2 * Copyright (c) 2015 John Baldwin <jhb@FreeBSD.org>
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27 #include <sys/cdefs.h>
28 __FBSDID("$FreeBSD$");
30 #include <sys/types.h>
31 #include <sys/cpuset.h>
32 #include <sys/event.h>
35 #include <sys/procctl.h>
36 #include <sys/ptrace.h>
37 #include <sys/queue.h>
39 #include <sys/syscall.h>
40 #include <sys/sysctl.h>
44 #include <machine/cpufunc.h>
47 #include <semaphore.h>
55 * Architectures with a user-visible breakpoint().
57 #if defined(__aarch64__) || defined(__amd64__) || defined(__arm__) || \
58 defined(__i386__) || defined(__mips__) || defined(__riscv) || \
60 #define HAVE_BREAKPOINT
64 * Adjust PC to skip over a breakpoint when stopped for a breakpoint trap.
66 #ifdef HAVE_BREAKPOINT
67 #if defined(__aarch64__)
68 #define SKIP_BREAK(reg) ((reg)->elr += 4)
69 #elif defined(__amd64__) || defined(__i386__)
70 #define SKIP_BREAK(reg)
71 #elif defined(__arm__)
72 #define SKIP_BREAK(reg) ((reg)->r_pc += 4)
73 #elif defined(__mips__)
74 #define SKIP_BREAK(reg) ((reg)->r_regs[PC] += 4)
75 #elif defined(__riscv)
76 #define SKIP_BREAK(reg) ((reg)->sepc += 4)
77 #elif defined(__sparc64__)
78 #define SKIP_BREAK(reg) do { \
79 (reg)->r_tpc = (reg)->r_tnpc + 4; \
86 * A variant of ATF_REQUIRE that is suitable for use in child
87 * processes. This only works if the parent process is tripped up by
88 * the early exit and fails some requirement itself.
90 #define CHILD_REQUIRE(exp) do { \
92 child_fail_require(__FILE__, __LINE__, \
97 child_fail_require(const char *file, int line, const char *str)
101 snprintf(buf, sizeof(buf), "%s:%d: %s\n", file, line, str);
102 write(2, buf, strlen(buf));
110 /* Attach the parent process as a tracer of this process. */
111 CHILD_REQUIRE(ptrace(PT_TRACE_ME, 0, NULL, 0) != -1);
113 /* Trigger a stop. */
118 attach_child(pid_t pid)
123 ATF_REQUIRE(ptrace(PT_ATTACH, pid, NULL, 0) == 0);
125 wpid = waitpid(pid, &status, 0);
126 ATF_REQUIRE(wpid == pid);
127 ATF_REQUIRE(WIFSTOPPED(status));
128 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
132 wait_for_zombie(pid_t pid)
136 * Wait for a process to exit. This is kind of gross, but
137 * there is not a better way.
139 * Prior to r325719, the kern.proc.pid.<pid> sysctl failed
140 * with ESRCH. After that change, a valid struct kinfo_proc
141 * is returned for zombies with ki_stat set to SZOMB.
144 struct kinfo_proc kp;
150 mib[2] = KERN_PROC_PID;
153 if (sysctl(mib, nitems(mib), &kp, &len, NULL, 0) == -1) {
154 ATF_REQUIRE(errno == ESRCH);
157 if (kp.ki_stat == SZOMB)
164 * Verify that a parent debugger process "sees" the exit of a debugged
165 * process exactly once when attached via PT_TRACE_ME.
167 ATF_TC_WITHOUT_HEAD(ptrace__parent_wait_after_trace_me);
168 ATF_TC_BODY(ptrace__parent_wait_after_trace_me, tc)
173 ATF_REQUIRE((child = fork()) != -1);
181 /* Parent process. */
183 /* The first wait() should report the stop from SIGSTOP. */
184 wpid = waitpid(child, &status, 0);
185 ATF_REQUIRE(wpid == child);
186 ATF_REQUIRE(WIFSTOPPED(status));
187 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
189 /* Continue the child ignoring the SIGSTOP. */
190 ATF_REQUIRE(ptrace(PT_CONTINUE, child, (caddr_t)1, 0) != -1);
192 /* The second wait() should report the exit status. */
193 wpid = waitpid(child, &status, 0);
194 ATF_REQUIRE(wpid == child);
195 ATF_REQUIRE(WIFEXITED(status));
196 ATF_REQUIRE(WEXITSTATUS(status) == 1);
198 /* The child should no longer exist. */
199 wpid = waitpid(child, &status, 0);
200 ATF_REQUIRE(wpid == -1);
201 ATF_REQUIRE(errno == ECHILD);
205 * Verify that a parent debugger process "sees" the exit of a debugged
206 * process exactly once when attached via PT_ATTACH.
208 ATF_TC_WITHOUT_HEAD(ptrace__parent_wait_after_attach);
209 ATF_TC_BODY(ptrace__parent_wait_after_attach, tc)
212 int cpipe[2], status;
215 ATF_REQUIRE(pipe(cpipe) == 0);
216 ATF_REQUIRE((child = fork()) != -1);
221 /* Wait for the parent to attach. */
222 CHILD_REQUIRE(read(cpipe[1], &c, sizeof(c)) == 0);
228 /* Parent process. */
230 /* Attach to the child process. */
233 /* Continue the child ignoring the SIGSTOP. */
234 ATF_REQUIRE(ptrace(PT_CONTINUE, child, (caddr_t)1, 0) != -1);
236 /* Signal the child to exit. */
239 /* The second wait() should report the exit status. */
240 wpid = waitpid(child, &status, 0);
241 ATF_REQUIRE(wpid == child);
242 ATF_REQUIRE(WIFEXITED(status));
243 ATF_REQUIRE(WEXITSTATUS(status) == 1);
245 /* The child should no longer exist. */
246 wpid = waitpid(child, &status, 0);
247 ATF_REQUIRE(wpid == -1);
248 ATF_REQUIRE(errno == ECHILD);
252 * Verify that a parent process "sees" the exit of a debugged process only
253 * after the debugger has seen it.
255 ATF_TC_WITHOUT_HEAD(ptrace__parent_sees_exit_after_child_debugger);
256 ATF_TC_BODY(ptrace__parent_sees_exit_after_child_debugger, tc)
258 pid_t child, debugger, wpid;
259 int cpipe[2], dpipe[2], status;
262 ATF_REQUIRE(pipe(cpipe) == 0);
263 ATF_REQUIRE((child = fork()) != -1);
269 /* Wait for parent to be ready. */
270 CHILD_REQUIRE(read(cpipe[1], &c, sizeof(c)) == sizeof(c));
276 ATF_REQUIRE(pipe(dpipe) == 0);
277 ATF_REQUIRE((debugger = fork()) != -1);
280 /* Debugger process. */
283 CHILD_REQUIRE(ptrace(PT_ATTACH, child, NULL, 0) != -1);
285 wpid = waitpid(child, &status, 0);
286 CHILD_REQUIRE(wpid == child);
287 CHILD_REQUIRE(WIFSTOPPED(status));
288 CHILD_REQUIRE(WSTOPSIG(status) == SIGSTOP);
290 CHILD_REQUIRE(ptrace(PT_CONTINUE, child, (caddr_t)1, 0) != -1);
292 /* Signal parent that debugger is attached. */
293 CHILD_REQUIRE(write(dpipe[1], &c, sizeof(c)) == sizeof(c));
295 /* Wait for parent's failed wait. */
296 CHILD_REQUIRE(read(dpipe[1], &c, sizeof(c)) == 0);
298 wpid = waitpid(child, &status, 0);
299 CHILD_REQUIRE(wpid == child);
300 CHILD_REQUIRE(WIFEXITED(status));
301 CHILD_REQUIRE(WEXITSTATUS(status) == 1);
307 /* Parent process. */
309 /* Wait for the debugger to attach to the child. */
310 ATF_REQUIRE(read(dpipe[0], &c, sizeof(c)) == sizeof(c));
312 /* Release the child. */
313 ATF_REQUIRE(write(cpipe[0], &c, sizeof(c)) == sizeof(c));
314 ATF_REQUIRE(read(cpipe[0], &c, sizeof(c)) == 0);
317 wait_for_zombie(child);
320 * This wait should return a pid of 0 to indicate no status to
321 * report. The parent should see the child as non-exited
322 * until the debugger sees the exit.
324 wpid = waitpid(child, &status, WNOHANG);
325 ATF_REQUIRE(wpid == 0);
327 /* Signal the debugger to wait for the child. */
330 /* Wait for the debugger. */
331 wpid = waitpid(debugger, &status, 0);
332 ATF_REQUIRE(wpid == debugger);
333 ATF_REQUIRE(WIFEXITED(status));
334 ATF_REQUIRE(WEXITSTATUS(status) == 0);
336 /* The child process should now be ready. */
337 wpid = waitpid(child, &status, WNOHANG);
338 ATF_REQUIRE(wpid == child);
339 ATF_REQUIRE(WIFEXITED(status));
340 ATF_REQUIRE(WEXITSTATUS(status) == 1);
344 * Verify that a parent process "sees" the exit of a debugged process
345 * only after a non-direct-child debugger has seen it. In particular,
346 * various wait() calls in the parent must avoid failing with ESRCH by
347 * checking the parent's orphan list for the debugee.
