lib/libproc/proc_bkpt.c

316713Smarkj/*-
316713Smarkj * Copyright (c) 2010 The FreeBSD Foundation
316713Smarkj * All rights reserved.
316713Smarkj *
210688Srpaulo * This software was developed by Rui Paulo under sponsorship from the
316713Smarkj * FreeBSD Foundation.
316713Smarkj *
316713Smarkj * Redistribution and use in source and binary forms, with or without
316713Smarkj * modification, are permitted provided that the following conditions
316713Smarkj * are met:
316713Smarkj * 1. Redistributions of source code must retain the above copyright
316713Smarkj *    notice, this list of conditions and the following disclaimer.
316713Smarkj * 2. Redistributions in binary form must reproduce the above copyright
316713Smarkj *    notice, this list of conditions and the following disclaimer in the
316713Smarkj *    documentation and/or other materials provided with the distribution.
316713Smarkj *
316713Smarkj * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
316713Smarkj * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
316713Smarkj * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
316713Smarkj * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
316713Smarkj * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
316713Smarkj * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
316713Smarkj * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
316713Smarkj * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
316713Smarkj * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
316713Smarkj * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
316713Smarkj * SUCH DAMAGE.
316713Smarkj */
210688Srpaulo
210688Srpaulo#include <sys/cdefs.h>
210688Srpaulo__FBSDID("$FreeBSD: stable/11/lib/libproc/proc_bkpt.c 316713 2017-04-11 17:36:19Z markj $");
210688Srpaulo
210688Srpaulo#include <sys/types.h>
210688Srpaulo#include <sys/ptrace.h>
210688Srpaulo#include <sys/wait.h>
210688Srpaulo
210688Srpaulo#include <assert.h>
210688Srpaulo#include <err.h>
257670Smarkj#include <errno.h>
257670Smarkj#include <signal.h>
210688Srpaulo#include <stdio.h>
316713Smarkj
210688Srpaulo#include "_libproc.h"
210688Srpaulo
285003Sbr#if defined(__aarch64__)
285003Sbr#define	AARCH64_BRK		0xd4200000
285003Sbr#define	AARCH64_BRK_IMM16_SHIFT	5
285003Sbr#define	AARCH64_BRK_IMM16_VAL	(0xd << AARCH64_BRK_IMM16_SHIFT)
285003Sbr#define	BREAKPOINT_INSTR	(AARCH64_BRK | AARCH64_BRK_IMM16_VAL)
285003Sbr#define	BREAKPOINT_INSTR_SZ	4
285003Sbr#elif defined(__amd64__) || defined(__i386__)
285003Sbr#define	BREAKPOINT_INSTR	0xcc	/* int 0x3 */
210688Srpaulo#define	BREAKPOINT_INSTR_SZ	1
287106Sandrew#define	BREAKPOINT_ADJUST_SZ	BREAKPOINT_INSTR_SZ
285003Sbr#elif defined(__arm__)
285003Sbr#define	BREAKPOINT_INSTR	0xe7ffffff	/* bkpt */
285003Sbr#define	BREAKPOINT_INSTR_SZ	4
233402Sgonzo#elif defined(__mips__)
285003Sbr#define	BREAKPOINT_INSTR	0xd	/* break */
233402Sgonzo#define	BREAKPOINT_INSTR_SZ	4
242723Sjhibbits#elif defined(__powerpc__)
285003Sbr#define	BREAKPOINT_INSTR	0x7fe00008	/* trap */
285003Sbr#define	BREAKPOINT_INSTR_SZ	4
294662Sbr#elif defined(__riscv__)
294662Sbr#define	BREAKPOINT_INSTR	0x00100073	/* sbreak */
294662Sbr#define	BREAKPOINT_INSTR_SZ	4
210688Srpaulo#else
210688Srpaulo#error "Add support for your architecture"
210688Srpaulo#endif
210688Srpaulo
257670Smarkjstatic int
257670Smarkjproc_stop(struct proc_handle *phdl)
257670Smarkj{
257670Smarkj	int status;
257670Smarkj
257670Smarkj	if (kill(proc_getpid(phdl), SIGSTOP) == -1) {
257670Smarkj		DPRINTF("kill %d", proc_getpid(phdl));
