#include <limits.h>
#include <sys/ptrace.h>
#include <sys/user.h>

Classes
struct	user_regs_struct_x86_64

struct	user_regs_struct_x86_32

Macros
#define	TRAP_BRKPT 1

#define	TRAP_TRACE 2

#define	TRAP_BRANCH 3

#define	TRAP_HWBKPT 4

#define	TRAP_UNK 5

Functions
bool	linux_set_options (RzDebug *dbg, int pid)

int	linux_step (RzDebug *dbg)

RzDebugReasonType	linux_ptrace_event (RzDebug *dbg, int pid, int status, bool dowait)

int	linux_attach (RzDebug *dbg, int pid)

bool	linux_attach_new_process (RzDebug *dbg, int pid)

RzDebugInfo *	linux_info (RzDebug dbg, const char arg)

RzList *	linux_pid_list (int pid, RzList *list)

RzList *	linux_thread_list (RzDebug dbg, int pid, RzList list)

bool	linux_select (RzDebug *dbg, int pid, int tid)

RzDebugPid *	fill_pid_info (const char info, const char path, int tid)

int	linux_reg_read (RzDebug dbg, int type, ut8 buf, int size)

int	linux_reg_write (RzDebug dbg, int type, const ut8 buf, int size)

RzList *	linux_desc_list (int pid)

bool	linux_stop_threads (RzDebug *dbg, int except)

int	linux_handle_signals (RzDebug *dbg, int tid)

int	linux_dbg_wait (RzDebug *dbg, int pid)

char *	linux_reg_profile (RzDebug *dbg)

int	match_pid (const void pid_o, const void th_o)

Macro Definition Documentation

◆ TRAP_BRANCH

#define TRAP_BRANCH 3

Definition at line 155 of file linux_debug.h.

◆ TRAP_BRKPT

#define TRAP_BRKPT 1

Definition at line 153 of file linux_debug.h.

◆ TRAP_HWBKPT

#define TRAP_HWBKPT 4

Definition at line 156 of file linux_debug.h.

◆ TRAP_TRACE

#define TRAP_TRACE 2

Definition at line 154 of file linux_debug.h.

◆ TRAP_UNK

#define TRAP_UNK 5

Definition at line 157 of file linux_debug.h.

Function Documentation

◆ fill_pid_info()

RzDebugPid* fill_pid_info	(	const char *	info,
		const char *	path,
		int	tid
	)

Definition at line 789 of file linux_debug.c.

                                                                        {
     RzDebugPid *pid_info = RZ_NEW0(RzDebugPid);
     if (!pid_info) {
         return NULL;
     }
     char *ptr = strstr(info, "State:");
     if (ptr) {
         switch (*(ptr + 7)) {
         case 'R':
             pid_info->status = RZ_DBG_PROC_RUN;
             break;
         case 'S':
             pid_info->status = RZ_DBG_PROC_SLEEP;
             break;
         case 'T':
         case 't':
             pid_info->status = RZ_DBG_PROC_STOP;
             break;
         case 'Z':
             pid_info->status = RZ_DBG_PROC_ZOMBIE;
             break;
         case 'X':
             pid_info->status = RZ_DBG_PROC_DEAD;
             break;
         default:
             pid_info->status = RZ_DBG_PROC_SLEEP;
             break;
         }
     }
     ptr = strstr(info, "PPid:");
     if (ptr) {
         pid_info->ppid = atoi(ptr + 5);
     }
     ptr = strstr(info, "Uid:");
     if (ptr) {
         pid_info->uid = atoi(ptr + 5);
     }
     ptr = strstr(info, "Gid:");
     if (ptr) {
         pid_info->gid = atoi(ptr + 5);
     }
  
     pid_info->pid = tid;
     pid_info->path = path ? strdup(path) : NULL;
     pid_info->runnable = true;
     pid_info->pc = 0;
     return pid_info;
 }

References rz_debug_pid_t::gid, info(), NULL, rz_debug_pid_t::path, path, rz_debug_pid_t::pc, rz_debug_pid_t::pid, rz_debug_pid_t::ppid, rz_debug_pid_t::runnable, RZ_DBG_PROC_DEAD, RZ_DBG_PROC_RUN, RZ_DBG_PROC_SLEEP, RZ_DBG_PROC_STOP, RZ_DBG_PROC_ZOMBIE, RZ_NEW0, rz_debug_pid_t::status, strdup(), and rz_debug_pid_t::uid.

Referenced by linux_add_new_thread(), linux_pid_list(), and linux_thread_list().

◆ linux_attach()

int linux_attach	(	RzDebug *	dbg,
		int	pid
	)

Definition at line 718 of file linux_debug.c.

                                         {
     // First time we run: We try to attach to all "possible" threads and to the main pid
     if (!dbg->threads) {
         dbg->threads = get_pid_thread_list(dbg, pid);
     } else {
         // This means we did a first run, so we probably attached to all possible threads already.
         // So check if the requested thread is being traced already. If not, attach it
         if (!rz_list_find(dbg->threads, &pid, &match_pid)) {
             linux_attach_single_pid(dbg, pid);
         }
     }
     return pid;
 }

References dbg, get_pid_thread_list(), linux_attach_single_pid(), match_pid(), pid, rz_list_find(), and rz_debug_t::threads.

