2 * linux/kernel/ptrace.c
4 * (C) Copyright 1999 Linus Torvalds
6 * Common interfaces for "ptrace()" which we do not want
7 * to continually duplicate across every architecture.
10 #include <linux/capability.h>
11 #include <linux/module.h>
12 #include <linux/sched.h>
13 #include <linux/errno.h>
15 #include <linux/highmem.h>
16 #include <linux/pagemap.h>
17 #include <linux/ptrace.h>
18 #include <linux/security.h>
19 #include <linux/signal.h>
20 #include <linux/audit.h>
21 #include <linux/pid_namespace.h>
22 #include <linux/syscalls.h>
23 #include <linux/uaccess.h>
24 #include <linux/regset.h>
25 #include <linux/hw_breakpoint.h>
29 * ptrace a task: make the debugger its new parent and
30 * move it to the ptrace list.
32 * Must be called with the tasklist lock write-held.
34 void __ptrace_link(struct task_struct *child, struct task_struct *new_parent)
36 BUG_ON(!list_empty(&child->ptrace_entry));
37 list_add(&child->ptrace_entry, &new_parent->ptraced);
38 child->parent = new_parent;
42 * Turn a tracing stop into a normal stop now, since with no tracer there
43 * would be no way to wake it up with SIGCONT or SIGKILL. If there was a
44 * signal sent that would resume the child, but didn't because it was in
45 * TASK_TRACED, resume it now.
46 * Requires that irqs be disabled.
48 static void ptrace_untrace(struct task_struct *child)
50 spin_lock(&child->sighand->siglock);
51 if (task_is_traced(child)) {
53 * If the group stop is completed or in progress,
54 * this thread was already counted as stopped.
56 if (child->signal->flags & SIGNAL_STOP_STOPPED ||
57 child->signal->group_stop_count)
58 __set_task_state(child, TASK_STOPPED);
60 signal_wake_up(child, 1);
62 spin_unlock(&child->sighand->siglock);
66 * unptrace a task: move it back to its original parent and
67 * remove it from the ptrace list.
69 * Must be called with the tasklist lock write-held.
71 void __ptrace_unlink(struct task_struct *child)
73 BUG_ON(!child->ptrace);
76 child->parent = child->real_parent;
77 list_del_init(&child->ptrace_entry);
79 if (task_is_traced(child))
80 ptrace_untrace(child);
84 * Check that we have indeed attached to the thing..
86 int ptrace_check_attach(struct task_struct *child, int kill)
91 * We take the read lock around doing both checks to close a
92 * possible race where someone else was tracing our child and
93 * detached between these two checks. After this locked check,
94 * we are sure that this is our traced child and that can only
95 * be changed by us so it's not changing right after this.
97 read_lock(&tasklist_lock);
98 if ((child->ptrace & PT_PTRACED) && child->parent == current) {
101 * child->sighand can't be NULL, release_task()
102 * does ptrace_unlink() before __exit_signal().
104 spin_lock_irq(&child->sighand->siglock);
105 if (task_is_stopped(child))
106 child->state = TASK_TRACED;
107 else if (!task_is_traced(child) && !kill)
109 spin_unlock_irq(&child->sighand->siglock);
111 read_unlock(&tasklist_lock);
114 ret = wait_task_inactive(child, TASK_TRACED) ? 0 : -ESRCH;
116 /* All systems go.. */
120 int __ptrace_may_access(struct task_struct *task, unsigned int mode)
122 const struct cred *cred = current_cred(), *tcred;
124 /* May we inspect the given task?
125 * This check is used both for attaching with ptrace
126 * and for allowing access to sensitive information in /proc.
128 * ptrace_attach denies several cases that /proc allows
129 * because setting up the necessary parent/child relationship
130 * or halting the specified task is impossible.
