siginfo_t *sigs = tail_alloc(sizeof(*sigs) * nsigs);
92 int status, tracee, saved;
95 tracee = wait(&status);
102 perror_msg_and_fail("wait");
104 if (WIFEXITED(status)) {
105 if (WEXITSTATUS(status) == 0)
107 error_msg_and_fail("unexpected exit status %u",
108 WEXITSTATUS(status));
110 if (WIFSIGNALED(status))
111 error_msg_and_fail("unexpected signal %u",
113 if (!WIFSTOPPED(status) || WSTOPSIG(status) != SIGSTOP) {
115 error_msg_and_fail("unexpected wait status %x",
119 long rc = do_ptrace(PTRACE_PEEKSIGINFO, pid,
120 (unsigned long) psi, (unsigned long) sigs);
122 printf("ptrace(PTRACE_PEEKSIGINFO, %u"
123 ", {off=%llu, flags=0, nr=%u}, %p) = %s\n",
124 (unsigned) pid, psi->off, psi->nr, sigs,
127 printf("ptrace(PTRACE_PEEKSIGINFO, %u"
128 ", {off=%llu, flags=0, nr=%u}"
129 ", [{si_signo=SIGUSR1, si_code=SI_TKILL"
130 ", si_pid=%u, si_uid=%u}"
131 ", {si_signo=SIGUSR2, si_code=SI_TKILL"
132 ", si_pid=%u, si_uid=%u}"
133 ", {si_signo=SIGALRM, si_code=SI_TKILL"
134 ", si_pid=%u, si_uid=%u}"
136 (unsigned) pid, psi->off, psi->nr,
137 (unsigned) pid, (unsigned) uid,
138 (unsigned) pid, (unsigned) uid,
139 (unsigned) pid, (unsigned) uid,
143 if (do_ptrace(PTRACE_CONT, pid, 0, 0)) {
147 perror_msg_and_fail("ptrace");
149 printf("ptrace(PTRACE_CONT, %ld, NULL, 0) = 0\n", pid);
156 const unsigned long bad_request =
157 (unsigned long) 0xdeadbeeffffffeedULL;
158 const unsigned long bad_data =
159 (unsigned long) 0xdeadcafefffff00dULL;
160 const unsigned long pid =
161 (unsigned long) 0xdefaced00000000ULL | (unsigned) getpid();
163 TAIL_ALLOC_OBJECT_CONST_PTR(uint64_t, filter_off);
165 const unsigned int sigset_size = get_sigset_size();
167 void *const k_set = tail_alloc(sigset_size);
168 TAIL_ALLOC_OBJECT_CONST_PTR(siginfo_t, sip);
170 do_ptrace(bad_request, pid, 0, 0);
171 printf("ptrace(%#lx /* PTRACE_??? */, %u, NULL, NULL) = %s\n",
172 bad_request, (unsigned) pid, errstr);
174 do_ptrace(PTRACE_PEEKDATA, pid, bad_request, bad_data);
176 printf("ptrace(PTRACE_PEEKDATA, %u, %#lx) = %s\n",
177 (unsigned) pid, bad_request, errstr);
179 printf("ptrace(PTRACE_PEEKDATA, %u, %#lx, %#lx) = %s\n",
180 (unsigned) pid, bad_request, bad_data, errstr);
183 do_ptrace(PTRACE_PEEKTEXT, pid, bad_request, bad_data);
185 printf("ptrace(PTRACE_PEEKTEXT, %u, %#lx) = %s\n",
186 (unsigned) pid, bad_request, errstr);
188 printf("ptrace(PTRACE_PEEKTEXT, %u, %#lx, %#lx) = %s\n",
189 (unsigned) pid, bad_request, bad_data, errstr);
192 do_ptrace(PTRACE_PEEKUSER, pid, bad_request, bad_data);
194 printf("ptrace(PTRACE_PEEKUSER, %u, %#lx) = %s\n",
195 (unsigned) pid, bad_request, errstr);
197 printf("ptrace(PTRACE_PEEKUSER, %u, %#lx, %#lx) = %s\n",
198 (unsigned) pid, bad_request, bad_data, errstr);