Referenced by linux_attach_new_process(), and linux_select().

◆ linux_attach_new_process()

bool linux_attach_new_process	(	RzDebug *	dbg,
		int	pid
	)

Definition at line 451 of file linux_debug.c.

                                                      {
     linux_detach_all(dbg);
     if (dbg->threads) {
         rz_list_free(dbg->threads);
         dbg->threads = NULL;
     }
  
     if (!linux_attach(dbg, pid)) {
         return false;
     }
  
     // Call select to syncrhonize the thread's data.
     dbg->pid = pid;
     dbg->tid = pid;
     rz_debug_select(dbg, pid, pid);
  
     return true;
 }

References dbg, linux_attach(), linux_detach_all(), NULL, rz_debug_t::pid, pid, rz_debug_select(), rz_list_free(), rz_debug_t::threads, and rz_debug_t::tid.

Referenced by linux_select(), and rz_debug_continue_kill().

◆ linux_dbg_wait()

int linux_dbg_wait	(	RzDebug *	dbg,
		int	pid
	)

Definition at line 502 of file linux_debug.c.

                                                         {
     RzDebugReasonType reason = RZ_DEBUG_REASON_UNKNOWN;
     int tid = 0;
     int status, flags = __WALL;
     int ret = -1;
  
     if (pid == -1) {
         flags |= WNOHANG;
     }
  
     for (;;) {
         // In the main context, SIGINT is propagated to the debuggee if it is
         // in the same process group. Otherwise, the task is running in
         // background and SIGINT will not be propagated to the debuggee.
         if (rz_cons_context_is_main()) {
             rz_cons_break_push((RzConsBreak)linux_dbg_wait_break_main, dbg);
         } else {
             rz_cons_break_push((RzConsBreak)linux_dbg_wait_break, dbg);
         }
         void *bed = rz_cons_sleep_begin();
         if (dbg->continue_all_threads) {
             ret = waitpid(-1, &status, flags);
         } else {
             ret = waitpid(pid, &status, flags);
         }
         rz_cons_sleep_end(bed);
         rz_cons_break_pop();
  
         if (ret < 0) {
             // Continue when interrupted by user;
             if (errno == EINTR) {
                 continue;
             }
             perror("waitpid");
             break;
         } else if (ret == 0) {
             // Unset WNOHANG to call next waitpid in blocking mode.
             flags &= ~WNOHANG;
         } else {
             tid = ret;
  
             // Handle SIGTRAP with PTRACE_EVENT_*
             reason = linux_ptrace_event(dbg, tid, status, true);
             if (reason != RZ_DEBUG_REASON_UNKNOWN) {
                 break;
             }
  
             if (WIFEXITED(status)) {
                 if (tid == dbg->main_pid) {
                     rz_list_free(dbg->threads);
                     dbg->threads = NULL;
                     reason = RZ_DEBUG_REASON_DEAD;
                     eprintf("(%d) Process terminated with status %d\n", tid, WEXITSTATUS(status));
                     break;
                 } else {
                     eprintf("(%d) Child terminated with status %d\n", tid, WEXITSTATUS(status));
                     linux_remove_thread(dbg, tid);
                     continue;
                 }
             } else if (WIFSIGNALED(status)) {
                 eprintf("child received signal %d\n", WTERMSIG(status));
                 reason = RZ_DEBUG_REASON_SIGNAL;
             } else if (WIFSTOPPED(status)) {
                 // If tid is not in the thread list and stopped by SIGSTOP,
                 // handle it as a new task.
                 if (!rz_list_find(dbg->threads, &tid, &match_pid) &&
                     WSTOPSIG(status) == SIGSTOP) {
                     reason = linux_handle_new_task(dbg, tid);
                     if (reason != RZ_DEBUG_REASON_UNKNOWN) {
                         break;
                     }
                 }
  
                 if (linux_handle_signals(dbg, tid)) {
                     reason = dbg->reason.type;
                 } else {
                     eprintf("can't handle signals\n");
                     return RZ_DEBUG_REASON_ERROR;
                 }
 #ifdef WIFCONTINUED
             } else if (WIFCONTINUED(status)) {
                 eprintf("child continued...\n");
                 reason = RZ_DEBUG_REASON_NONE;
 #endif
             } else if (status == 1) {
                 eprintf("debugger is dead with status 1\n");
                 reason = RZ_DEBUG_REASON_DEAD;
             } else if (status == 0) {
                 eprintf("debugger is dead with status 0\n");
                 reason = RZ_DEBUG_REASON_DEAD;
             } else {
                 if (ret != tid) {
                     reason = RZ_DEBUG_REASON_NEW_PID;
                 } else {
                     eprintf("returning from wait without knowing why...\n");
                 }
             }
             if (reason != RZ_DEBUG_REASON_UNKNOWN) {
                 break;
             }
         }
     }
     dbg->reason.tid = tid;
     return reason;
 }

References rz_debug_t::continue_all_threads, dbg, EINTR, eprintf, flags, linux_dbg_wait_break(), linux_dbg_wait_break_main(), linux_handle_new_task(), linux_handle_signals(), linux_ptrace_event(), linux_remove_thread(), rz_debug_t::main_pid, match_pid(), NULL, pid, rz_debug_t::reason, rz_cons_break_pop(), rz_cons_break_push(), rz_cons_context_is_main(), rz_cons_sleep_begin(), rz_cons_sleep_end(), RZ_DEBUG_REASON_DEAD, RZ_DEBUG_REASON_ERROR, RZ_DEBUG_REASON_NEW_PID, RZ_DEBUG_REASON_NONE, RZ_DEBUG_REASON_SIGNAL, RZ_DEBUG_REASON_UNKNOWN, rz_list_find(), rz_list_free(), status, rz_debug_t::threads, rz_debug_reason_t::tid, and rz_debug_reason_t::type.