349 ATF_TC_WITHOUT_HEAD(ptrace__parent_sees_exit_after_unrelated_debugger);
350 ATF_TC_BODY(ptrace__parent_sees_exit_after_unrelated_debugger, tc)
352 pid_t child, debugger, fpid, wpid;
353 int cpipe[2], dpipe[2], status;
356 ATF_REQUIRE(pipe(cpipe) == 0);
357 ATF_REQUIRE((child = fork()) != -1);
363 /* Wait for parent to be ready. */
364 CHILD_REQUIRE(read(cpipe[1], &c, sizeof(c)) == sizeof(c));
370 ATF_REQUIRE(pipe(dpipe) == 0);
371 ATF_REQUIRE((debugger = fork()) != -1);
374 /* Debugger parent. */
377 * Fork again and drop the debugger parent so that the
378 * debugger is not a child of the main parent.
380 CHILD_REQUIRE((fpid = fork()) != -1);
384 /* Debugger process. */
387 CHILD_REQUIRE(ptrace(PT_ATTACH, child, NULL, 0) != -1);
389 wpid = waitpid(child, &status, 0);
390 CHILD_REQUIRE(wpid == child);
391 CHILD_REQUIRE(WIFSTOPPED(status));
392 CHILD_REQUIRE(WSTOPSIG(status) == SIGSTOP);
394 CHILD_REQUIRE(ptrace(PT_CONTINUE, child, (caddr_t)1, 0) != -1);
396 /* Signal parent that debugger is attached. */
397 CHILD_REQUIRE(write(dpipe[1], &c, sizeof(c)) == sizeof(c));
399 /* Wait for parent's failed wait. */
400 CHILD_REQUIRE(read(dpipe[1], &c, sizeof(c)) == sizeof(c));
402 wpid = waitpid(child, &status, 0);
403 CHILD_REQUIRE(wpid == child);
404 CHILD_REQUIRE(WIFEXITED(status));
405 CHILD_REQUIRE(WEXITSTATUS(status) == 1);
411 /* Parent process. */
413 /* Wait for the debugger parent process to exit. */
414 wpid = waitpid(debugger, &status, 0);
415 ATF_REQUIRE(wpid == debugger);
416 ATF_REQUIRE(WIFEXITED(status));
417 ATF_REQUIRE(WEXITSTATUS(status) == 2);
419 /* A WNOHANG wait here should see the non-exited child. */
420 wpid = waitpid(child, &status, WNOHANG);
421 ATF_REQUIRE(wpid == 0);
423 /* Wait for the debugger to attach to the child. */
424 ATF_REQUIRE(read(dpipe[0], &c, sizeof(c)) == sizeof(c));
426 /* Release the child. */
427 ATF_REQUIRE(write(cpipe[0], &c, sizeof(c)) == sizeof(c));
428 ATF_REQUIRE(read(cpipe[0], &c, sizeof(c)) == 0);
431 wait_for_zombie(child);
434 * This wait should return a pid of 0 to indicate no status to
435 * report. The parent should see the child as non-exited
436 * until the debugger sees the exit.
438 wpid = waitpid(child, &status, WNOHANG);
439 ATF_REQUIRE(wpid == 0);
441 /* Signal the debugger to wait for the child. */
442 ATF_REQUIRE(write(dpipe[0], &c, sizeof(c)) == sizeof(c));
444 /* Wait for the debugger. */
445 ATF_REQUIRE(read(dpipe[0], &c, sizeof(c)) == 0);
448 /* The child process should now be ready. */
449 wpid = waitpid(child, &status, WNOHANG);
450 ATF_REQUIRE(wpid == child);
451 ATF_REQUIRE(WIFEXITED(status));
452 ATF_REQUIRE(WEXITSTATUS(status) == 1);
456 * The parent process should always act the same regardless of how the
457 * debugger is attached to it.
460 follow_fork_parent(bool use_vfork)
466 CHILD_REQUIRE((fpid = vfork()) != -1);
468 CHILD_REQUIRE((fpid = fork()) != -1);
474 wpid = waitpid(fpid, &status, 0);
475 CHILD_REQUIRE(wpid == fpid);
476 CHILD_REQUIRE(WIFEXITED(status));
477 CHILD_REQUIRE(WEXITSTATUS(status) == 2);
483 * Helper routine for follow fork tests. This waits for two stops
484 * that report both "sides" of a fork. It returns the pid of the new
488 handle_fork_events(pid_t parent, struct ptrace_lwpinfo *ppl)
490 struct ptrace_lwpinfo pl;
491 bool fork_reported[2];
495 fork_reported[0] = false;
496 fork_reported[1] = false;
500 * Each process should report a fork event. The parent should
501 * report a PL_FLAG_FORKED event, and the child should report
502 * a PL_FLAG_CHILD event.
504 for (i = 0; i < 2; i++) {
505 wpid = wait(&status);
506 ATF_REQUIRE(wpid > 0);
507 ATF_REQUIRE(WIFSTOPPED(status));
509 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
511 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_FORKED | PL_FLAG_CHILD)) !=
513 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_FORKED | PL_FLAG_CHILD)) !=
514 (PL_FLAG_FORKED | PL_FLAG_CHILD));
515 if (pl.pl_flags & PL_FLAG_CHILD) {
516 ATF_REQUIRE(wpid != parent);
517 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
518 ATF_REQUIRE(!fork_reported[1]);
522 ATF_REQUIRE(child == wpid);
525 fork_reported[1] = true;
527 ATF_REQUIRE(wpid == parent);
528 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
529 ATF_REQUIRE(!fork_reported[0]);
531 child = pl.pl_child_pid;
533 ATF_REQUIRE(child == pl.pl_child_pid);
536 fork_reported[0] = true;
544 * Verify that a new child process is stopped after a followed fork and
545 * that the traced parent sees the exit of the child after the debugger
546 * when both processes remain attached to the debugger.
548 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_both_attached);
549 ATF_TC_BODY(ptrace__follow_fork_both_attached, tc)
551 pid_t children[2], fpid, wpid;
554 ATF_REQUIRE((fpid = fork()) != -1);
557 follow_fork_parent(false);
560 /* Parent process. */
563 /* The first wait() should report the stop from SIGSTOP. */
564 wpid = waitpid(children[0], &status, 0);
565 ATF_REQUIRE(wpid == children[0]);
566 ATF_REQUIRE(WIFSTOPPED(status));
567 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
569 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
571 /* Continue the child ignoring the SIGSTOP. */
572 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
574 children[1] = handle_fork_events(children[0], NULL);
575 ATF_REQUIRE(children[1] > 0);
577 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
578 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
581 * The child can't exit until the grandchild reports status, so the
582 * grandchild should report its exit first to the debugger.
584 wpid = wait(&status);
585 ATF_REQUIRE(wpid == children[1]);
586 ATF_REQUIRE(WIFEXITED(status));
587 ATF_REQUIRE(WEXITSTATUS(status) == 2);
589 wpid = wait(&status);
590 ATF_REQUIRE(wpid == children[0]);
591 ATF_REQUIRE(WIFEXITED(status));
592 ATF_REQUIRE(WEXITSTATUS(status) == 1);
594 wpid = wait(&status);
595 ATF_REQUIRE(wpid == -1);
596 ATF_REQUIRE(errno == ECHILD);
600 * Verify that a new child process is stopped after a followed fork
601 * and that the traced parent sees the exit of the child when the new
602 * child process is detached after it reports its fork.
604 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_child_detached);
605 ATF_TC_BODY(ptrace__follow_fork_child_detached, tc)
607 pid_t children[2], fpid, wpid;
610 ATF_REQUIRE((fpid = fork()) != -1);
613 follow_fork_parent(false);
616 /* Parent process. */
619 /* The first wait() should report the stop from SIGSTOP. */
620 wpid = waitpid(children[0], &status, 0);
621 ATF_REQUIRE(wpid == children[0]);
622 ATF_REQUIRE(WIFSTOPPED(status));
623 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
625 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
627 /* Continue the child ignoring the SIGSTOP. */
628 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
630 children[1] = handle_fork_events(children[0], NULL);
631 ATF_REQUIRE(children[1] > 0);
633 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
634 ATF_REQUIRE(ptrace(PT_DETACH, children[1], (caddr_t)1, 0) != -1);
637 * Should not see any status from the grandchild now, only the
640 wpid = wait(&status);
641 ATF_REQUIRE(wpid == children[0]);
642 ATF_REQUIRE(WIFEXITED(status));
643 ATF_REQUIRE(WEXITSTATUS(status) == 1);
645 wpid = wait(&status);
646 ATF_REQUIRE(wpid == -1);
647 ATF_REQUIRE(errno == ECHILD);
651 * Verify that a new child process is stopped after a followed fork
652 * and that the traced parent sees the exit of the child when the
653 * traced parent is detached after the fork.