133 /* Don't let security modules deny introspection */
137 tcred = __task_cred(task);
138 if (cred->user->user_ns == tcred->user->user_ns &&
139 (cred->uid == tcred->euid &&
140 cred->uid == tcred->suid &&
141 cred->uid == tcred->uid &&
142 cred->gid == tcred->egid &&
143 cred->gid == tcred->sgid &&
144 cred->gid == tcred->gid))
146 if (ns_capable(tcred->user->user_ns, CAP_SYS_PTRACE))
154 dumpable = get_dumpable(task->mm);
155 if (!dumpable && !task_ns_capable(task, CAP_SYS_PTRACE))
158 return security_ptrace_access_check(task, mode);
161 bool ptrace_may_access(struct task_struct *task, unsigned int mode)
165 err = __ptrace_may_access(task, mode);
170 static int ptrace_attach(struct task_struct *task)
177 if (unlikely(task->flags & PF_KTHREAD))
179 if (same_thread_group(task, current))
183 * Protect exec's credential calculations against our interference;
184 * interference; SUID, SGID and LSM creds get determined differently
187 retval = -ERESTARTNOINTR;
188 if (mutex_lock_interruptible(&task->signal->cred_guard_mutex))
192 retval = __ptrace_may_access(task, PTRACE_MODE_ATTACH);
197 write_lock_irq(&tasklist_lock);
199 if (unlikely(task->exit_state))
200 goto unlock_tasklist;
202 goto unlock_tasklist;
204 task->ptrace = PT_PTRACED;
205 if (task_ns_capable(task, CAP_SYS_PTRACE))
206 task->ptrace |= PT_PTRACE_CAP;
208 __ptrace_link(task, current);
209 send_sig_info(SIGSTOP, SEND_SIG_FORCED, task);
213 write_unlock_irq(&tasklist_lock);
215 mutex_unlock(&task->signal->cred_guard_mutex);
221 * ptrace_traceme -- helper for PTRACE_TRACEME
223 * Performs checks and sets PT_PTRACED.
224 * Should be used by all ptrace implementations for PTRACE_TRACEME.
226 static int ptrace_traceme(void)
230 write_lock_irq(&tasklist_lock);
231 /* Are we already being traced? */
232 if (!current->ptrace) {
233 ret = security_ptrace_traceme(current->parent);
235 * Check PF_EXITING to ensure ->real_parent has not passed
236 * exit_ptrace(). Otherwise we don't report the error but
237 * pretend ->real_parent untraces us right after return.
239 if (!ret && !(current->real_parent->flags & PF_EXITING)) {
240 current->ptrace = PT_PTRACED;
241 __ptrace_link(current, current->real_parent);
244 write_unlock_irq(&tasklist_lock);
250 * Called with irqs disabled, returns true if childs should reap themselves.
252 static int ignoring_children(struct sighand_struct *sigh)
255 spin_lock(&sigh->siglock);
256 ret = (sigh->action[SIGCHLD-1].sa.sa_handler == SIG_IGN) ||
257 (sigh->action[SIGCHLD-1].sa.sa_flags & SA_NOCLDWAIT);
258 spin_unlock(&sigh->siglock);
263 * Called with tasklist_lock held for writing.
264 * Unlink a traced task, and clean it up if it was a traced zombie.
265 * Return true if it needs to be reaped with release_task().
266 * (We can't call release_task() here because we already hold tasklist_lock.)
268 * If it's a zombie, our attachedness prevented normal parent notification
269 * or self-reaping. Do notification now if it would have happened earlier.
270 * If it should reap itself, return true.
272 * If it's our own child, there is no notification to do. But if our normal
273 * children self-reap, then this child was prevented by ptrace and we must
274 * reap it now, in that case we must also wake up sub-threads sleeping in
277 static bool __ptrace_detach(struct task_struct *tracer, struct task_struct *p)
281 if (p->exit_state == EXIT_ZOMBIE) {
282 if (!task_detached(p) && thread_group_empty(p)) {
283 if (!same_thread_group(p->real_parent, tracer))
284 do_notify_parent(p, p->exit_signal);
285 else if (ignoring_children(tracer->sighand)) {
286 __wake_up_parent(p, tracer);
290 if (task_detached(p)) {
291 /* Mark it as in the process of being reaped. */
292 p->exit_state = EXIT_DEAD;
300 static int ptrace_detach(struct task_struct *child, unsigned int data)
304 if (!valid_signal(data))
307 /* Architecture-specific hardware disable .. */
308 ptrace_disable(child);
309 clear_tsk_thread_flag(child, TIF_SYSCALL_TRACE);
311 write_lock_irq(&tasklist_lock);
313 * This child can be already killed. Make sure de_thread() or
314 * our sub-thread doing do_wait() didn't do release_task() yet.
317 child->exit_code = data;
318 dead = __ptrace_detach(current, child);
319 if (!child->exit_state)
320 wake_up_state(child, TASK_TRACED | TASK_STOPPED);
322 write_unlock_irq(&tasklist_lock);
331 * Detach all tasks we were using ptrace on. Called with tasklist held
332 * for writing, and returns with it held too. But note it can release
333 * and reacquire the lock.