◆ linux_desc_list()

RzList* linux_desc_list ( int pid )

Definition at line 1319 of file linux_debug.c.

                                  {
     RzList *ret = NULL;
     char path[512], file[512], buf[512];
     struct dirent *de;
     RzDebugDesc *desc;
     int type, perm;
     int len, len2;
     struct stat st;
     DIR *dd = NULL;
  
     rz_strf(path, "/proc/%i/fd/", pid);
     if (!(dd = opendir(path))) {
         rz_sys_perror("opendir /proc/x/fd");
         return NULL;
     }
     ret = rz_list_newf((RzListFree)rz_debug_desc_free);
     if (!ret) {
         closedir(dd);
         return NULL;
     }
     while ((de = (struct dirent *)readdir(dd))) {
         if (de->d_name[0] == '.') {
             continue;
         }
         len = strlen(path);
         len2 = strlen(de->d_name);
         if (len + len2 + 1 >= sizeof(file)) {
             RZ_LOG_ERROR("Filename is too long.\n");
             goto fail;
         }
         memcpy(file, path, len);
         memcpy(file + len, de->d_name, len2 + 1);
         buf[0] = 0;
         if (readlink(file, buf, sizeof(buf) - 1) == -1) {
             RZ_LOG_ERROR("readlink %s failed.\n", file);
             goto fail;
         }
         buf[sizeof(buf) - 1] = 0;
         type = perm = 0;
         if (stat(file, &st) != -1) {
             type = st.st_mode & S_IFIFO ? 'P' :
 #ifdef S_IFSOCK
                 st.st_mode & S_IFSOCK ? 'S'
                 :
 #endif
                 st.st_mode & S_IFCHR ? 'C'
                              : '-';
         }
         if (lstat(path, &st) != -1) {
             if (st.st_mode & S_IRUSR) {
                 perm |= RZ_PERM_R;
             }
             if (st.st_mode & S_IWUSR) {
                 perm |= RZ_PERM_W;
             }
         }
         // TODO: Offset
         desc = rz_debug_desc_new(atoi(de->d_name), buf, perm, type, 0);
         if (!desc) {
             break;
         }
         rz_list_append(ret, desc);
     }
     closedir(dd);
     return ret;
  
 fail:
     rz_list_free(ret);
     closedir(dd);
     return NULL;
 }

References dirent::d_name, dd, desc, fail, len, memcpy(), NULL, path, pid, readdir, readlink, rz_debug_desc_free(), rz_debug_desc_new(), rz_list_append(), rz_list_free(), rz_list_newf(), RZ_LOG_ERROR, RZ_PERM_R, RZ_PERM_W, rz_strf, rz_sys_perror, stat, and type.

◆ linux_handle_signals()

int linux_handle_signals	(	RzDebug *	dbg,
		int	tid
	)

Definition at line 103 of file linux_debug.c.

                                                 {
     siginfo_t siginfo = { 0 };
     int ret = rz_debug_ptrace(dbg, PTRACE_GETSIGINFO, tid, 0, (rz_ptrace_data_t)(size_t)&siginfo);
     if (ret == -1) {
         /* ESRCH means the process already went away :-/ */
         if (errno == ESRCH) {
             dbg->reason.type = RZ_DEBUG_REASON_DEAD;
             return true;
         }
         rz_sys_perror("ptrace GETSIGINFO");
         return false;
     }
  