655 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_parent_detached);
656 ATF_TC_BODY(ptrace__follow_fork_parent_detached, tc)
658 pid_t children[2], fpid, wpid;
661 ATF_REQUIRE((fpid = fork()) != -1);
664 follow_fork_parent(false);
667 /* Parent process. */
670 /* The first wait() should report the stop from SIGSTOP. */
671 wpid = waitpid(children[0], &status, 0);
672 ATF_REQUIRE(wpid == children[0]);
673 ATF_REQUIRE(WIFSTOPPED(status));
674 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
676 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
678 /* Continue the child ignoring the SIGSTOP. */
679 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
681 children[1] = handle_fork_events(children[0], NULL);
682 ATF_REQUIRE(children[1] > 0);
684 ATF_REQUIRE(ptrace(PT_DETACH, children[0], (caddr_t)1, 0) != -1);
685 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
688 * The child can't exit until the grandchild reports status, so the
689 * grandchild should report its exit first to the debugger.
691 * Even though the child process is detached, it is still a
692 * child of the debugger, so it will still report it's exit
693 * after the grandchild.
695 wpid = wait(&status);
696 ATF_REQUIRE(wpid == children[1]);
697 ATF_REQUIRE(WIFEXITED(status));
698 ATF_REQUIRE(WEXITSTATUS(status) == 2);
700 wpid = wait(&status);
701 ATF_REQUIRE(wpid == children[0]);
702 ATF_REQUIRE(WIFEXITED(status));
703 ATF_REQUIRE(WEXITSTATUS(status) == 1);
705 wpid = wait(&status);
706 ATF_REQUIRE(wpid == -1);
707 ATF_REQUIRE(errno == ECHILD);
711 attach_fork_parent(int cpipe[2])
717 /* Double-fork to disassociate from the debugger. */
718 CHILD_REQUIRE((fpid = fork()) != -1);
722 /* Send the pid of the disassociated child to the debugger. */
724 CHILD_REQUIRE(write(cpipe[1], &fpid, sizeof(fpid)) == sizeof(fpid));
726 /* Wait for the debugger to attach. */
727 CHILD_REQUIRE(read(cpipe[1], &fpid, sizeof(fpid)) == 0);
731 * Verify that a new child process is stopped after a followed fork and
732 * that the traced parent sees the exit of the child after the debugger
733 * when both processes remain attached to the debugger. In this test
734 * the parent that forks is not a direct child of the debugger.
736 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_both_attached_unrelated_debugger);
737 ATF_TC_BODY(ptrace__follow_fork_both_attached_unrelated_debugger, tc)
739 pid_t children[2], fpid, wpid;
740 int cpipe[2], status;
742 ATF_REQUIRE(pipe(cpipe) == 0);
743 ATF_REQUIRE((fpid = fork()) != -1);
745 attach_fork_parent(cpipe);
746 follow_fork_parent(false);
749 /* Parent process. */
752 /* Wait for the direct child to exit. */
753 wpid = waitpid(fpid, &status, 0);
754 ATF_REQUIRE(wpid == fpid);
755 ATF_REQUIRE(WIFEXITED(status));
756 ATF_REQUIRE(WEXITSTATUS(status) == 3);
758 /* Read the pid of the fork parent. */
759 ATF_REQUIRE(read(cpipe[0], &children[0], sizeof(children[0])) ==
760 sizeof(children[0]));
762 /* Attach to the fork parent. */
763 attach_child(children[0]);
765 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
767 /* Continue the fork parent ignoring the SIGSTOP. */
768 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
770 /* Signal the fork parent to continue. */
773 children[1] = handle_fork_events(children[0], NULL);
774 ATF_REQUIRE(children[1] > 0);
776 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
777 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
780 * The fork parent can't exit until the child reports status,
781 * so the child should report its exit first to the debugger.
783 wpid = wait(&status);
784 ATF_REQUIRE(wpid == children[1]);
785 ATF_REQUIRE(WIFEXITED(status));
786 ATF_REQUIRE(WEXITSTATUS(status) == 2);
788 wpid = wait(&status);
789 ATF_REQUIRE(wpid == children[0]);
790 ATF_REQUIRE(WIFEXITED(status));
791 ATF_REQUIRE(WEXITSTATUS(status) == 1);
793 wpid = wait(&status);
794 ATF_REQUIRE(wpid == -1);
795 ATF_REQUIRE(errno == ECHILD);
799 * Verify that a new child process is stopped after a followed fork
800 * and that the traced parent sees the exit of the child when the new
801 * child process is detached after it reports its fork. In this test
802 * the parent that forks is not a direct child of the debugger.
804 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_child_detached_unrelated_debugger);
805 ATF_TC_BODY(ptrace__follow_fork_child_detached_unrelated_debugger, tc)
807 pid_t children[2], fpid, wpid;
808 int cpipe[2], status;
810 ATF_REQUIRE(pipe(cpipe) == 0);
811 ATF_REQUIRE((fpid = fork()) != -1);
813 attach_fork_parent(cpipe);
814 follow_fork_parent(false);
817 /* Parent process. */
820 /* Wait for the direct child to exit. */
821 wpid = waitpid(fpid, &status, 0);
822 ATF_REQUIRE(wpid == fpid);
823 ATF_REQUIRE(WIFEXITED(status));
824 ATF_REQUIRE(WEXITSTATUS(status) == 3);
826 /* Read the pid of the fork parent. */
827 ATF_REQUIRE(read(cpipe[0], &children[0], sizeof(children[0])) ==
828 sizeof(children[0]));
830 /* Attach to the fork parent. */
831 attach_child(children[0]);
833 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
835 /* Continue the fork parent ignoring the SIGSTOP. */
836 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
838 /* Signal the fork parent to continue. */
841 children[1] = handle_fork_events(children[0], NULL);
842 ATF_REQUIRE(children[1] > 0);
844 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
845 ATF_REQUIRE(ptrace(PT_DETACH, children[1], (caddr_t)1, 0) != -1);
848 * Should not see any status from the child now, only the fork
851 wpid = wait(&status);
852 ATF_REQUIRE(wpid == children[0]);
853 ATF_REQUIRE(WIFEXITED(status));
854 ATF_REQUIRE(WEXITSTATUS(status) == 1);
856 wpid = wait(&status);
857 ATF_REQUIRE(wpid == -1);
858 ATF_REQUIRE(errno == ECHILD);
862 * Verify that a new child process is stopped after a followed fork
863 * and that the traced parent sees the exit of the child when the
864 * traced parent is detached after the fork. In this test the parent
865 * that forks is not a direct child of the debugger.
867 ATF_TC_WITHOUT_HEAD(ptrace__follow_fork_parent_detached_unrelated_debugger);
868 ATF_TC_BODY(ptrace__follow_fork_parent_detached_unrelated_debugger, tc)
870 pid_t children[2], fpid, wpid;
871 int cpipe[2], status;
873 ATF_REQUIRE(pipe(cpipe) == 0);
874 ATF_REQUIRE((fpid = fork()) != -1);
876 attach_fork_parent(cpipe);
877 follow_fork_parent(false);
880 /* Parent process. */
883 /* Wait for the direct child to exit. */
884 wpid = waitpid(fpid, &status, 0);
885 ATF_REQUIRE(wpid == fpid);
886 ATF_REQUIRE(WIFEXITED(status));
887 ATF_REQUIRE(WEXITSTATUS(status) == 3);
889 /* Read the pid of the fork parent. */
890 ATF_REQUIRE(read(cpipe[0], &children[0], sizeof(children[0])) ==
891 sizeof(children[0]));
893 /* Attach to the fork parent. */
894 attach_child(children[0]);
896 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
898 /* Continue the fork parent ignoring the SIGSTOP. */
899 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
901 /* Signal the fork parent to continue. */
904 children[1] = handle_fork_events(children[0], NULL);
905 ATF_REQUIRE(children[1] > 0);
907 ATF_REQUIRE(ptrace(PT_DETACH, children[0], (caddr_t)1, 0) != -1);
908 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
911 * Should not see any status from the fork parent now, only
914 wpid = wait(&status);
915 ATF_REQUIRE(wpid == children[1]);
916 ATF_REQUIRE(WIFEXITED(status));
917 ATF_REQUIRE(WEXITSTATUS(status) == 2);
919 wpid = wait(&status);
920 ATF_REQUIRE(wpid == -1);
921 ATF_REQUIRE(errno == ECHILD);
925 * Verify that a child process does not see an unrelated debugger as its
926 * parent but sees its original parent process.
