/src/ptracetest2.c

http://github.com/Eelis/geordi · C · 40 lines · 30 code · 8 blank · 2 comment · 4 complexity · 5ee060b9285ab161b14feb9ba56efd6e MD5 · raw file 

    

  1. #include <assert.h>
    2. 

  2. #include <sys/ptrace.h>
    3. 

  3. #include <linux/ptrace.h>
    4. 

  4. #include <sys/types.h>
    5. 

  5. #include <sys/stat.h>
    6. 

  6. #include <sys/wait.h>
    7. 

  7. #include <unistd.h>
    8. 

  8. #include <syscall.h>
    9. 

  9. #include <sys/reg.h>
    10. 

  10. #include <stdio.h>
    11. 

  11. #include <stdlib.h>
    12. 

  12. 

  13. #ifdef __x86_64__
    14. 

  14. #define SYSCALL_OFF (ORIG_RAX * 8)
    15. 

  15. #else
    16. 

  16. #define SYSCALL_OFF (ORIG_EAX * 4)
    17. 

  17. #endif
    18. 

  18. 

  19. void checked (char const * const s, int const r) { if (r == -1) { perror(s); abort(); } }
    20. 

  20. 

  21. int main()
    22. 

  22. {
    23. 

  23.   pid_t const child = fork();
    24. 

  24. 

  25.   checked("fork", child);
    26. 

  26. 

  27.   if(child == 0)
    28. 

  28.   {
    29. 

  29.     checked("ptrace", ptrace(PTRACE_TRACEME, 0, NULL, NULL));
    30. 

  30.     sleep(2);
    31. 

  31.     checked("execl", execl("/usr/bin/whoami", "whoami", NULL));
    32. 

  32.   }
    33. 

  33. 

  34.   checked("ptrace", ptrace(PTRACE_SETOPTIONS, child, NULL, PTRACE_O_TRACESYSGOOD));
    35. 

  35.     // Will fail saying: ptrace: No such process
    36. 

  36.     // Conclusion: disregarding sleep-solutions, this means the parent cannot reliably set PTRACE_O_TRACESYSGOOD before the first wait().
    37. 

  37. 

  38.   return 0;
    39. 

  39. }
    40.