     if (siginfo.si_signo > 0) {
         // siginfo_t newsiginfo = {0};
         // ptrace (PTRACE_SETSIGINFO, dbg->pid, 0, &siginfo);
         dbg->reason.type = RZ_DEBUG_REASON_SIGNAL;
         dbg->reason.signum = siginfo.si_signo;
         dbg->stopaddr = (ut64)(size_t)siginfo.si_addr;
         // dbg->errno = siginfo.si_errno;
         //  siginfo.si_code -> HWBKPT, USER, KERNEL or WHAT
         //  TODO: DO MORE RDEBUGREASON HERE
         switch (dbg->reason.signum) {
         case SIGTRAP: {
             if (dbg->glob_libs || dbg->glob_unlibs) {
                 ut64 pc_addr = rz_debug_reg_get(dbg, "PC");
                 RzBreakpointItem *b = rz_bp_get_ending_at(dbg->bp, pc_addr);
                 if (b && b->internal) {
                     char *p = strstr(b->data, "dbg.");
                     if (p) {
                         if (rz_str_startswith(p, "dbg.libs")) {
                             const char *name;
                             if (strstr(b->data, "sym.imp.dlopen")) {
                                 name = rz_reg_get_name(dbg->reg, RZ_REG_NAME_A0);
                             } else {
                                 name = rz_reg_get_name(dbg->reg, RZ_REG_NAME_A1);
                             }
                             b->data = rz_str_appendf(b->data, ";ps@r:%s", name);
                             dbg->reason.type = RZ_DEBUG_REASON_NEW_LIB;
                             break;
                         } else if (rz_str_startswith(p, "dbg.unlibs")) {
                             dbg->reason.type = RZ_DEBUG_REASON_EXIT_LIB;
                             break;
                         }
                     }
                 }
             }
             if (dbg->reason.type != RZ_DEBUG_REASON_NEW_LIB &&
                 dbg->reason.type != RZ_DEBUG_REASON_EXIT_LIB) {
                 if (siginfo.si_code == TRAP_TRACE) {
                     dbg->reason.type = RZ_DEBUG_REASON_STEP;
                 } else {
                     dbg->reason.bp_addr = (ut64)(size_t)siginfo.si_addr;
                     dbg->reason.type = RZ_DEBUG_REASON_BREAKPOINT;
                     // Switch to the thread that hit the breakpoint
                     rz_debug_select(dbg, dbg->pid, tid);
                     dbg->tid = tid;
                 }
             }
         } break;
         case SIGINT:
             dbg->reason.type = RZ_DEBUG_REASON_USERSUSP;
             break;
         case SIGABRT: // 6 / SIGIOT // SIGABRT
             dbg->reason.type = RZ_DEBUG_REASON_ABORT;
             break;
         case SIGSEGV:
             dbg->reason.type = RZ_DEBUG_REASON_SEGFAULT;
             break;
         case SIGCHLD:
             dbg->reason.type = RZ_DEBUG_REASON_SIGNAL;
             break;
         default:
             break;
         }
         if (dbg->reason.signum != SIGTRAP &&
             (dbg->reason.signum != SIGINT || !rz_cons_is_breaked())) {
             eprintf("[+] SIGNAL %d errno=%d addr=0x%08" PFMT64x
                 " code=%d si_pid=%d ret=%d\n",
                 siginfo.si_signo, siginfo.si_errno,
                 (ut64)(size_t)siginfo.si_addr, siginfo.si_code, siginfo.si_pid, ret);
         }
         return true;
     }
     return false;
 }

References b, rz_debug_t::bp, rz_debug_reason_t::bp_addr, dbg, eprintf, ESRCH, rz_debug_t::glob_libs, rz_debug_t::glob_unlibs, name, p, PFMT64x, rz_debug_t::pid, rz_debug_t::reason, rz_debug_t::reg, rz_bp_get_ending_at(), rz_cons_is_breaked(), RZ_DEBUG_REASON_ABORT, RZ_DEBUG_REASON_BREAKPOINT, RZ_DEBUG_REASON_DEAD, RZ_DEBUG_REASON_EXIT_LIB, RZ_DEBUG_REASON_NEW_LIB, RZ_DEBUG_REASON_SEGFAULT, RZ_DEBUG_REASON_SIGNAL, RZ_DEBUG_REASON_STEP, RZ_DEBUG_REASON_USERSUSP, rz_debug_reg_get(), rz_debug_select(), rz_reg_get_name(), RZ_REG_NAME_A0, RZ_REG_NAME_A1, rz_str_appendf(), rz_str_startswith(), rz_sys_perror, rz_debug_reason_t::signum, rz_debug_t::stopaddr, rz_debug_t::tid, TRAP_TRACE, rz_debug_reason_t::type, and ut64().

Referenced by linux_dbg_wait().

◆ linux_info()

RzDebugInfo* linux_info	(	RzDebug *	dbg,
		const char *	arg
	)

Definition at line 745 of file linux_debug.c.

                                                        {
     char proc_buff[1024];
     RzDebugInfo *rdi = RZ_NEW0(RzDebugInfo);
     if (!rdi) {
         return NULL;
     }
  
     RzList *th_list;
     bool list_alloc = false;
     if (dbg->threads) {
         th_list = dbg->threads;
     } else {
         th_list = rz_list_new();
         list_alloc = true;
         if (th_list) {
             th_list = linux_thread_list(dbg, dbg->pid, th_list);
         }
     }
     RzDebugPid *th;
     RzListIter *it;
     bool found = false;
     rz_list_foreach (th_list, it, th) {
         if (th->pid == dbg->pid) {
             found = true;
             break;
         }
     }
     rdi->pid = dbg->pid;
     rdi->tid = dbg->tid;
     rdi->uid = found ? th->uid : -1;
     rdi->gid = found ? th->gid : -1;
     rdi->cwd = read_link(rdi->pid, "cwd");
     rdi->exe = read_link(rdi->pid, "exe");
     snprintf(proc_buff, sizeof(proc_buff), "/proc/%d/cmdline", rdi->pid);
     rdi->cmdline = rz_file_slurp(proc_buff, NULL);
     snprintf(proc_buff, sizeof(proc_buff), "/proc/%d/stack", rdi->pid);
     rdi->kernel_stack = rz_file_slurp(proc_buff, NULL);
     rdi->status = found ? th->status : RZ_DBG_PROC_STOP;
     if (list_alloc) {
         rz_list_free(th_list);
     }
     return rdi;
 }

References dbg, found, rz_debug_pid_t::gid, linux_thread_list(), NULL, rz_debug_t::pid, rz_debug_pid_t::pid, rdi, read_link(), RZ_DBG_PROC_STOP, rz_file_slurp(), rz_list_free(), rz_list_new(), RZ_NEW0, snprintf, rz_debug_pid_t::status, rz_debug_t::threads, rz_debug_t::tid, and rz_debug_pid_t::uid.