928 ATF_TC_WITHOUT_HEAD(ptrace__getppid);
929 ATF_TC_BODY(ptrace__getppid, tc)
931 pid_t child, debugger, ppid, wpid;
932 int cpipe[2], dpipe[2], status;
935 ATF_REQUIRE(pipe(cpipe) == 0);
936 ATF_REQUIRE((child = fork()) != -1);
942 /* Wait for parent to be ready. */
943 CHILD_REQUIRE(read(cpipe[1], &c, sizeof(c)) == sizeof(c));
945 /* Report the parent PID to the parent. */
947 CHILD_REQUIRE(write(cpipe[1], &ppid, sizeof(ppid)) ==
954 ATF_REQUIRE(pipe(dpipe) == 0);
955 ATF_REQUIRE((debugger = fork()) != -1);
958 /* Debugger process. */
961 CHILD_REQUIRE(ptrace(PT_ATTACH, child, NULL, 0) != -1);
963 wpid = waitpid(child, &status, 0);
964 CHILD_REQUIRE(wpid == child);
965 CHILD_REQUIRE(WIFSTOPPED(status));
966 CHILD_REQUIRE(WSTOPSIG(status) == SIGSTOP);
968 CHILD_REQUIRE(ptrace(PT_CONTINUE, child, (caddr_t)1, 0) != -1);
970 /* Signal parent that debugger is attached. */
971 CHILD_REQUIRE(write(dpipe[1], &c, sizeof(c)) == sizeof(c));
973 /* Wait for traced child to exit. */
974 wpid = waitpid(child, &status, 0);
975 CHILD_REQUIRE(wpid == child);
976 CHILD_REQUIRE(WIFEXITED(status));
977 CHILD_REQUIRE(WEXITSTATUS(status) == 1);
983 /* Parent process. */
985 /* Wait for the debugger to attach to the child. */
986 ATF_REQUIRE(read(dpipe[0], &c, sizeof(c)) == sizeof(c));
988 /* Release the child. */
989 ATF_REQUIRE(write(cpipe[0], &c, sizeof(c)) == sizeof(c));
991 /* Read the parent PID from the child. */
992 ATF_REQUIRE(read(cpipe[0], &ppid, sizeof(ppid)) == sizeof(ppid));
995 ATF_REQUIRE(ppid == getpid());
997 /* Wait for the debugger. */
998 wpid = waitpid(debugger, &status, 0);
999 ATF_REQUIRE(wpid == debugger);
1000 ATF_REQUIRE(WIFEXITED(status));
1001 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1003 /* The child process should now be ready. */
1004 wpid = waitpid(child, &status, WNOHANG);
1005 ATF_REQUIRE(wpid == child);
1006 ATF_REQUIRE(WIFEXITED(status));
1007 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1011 * Verify that pl_syscall_code in struct ptrace_lwpinfo for a new
1012 * child process created via fork() reports the correct value.
1014 ATF_TC_WITHOUT_HEAD(ptrace__new_child_pl_syscall_code_fork);
1015 ATF_TC_BODY(ptrace__new_child_pl_syscall_code_fork, tc)
1017 struct ptrace_lwpinfo pl[2];
1018 pid_t children[2], fpid, wpid;
1021 ATF_REQUIRE((fpid = fork()) != -1);
1024 follow_fork_parent(false);
1027 /* Parent process. */
1030 /* The first wait() should report the stop from SIGSTOP. */
1031 wpid = waitpid(children[0], &status, 0);
1032 ATF_REQUIRE(wpid == children[0]);
1033 ATF_REQUIRE(WIFSTOPPED(status));
1034 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1036 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
1038 /* Continue the child ignoring the SIGSTOP. */
1039 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1041 /* Wait for both halves of the fork event to get reported. */
1042 children[1] = handle_fork_events(children[0], pl);
1043 ATF_REQUIRE(children[1] > 0);
1045 ATF_REQUIRE((pl[0].pl_flags & PL_FLAG_SCX) != 0);
1046 ATF_REQUIRE((pl[1].pl_flags & PL_FLAG_SCX) != 0);
1047 ATF_REQUIRE(pl[0].pl_syscall_code == SYS_fork);
1048 ATF_REQUIRE(pl[0].pl_syscall_code == pl[1].pl_syscall_code);
1049 ATF_REQUIRE(pl[0].pl_syscall_narg == pl[1].pl_syscall_narg);
1051 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1052 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
1055 * The child can't exit until the grandchild reports status, so the
1056 * grandchild should report its exit first to the debugger.
1058 wpid = wait(&status);
1059 ATF_REQUIRE(wpid == children[1]);
1060 ATF_REQUIRE(WIFEXITED(status));
1061 ATF_REQUIRE(WEXITSTATUS(status) == 2);
1063 wpid = wait(&status);
1064 ATF_REQUIRE(wpid == children[0]);
1065 ATF_REQUIRE(WIFEXITED(status));
1066 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1068 wpid = wait(&status);
1069 ATF_REQUIRE(wpid == -1);
1070 ATF_REQUIRE(errno == ECHILD);
1074 * Verify that pl_syscall_code in struct ptrace_lwpinfo for a new
1075 * child process created via vfork() reports the correct value.
1077 ATF_TC_WITHOUT_HEAD(ptrace__new_child_pl_syscall_code_vfork);
1078 ATF_TC_BODY(ptrace__new_child_pl_syscall_code_vfork, tc)
1080 struct ptrace_lwpinfo pl[2];
1081 pid_t children[2], fpid, wpid;
1084 ATF_REQUIRE((fpid = fork()) != -1);
1087 follow_fork_parent(true);
1090 /* Parent process. */
1093 /* The first wait() should report the stop from SIGSTOP. */
1094 wpid = waitpid(children[0], &status, 0);
1095 ATF_REQUIRE(wpid == children[0]);
1096 ATF_REQUIRE(WIFSTOPPED(status));
1097 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1099 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, children[0], NULL, 1) != -1);
1101 /* Continue the child ignoring the SIGSTOP. */
1102 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1104 /* Wait for both halves of the fork event to get reported. */
1105 children[1] = handle_fork_events(children[0], pl);
1106 ATF_REQUIRE(children[1] > 0);
1108 ATF_REQUIRE((pl[0].pl_flags & PL_FLAG_SCX) != 0);
1109 ATF_REQUIRE((pl[1].pl_flags & PL_FLAG_SCX) != 0);
1110 ATF_REQUIRE(pl[0].pl_syscall_code == SYS_vfork);
1111 ATF_REQUIRE(pl[0].pl_syscall_code == pl[1].pl_syscall_code);
1112 ATF_REQUIRE(pl[0].pl_syscall_narg == pl[1].pl_syscall_narg);
1114 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1115 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
1118 * The child can't exit until the grandchild reports status, so the
1119 * grandchild should report its exit first to the debugger.
1121 wpid = wait(&status);
1122 ATF_REQUIRE(wpid == children[1]);
1123 ATF_REQUIRE(WIFEXITED(status));
1124 ATF_REQUIRE(WEXITSTATUS(status) == 2);
1126 wpid = wait(&status);
1127 ATF_REQUIRE(wpid == children[0]);
1128 ATF_REQUIRE(WIFEXITED(status));
1129 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1131 wpid = wait(&status);
1132 ATF_REQUIRE(wpid == -1);
1133 ATF_REQUIRE(errno == ECHILD);
1137 simple_thread(void *arg __unused)
1144 simple_thread_main(void)
1148 CHILD_REQUIRE(pthread_create(&thread, NULL, simple_thread, NULL) == 0);
1149 CHILD_REQUIRE(pthread_join(thread, NULL) == 0);
1154 * Verify that pl_syscall_code in struct ptrace_lwpinfo for a new
1155 * thread reports the correct value.
1157 ATF_TC_WITHOUT_HEAD(ptrace__new_child_pl_syscall_code_thread);
1158 ATF_TC_BODY(ptrace__new_child_pl_syscall_code_thread, tc)
1160 struct ptrace_lwpinfo pl;
1165 ATF_REQUIRE((fpid = fork()) != -1);
1168 simple_thread_main();
1171 /* The first wait() should report the stop from SIGSTOP. */
1172 wpid = waitpid(fpid, &status, 0);
1173 ATF_REQUIRE(wpid == fpid);
1174 ATF_REQUIRE(WIFSTOPPED(status));
1175 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1177 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
1179 mainlwp = pl.pl_lwpid;
1182 * Continue the child ignoring the SIGSTOP and tracing all
1183 * system call exits.
1185 ATF_REQUIRE(ptrace(PT_TO_SCX, fpid, (caddr_t)1, 0) != -1);
1188 * Wait for the new thread to arrive. pthread_create() might
1189 * invoke any number of system calls. For now we just wait
1190 * for the new thread to arrive and make sure it reports a
1191 * valid system call code. If ptrace grows thread event
1192 * reporting then this test can be made more precise.