201 do_ptrace(PTRACE_POKEUSER, pid, bad_request, bad_data);
202 printf("ptrace(PTRACE_POKEUSER, %u, %#lx, %#lx) = %s\n",
203 (unsigned) pid, bad_request, bad_data, errstr);
205 do_ptrace(PTRACE_ATTACH, pid, 0, 0);
206 printf("ptrace(PTRACE_ATTACH, %u) = %s\n", (unsigned) pid, errstr);
208 do_ptrace(PTRACE_INTERRUPT, pid, 0, 0);
209 printf("ptrace(PTRACE_INTERRUPT, %u) = %s\n", (unsigned) pid, errstr);
211 do_ptrace(PTRACE_KILL, pid, 0, 0);
212 printf("ptrace(PTRACE_KILL, %u) = %s\n", (unsigned) pid, errstr);
214 do_ptrace(PTRACE_LISTEN, pid, 0, 0);
215 printf("ptrace(PTRACE_LISTEN, %u) = %s\n", (unsigned) pid, errstr);
218 sigemptyset(&libc_set);
219 sigaddset(&libc_set, SIGUSR1);
220 memcpy(k_set, &libc_set, sigset_size);
222 do_ptrace(PTRACE_SETSIGMASK, pid, sigset_size, (unsigned long) k_set);
223 printf("ptrace(PTRACE_SETSIGMASK, %u, %u, [USR1]) = %s\n",
224 (unsigned) pid, sigset_size, errstr);
226 do_ptrace(PTRACE_GETSIGMASK, pid, sigset_size, (unsigned long) k_set);
227 printf("ptrace(PTRACE_GETSIGMASK, %u, %u, %p) = %s\n",
228 (unsigned) pid, sigset_size, k_set, errstr);
230 do_ptrace(PTRACE_SECCOMP_GET_FILTER, pid, 42, 0);
231 printf("ptrace(PTRACE_SECCOMP_GET_FILTER, %u, 42, NULL) = %s\n",
232 (unsigned) pid, errstr);
234 do_ptrace(PTRACE_SECCOMP_GET_METADATA, pid, bad_data, 0);
235 printf("ptrace(PTRACE_SECCOMP_GET_METADATA, %u, %lu, NULL) = %s\n",
236 (unsigned) pid, bad_data, errstr);
238 do_ptrace(PTRACE_SECCOMP_GET_METADATA, pid, 7,
239 (unsigned long) filter_off);
240 printf("ptrace(PTRACE_SECCOMP_GET_METADATA, %u, 7, %p) = %s\n",
241 (unsigned) pid, filter_off, errstr);
243 *filter_off = 0xfacefeeddeadc0deULL;
244 do_ptrace(PTRACE_SECCOMP_GET_METADATA, pid, bad_data,
245 (unsigned long) filter_off);
246 printf("ptrace(PTRACE_SECCOMP_GET_METADATA, %u, %lu, "
247 "{filter_off=%" PRIu64 "}) = %s\n",
248 (unsigned) pid, bad_data, *filter_off, errstr);
250 do_ptrace(PTRACE_GETEVENTMSG, pid, bad_request, bad_data);
251 printf("ptrace(PTRACE_GETEVENTMSG, %u, %#lx, %#lx) = %s\n",
252 (unsigned) pid, bad_request, bad_data, errstr);
254 memset(sip, -1, sizeof(*sip));
255 sip->si_signo = SIGIO;
257 sip->si_errno = ENOENT;
260 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
261 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGIO"
262 ", si_code=POLL_IN, si_errno=ENOENT, si_band=-2}) = %s\n",
263 (unsigned) pid, bad_request, errstr);
265 memset(sip, -1, sizeof(*sip));
266 sip->si_signo = SIGTRAP;
268 sip->si_errno = ENOENT;
271 sip->si_ptr = (void *) bad_request;
273 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
274 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGTRAP"
275 ", si_code=TRAP_BRKPT, si_errno=ENOENT, si_pid=2, si_uid=3"
276 ", si_value={int=%d, ptr=%p}}) = %s\n",