◆ linux_pid_list()

RzList* linux_pid_list	(	int	pid,
		RzList *	list
	)

Definition at line 838 of file linux_debug.c.

                                               {
     list->free = (RzListFree)&rz_debug_pid_free;
     DIR *dh = NULL;
     struct dirent *de = NULL;
     char path[PATH_MAX], info[PATH_MAX];
     int i = -1;
     RzDebugPid *pid_info = NULL;
     dh = opendir("/proc");
     if (!dh) {
         rz_sys_perror("opendir /proc");
         rz_list_free(list);
         return NULL;
     }
     while ((de = readdir(dh))) {
         path[0] = 0;
         info[0] = 0;
         // For each existing pid file
         if ((i = atoi(de->d_name)) <= 0) {
             continue;
         }
  
         procfs_pid_slurp(i, "cmdline", path, sizeof(path));
         if (!procfs_pid_slurp(i, "status", info, sizeof(info))) {
             // Get information about pid (status, pc, etc.)
             pid_info = fill_pid_info(info, path, i);
         } else {
             pid_info = rz_debug_pid_new(path, i, 0, RZ_DBG_PROC_STOP, 0);
         }
         // Unless pid 0 is requested, only add the requested pid and it's child processes
         if (0 == pid || i == pid || pid_info->ppid == pid) {
             rz_list_append(list, pid_info);
         }
     }
     closedir(dh);
     return list;
 }

References dirent::d_name, fill_pid_info(), i, info(), list(), NULL, path, pid, rz_debug_pid_t::ppid, procfs_pid_slurp(), readdir, RZ_DBG_PROC_STOP, rz_debug_pid_free(), rz_debug_pid_new(), rz_list_append(), rz_list_free(), and rz_sys_perror.

◆ linux_ptrace_event()

RzDebugReasonType linux_ptrace_event	(	RzDebug *	dbg,
		int	pid,
		int	status,
		bool	dowait
	)

Referenced by linux_dbg_wait(), and linux_handle_new_task().

◆ linux_reg_profile()

char* linux_reg_profile ( RzDebug * dbg )

Definition at line 55 of file linux_debug.c.

                                       {
 #if __arm__
 #include "reg/linux-arm.h"
 #elif __riscv
 #include "reg/linux-riscv64.h"
 #elif __arm64__ || __aarch64__
 #include "reg/linux-arm64.h"
 #elif __mips__
     if ((dbg->bits & RZ_SYS_BITS_32) && (dbg->bp->endian == 1)) {
 #include "reg/linux-mips.h"
     } else {
 #include "reg/linux-mips64.h"
     }
 #elif (__i386__ || __x86_64__)
     if (dbg->bits & RZ_SYS_BITS_32) {
 #if __x86_64__
 #include "reg/linux-x64-32.h"
 #else
 #include "reg/linux-x86.h"
 #endif
     } else {
 #include "reg/linux-x64.h"
     }
 #elif __powerpc__
     if (dbg->bits & RZ_SYS_BITS_32) {
 #include "reg/linux-ppc.h"
     } else {
 #include "reg/linux-ppc64.h"
     }
 #elif __s390x__
 #include "reg/linux-s390x.h"
 #else
 #error "Unsupported Linux CPU"
     return NULL;
 #endif
 }

References rz_debug_t::bits, rz_debug_t::bp, dbg, rz_bp_t::endian, NULL, and RZ_SYS_BITS_32.

◆ linux_reg_read()

int linux_reg_read	(	RzDebug *	dbg,
		int	type,
		ut8 *	buf,
		int	size
	)

Definition at line 1090 of file linux_debug.c.