1195 wpid = waitpid(fpid, &status, 0);
1196 ATF_REQUIRE(wpid == fpid);
1197 ATF_REQUIRE(WIFSTOPPED(status));
1198 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1200 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
1202 ATF_REQUIRE((pl.pl_flags & PL_FLAG_SCX) != 0);
1203 ATF_REQUIRE(pl.pl_syscall_code != 0);
1204 if (pl.pl_lwpid != mainlwp)
1205 /* New thread seen. */
1208 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1211 /* Wait for the child to exit. */
1212 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1214 wpid = waitpid(fpid, &status, 0);
1215 ATF_REQUIRE(wpid == fpid);
1216 if (WIFEXITED(status))
1219 ATF_REQUIRE(WIFSTOPPED(status));
1220 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1221 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1224 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1226 wpid = wait(&status);
1227 ATF_REQUIRE(wpid == -1);
1228 ATF_REQUIRE(errno == ECHILD);
1232 * Verify that the expected LWP events are reported for a child thread.
1234 ATF_TC_WITHOUT_HEAD(ptrace__lwp_events);
1235 ATF_TC_BODY(ptrace__lwp_events, tc)
1237 struct ptrace_lwpinfo pl;
1242 ATF_REQUIRE((fpid = fork()) != -1);
1245 simple_thread_main();
1248 /* The first wait() should report the stop from SIGSTOP. */
1249 wpid = waitpid(fpid, &status, 0);
1250 ATF_REQUIRE(wpid == fpid);
1251 ATF_REQUIRE(WIFSTOPPED(status));
1252 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1254 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
1256 lwps[0] = pl.pl_lwpid;
1258 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, wpid, NULL, 1) == 0);
1260 /* Continue the child ignoring the SIGSTOP. */
1261 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1263 /* The first event should be for the child thread's birth. */
1264 wpid = waitpid(fpid, &status, 0);
1265 ATF_REQUIRE(wpid == fpid);
1266 ATF_REQUIRE(WIFSTOPPED(status));
1267 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1269 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1270 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_BORN | PL_FLAG_SCX)) ==
1271 (PL_FLAG_BORN | PL_FLAG_SCX));
1272 ATF_REQUIRE(pl.pl_lwpid != lwps[0]);
1273 lwps[1] = pl.pl_lwpid;
1275 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1277 /* The next event should be for the child thread's death. */
1278 wpid = waitpid(fpid, &status, 0);
1279 ATF_REQUIRE(wpid == fpid);
1280 ATF_REQUIRE(WIFSTOPPED(status));
1281 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1283 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1284 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_EXITED | PL_FLAG_SCE)) ==
1285 (PL_FLAG_EXITED | PL_FLAG_SCE));
1286 ATF_REQUIRE(pl.pl_lwpid == lwps[1]);
1288 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1290 /* The last event should be for the child process's exit. */
1291 wpid = waitpid(fpid, &status, 0);
1292 ATF_REQUIRE(WIFEXITED(status));
1293 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1295 wpid = wait(&status);
1296 ATF_REQUIRE(wpid == -1);
1297 ATF_REQUIRE(errno == ECHILD);
1301 exec_thread(void *arg __unused)
1304 execl("/usr/bin/true", "true", NULL);
1309 exec_thread_main(void)
1313 CHILD_REQUIRE(pthread_create(&thread, NULL, exec_thread, NULL) == 0);
1320 * Verify that the expected LWP events are reported for a multithreaded
1321 * process that calls execve(2).
1323 ATF_TC_WITHOUT_HEAD(ptrace__lwp_events_exec);
1324 ATF_TC_BODY(ptrace__lwp_events_exec, tc)
1326 struct ptrace_lwpinfo pl;
1331 ATF_REQUIRE((fpid = fork()) != -1);
1337 /* The first wait() should report the stop from SIGSTOP. */
1338 wpid = waitpid(fpid, &status, 0);
1339 ATF_REQUIRE(wpid == fpid);
1340 ATF_REQUIRE(WIFSTOPPED(status));
1341 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1343 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
1345 lwps[0] = pl.pl_lwpid;
1347 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, wpid, NULL, 1) == 0);
1349 /* Continue the child ignoring the SIGSTOP. */
1350 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1352 /* The first event should be for the child thread's birth. */
1353 wpid = waitpid(fpid, &status, 0);
1354 ATF_REQUIRE(wpid == fpid);
1355 ATF_REQUIRE(WIFSTOPPED(status));
1356 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1358 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1359 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_BORN | PL_FLAG_SCX)) ==
1360 (PL_FLAG_BORN | PL_FLAG_SCX));
1361 ATF_REQUIRE(pl.pl_lwpid != lwps[0]);
1362 lwps[1] = pl.pl_lwpid;
1364 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1367 * The next event should be for the main thread's death due to
1368 * single threading from execve().
1370 wpid = waitpid(fpid, &status, 0);
1371 ATF_REQUIRE(wpid == fpid);
1372 ATF_REQUIRE(WIFSTOPPED(status));
1373 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1375 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1376 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_EXITED | PL_FLAG_SCE)) ==
1378 ATF_REQUIRE(pl.pl_lwpid == lwps[0]);
1380 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1382 /* The next event should be for the child process's exec. */
1383 wpid = waitpid(fpid, &status, 0);
1384 ATF_REQUIRE(WIFSTOPPED(status));
1385 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1387 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1388 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_EXEC | PL_FLAG_SCX)) ==
1389 (PL_FLAG_EXEC | PL_FLAG_SCX));
1390 ATF_REQUIRE(pl.pl_lwpid == lwps[1]);
1392 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1394 /* The last event should be for the child process's exit. */
1395 wpid = waitpid(fpid, &status, 0);
1396 ATF_REQUIRE(WIFEXITED(status));
1397 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1399 wpid = wait(&status);
1400 ATF_REQUIRE(wpid == -1);
1401 ATF_REQUIRE(errno == ECHILD);
1405 handler(int sig __unused)
1413 signal(SIGINFO, handler);
1419 * Verify that the expected ptrace event is reported for a signal.
1421 ATF_TC_WITHOUT_HEAD(ptrace__siginfo);
1422 ATF_TC_BODY(ptrace__siginfo, tc)
1424 struct ptrace_lwpinfo pl;
1428 ATF_REQUIRE((fpid = fork()) != -1);
1434 /* The first wait() should report the stop from SIGSTOP. */
1435 wpid = waitpid(fpid, &status, 0);
1436 ATF_REQUIRE(wpid == fpid);
1437 ATF_REQUIRE(WIFSTOPPED(status));
1438 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1440 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1442 /* The next event should be for the SIGINFO. */
1443 wpid = waitpid(fpid, &status, 0);
1444 ATF_REQUIRE(WIFSTOPPED(status));
1445 ATF_REQUIRE(WSTOPSIG(status) == SIGINFO);
1447 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1448 ATF_REQUIRE(pl.pl_event == PL_EVENT_SIGNAL);
1449 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
1450 ATF_REQUIRE(pl.pl_siginfo.si_code == SI_LWP);
1451 ATF_REQUIRE(pl.pl_siginfo.si_pid == wpid);
1453 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1455 /* The last event should be for the child process's exit. */
1456 wpid = waitpid(fpid, &status, 0);
1457 ATF_REQUIRE(WIFEXITED(status));
1458 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1460 wpid = wait(&status);
1461 ATF_REQUIRE(wpid == -1);
1462 ATF_REQUIRE(errno == ECHILD);
1466 * Verify that the expected ptrace events are reported for PTRACE_EXEC.