277 (unsigned) pid, bad_request, sip->si_int, sip->si_ptr,
280 memset(sip, -1, sizeof(*sip));
281 sip->si_signo = SIGILL;
283 sip->si_errno = ENOENT;
284 sip->si_addr = (void *) (unsigned long) 0xfacefeeddeadbeefULL;
286 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
287 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGILL"
288 ", si_code=ILL_ILLOPC, si_errno=ENOENT, si_addr=%p}) = %s\n",
289 (unsigned) pid, bad_request, sip->si_addr, errstr);
291 memset(sip, -1, sizeof(*sip));
292 sip->si_signo = SIGFPE;
294 sip->si_errno = ENOENT;
295 sip->si_addr = (void *) (unsigned long) 0xfacefeeddeadbeefULL;
297 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
298 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGFPE"
299 ", si_code=FPE_INTDIV, si_errno=ENOENT, si_addr=%p}) = %s\n",
300 (unsigned) pid, bad_request, sip->si_addr, errstr);
302 memset(sip, -1, sizeof(*sip));
303 sip->si_signo = SIGBUS;
306 sip->si_addr = (void *) (unsigned long) 0xfacefeeddeadbeefULL;
308 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
309 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGBUS"
310 ", si_code=BUS_ADRALN, si_errno=%d, si_addr=%p}) = %s\n",
311 (unsigned) pid, bad_request, sip->si_errno, sip->si_addr,
314 memset(sip, -1, sizeof(*sip));
315 sip->si_signo = SIGPROF;
316 sip->si_code = 0xbadc0ded;
322 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
323 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGPROF"
324 ", si_code=%#x, si_errno=%d, si_pid=0, si_uid=3}) = %s\n",
325 (unsigned) pid, bad_request, sip->si_code, sip->si_errno,
328 #ifdef HAVE_SIGINFO_T_SI_SYSCALL
329 memset(sip, -1, sizeof(*sip));
330 sip->si_signo = SIGSYS;
332 sip->si_errno = ENOENT;
333 sip->si_call_addr = (void *) (unsigned long) 0xfacefeeddeadbeefULL;
334 sip->si_syscall = -1U;
335 sip->si_arch = AUDIT_ARCH_X86_64;
337 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
338 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGSYS"
339 ", si_code=SYS_SECCOMP, si_errno=ENOENT, si_call_addr=%p"
340 ", si_syscall=%u, si_arch=AUDIT_ARCH_X86_64})"
342 (unsigned) pid, bad_request, sip->si_call_addr, sip->si_syscall,
345 sip->si_errno = 3141592653U;
346 sip->si_call_addr = NULL;
347 sip->si_syscall = __NR_read;
348 sip->si_arch = 0xda7a1057;
350 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
351 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGSYS"
352 ", si_code=SYS_SECCOMP, si_errno=%d, si_call_addr=NULL"
353 ", si_syscall=__NR_read, si_arch=%#x /* AUDIT_ARCH_??? */})"
355 (unsigned) pid, bad_request, sip->si_errno, sip->si_arch,
359 #if defined HAVE_SIGINFO_T_SI_TIMERID && defined HAVE_SIGINFO_T_SI_OVERRUN
360 memset(sip, -1, sizeof(*sip));
361 sip->si_signo = SIGHUP;