335 void exit_ptrace(struct task_struct *tracer)
336 __releases(&tasklist_lock)
337 __acquires(&tasklist_lock)
339 struct task_struct *p, *n;
340 LIST_HEAD(ptrace_dead);
342 if (likely(list_empty(&tracer->ptraced)))
345 list_for_each_entry_safe(p, n, &tracer->ptraced, ptrace_entry) {
346 if (__ptrace_detach(tracer, p))
347 list_add(&p->ptrace_entry, &ptrace_dead);
350 write_unlock_irq(&tasklist_lock);
351 BUG_ON(!list_empty(&tracer->ptraced));
353 list_for_each_entry_safe(p, n, &ptrace_dead, ptrace_entry) {
354 list_del_init(&p->ptrace_entry);
358 write_lock_irq(&tasklist_lock);
361 int ptrace_readdata(struct task_struct *tsk, unsigned long src, char __user *dst, int len)
367 int this_len, retval;
369 this_len = (len > sizeof(buf)) ? sizeof(buf) : len;
370 retval = access_process_vm(tsk, src, buf, this_len, 0);
376 if (copy_to_user(dst, buf, retval))
386 int ptrace_writedata(struct task_struct *tsk, char __user *src, unsigned long dst, int len)
392 int this_len, retval;
394 this_len = (len > sizeof(buf)) ? sizeof(buf) : len;
395 if (copy_from_user(buf, src, this_len))
397 retval = access_process_vm(tsk, dst, buf, this_len, 1);
411 static int ptrace_setoptions(struct task_struct *child, unsigned long data)
413 child->ptrace &= ~PT_TRACE_MASK;
415 if (data & PTRACE_O_TRACESYSGOOD)
416 child->ptrace |= PT_TRACESYSGOOD;
418 if (data & PTRACE_O_TRACEFORK)
419 child->ptrace |= PT_TRACE_FORK;
421 if (data & PTRACE_O_TRACEVFORK)
422 child->ptrace |= PT_TRACE_VFORK;
424 if (data & PTRACE_O_TRACECLONE)
425 child->ptrace |= PT_TRACE_CLONE;
427 if (data & PTRACE_O_TRACEEXEC)
428 child->ptrace |= PT_TRACE_EXEC;
430 if (data & PTRACE_O_TRACEVFORKDONE)
431 child->ptrace |= PT_TRACE_VFORK_DONE;
433 if (data & PTRACE_O_TRACEEXIT)
434 child->ptrace |= PT_TRACE_EXIT;
436 return (data & ~PTRACE_O_MASK) ? -EINVAL : 0;
439 static int ptrace_getsiginfo(struct task_struct *child, siginfo_t *info)
444 if (lock_task_sighand(child, &flags)) {
446 if (likely(child->last_siginfo != NULL)) {
447 *info = *child->last_siginfo;
450 unlock_task_sighand(child, &flags);
455 static int ptrace_setsiginfo(struct task_struct *child, const siginfo_t *info)
460 if (lock_task_sighand(child, &flags)) {
462 if (likely(child->last_siginfo != NULL)) {
463 *child->last_siginfo = *info;
466 unlock_task_sighand(child, &flags);
472 #ifdef PTRACE_SINGLESTEP
473 #define is_singlestep(request) ((request) == PTRACE_SINGLESTEP)
475 #define is_singlestep(request) 0
478 #ifdef PTRACE_SINGLEBLOCK
479 #define is_singleblock(request) ((request) == PTRACE_SINGLEBLOCK)
481 #define is_singleblock(request) 0
485 #define is_sysemu_singlestep(request) ((request) == PTRACE_SYSEMU_SINGLESTEP)
487 #define is_sysemu_singlestep(request) 0
490 static int ptrace_resume(struct task_struct *child, long request,
493 if (!valid_signal(data))
496 if (request == PTRACE_SYSCALL)
497 set_tsk_thread_flag(child, TIF_SYSCALL_TRACE);
499 clear_tsk_thread_flag(child, TIF_SYSCALL_TRACE);
501 #ifdef TIF_SYSCALL_EMU
502 if (request == PTRACE_SYSEMU || request == PTRACE_SYSEMU_SINGLESTEP)
503 set_tsk_thread_flag(child, TIF_SYSCALL_EMU);
505 clear_tsk_thread_flag(child, TIF_SYSCALL_EMU);
508 if (is_singleblock(request)) {
509 if (unlikely(!arch_has_block_step()))
511 user_enable_block_step(child);
512 } else if (is_singlestep(request) || is_sysemu_singlestep(request)) {
513 if (unlikely(!arch_has_single_step()))
515 user_enable_single_step(child);
517 user_disable_single_step(child);