1468 ATF_TC_WITHOUT_HEAD(ptrace__ptrace_exec_disable);
1469 ATF_TC_BODY(ptrace__ptrace_exec_disable, tc)
1474 ATF_REQUIRE((fpid = fork()) != -1);
1480 /* The first wait() should report the stop from SIGSTOP. */
1481 wpid = waitpid(fpid, &status, 0);
1482 ATF_REQUIRE(wpid == fpid);
1483 ATF_REQUIRE(WIFSTOPPED(status));
1484 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1487 ATF_REQUIRE(ptrace(PT_SET_EVENT_MASK, fpid, (caddr_t)&events,
1488 sizeof(events)) == 0);
1490 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1492 /* Should get one event at exit. */
1493 wpid = waitpid(fpid, &status, 0);
1494 ATF_REQUIRE(WIFEXITED(status));
1495 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1497 wpid = wait(&status);
1498 ATF_REQUIRE(wpid == -1);
1499 ATF_REQUIRE(errno == ECHILD);
1502 ATF_TC_WITHOUT_HEAD(ptrace__ptrace_exec_enable);
1503 ATF_TC_BODY(ptrace__ptrace_exec_enable, tc)
1505 struct ptrace_lwpinfo pl;
1509 ATF_REQUIRE((fpid = fork()) != -1);
1515 /* The first wait() should report the stop from SIGSTOP. */
1516 wpid = waitpid(fpid, &status, 0);
1517 ATF_REQUIRE(wpid == fpid);
1518 ATF_REQUIRE(WIFSTOPPED(status));
1519 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1521 events = PTRACE_EXEC;
1522 ATF_REQUIRE(ptrace(PT_SET_EVENT_MASK, fpid, (caddr_t)&events,
1523 sizeof(events)) == 0);
1525 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1527 /* The next event should be for the child process's exec. */
1528 wpid = waitpid(fpid, &status, 0);
1529 ATF_REQUIRE(WIFSTOPPED(status));
1530 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1532 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1533 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_EXEC | PL_FLAG_SCX)) ==
1534 (PL_FLAG_EXEC | PL_FLAG_SCX));
1536 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1538 /* The last event should be for the child process's exit. */
1539 wpid = waitpid(fpid, &status, 0);
1540 ATF_REQUIRE(WIFEXITED(status));
1541 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1543 wpid = wait(&status);
1544 ATF_REQUIRE(wpid == -1);
1545 ATF_REQUIRE(errno == ECHILD);
1548 ATF_TC_WITHOUT_HEAD(ptrace__event_mask);
1549 ATF_TC_BODY(ptrace__event_mask, tc)
1554 ATF_REQUIRE((fpid = fork()) != -1);
1560 /* The first wait() should report the stop from SIGSTOP. */
1561 wpid = waitpid(fpid, &status, 0);
1562 ATF_REQUIRE(wpid == fpid);
1563 ATF_REQUIRE(WIFSTOPPED(status));
1564 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1566 /* PT_FOLLOW_FORK should toggle the state of PTRACE_FORK. */
1567 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, fpid, NULL, 1) != -1);
1568 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, fpid, (caddr_t)&events,
1569 sizeof(events)) == 0);
1570 ATF_REQUIRE(events & PTRACE_FORK);
1571 ATF_REQUIRE(ptrace(PT_FOLLOW_FORK, fpid, NULL, 0) != -1);
1572 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, fpid, (caddr_t)&events,
1573 sizeof(events)) == 0);
1574 ATF_REQUIRE(!(events & PTRACE_FORK));
1576 /* PT_LWP_EVENTS should toggle the state of PTRACE_LWP. */
1577 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, fpid, NULL, 1) != -1);
1578 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, fpid, (caddr_t)&events,
1579 sizeof(events)) == 0);
1580 ATF_REQUIRE(events & PTRACE_LWP);
1581 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, fpid, NULL, 0) != -1);
1582 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, fpid, (caddr_t)&events,
1583 sizeof(events)) == 0);
1584 ATF_REQUIRE(!(events & PTRACE_LWP));
1586 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1588 /* Should get one event at exit. */
1589 wpid = waitpid(fpid, &status, 0);
1590 ATF_REQUIRE(WIFEXITED(status));
1591 ATF_REQUIRE(WEXITSTATUS(status) == 0);
1593 wpid = wait(&status);
1594 ATF_REQUIRE(wpid == -1);
1595 ATF_REQUIRE(errno == ECHILD);
1599 * Verify that the expected ptrace events are reported for PTRACE_VFORK.
1601 ATF_TC_WITHOUT_HEAD(ptrace__ptrace_vfork);
1602 ATF_TC_BODY(ptrace__ptrace_vfork, tc)
1604 struct ptrace_lwpinfo pl;
1608 ATF_REQUIRE((fpid = fork()) != -1);
1611 follow_fork_parent(true);
1614 /* The first wait() should report the stop from SIGSTOP. */
1615 wpid = waitpid(fpid, &status, 0);
1616 ATF_REQUIRE(wpid == fpid);
1617 ATF_REQUIRE(WIFSTOPPED(status));
1618 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1620 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, fpid, (caddr_t)&events,
1621 sizeof(events)) == 0);
1622 events |= PTRACE_VFORK;
1623 ATF_REQUIRE(ptrace(PT_SET_EVENT_MASK, fpid, (caddr_t)&events,
1624 sizeof(events)) == 0);
1626 /* Continue the child ignoring the SIGSTOP. */
1627 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) != -1);
1629 /* The next event should report the end of the vfork. */
1630 wpid = wait(&status);
1631 ATF_REQUIRE(wpid == fpid);
1632 ATF_REQUIRE(WIFSTOPPED(status));
1633 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1634 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1635 ATF_REQUIRE((pl.pl_flags & PL_FLAG_VFORK_DONE) != 0);
1637 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) != -1);
1639 wpid = wait(&status);
1640 ATF_REQUIRE(wpid == fpid);
1641 ATF_REQUIRE(WIFEXITED(status));
1642 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1644 wpid = wait(&status);
1645 ATF_REQUIRE(wpid == -1);
1646 ATF_REQUIRE(errno == ECHILD);
1649 ATF_TC_WITHOUT_HEAD(ptrace__ptrace_vfork_follow);
1650 ATF_TC_BODY(ptrace__ptrace_vfork_follow, tc)
1652 struct ptrace_lwpinfo pl[2];
1653 pid_t children[2], fpid, wpid;
1656 ATF_REQUIRE((fpid = fork()) != -1);
1659 follow_fork_parent(true);
1662 /* Parent process. */
1665 /* The first wait() should report the stop from SIGSTOP. */
1666 wpid = waitpid(children[0], &status, 0);
1667 ATF_REQUIRE(wpid == children[0]);
1668 ATF_REQUIRE(WIFSTOPPED(status));
1669 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1671 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, children[0], (caddr_t)&events,
1672 sizeof(events)) == 0);
1673 events |= PTRACE_FORK | PTRACE_VFORK;
1674 ATF_REQUIRE(ptrace(PT_SET_EVENT_MASK, children[0], (caddr_t)&events,
1675 sizeof(events)) == 0);
1677 /* Continue the child ignoring the SIGSTOP. */
1678 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1680 /* Wait for both halves of the fork event to get reported. */
1681 children[1] = handle_fork_events(children[0], pl);
1682 ATF_REQUIRE(children[1] > 0);
1684 ATF_REQUIRE((pl[0].pl_flags & PL_FLAG_VFORKED) != 0);
1686 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1687 ATF_REQUIRE(ptrace(PT_CONTINUE, children[1], (caddr_t)1, 0) != -1);
1690 * The child can't exit until the grandchild reports status, so the
1691 * grandchild should report its exit first to the debugger.
1693 wpid = waitpid(children[1], &status, 0);
1694 ATF_REQUIRE(wpid == children[1]);
1695 ATF_REQUIRE(WIFEXITED(status));
1696 ATF_REQUIRE(WEXITSTATUS(status) == 2);
1699 * The child should report it's vfork() completion before it
1702 wpid = wait(&status);
1703 ATF_REQUIRE(wpid == children[0]);
1704 ATF_REQUIRE(WIFSTOPPED(status));
1705 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1706 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl[0], sizeof(pl[0])) !=
1708 ATF_REQUIRE((pl[0].pl_flags & PL_FLAG_VFORK_DONE) != 0);
1710 ATF_REQUIRE(ptrace(PT_CONTINUE, children[0], (caddr_t)1, 0) != -1);
1712 wpid = wait(&status);
1713 ATF_REQUIRE(wpid == children[0]);
1714 ATF_REQUIRE(WIFEXITED(status));
1715 ATF_REQUIRE(WEXITSTATUS(status) == 1);
1717 wpid = wait(&status);
1718 ATF_REQUIRE(wpid == -1);
1719 ATF_REQUIRE(errno == ECHILD);
1722 #ifdef HAVE_BREAKPOINT
1724 * Verify that no more events are reported after PT_KILL except for the
1725 * process exit when stopped due to a breakpoint trap.
1727 ATF_TC_WITHOUT_HEAD(ptrace__PT_KILL_breakpoint);
1728 ATF_TC_BODY(ptrace__PT_KILL_breakpoint, tc)
1733 ATF_REQUIRE((fpid = fork()) != -1);
1740 /* The first wait() should report the stop from SIGSTOP. */
1741 wpid = waitpid(fpid, &status, 0);
1742 ATF_REQUIRE(wpid == fpid);
1743 ATF_REQUIRE(WIFSTOPPED(status));
1744 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1746 /* Continue the child ignoring the SIGSTOP. */
1747 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1749 /* The second wait() should report hitting the breakpoint. */
1750 wpid = waitpid(fpid, &status, 0);
1751 ATF_REQUIRE(wpid == fpid);
1752 ATF_REQUIRE(WIFSTOPPED(status));
1753 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1755 /* Kill the child process. */
1756 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
1758 /* The last wait() should report the SIGKILL. */
1759 wpid = waitpid(fpid, &status, 0);
1760 ATF_REQUIRE(wpid == fpid);
1761 ATF_REQUIRE(WIFSIGNALED(status));
1762 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
1764 wpid = wait(&status);
1765 ATF_REQUIRE(wpid == -1);
1766 ATF_REQUIRE(errno == ECHILD);
1768 #endif /* HAVE_BREAKPOINT */
1771 * Verify that no more events are reported after PT_KILL except for the
1772 * process exit when stopped inside of a system call.
