Page MenuHomeFreeBSD
Differential D3678

Always clear TDB_USERWR before fetching system call arguments.
ClosedPublic
Actions

Authored by jhb on Sep 15 2015, 9:46 PM.
Tags
None
Referenced Files
Unknown Object (File)
Jun 27 2024, 11:02 PM
Unknown Object (File)
Jun 27 2024, 11:02 PM
Unknown Object (File)
Jun 27 2024, 11:02 PM
Unknown Object (File)
Jun 27 2024, 3:19 PM
Unknown Object (File)
Jun 27 2024, 3:04 PM
Unknown Object (File)
Jun 27 2024, 2:55 PM
Unknown Object (File)
Jun 27 2024, 1:21 PM
Unknown Object (File)
Jun 27 2024, 11:40 AM
View All 66 Files
Subscribers
imp

Details

Reviewers
kib
Commits
rS287870: Always clear TDB_USERWR before fetching system call arguments. The
Summary

Always clear TDB_USERWR before fetching system call arguments,
The TDB_USERWR flag may still be set after a debugger detaches from a
process via PT_DETACH. Previously the flag would never be cleared forcing
a double fetch of the system call arguments for each system call. Note that
the flag cannot be cleared at PT_DETACH time in case one of the threads in the
process is currently stopped in syscallenter() and the debugger has modified
the arguments for that pending system call before detaching.

Test Plan
  • Run a fork test under gdb while following the child of the fork. After gdb detaches from the parent it will log double ktrace entries for each system call due to the stucky TDB_USERWR flag without this change.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jhb updated this revision to Diff 8781.Sep 15 2015, 9:46 PM
jhb retitled this revision from to Clear all debugger flags when detaching from a traced process..
jhb updated this object.
jhb edited the test plan for this revision. (Show Details)
jhb added a reviewer: kib.
Herald added a subscriber: imp. · View Herald TranscriptSep 15 2015, 9:46 PM
jhb added a comment.Sep 15 2015, 9:48 PM

I initially tried clearing TDB_USERWR in syscall_enter() after it was
detected, but that still resulted in a double log of the first system
call after PT_DETACH.

Hmm, this version though means that a thread stuck in SCE when the detach
comes in might not re-read arguments changed by the tracer just before the
detach, so this is no good. Instead, we need to let TDB_USERWR persist even
after detach until the thread resumes.

I guess the "right" thing to do is to always clear TDB_USERWR in syscall_enter()
before fetching arguments. However, that seems unfortunate as it means adding
a PROC_LOCK() for all non-traced threads.

jhb updated this revision to Diff 8783.Sep 15 2015, 10:20 PM
  • Don't clear flags on detach. Clear TDB_USERWR if needed in syscall_enter().
jhb added inline comments.Sep 16 2015, 1:59 AM
sys/kern/subr_syscall.c
66 ↗(On Diff #8783)

Setting traced to true here even if P_TRACED isn't set is a bit hackish, but all it enables is setting TDB_SCE here and then clearing it at the end of syscall_enter(). The upside is it avoids needing PROC_LOCK in the common case. Only the first syscall after a PT_DETACH that left TDB_USERWR set should be effected.

kib added inline comments.Sep 16 2015, 4:12 AM
sys/kern/subr_syscall.c
70 ↗(On Diff #8783)

Perhaps

	if ((p->p_flag & P_TRACED) != 0)
		traced = 1;
	if (traced || (td->td_dbgflags & TDB_USERWR) != 0) {
		PROC_LOCK(p);
		td->td_dbgflags &= ~TDB_USERWR;
		if (traced)
			td->td_dbgflags |= TDB_SCE;
		PROC_UNLOCK(p);
	} else
		traced = 0;
kib added inline comments.Sep 16 2015, 4:18 AM
sys/kern/subr_syscall.c
70 ↗(On Diff #8783)

Of course, there is bug. More reasonable version is below.

	traced = (p->p_flag & P_TRACED) != 0;
	if (traced || (td->td_dbgflags & TDB_USERWR) != 0) {
		PROC_LOCK(p);
		td->td_dbgflags &= ~TDB_USERWR;
		if (traced)
			td->td_dbgflags |= TDB_SCE;
		PROC_UNLOCK(p);
	}
jhb updated this revision to Diff 8801.Sep 16 2015, 4:57 PM
  • Only set TDB_SCE and set traced if the process is traced.
jhb marked an inline comment as done.Sep 16 2015, 4:58 PM
jhb retitled this revision from Clear all debugger flags when detaching from a traced process. to Always clear TDB_USERWR before fetching system call arguments..Sep 16 2015, 5:03 PM
jhb updated this object.
kib accepted this revision.Sep 16 2015, 7:32 PM
kib edited edge metadata.
This revision is now accepted and ready to land.Sep 16 2015, 7:32 PM
Closed by commit rS287870: Always clear TDB_USERWR before fetching system call arguments. The (authored by jhb). · Explain WhySep 16 2015, 8:55 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
head/
sys/
kern/
10 lines

Diff 8804

View Options

head/sys/kern/subr_syscall.c

Loading...