                                                                {
     bool showfpu = false;
     int pid = dbg->tid;
     int ret = 0;
     if (type < -1) {
         showfpu = true;
         type = -type;
     }
     switch (type) {
     case RZ_REG_TYPE_DRX:
 #if __POWERPC__
         // no drx for powerpc
         return false;
 #elif __i386__ || __x86_64__
 #if !__ANDROID__
     {
         int i;
         for (i = 0; i < 8; i++) { // DR0-DR7
             if (i == 4 || i == 5) {
                 continue;
             }
             long ret = rz_debug_ptrace(dbg, PTRACE_PEEKUSER, pid,
                 (void *)rz_offsetof(struct user, u_debugreg[i]), 0);
             if ((i + 1) * sizeof(ret) > size) {
                 eprintf("linux_reg_get: Buffer too small %d\n", size);
                 break;
             }
             memcpy(buf + (i * sizeof(ret)), &ret, sizeof(ret));
         }
         struct user a;
         return sizeof(a.u_debugreg);
     }
 #else
 #warning Android X86 does not support DRX
 #endif
 #endif
         return true;
         break;
     case RZ_REG_TYPE_FPU:
     case RZ_REG_TYPE_MMX:
     case RZ_REG_TYPE_XMM:
 #if __POWERPC__
         return false;
 #elif __x86_64__ || __i386__
     {
         struct user_fpregs_struct fpregs;
         if (type == RZ_REG_TYPE_FPU) {
 #if __x86_64__
             ret = rz_debug_ptrace(dbg, PTRACE_GETFPREGS, pid, NULL, &fpregs);
             if (ret != 0) {
                 rz_sys_perror("PTRACE_GETFPREGS");
                 return false;
             }
             if (showfpu) {
                 print_fpu((void *)&fpregs);
             }
             size = RZ_MIN(sizeof(fpregs), size);
             memcpy(buf, &fpregs, size);
             return size;
 #elif __i386__
 #if !__ANDROID__
             struct user_fpxregs_struct fpxregs;
             ret = rz_debug_ptrace(dbg, PTRACE_GETFPXREGS, pid, NULL, &fpxregs);
             if (ret == 0) {
                 if (showfpu) {
                     print_fpu((void *)&fpxregs);
                 }
                 size = RZ_MIN(sizeof(fpxregs), size);
                 memcpy(buf, &fpxregs, size);
                 return size;
             } else {
                 ret = rz_debug_ptrace(dbg, PTRACE_GETFPREGS, pid, NULL, &fpregs);
                 if (showfpu) {
                     print_fpu((void *)&fpregs);
                 }
                 if (ret != 0) {
                     rz_sys_perror("PTRACE_GETFPREGS");
                     return false;
                 }
                 size = RZ_MIN(sizeof(fpregs), size);
                 memcpy(buf, &fpregs, size);
                 return size;
             }
 #else
             ret = rz_debug_ptrace(dbg, PTRACE_GETFPREGS, pid, NULL, &fpregs);
             if (showfpu) {
                 print_fpu((void *)&fpregs);
             }
             if (ret != 0) {
                 rz_sys_perror("PTRACE_GETFPREGS");
                 return false;
             }
             size = RZ_MIN(sizeof(fpregs), size);
             memcpy(buf, &fpregs, size);
             return size;
 #endif // !__ANDROID__
 #endif // __i386__
         }
     }
 #else
 #warning getfpregs not implemented for this platform
 #endif
         break;
     case RZ_REG_TYPE_SEG:
     case RZ_REG_TYPE_FLG:
     case RZ_REG_TYPE_GPR: {
         RZ_DEBUG_REG_T regs;
         memset(&regs, 0, sizeof(regs));
         memset(buf, 0, size);
 #if (__arm64__ || __aarch64__ || __s390x__) && defined(PTRACE_GETREGSET)
         struct iovec io = {
             .iov_base = &regs,
             .iov_len = sizeof(regs)
         };
         ret = rz_debug_ptrace(dbg, PTRACE_GETREGSET, pid, 1, &io);
         // ret = ptrace (PTRACE_GETREGSET, pid, (void*)(size_t)(NT_PRSTATUS), NULL); // &io);
         if (ret != 0) {
             rz_sys_perror("PTRACE_GETREGSET");
             return false;
         }
 #elif __BSD__ && (__POWERPC__ || __sparc__)
         ret = rz_debug_ptrace(dbg, PTRACE_GETREGS, pid, &regs, NULL);
 #else
         /* linux -{arm/mips/riscv/x86/x86_64} */
         ret = rz_debug_ptrace(dbg, PTRACE_GETREGS, pid, NULL, &regs);
 #endif
         /*
          * if perror here says 'no such process' and the
          * process exists still.. is because there's a missing call
          * to 'wait'. and the process is not yet available to accept
          * more ptrace queries.
          */
         if (ret != 0) {
             rz_sys_perror("PTRACE_GETREGS");
             return false;
         }
         size = RZ_MIN(sizeof(regs), size);
         memcpy(buf, &regs, size);
         return size;
     } break;
     case RZ_REG_TYPE_YMM: {
 #if HAVE_YMM && __x86_64__ && defined(PTRACE_GETREGSET)
         ut32 ymm_space[128]; // full ymm registers
         struct _xstate xstate;
         struct iovec iov;
         iov.iov_base = &xstate;
         iov.iov_len = sizeof(struct _xstate);
         ret = rz_debug_ptrace_get_x86_xstate(dbg, pid, &iov);
         if (ret == -1) {
             return false;
         }
         // stitch together xstate.fpstate._xmm and xstate.ymmh assuming LE
         int ri, rj;
         for (ri = 0; ri < 16; ri++) {
             for (rj = 0; rj < 4; rj++) {
 #ifdef __ANDROID__
                 ymm_space[ri * 8 + rj] = ((struct _libc_fpstate *)&xstate.fpstate)->_xmm[ri].element[rj];
 #else
                 ymm_space[ri * 8 + rj] = xstate.fpstate._xmm[ri].element[rj];
 #endif
             }
             for (rj = 0; rj < 4; rj++) {
                 ymm_space[ri * 8 + (rj + 4)] = xstate.ymmh.ymmh_space[ri * 4 + rj];
             }
         }
         size = RZ_MIN(sizeof(ymm_space), size);
         memcpy(buf, &ymm_space, size);
         return size;
 #endif
         return false;
     } break;
     }
     return false;
 }

◆ linux_reg_write()

int linux_reg_write	(	RzDebug *	dbg,
		int	type,
		const ut8 *	buf,
		int	size
	)

Definition at line 1265 of file linux_debug.c.