1774 ATF_TC_WITHOUT_HEAD(ptrace__PT_KILL_system_call);
1775 ATF_TC_BODY(ptrace__PT_KILL_system_call, tc)
1777 struct ptrace_lwpinfo pl;
1781 ATF_REQUIRE((fpid = fork()) != -1);
1788 /* The first wait() should report the stop from SIGSTOP. */
1789 wpid = waitpid(fpid, &status, 0);
1790 ATF_REQUIRE(wpid == fpid);
1791 ATF_REQUIRE(WIFSTOPPED(status));
1792 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1794 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
1795 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
1797 /* The second wait() should report a system call entry for getpid(). */
1798 wpid = waitpid(fpid, &status, 0);
1799 ATF_REQUIRE(wpid == fpid);
1800 ATF_REQUIRE(WIFSTOPPED(status));
1801 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1803 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1804 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
1806 /* Kill the child process. */
1807 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
1809 /* The last wait() should report the SIGKILL. */
1810 wpid = waitpid(fpid, &status, 0);
1811 ATF_REQUIRE(wpid == fpid);
1812 ATF_REQUIRE(WIFSIGNALED(status));
1813 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
1815 wpid = wait(&status);
1816 ATF_REQUIRE(wpid == -1);
1817 ATF_REQUIRE(errno == ECHILD);
1821 * Verify that no more events are reported after PT_KILL except for the
1822 * process exit when killing a multithreaded process.
1824 ATF_TC_WITHOUT_HEAD(ptrace__PT_KILL_threads);
1825 ATF_TC_BODY(ptrace__PT_KILL_threads, tc)
1827 struct ptrace_lwpinfo pl;
1832 ATF_REQUIRE((fpid = fork()) != -1);
1835 simple_thread_main();
1838 /* The first wait() should report the stop from SIGSTOP. */
1839 wpid = waitpid(fpid, &status, 0);
1840 ATF_REQUIRE(wpid == fpid);
1841 ATF_REQUIRE(WIFSTOPPED(status));
1842 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1844 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
1846 main_lwp = pl.pl_lwpid;
1848 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, wpid, NULL, 1) == 0);
1850 /* Continue the child ignoring the SIGSTOP. */
1851 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1853 /* The first event should be for the child thread's birth. */
1854 wpid = waitpid(fpid, &status, 0);
1855 ATF_REQUIRE(wpid == fpid);
1856 ATF_REQUIRE(WIFSTOPPED(status));
1857 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
1859 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
1860 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_BORN | PL_FLAG_SCX)) ==
1861 (PL_FLAG_BORN | PL_FLAG_SCX));
1862 ATF_REQUIRE(pl.pl_lwpid != main_lwp);
1864 /* Kill the child process. */
1865 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
1867 /* The last wait() should report the SIGKILL. */
1868 wpid = waitpid(fpid, &status, 0);
1869 ATF_REQUIRE(wpid == fpid);
1870 ATF_REQUIRE(WIFSIGNALED(status));
1871 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
1873 wpid = wait(&status);
1874 ATF_REQUIRE(wpid == -1);
1875 ATF_REQUIRE(errno == ECHILD);
1879 mask_usr1_thread(void *arg)
1881 pthread_barrier_t *pbarrier;
1884 pbarrier = (pthread_barrier_t*)arg;
1886 sigemptyset(&sigmask);
1887 sigaddset(&sigmask, SIGUSR1);
1888 CHILD_REQUIRE(pthread_sigmask(SIG_BLOCK, &sigmask, NULL) == 0);
1890 /* Sync up with other thread after sigmask updated. */
1891 pthread_barrier_wait(pbarrier);
1900 * Verify that the SIGKILL from PT_KILL takes priority over other signals
1901 * and prevents spurious stops due to those other signals.
1903 ATF_TC(ptrace__PT_KILL_competing_signal);
1904 ATF_TC_HEAD(ptrace__PT_KILL_competing_signal, tc)
1907 atf_tc_set_md_var(tc, "require.user", "root");
1909 ATF_TC_BODY(ptrace__PT_KILL_competing_signal, tc)
1915 pthread_barrier_t barrier;
1916 struct sched_param sched_param;
1918 ATF_REQUIRE((fpid = fork()) != -1);
1920 /* Bind to one CPU so only one thread at a time will run. */
1922 CPU_SET(0, &setmask);
1924 CHILD_REQUIRE(cpuset(&setid) == 0);
1925 CHILD_REQUIRE(cpuset_setaffinity(CPU_LEVEL_CPUSET,
1926 CPU_WHICH_CPUSET, setid, sizeof(setmask), &setmask) == 0);
1928 CHILD_REQUIRE(pthread_barrier_init(&barrier, NULL, 2) == 0);
1930 CHILD_REQUIRE(pthread_create(&t, NULL, mask_usr1_thread,
1931 (void*)&barrier) == 0);
1934 * Give the main thread higher priority. The test always
1935 * assumes that, if both threads are able to run, the main
1936 * thread runs first.
1938 sched_param.sched_priority =
1939 (sched_get_priority_max(SCHED_FIFO) +
1940 sched_get_priority_min(SCHED_FIFO)) / 2;
1941 CHILD_REQUIRE(pthread_setschedparam(pthread_self(),
1942 SCHED_FIFO, &sched_param) == 0);
1943 sched_param.sched_priority -= RQ_PPQ;
1944 CHILD_REQUIRE(pthread_setschedparam(t, SCHED_FIFO,
1945 &sched_param) == 0);
1948 sigemptyset(&sigmask);
1949 sigaddset(&sigmask, SIGUSR2);
1950 CHILD_REQUIRE(pthread_sigmask(SIG_BLOCK, &sigmask, NULL) == 0);
1952 /* Sync up with other thread after sigmask updated. */
1953 pthread_barrier_wait(&barrier);
1963 /* The first wait() should report the stop from SIGSTOP. */
1964 wpid = waitpid(fpid, &status, 0);
1965 ATF_REQUIRE(wpid == fpid);
1966 ATF_REQUIRE(WIFSTOPPED(status));
1967 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
1969 /* Continue the child ignoring the SIGSTOP. */
1970 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
1972 /* Send a signal that only the second thread can handle. */
1973 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
1975 /* The second wait() should report the SIGUSR2. */
1976 wpid = waitpid(fpid, &status, 0);
1977 ATF_REQUIRE(wpid == fpid);
1978 ATF_REQUIRE(WIFSTOPPED(status));
1979 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
1981 /* Send a signal that only the first thread can handle. */
1982 ATF_REQUIRE(kill(fpid, SIGUSR1) == 0);
1984 /* Replace the SIGUSR2 with a kill. */
1985 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
1987 /* The last wait() should report the SIGKILL (not the SIGUSR signal). */
1988 wpid = waitpid(fpid, &status, 0);
1989 ATF_REQUIRE(wpid == fpid);
1990 ATF_REQUIRE(WIFSIGNALED(status));
1991 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
1993 wpid = wait(&status);
1994 ATF_REQUIRE(wpid == -1);
1995 ATF_REQUIRE(errno == ECHILD);
1999 * Verify that the SIGKILL from PT_KILL takes priority over other stop events
2000 * and prevents spurious stops caused by those events.
2002 ATF_TC(ptrace__PT_KILL_competing_stop);
2003 ATF_TC_HEAD(ptrace__PT_KILL_competing_stop, tc)
2006 atf_tc_set_md_var(tc, "require.user", "root");
2008 ATF_TC_BODY(ptrace__PT_KILL_competing_stop, tc)
2014 pthread_barrier_t barrier;
2016 struct ptrace_lwpinfo pl;
2017 struct sched_param sched_param;
2019 ATF_REQUIRE((fpid = fork()) != -1);
2023 /* Bind to one CPU so only one thread at a time will run. */
2025 CPU_SET(0, &setmask);
2027 CHILD_REQUIRE(cpuset(&setid) == 0);
2028 CHILD_REQUIRE(cpuset_setaffinity(CPU_LEVEL_CPUSET,
2029 CPU_WHICH_CPUSET, setid, sizeof(setmask), &setmask) == 0);
2031 CHILD_REQUIRE(pthread_barrier_init(&barrier, NULL, 2) == 0);
2033 CHILD_REQUIRE(pthread_create(&t, NULL, mask_usr1_thread,
2034 (void*)&barrier) == 0);
2037 * Give the main thread higher priority. The test always
2038 * assumes that, if both threads are able to run, the main
2039 * thread runs first.
