/* * Copyright (c) 1991, 1992 Paul Kranenburg * Copyright (c) 1993 Branko Lankester * Copyright (c) 1993, 1994, 1995, 1996 Rick Sladkey * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. * * $Id$ */ #ifdef linux #include #endif #ifdef HAVE_CONFIG_H #include "config.h" #endif /* configuration section */ #ifndef MAX_QUALS #if defined(linux) && defined(MIPS) #define MAX_QUALS 4999 /* maximum number of syscalls, signals, etc. */ #else #define MAX_QUALS 2048 /* maximum number of syscalls, signals, etc. */ #endif #ifndef MAX_PROCS #define MAX_PROCS 64 /* maximum number of processes tracable */ #endif #ifndef DEFAULT_STRLEN #define DEFAULT_STRLEN 32 /* default maximum # of bytes printed in `printstr', change with `-s' switch */ #endif #ifndef DEFAULT_ACOLUMN #define DEFAULT_ACOLUMN 40 /* default alignment column for results */ #endif #ifndef MAX_ARGS #define MAX_ARGS 32 /* maximum number of args to a syscall */ #endif #ifndef DEFAULT_SORTBY #define DEFAULT_SORTBY "time" /* default sorting method for call profiling */ #endif #include #include #include #include #include #include #include #include #ifdef STDC_HEADERS #include #endif /* STDC_HEADERS */ #if defined(LINUX) # if defined(SPARC) # define LINUXSPARC # endif # if defined(ALPHA) # define LINUX_64BIT # endif #endif #ifdef SVR4 #include #ifdef HAVE_MP_PROCFS #include #endif #else /* !SVR4 */ #if defined(LINUXSPARC) && defined(__GLIBC__) #include #else /* Work around awkward prototype in ptrace.h. */ #define ptrace xptrace #include #undef ptrace #ifdef POWERPC #define __KERNEL__ #include #undef __KERNEL__ /* TEMP */ #define UESP PT_R1 #define EIP PT_NIP #define EAX PT_R3 #define ORIG_EAX PT_ORIG_R3 #endif #ifdef __STDC__ #ifdef LINUX extern long ptrace(int, int, char *, long); #else /* !LINUX */ extern int ptrace(int, int, char *, int, ...); #endif /* !LINUX */ #else /* !__STDC__ */ extern int ptrace(); #endif /* !__STDC__ */ #endif /* !LINUXSPARC */ #endif /* !SVR4 */ #ifdef LINUX #if !defined(__GLIBC__) #define PTRACE_PEEKUSER PTRACE_PEEKUSR #define PTRACE_POKEUSER PTRACE_POKEUSR #endif #ifdef ALPHA # define REG_R0 0 # define REG_A0 16 # define REG_A3 19 # define REG_FP 30 # define REG_PC 64 #endif /* ALPHA */ #ifdef MIPS # define REG_V0 2 # define REG_A0 4 # define REG_A3 7 # define REG_SP 29 # define REG_EPC 64 #endif /* MIPS */ #endif /* LINUX */ #define SUPPORTED_PERSONALITIES 1 #define DEFAULT_PERSONALITY 0 #ifdef LINUXSPARC #include #include #undef SUPPORTED_PERSONALITIES #define SUPPORTED_PERSONALITIES 2 #endif /* LINUXSPARC */ #ifdef SVR4 #ifdef HAVE_MP_PROCFS extern int mp_ioctl (int f, int c, void *a, int s); #define IOCTL(f,c,a) mp_ioctl (f, c, a, sizeof *a) #define IOCTL_STATUS(t) \ pread (t->pfd_stat, &t->status, sizeof t->status, 0) #define IOCTL_WSTOP(t) \ (IOCTL (t->pfd, PCWSTOP, NULL) < 0 ? -1 : \ IOCTL_STATUS (t)) #define PR_WHY pr_lwp.pr_why #define PR_WHAT pr_lwp.pr_what #define PR_REG pr_lwp.pr_context.uc_mcontext.gregs #define PR_FLAGS pr_lwp.pr_flags #define PIOCSTIP PCSTOP #define PIOCSET PCSET #define PIOCRESET PCRESET #define PIOCSTRACE PCSTRACE #define PIOCSFAULT PCSFAULT #define PIOCWSTOP PCWSTOP #define PIOCSTOP PCSTOP #define PIOCSENTRY PCSENTRY #define PIOCSEXIT PCSEXIT #define PIOCRUN PCRUN #else #define IOCTL ioctl #define IOCTL_STATUS(t) ioctl (t->pfd, PIOCSTATUS, &t->status) #define IOCTL_WSTOP(t) ioctl (t->pfd, PIOCWSTOP, &t->status) #define PR_WHY pr_why #define PR_WHAT pr_what #define PR_REG pr_reg #define PR_FLAGS pr_flags #endif #endif /* Trace Control Block */ struct tcb { short flags; /* See below for TCB_ values */ int pid; /* Process Id of this entry */ long scno; /* System call number */ int u_nargs; /* System call arguments */ long u_arg[MAX_ARGS]; /* System call arguments */ int u_error; /* Error code */ long u_rval; /* (first) return value */ FILE *outf; /* Output file for this process */ char *auxstr; /* Auxiliary info from syscall (see RVAL_STR) */ struct timeval stime; /* System time usage as of last process wait */ struct timeval