                                                                       {
     int pid = dbg->tid;
  
     if (type == RZ_REG_TYPE_DRX) {
 #if !__ANDROID__ && (__i386__ || __x86_64__)
         int i;
         long *val = (long *)buf;
         for (i = 0; i < 8; i++) { // DR0-DR7
             if (i == 4 || i == 5) {
                 continue;
             }
             if (rz_debug_ptrace(dbg, PTRACE_POKEUSER, pid,
                     (void *)rz_offsetof(struct user, u_debugreg[i]), (rz_ptrace_data_t)val[i])) {
                 eprintf("ptrace error for dr %d\n", i);
                 rz_sys_perror("ptrace POKEUSER");
             }
         }
         return sizeof(RZ_DEBUG_REG_T);
 #else
         return false;
 #endif
     }
     if (type == RZ_REG_TYPE_GPR) {
 #if __arm64__ || __aarch64__ || __s390x__
         struct iovec io = {
             .iov_base = (void *)buf,
             .iov_len = sizeof(RZ_DEBUG_REG_T)
         };
         int ret = rz_debug_ptrace(dbg, PTRACE_SETREGSET, pid, (void *)(size_t)NT_PRSTATUS, (rz_ptrace_data_t)(size_t)&io);
 #elif __POWERPC__ || __sparc__
         int ret = rz_debug_ptrace(dbg, PTRACE_SETREGS, pid, buf, NULL);
 #else
         int ret = rz_debug_ptrace(dbg, PTRACE_SETREGS, pid, 0, (void *)buf);
 #endif
 #if DEAD_CODE
         if (size > sizeof(RZ_DEBUG_REG_T)) {
             size = sizeof(RZ_DEBUG_REG_T);
         }
 #endif
         if (ret == -1) {
             rz_sys_perror("reg_write");
             return false;
         }
         return true;
     }
     if (type == RZ_REG_TYPE_FPU) {
 #if __i386__ || __x86_64__
         int ret = rz_debug_ptrace(dbg, PTRACE_SETFPREGS, pid, 0, (void *)buf);
         return (ret != 0) ? false : true;
 #endif
     }
     return false;
 }

References dbg, eprintf, false, i, NT_PRSTATUS, NULL, pid, PTRACE_POKEUSER, PTRACE_SETFPREGS, PTRACE_SETREGS, RZ_DEBUG_REG_T, rz_offsetof, RZ_REG_TYPE_DRX, RZ_REG_TYPE_FPU, RZ_REG_TYPE_GPR, rz_sys_perror, rz_debug_t::tid, type, and val.

◆ linux_select()

bool linux_select	(	RzDebug *	dbg,
		int	pid,
		int	tid
	)

Definition at line 444 of file linux_debug.c.

                                                   {
     if (dbg->pid != -1 && dbg->pid != pid) {
         return linux_attach_new_process(dbg, pid);
     }
     return linux_attach(dbg, tid);
 }

References dbg, linux_attach(), linux_attach_new_process(), rz_debug_t::pid, and pid.

◆ linux_set_options()

bool linux_set_options	(	RzDebug *	dbg,
		int	pid
	)

Definition at line 383 of file linux_debug.c.

                                               {
     int traceflags = 0;
     traceflags |= PTRACE_O_TRACEFORK;
     traceflags |= PTRACE_O_TRACEVFORK;
     traceflags |= PTRACE_O_TRACECLONE;
     if (dbg->trace_forks) {
         traceflags |= PTRACE_O_TRACEVFORKDONE;
     }
     if (dbg->trace_execs) {
         traceflags |= PTRACE_O_TRACEEXEC;
     }
     if (dbg->trace_aftersyscall) {
         traceflags |= PTRACE_O_TRACEEXIT;
     }
     /* SIGTRAP | 0x80 on signal handler .. not supported on all archs */
     traceflags |= PTRACE_O_TRACESYSGOOD;
  
     // PTRACE_SETOPTIONS can fail because of the asynchronous nature of ptrace
     // If the target is traced, the loop will always end with success
     while (rz_debug_ptrace(dbg, PTRACE_SETOPTIONS, pid, 0, (rz_ptrace_data_t)(size_t)traceflags) == -1) {
         void *bed = rz_cons_sleep_begin();
         usleep(1000);
         rz_cons_sleep_end(bed);
     }
     return true;
 }

References dbg, pid, rz_cons_sleep_begin(), rz_cons_sleep_end(), rz_debug_t::trace_aftersyscall, rz_debug_t::trace_execs, and rz_debug_t::trace_forks.

Referenced by linux_add_new_thread(), and linux_attach_single_pid().

◆ linux_step()

int linux_step ( RzDebug * dbg )

Definition at line 369 of file linux_debug.c.

                              {
     int ret = false;
     int pid = dbg->tid;
     ret = rz_debug_ptrace(dbg, PTRACE_SINGLESTEP, pid, 0, 0);
     // XXX(jjd): why?? //linux_handle_signals (dbg);
     if (ret == -1) {
         perror("native-singlestep");
         ret = false;
     } else {
         ret = true;
     }
     return ret;
 }

References dbg, pid, PTRACE_SINGLESTEP, and rz_debug_t::tid.

◆ linux_stop_threads()

bool linux_stop_threads	(	RzDebug *	dbg,
		int	except
	)

Definition at line 660 of file linux_debug.c.