520 child->exit_code = data;
521 wake_up_process(child);
526 #ifdef CONFIG_HAVE_ARCH_TRACEHOOK
528 static const struct user_regset *
529 find_regset(const struct user_regset_view *view, unsigned int type)
531 const struct user_regset *regset;
534 for (n = 0; n < view->n; ++n) {
535 regset = view->regsets + n;
536 if (regset->core_note_type == type)
543 static int ptrace_regset(struct task_struct *task, int req, unsigned int type,
546 const struct user_regset_view *view = task_user_regset_view(task);
547 const struct user_regset *regset = find_regset(view, type);
550 if (!regset || (kiov->iov_len % regset->size) != 0)
553 regset_no = regset - view->regsets;
554 kiov->iov_len = min(kiov->iov_len,
555 (__kernel_size_t) (regset->n * regset->size));
557 if (req == PTRACE_GETREGSET)
558 return copy_regset_to_user(task, view, regset_no, 0,
559 kiov->iov_len, kiov->iov_base);
561 return copy_regset_from_user(task, view, regset_no, 0,
562 kiov->iov_len, kiov->iov_base);
567 int ptrace_request(struct task_struct *child, long request,
568 unsigned long addr, unsigned long data)
572 void __user *datavp = (void __user *) data;
573 unsigned long __user *datalp = datavp;
576 case PTRACE_PEEKTEXT:
577 case PTRACE_PEEKDATA:
578 return generic_ptrace_peekdata(child, addr, data);
579 case PTRACE_POKETEXT:
580 case PTRACE_POKEDATA:
581 return generic_ptrace_pokedata(child, addr, data);
583 #ifdef PTRACE_OLDSETOPTIONS
584 case PTRACE_OLDSETOPTIONS:
586 case PTRACE_SETOPTIONS:
587 ret = ptrace_setoptions(child, data);
589 case PTRACE_GETEVENTMSG:
590 ret = put_user(child->ptrace_message, datalp);
593 case PTRACE_GETSIGINFO:
594 ret = ptrace_getsiginfo(child, &siginfo);
596 ret = copy_siginfo_to_user(datavp, &siginfo);
599 case PTRACE_SETSIGINFO:
600 if (copy_from_user(&siginfo, datavp, sizeof siginfo))
603 ret = ptrace_setsiginfo(child, &siginfo);
606 case PTRACE_DETACH: /* detach a process that was attached. */
607 ret = ptrace_detach(child, data);
610 #ifdef CONFIG_BINFMT_ELF_FDPIC
611 case PTRACE_GETFDPIC: {
612 struct mm_struct *mm = get_task_mm(child);
613 unsigned long tmp = 0;
620 case PTRACE_GETFDPIC_EXEC:
621 tmp = mm->context.exec_fdpic_loadmap;
623 case PTRACE_GETFDPIC_INTERP:
624 tmp = mm->context.interp_fdpic_loadmap;
631 ret = put_user(tmp, datalp);
636 #ifdef PTRACE_SINGLESTEP
637 case PTRACE_SINGLESTEP:
639 #ifdef PTRACE_SINGLEBLOCK
640 case PTRACE_SINGLEBLOCK:
644 case PTRACE_SYSEMU_SINGLESTEP:
648 return ptrace_resume(child, request, data);
651 if (child->exit_state) /* already dead */
653 return ptrace_resume(child, request, SIGKILL);
655 #ifdef CONFIG_HAVE_ARCH_TRACEHOOK
656 case PTRACE_GETREGSET:
657 case PTRACE_SETREGSET:
660 struct iovec __user *uiov = datavp;
662 if (!access_ok(VERIFY_WRITE, uiov, sizeof(*uiov)))
665 if (__get_user(kiov.iov_base, &uiov->iov_base) ||
666 __get_user(kiov.iov_len, &uiov->iov_len))
669 ret = ptrace_regset(child, request, addr, &kiov);
671 ret = __put_user(kiov.iov_len, &uiov->iov_len);
682 static struct task_struct *ptrace_get_task_struct(pid_t pid)
684 struct task_struct *child;
687 child = find_task_by_vpid(pid);
689 get_task_struct(child);
693 return ERR_PTR(-ESRCH);
697 #ifndef arch_ptrace_attach
698 #define arch_ptrace_attach(child) do { } while (0)
701 SYSCALL_DEFINE4(ptrace, long, request, long, pid, unsigned long, addr,
704 struct task_struct *child;
707 if (request == PTRACE_TRACEME) {
708 ret = ptrace_traceme();