257670Smarkj		return (-1);
257670Smarkj	} else if (waitpid(proc_getpid(phdl), &status, WSTOPPED) == -1) {
257670Smarkj		DPRINTF("waitpid %d", proc_getpid(phdl));
257670Smarkj		return (-1);
257670Smarkj	} else if (!WIFSTOPPED(status)) {
257670Smarkj		DPRINTFX("waitpid: unexpected status 0x%x", status);
257670Smarkj		return (-1);
257670Smarkj	}
257670Smarkj
257670Smarkj	return (0);
257670Smarkj}
257670Smarkj
210688Srpauloint
210688Srpauloproc_bkptset(struct proc_handle *phdl, uintptr_t address,
210688Srpaulo    unsigned long *saved)
210688Srpaulo{
210688Srpaulo	struct ptrace_io_desc piod;
210688Srpaulo	unsigned long paddr, caddr;
265308Smarkj	int ret = 0, stopped;
210688Srpaulo
210688Srpaulo	*saved = 0;
210688Srpaulo	if (phdl->status == PS_DEAD || phdl->status == PS_UNDEAD ||
210688Srpaulo	    phdl->status == PS_IDLE) {
210688Srpaulo		errno = ENOENT;
210688Srpaulo		return (-1);
210688Srpaulo	}
210688Srpaulo
257670Smarkj	DPRINTFX("adding breakpoint at 0x%lx", address);
257670Smarkj
265308Smarkj	stopped = 0;
265308Smarkj	if (phdl->status != PS_STOP) {
257670Smarkj		if (proc_stop(phdl) != 0)
257670Smarkj			return (-1);
265308Smarkj		stopped = 1;
265308Smarkj	}
257670Smarkj
210688Srpaulo	/*
210688Srpaulo	 * Read the original instruction.
210688Srpaulo	 */
210688Srpaulo	caddr = address;
210688Srpaulo	paddr = 0;
210688Srpaulo	piod.piod_op = PIOD_READ_I;
210688Srpaulo	piod.piod_offs = (void *)caddr;
210688Srpaulo	piod.piod_addr = &paddr;
210688Srpaulo	piod.piod_len  = BREAKPOINT_INSTR_SZ;
210688Srpaulo	if (ptrace(PT_IO, proc_getpid(phdl), (caddr_t)&piod, 0) < 0) {
316713Smarkj		DPRINTF("ERROR: couldn't read instruction at address 0x%jx",
316713Smarkj		    (uintmax_t)address);
257670Smarkj		ret = -1;
257670Smarkj		goto done;
210688Srpaulo	}
210688Srpaulo	*saved = paddr;
210688Srpaulo	/*
210688Srpaulo	 * Write a breakpoint instruction to that address.
210688Srpaulo	 */
210688Srpaulo	caddr = address;
210688Srpaulo	paddr = BREAKPOINT_INSTR;
210688Srpaulo	piod.piod_op = PIOD_WRITE_I;
210688Srpaulo	piod.piod_offs = (void *)caddr;
210688Srpaulo	piod.piod_addr = &paddr;
210688Srpaulo	piod.piod_len  = BREAKPOINT_INSTR_SZ;
210688Srpaulo	if (ptrace(PT_IO, proc_getpid(phdl), (caddr_t)&piod, 0) < 0) {
316713Smarkj		DPRINTF("ERROR: couldn't write instruction at address 0x%jx",
316713Smarkj		    (uintmax_t)address);
257670Smarkj		ret = -1;
257670Smarkj		goto done;
210688Srpaulo	}
210688Srpaulo
257670Smarkjdone:
265308Smarkj	if (stopped)
257670Smarkj		/* Restart the process if we had to stop it. */
265308Smarkj		proc_continue(phdl);
257670Smarkj
257670Smarkj	return (ret);
210688Srpaulo}
210688Srpaulo
210688Srpauloint
210688Srpauloproc_bkptdel(struct proc_handle *phdl, uintptr_t address,
210688Srpaulo    unsigned long saved)
210688Srpaulo{
210688Srpaulo	struct ptrace_io_desc piod;
210688Srpaulo	unsigned long paddr, caddr;
265308Smarkj	int ret = 0, stopped;
210688Srpaulo
210688Srpaulo	if (phdl->status == PS_DEAD || phdl->status == PS_UNDEAD ||
210688Srpaulo	    phdl->status == PS_IDLE) {
210688Srpaulo		errno = ENOENT;
210688Srpaulo		return (-1);
210688Srpaulo	}
257670Smarkj
257670Smarkj	DPRINTFX("removing breakpoint at 0x%lx", address);
257670Smarkj
265308Smarkj	stopped = 0;
265308Smarkj	if (phdl->status != PS_STOP) {
257670Smarkj		if (proc_stop(phdl) != 0)
257670Smarkj			return (-1);
265308Smarkj		stopped = 1;
265308Smarkj	}
257670Smarkj
210688Srpaulo	/*
210688Srpaulo	 * Overwrite the breakpoint instruction that we setup previously.