362 sip->si_code = SI_TIMER;
363 sip->si_errno = ENOENT;
364 sip->si_timerid = 0xdeadbeef;
365 sip->si_overrun = -1;
366 sip->si_ptr = (void *) (unsigned long) 0xfacefeeddeadbeefULL;
368 do_ptrace(PTRACE_SETSIGINFO, pid, bad_request, (unsigned long) sip);
369 printf("ptrace(PTRACE_SETSIGINFO, %u, %#lx, {si_signo=SIGHUP"
370 ", si_code=SI_TIMER, si_errno=ENOENT, si_timerid=%#x"
371 ", si_overrun=%d, si_value={int=%d, ptr=%p}}) = %s\n",
372 (unsigned) pid, bad_request, sip->si_timerid, sip->si_overrun,
373 sip->si_int, sip->si_ptr, errstr);
376 do_ptrace(PTRACE_GETSIGINFO, pid, bad_request, (unsigned long) sip);
377 printf("ptrace(PTRACE_GETSIGINFO, %u, %#lx, %p)"
378 " = %s\n", (unsigned) pid, bad_request, sip, errstr);
380 do_ptrace(PTRACE_CONT, pid, 0, SIGUSR1);
381 printf("ptrace(PTRACE_CONT, %u, NULL, SIGUSR1) = %s\n",
382 (unsigned) pid, errstr);
384 do_ptrace(PTRACE_DETACH, pid, 0, SIGUSR2);
385 printf("ptrace(PTRACE_DETACH, %u, NULL, SIGUSR2) = %s\n",
386 (unsigned) pid, errstr);
388 do_ptrace(PTRACE_SYSCALL, pid, 0, SIGUSR1);
389 printf("ptrace(PTRACE_SYSCALL, %u, NULL, SIGUSR1) = %s\n",
390 (unsigned) pid, errstr);
392 #ifdef PTRACE_SINGLESTEP
393 do_ptrace(PTRACE_SINGLESTEP, pid, 0, SIGUSR2);
394 printf("ptrace(PTRACE_SINGLESTEP, %u, NULL, SIGUSR2) = %s\n",
395 (unsigned) pid, errstr);
398 #ifdef PTRACE_SINGLEBLOCK
399 do_ptrace(PTRACE_SINGLEBLOCK, pid, 0, SIGUSR1);
400 printf("ptrace(PTRACE_SINGLEBLOCK, %u, NULL, SIGUSR1) = %s\n",
401 (unsigned) pid, errstr);
405 do_ptrace(PTRACE_SYSEMU, pid, 0, SIGUSR2);
406 printf("ptrace(PTRACE_SYSEMU, %u, NULL, SIGUSR2) = %s\n",
407 (unsigned) pid, errstr);
409 #ifdef PTRACE_SYSEMU_SINGLESTEP
410 do_ptrace(PTRACE_SYSEMU_SINGLESTEP, pid, 0, SIGUSR1);
411 printf("ptrace(PTRACE_SYSEMU_SINGLESTEP, %u, NULL, SIGUSR1) = %s\n",
412 (unsigned) pid, errstr);
415 do_ptrace(PTRACE_SETOPTIONS,
416 pid, 0, PTRACE_O_TRACEFORK|PTRACE_O_TRACECLONE);
417 printf("ptrace(PTRACE_SETOPTIONS, %u, NULL"
418 ", PTRACE_O_TRACEFORK|PTRACE_O_TRACECLONE) = %s\n",
419 (unsigned) pid, errstr);
421 do_ptrace(PTRACE_SEIZE, pid, bad_request, PTRACE_O_TRACESYSGOOD);
422 printf("ptrace(PTRACE_SEIZE, %u, %#lx, PTRACE_O_TRACESYSGOOD) = %s\n",
423 (unsigned) pid, bad_request, errstr);
425 do_ptrace(PTRACE_SETREGSET, pid, 1, bad_request);
426 printf("ptrace(PTRACE_SETREGSET, %u, NT_PRSTATUS, %#lx) = %s\n",
427 (unsigned) pid, bad_request, errstr);
429 do_ptrace(PTRACE_GETREGSET, pid, 3, bad_request);
430 printf("ptrace(PTRACE_GETREGSET, %u, NT_PRPSINFO, %#lx) = %s\n",
431 (unsigned) pid, bad_request, errstr);
433 test_peeksiginfo(pid, bad_request);
435 do_ptrace(PTRACE_TRACEME, 0, 0, 0);
436 printf("ptrace(PTRACE_TRACEME) = %s\n", errstr);
438 puts("+++ exited with 0 +++");