dtime; /* Delta for system time usage */ struct timeval etime; /* Syscall entry time */ /* Support for tracing forked processes */ struct tcb *parent; /* Parent of this process */ int nchildren; /* # of traced children */ int waitpid; /* pid(s) this process is waiting for */ /* (1st arg of wait4()) */ long baddr; /* `Breakpoint' address */ long inst[2]; /* Instructions on above */ int pfd; /* proc file descriptor */ #ifdef SVR4 #ifdef HAVE_MP_PROCFS int pfd_stat; int pfd_as; pstatus_t status; #else prstatus_t status; /* procfs status structure */ #endif #endif }; /* TCB flags */ #define TCB_STARTUP 00001 /* We have just begun ptracing this process */ #define TCB_INUSE 00002 /* This table entry is in use */ #define TCB_INSYSCALL 00004 /* A system call is in progress */ #define TCB_ATTACHED 00010 /* Process is not our own child */ #define TCB_EXITING 00020 /* As far as we know, this process is exiting */ #define TCB_SUSPENDED 00040 /* Process has done a wait(4), that can not be allowed to complete just now */ #define TCB_BPTSET 00100 /* "Breakpoint" set after fork(2) */ #define TCB_SIGTRAPPED 00200 /* Process wanted to block SIGTRAP */ #define TCB_FOLLOWFORK 00400 /* Process should have forks followed */ #define TCB_REPRINT 01000 /* We should reprint this syscall on exit */ #ifdef LINUX #if defined(ALPHA) || defined(SPARC) || defined(POWERPC) #define TCB_WAITEXECVE 02000 /* ignore SIGTRAP after exceve */ #endif /* ALPHA */ #endif /* LINUX */ /* qualifier flags */ #define QUAL_TRACE 0001 /* this system call should be traced */ #define QUAL_ABBREV 0002 /* abbreviate the structures of this syscall */ #define QUAL_VERBOSE 0004 /* decode the structures of this syscall */ #define QUAL_RAW 0010 /* print all args in hex for this syscall */ #define QUAL_SIGNAL 0020 /* report events with this signal */ #define QUAL_FAULT 0040 /* report events with this fault */ #define QUAL_READ 0100 /* dump data read on this file descriptor */ #define QUAL_WRITE 0200 /* dump data written to this file descriptor */ #define entering(tcp) (!((tcp)->flags & TCB_INSYSCALL)) #define exiting(tcp) ((tcp)->flags & TCB_INSYSCALL) #define syserror(tcp) ((tcp)->u_error != 0) #define verbose(tcp) (qual_flags[(tcp)->scno] & QUAL_VERBOSE) #define abbrev(tcp) (qual_flags[(tcp)->scno] & QUAL_ABBREV) #define waiting_parent(tcp) \ (tcp->parent && \ (tcp->parent->flags & TCB_SUSPENDED) && \ (tcp->parent->waitpid <= 0 || tcp->parent->waitpid == tcp->pid)) struct xlat { int val; char *str; }; /* Format of syscall return values */ #define RVAL_DECIMAL 000 /* decimal format */ #define RVAL_HEX 001 /* hex format */ #define RVAL_OCTAL 002 /* octal format */ #define RVAL_UDECIMAL 003 /* unsigned decimal format */ #define RVAL_MASK 007 /* mask for these values */ #define RVAL_STR 010 /* Print `auxstr' field after return val */ #define RVAL_NONE 020 /* Print nothing */ #ifndef offsetof #define offsetof(type, member) (((char *) &(((type *) NULL)->member)) - \ ((char *) (type *) NULL)) #endif /* !offsetof */ /* get offset of member within a user struct */ #define uoff(member) offsetof(struct user, member) #define TRACE_FILE 001 /* Trace file-related syscalls. */ #define TRACE_IPC 002 /* Trace IPC-related syscalls. */ #define TRACE_NETWORK 004 /* Trace network-related syscalls. */ #define TRACE_PROCESS 010 /* Trace process-related syscalls. */ #define TRACE_SIGNAL 020 /* Trace signal-related syscalls. */ extern struct tcb tcbtab[]; extern int qual_flags[]; extern int debug, followfork, followvfork; extern int rflag, tflag, dtime, cflag, xflag, qflag; extern int acolumn; extern char *outfname; extern int nprocs; extern int max_strlen; extern struct tcb *tcp_last; #ifdef __STDC__ #define P(args) args #else #define P(args) () #endif extern int set_personality P((int personality)); extern char *xlookup P((struct xlat *, int)); extern struct tcb *alloctcb P((int)); extern void droptcb P((struct tcb *)); extern void set_sortby P((char *)); extern void set_overhead P((int)); extern void qualify