210688Srpaulo	 */
210688Srpaulo	caddr = address;
210688Srpaulo	paddr = saved;
210688Srpaulo	piod.piod_op = PIOD_WRITE_I;
210688Srpaulo	piod.piod_offs = (void *)caddr;
210688Srpaulo	piod.piod_addr = &paddr;
210688Srpaulo	piod.piod_len  = BREAKPOINT_INSTR_SZ;
210688Srpaulo	if (ptrace(PT_IO, proc_getpid(phdl), (caddr_t)&piod, 0) < 0) {
316713Smarkj		DPRINTF("ERROR: couldn't write instruction at address 0x%jx",
316713Smarkj		    (uintmax_t)address);
257670Smarkj		ret = -1;
210688Srpaulo	}
257670Smarkj
265308Smarkj	if (stopped)
257670Smarkj		/* Restart the process if we had to stop it. */
265308Smarkj		proc_continue(phdl);
316713Smarkj
257670Smarkj	return (ret);
210688Srpaulo}
210688Srpaulo
210688Srpaulo/*
210688Srpaulo * Decrement pc so that we delete the breakpoint at the correct
210688Srpaulo * address, i.e. at the BREAKPOINT_INSTR address.
287106Sandrew *
287106Sandrew * This is only needed on some architectures where the pc value
287106Sandrew * when reading registers points at the instruction after the
287106Sandrew * breakpoint, e.g. x86.
210688Srpaulo */
210688Srpaulovoid
210688Srpauloproc_bkptregadj(unsigned long *pc)
210688Srpaulo{
287106Sandrew
287106Sandrew	(void)pc;
287106Sandrew#ifdef BREAKPOINT_ADJUST_SZ
287106Sandrew	*pc = *pc - BREAKPOINT_ADJUST_SZ;
287106Sandrew#endif
210688Srpaulo}
210688Srpaulo
210688Srpaulo/*
210688Srpaulo * Step over the breakpoint.
210688Srpaulo */
210688Srpauloint
210688Srpauloproc_bkptexec(struct proc_handle *phdl, unsigned long saved)
210688Srpaulo{
210688Srpaulo	unsigned long pc;
210688Srpaulo	unsigned long samesaved;
210688Srpaulo	int status;
210688Srpaulo
210688Srpaulo	if (proc_regget(phdl, REG_PC, &pc) < 0) {
257222Smarkj		DPRINTFX("ERROR: couldn't get PC register");
210688Srpaulo		return (-1);
210688Srpaulo	}
210688Srpaulo	proc_bkptregadj(&pc);
210688Srpaulo	if (proc_bkptdel(phdl, pc, saved) < 0) {
257222Smarkj		DPRINTFX("ERROR: couldn't delete breakpoint");
210688Srpaulo		return (-1);
210688Srpaulo	}
210688Srpaulo	/*
210688Srpaulo	 * Go back in time and step over the new instruction just
210688Srpaulo	 * set up by proc_bkptdel().
210688Srpaulo	 */
210688Srpaulo	proc_regset(phdl, REG_PC, pc);
210688Srpaulo	if (ptrace(PT_STEP, proc_getpid(phdl), (caddr_t)1, 0) < 0) {
257222Smarkj		DPRINTFX("ERROR: ptrace step failed");
210688Srpaulo		return (-1);
210688Srpaulo	}
211184Srpaulo	proc_wstatus(phdl);
211184Srpaulo	status = proc_getwstat(phdl);
210688Srpaulo	if (!WIFSTOPPED(status)) {
257222Smarkj		DPRINTFX("ERROR: don't know why process stopped");
210688Srpaulo		return (-1);
210688Srpaulo	}
210688Srpaulo	/*
210688Srpaulo	 * Restore the breakpoint. The saved instruction should be
210688Srpaulo	 * the same as the one that we were passed in.
210688Srpaulo	 */
210688Srpaulo	if (proc_bkptset(phdl, pc, &samesaved) < 0) {
257222Smarkj		DPRINTFX("ERROR: couldn't restore breakpoint");
210688Srpaulo		return (-1);
210688Srpaulo	}
210688Srpaulo	assert(samesaved == saved);
210688Srpaulo
210688Srpaulo	return (0);
210688Srpaulo}