                                                   {
     bool ret = true;
     if (dbg->threads) {
         RzDebugPid *th;
         RzListIter *it;
         rz_list_foreach (dbg->threads, it, th) {
             if (th->pid && th->pid != except) {
                 if (!linux_stop_thread(dbg, th->pid)) {
                     ret = false;
                 }
             }
         }
     }
     return ret;
 }

References dbg, linux_stop_thread(), rz_debug_pid_t::pid, and rz_debug_t::threads.

◆ linux_thread_list()

RzList* linux_thread_list	(	RzDebug *	dbg,
		int	pid,
		RzList *	list
	)

Definition at line 875 of file linux_debug.c.

                                                                {
     int i = 0, thid = 0;
     char *ptr, buf[PATH_MAX];
     RzDebugPid *pid_info = NULL;
     ut64 pc = 0;
     int prev_tid = dbg->tid;
  
     if (!pid) {
         rz_list_free(list);
         return NULL;
     }
  
     list->free = (RzListFree)&rz_debug_pid_free;
     /* if this process has a task directory, use that */
     snprintf(buf, sizeof(buf), "/proc/%d/task", pid);
     if (rz_file_is_directory(buf)) {
         struct dirent *de;
         DIR *dh = opendir(buf);
         // Update the process' memory maps to set correct paths
         rz_debug_map_sync(dbg);
         while ((de = readdir(dh))) {
             if (!strcmp(de->d_name, ".") || !strcmp(de->d_name, "..")) {
                 continue;
             }
             int tid = atoi(de->d_name);
             char info[PATH_MAX];
             int uid = 0;
             if (!procfs_pid_slurp(tid, "status", info, sizeof(info))) {
                 ptr = strstr(info, "Uid:");
                 if (ptr) {
                     uid = atoi(ptr + 4);
                 }
                 ptr = strstr(info, "Tgid:");
                 if (ptr) {
                     int tgid = atoi(ptr + 5);
                     if (tgid != pid) {
                         /* Ignore threads that aren't in the pid's thread group */
                         continue;
                     }
                 }
             }
  
             // Switch to the currently inspected thread to get it's program counter
             if (dbg->tid != tid) {
                 linux_attach_single_pid(dbg, tid);
                 dbg->tid = tid;
             }
  
             rz_debug_reg_sync(dbg, RZ_REG_TYPE_GPR, false);
             pc = rz_debug_reg_get(dbg, "PC");
  
             if (!procfs_pid_slurp(tid, "status", info, sizeof(info))) {
                 // Get information about pid (status, pc, etc.)
                 pid_info = fill_pid_info(info, NULL, tid);
                 pid_info->pc = pc;
             } else {
                 pid_info = rz_debug_pid_new(NULL, tid, uid, 's', pc);
             }
             rz_list_append(list, pid_info);
             dbg->n_threads++;
         }
         closedir(dh);
         // Return to the original thread
         linux_attach_single_pid(dbg, prev_tid);
         dbg->tid = prev_tid;
         rz_debug_reg_sync(dbg, RZ_REG_TYPE_GPR, false);
     } else {
         /* Some linux configurations might hide threads from /proc, use this workaround instead */
 #undef MAXPID
 #define MAXPID 99999
         /* otherwise, brute force the pids */
         for (i = pid; i < MAXPID; i++) { // XXX
             if (procfs_pid_slurp(i, "status", buf, sizeof(buf)) == -1) {
                 continue;
             }
             int uid = 0;
             /* look for a thread group id */
             ptr = strstr(buf, "Uid:");
             if (ptr) {
                 uid = atoi(ptr + 4);
             }
             ptr = strstr(buf, "Tgid:");
             if (ptr) {
                 int tgid = atoi(ptr + 5);
  
                 /* if it is not in our thread group, we don't want it */
                 if (tgid != pid) {
                     continue;
                 }
  
                 if (procfs_pid_slurp(i, "comm", buf, sizeof(buf)) == -1) {
                     /* fall back to auto-id */
                     snprintf(buf, sizeof(buf), "thread_%d", thid++);
                 }
                 rz_list_append(list, rz_debug_pid_new(buf, i, uid, 's', 0));
             }
         }
     }
     return list;
 }

References dirent::d_name, dbg, fill_pid_info(), i, info(), linux_attach_single_pid(), list(), MAXPID, rz_debug_t::n_threads, NULL, rz_debug_pid_t::pc, pc, pid, procfs_pid_slurp(), readdir, rz_debug_map_sync(), rz_debug_pid_free(), rz_debug_pid_new(), rz_debug_reg_get(), rz_debug_reg_sync(), rz_file_is_directory(), rz_list_append(), rz_list_free(), RZ_REG_TYPE_GPR, snprintf, rz_debug_t::tid, and ut64().

Referenced by get_pid_thread_list(), and linux_info().

◆ match_pid()

int match_pid	(	const void *	pid_o,
		const void *	th_o
	)

Definition at line 608 of file linux_debug.c.

                                                    {
     int pid = *(int *)pid_o;
     RzDebugPid *th = (RzDebugPid *)th_o;
     return (pid == th->pid) ? 0 : 1;
 }

References rz_debug_pid_t::pid, and pid.

Referenced by linux_attach(), and linux_dbg_wait().

Classes

Macros

Functions