P((char *)); extern void newoutf P((struct tcb *)); extern int trace_syscall P((struct tcb *)); extern void printxval P((struct xlat *, int, char *)); extern int printargs P((struct tcb *)); extern int addflags P((struct xlat *, int)); extern int printflags P((struct xlat *, int)); extern int umoven P((struct tcb *, long, int, char *)); extern int umovestr P((struct tcb *, long, int, char *)); extern int upeek P((int, long, long *)); extern void dumpstr P((struct tcb *, long, int)); extern void string_quote P((char *str)); extern void printstr P((struct tcb *, long, int)); extern void printnum P((struct tcb *, long, char *)); extern void printpath P((struct tcb *, long)); extern void printpathn P((struct tcb *, long, int)); extern void printtv P((struct tcb *, long)); extern void printsock P((struct tcb *, long, int)); extern void printrusage P((struct tcb *, long)); extern int clearbpt P((struct tcb *)); extern int setbpt P((struct tcb *)); extern int sigishandled P((struct tcb *, int)); extern void printcall P((struct tcb *)); extern char *signame P((int)); extern void printsignal P((int)); extern void printleader P((struct tcb *)); extern void printtrailer P((struct tcb *)); extern void tabto P((int)); extern void call_summary P((FILE *)); extern void fake_execve P((struct tcb *, char *, char *[], char *[])); extern void printtv32 P((struct tcb*, long)); #ifdef LINUX extern int internal_clone P((struct tcb *)); #endif extern int internal_fork P((struct tcb *)); extern int internal_exec P((struct tcb *)); extern int internal_wait P((struct tcb *)); extern int internal_exit P((struct tcb *)); extern char *ioctl_lookup P((long)); extern int ioctl_decode P((struct tcb *, long, long)); extern int term_ioctl P((struct tcb *, long, long)); extern int sock_ioctl P((struct tcb *, long, long)); extern int proc_ioctl P((struct tcb *, int, int)); extern int stream_ioctl P((struct tcb *, int, int)); extern void tv_tv P((struct timeval *, int, int)); extern int tv_nz P((struct timeval *)); extern int tv_cmp P((struct timeval *, struct timeval *)); extern double tv_float P((struct timeval *)); extern void tv_add P((struct timeval *, struct timeval *, struct timeval *)); extern void tv_sub P((struct timeval *, struct timeval *, struct timeval *)); extern void tv_mul P((struct timeval *, struct timeval *, int)); extern void tv_div P((struct timeval *, struct timeval *, int)); #ifdef SUNOS4 extern int fixvfork P((struct tcb *)); #endif #if !(defined(LINUX) && !defined(SPARC)) extern long getrval2 P((struct tcb *)); #endif #ifdef SVR4 extern int proc_open P((struct tcb *tcp, int attaching)); #endif #define umove(pid, addr, objp) \ umoven((pid), (addr), sizeof *(objp), (char *) (objp)) #ifdef __STDC__ #ifdef __GNUC__ extern void tprintf(const char *fmt, ...) __attribute__ ((format (printf, 1, 2))); #else extern void tprintf(const char *fmt, ...); #endif #else extern void tprintf(); #endif #ifndef HAVE_STRERROR const char *strerror P((int)); #endif #ifndef HAVE_STRSIGNAL const char *strsignal P((int)); #endif extern int current_personality; struct sysent { int nargs; int sys_flags; int (*sys_func)(); char *sys_name; }; extern struct sysent *sysent; extern int nsyscalls; extern char **errnoent; extern int nerrnos; struct ioctlent { char *doth; char *symbol; unsigned long code; }; extern struct ioctlent *ioctlent; extern int nioctlent; extern char **signalent; extern int nsignals; extern struct ioctlent *ioctlent; extern int nioctlents; extern char **signalent; extern int nsignals; extern struct ioctlent ioctlent0[]; extern int nioctlents0; extern char *signalent0[]; extern int nsignals0; #if SUPPORTED_PERSONALITIES >= 2 extern struct ioctlent ioctlent1[]; extern int nioctlents1; extern char *signalent1[]; extern int nsignals1; #endif /* SUPPORTED_PERSONALITIES >= 2 */ #if SUPPORTED_PERSONALITIES >= 3 extern struct ioctlent ioctlent2[]; extern int nioctlents2; extern char *signalent2[]; extern int nsignals2; #endif /* SUPPORTED_PERSONALITIES >= 3 */