710 arch_ptrace_attach(current);
714 child = ptrace_get_task_struct(pid);
716 ret = PTR_ERR(child);
720 if (request == PTRACE_ATTACH) {
721 ret = ptrace_attach(child);
723 * Some architectures need to do book-keeping after
727 arch_ptrace_attach(child);
728 goto out_put_task_struct;
731 ret = ptrace_check_attach(child, request == PTRACE_KILL);
733 goto out_put_task_struct;
735 ret = arch_ptrace(child, request, addr, data);
738 put_task_struct(child);
743 int generic_ptrace_peekdata(struct task_struct *tsk, unsigned long addr,
749 copied = access_process_vm(tsk, addr, &tmp, sizeof(tmp), 0);
750 if (copied != sizeof(tmp))
752 return put_user(tmp, (unsigned long __user *)data);
755 int generic_ptrace_pokedata(struct task_struct *tsk, unsigned long addr,
760 copied = access_process_vm(tsk, addr, &data, sizeof(data), 1);
761 return (copied == sizeof(data)) ? 0 : -EIO;
764 #if defined CONFIG_COMPAT
765 #include <linux/compat.h>
767 int compat_ptrace_request(struct task_struct *child, compat_long_t request,
768 compat_ulong_t addr, compat_ulong_t data)
770 compat_ulong_t __user *datap = compat_ptr(data);
776 case PTRACE_PEEKTEXT:
777 case PTRACE_PEEKDATA:
778 ret = access_process_vm(child, addr, &word, sizeof(word), 0);
779 if (ret != sizeof(word))
782 ret = put_user(word, datap);
785 case PTRACE_POKETEXT:
786 case PTRACE_POKEDATA:
787 ret = access_process_vm(child, addr, &data, sizeof(data), 1);
788 ret = (ret != sizeof(data) ? -EIO : 0);
791 case PTRACE_GETEVENTMSG:
792 ret = put_user((compat_ulong_t) child->ptrace_message, datap);
795 case PTRACE_GETSIGINFO:
796 ret = ptrace_getsiginfo(child, &siginfo);
798 ret = copy_siginfo_to_user32(
799 (struct compat_siginfo __user *) datap,
803 case PTRACE_SETSIGINFO:
804 memset(&siginfo, 0, sizeof siginfo);
805 if (copy_siginfo_from_user32(
806 &siginfo, (struct compat_siginfo __user *) datap))
809 ret = ptrace_setsiginfo(child, &siginfo);
811 #ifdef CONFIG_HAVE_ARCH_TRACEHOOK
812 case PTRACE_GETREGSET:
813 case PTRACE_SETREGSET:
816 struct compat_iovec __user *uiov =
817 (struct compat_iovec __user *) datap;
821 if (!access_ok(VERIFY_WRITE, uiov, sizeof(*uiov)))
824 if (__get_user(ptr, &uiov->iov_base) ||
825 __get_user(len, &uiov->iov_len))
828 kiov.iov_base = compat_ptr(ptr);
831 ret = ptrace_regset(child, request, addr, &kiov);
833 ret = __put_user(kiov.iov_len, &uiov->iov_len);
839 ret = ptrace_request(child, request, addr, data);
845 asmlinkage long compat_sys_ptrace(compat_long_t request, compat_long_t pid,
846 compat_long_t addr, compat_long_t data)
848 struct task_struct *child;
851 if (request == PTRACE_TRACEME) {
852 ret = ptrace_traceme();
856 child = ptrace_get_task_struct(pid);
858 ret = PTR_ERR(child);
862 if (request == PTRACE_ATTACH) {
863 ret = ptrace_attach(child);
865 * Some architectures need to do book-keeping after
869 arch_ptrace_attach(child);
870 goto out_put_task_struct;
873 ret = ptrace_check_attach(child, request == PTRACE_KILL);
875 ret = compat_arch_ptrace(child, request, addr, data);
878 put_task_struct(child);
882 #endif /* CONFIG_COMPAT */
884 #ifdef CONFIG_HAVE_HW_BREAKPOINT
885 int ptrace_get_breakpoints(struct task_struct *tsk)
887 if (atomic_inc_not_zero(&tsk->ptrace_bp_refcnt))
893 void ptrace_put_breakpoints(struct task_struct *tsk)
895 if (atomic_dec_and_test(&tsk->ptrace_bp_refcnt))
896 flush_ptrace_hw_breakpoint(tsk);
898 #endif /* CONFIG_HAVE_HW_BREAKPOINT */
git.openpandora.org / pandora-kernel.git / blob