2041 sched_param.sched_priority =
2042 (sched_get_priority_max(SCHED_FIFO) +
2043 sched_get_priority_min(SCHED_FIFO)) / 2;
2044 CHILD_REQUIRE(pthread_setschedparam(pthread_self(),
2045 SCHED_FIFO, &sched_param) == 0);
2046 sched_param.sched_priority -= RQ_PPQ;
2047 CHILD_REQUIRE(pthread_setschedparam(t, SCHED_FIFO,
2048 &sched_param) == 0);
2051 sigemptyset(&sigmask);
2052 sigaddset(&sigmask, SIGUSR2);
2053 CHILD_REQUIRE(pthread_sigmask(SIG_BLOCK, &sigmask, NULL) == 0);
2055 /* Sync up with other thread after sigmask updated. */
2056 pthread_barrier_wait(&barrier);
2058 /* Sync up with the test before doing the getpid(). */
2065 /* The first wait() should report the stop from SIGSTOP. */
2066 wpid = waitpid(fpid, &status, 0);
2067 ATF_REQUIRE(wpid == fpid);
2068 ATF_REQUIRE(WIFSTOPPED(status));
2069 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2071 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2072 main_lwp = pl.pl_lwpid;
2074 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
2075 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2078 * Continue until child is done with setup, which is indicated with
2079 * SIGSTOP. Ignore system calls in the meantime.
2082 wpid = waitpid(fpid, &status, 0);
2083 ATF_REQUIRE(wpid == fpid);
2084 ATF_REQUIRE(WIFSTOPPED(status));
2085 if (WSTOPSIG(status) == SIGTRAP) {
2086 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
2088 ATF_REQUIRE(pl.pl_flags & (PL_FLAG_SCE | PL_FLAG_SCX));
2090 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2093 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2096 /* Proceed, allowing main thread to hit syscall entry for getpid(). */
2097 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2099 wpid = waitpid(fpid, &status, 0);
2100 ATF_REQUIRE(wpid == fpid);
2101 ATF_REQUIRE(WIFSTOPPED(status));
2102 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2104 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
2106 ATF_REQUIRE(pl.pl_lwpid == main_lwp);
2107 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
2108 /* Prevent the main thread from hitting its syscall exit for now. */
2109 ATF_REQUIRE(ptrace(PT_SUSPEND, main_lwp, 0, 0) == 0);
2112 * Proceed, allowing second thread to hit syscall exit for
2113 * pthread_barrier_wait().
2115 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2117 wpid = waitpid(fpid, &status, 0);
2118 ATF_REQUIRE(wpid == fpid);
2119 ATF_REQUIRE(WIFSTOPPED(status));
2120 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2122 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
2124 ATF_REQUIRE(pl.pl_lwpid != main_lwp);
2125 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCX);
2127 /* Send a signal that only the second thread can handle. */
2128 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
2130 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2132 /* The next wait() should report the SIGUSR2. */
2133 wpid = waitpid(fpid, &status, 0);
2134 ATF_REQUIRE(wpid == fpid);
2135 ATF_REQUIRE(WIFSTOPPED(status));
2136 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
2138 /* Allow the main thread to try to finish its system call. */
2139 ATF_REQUIRE(ptrace(PT_RESUME, main_lwp, 0, 0) == 0);
2142 * At this point, the main thread is in the middle of a system call and
2143 * has been resumed. The second thread has taken a SIGUSR2 which will
2144 * be replaced with a SIGKILL below. The main thread will get to run
2145 * first. It should notice the kill request (even though the signal
2146 * replacement occurred in the other thread) and exit accordingly. It
2147 * should not stop for the system call exit event.
2150 /* Replace the SIGUSR2 with a kill. */
2151 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
2153 /* The last wait() should report the SIGKILL (not a syscall exit). */
2154 wpid = waitpid(fpid, &status, 0);
2155 ATF_REQUIRE(wpid == fpid);
2156 ATF_REQUIRE(WIFSIGNALED(status));
2157 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
2159 wpid = wait(&status);
2160 ATF_REQUIRE(wpid == -1);
2161 ATF_REQUIRE(errno == ECHILD);
2165 sigusr1_handler(int sig)
2168 CHILD_REQUIRE(sig == SIGUSR1);
2173 * Verify that even if the signal queue is full for a child process,
2174 * a PT_KILL will kill the process.
2176 ATF_TC_WITHOUT_HEAD(ptrace__PT_KILL_with_signal_full_sigqueue);
2177 ATF_TC_BODY(ptrace__PT_KILL_with_signal_full_sigqueue, tc)
2181 int max_pending_per_proc;
2185 ATF_REQUIRE(signal(SIGUSR1, sigusr1_handler) != SIG_ERR);
2187 ATF_REQUIRE((fpid = fork()) != -1);
2193 /* The first wait() should report the stop from SIGSTOP. */
2194 wpid = waitpid(fpid, &status, 0);
2195 ATF_REQUIRE(wpid == fpid);
2196 ATF_REQUIRE(WIFSTOPPED(status));
2197 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2199 len = sizeof(max_pending_per_proc);
2200 ATF_REQUIRE(sysctlbyname("kern.sigqueue.max_pending_per_proc",
2201 &max_pending_per_proc, &len, NULL, 0) == 0);
2203 /* Fill the signal queue. */
2204 for (i = 0; i < max_pending_per_proc; ++i)
2205 ATF_REQUIRE(kill(fpid, SIGUSR1) == 0);
2207 /* Kill the child process. */
2208 ATF_REQUIRE(ptrace(PT_KILL, fpid, 0, 0) == 0);
2210 /* The last wait() should report the SIGKILL. */
2211 wpid = waitpid(fpid, &status, 0);
2212 ATF_REQUIRE(wpid == fpid);
2213 ATF_REQUIRE(WIFSIGNALED(status));
2214 ATF_REQUIRE(WTERMSIG(status) == SIGKILL);
2216 wpid = wait(&status);
2217 ATF_REQUIRE(wpid == -1);
2218 ATF_REQUIRE(errno == ECHILD);
2222 * Verify that when stopped at a system call entry, a signal can be
2223 * requested with PT_CONTINUE which will be delivered once the system
2226 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_system_call_entry);
2227 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_system_call_entry, tc)
2229 struct ptrace_lwpinfo pl;
2233 ATF_REQUIRE(signal(SIGUSR1, sigusr1_handler) != SIG_ERR);
2235 ATF_REQUIRE((fpid = fork()) != -1);
2242 /* The first wait() should report the stop from SIGSTOP. */
2243 wpid = waitpid(fpid, &status, 0);
2244 ATF_REQUIRE(wpid == fpid);
2245 ATF_REQUIRE(WIFSTOPPED(status));
2246 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2248 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
2249 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2251 /* The second wait() should report a system call entry for getpid(). */
2252 wpid = waitpid(fpid, &status, 0);
2253 ATF_REQUIRE(wpid == fpid);
2254 ATF_REQUIRE(WIFSTOPPED(status));
2255 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2257 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2258 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
2260 /* Continue the child process with a signal. */
2261 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2265 * The last wait() should report exit 2, i.e., a normal _exit
2266 * from the signal handler. In the meantime, catch and proceed
2267 * past any syscall stops.
2269 wpid = waitpid(fpid, &status, 0);
2270 ATF_REQUIRE(wpid == fpid);
2271 if (WIFSTOPPED(status) && WSTOPSIG(status) == SIGTRAP) {
2272 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2273 ATF_REQUIRE(pl.pl_flags & (PL_FLAG_SCE | PL_FLAG_SCX));
2274 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2276 ATF_REQUIRE(WIFEXITED(status));
2277 ATF_REQUIRE(WEXITSTATUS(status) == 2);
2282 wpid = wait(&status);
2283 ATF_REQUIRE(wpid == -1);
2284 ATF_REQUIRE(errno == ECHILD);
2288 sigusr1_counting_handler(int sig)
2290 static int counter = 0;
2292 CHILD_REQUIRE(sig == SIGUSR1);
2299 * Verify that, when continuing from a stop at system call entry and exit,
2300 * a signal can be requested from both stops, and both will be delivered when
2301 * the system call is complete.
2303 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_system_call_entry_and_exit);
2304 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_system_call_entry_and_exit, tc)
2306 struct ptrace_lwpinfo pl;
2310 ATF_REQUIRE(signal(SIGUSR1, sigusr1_counting_handler) != SIG_ERR);
2312 ATF_REQUIRE((fpid = fork()) != -1);
2319 /* The first wait() should report the stop from SIGSTOP. */
2320 wpid = waitpid(fpid, &status, 0);
2321 ATF_REQUIRE(wpid == fpid);
2322 ATF_REQUIRE(WIFSTOPPED(status));
2323 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2325 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
2326 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2328 /* The second wait() should report a system call entry for getpid(). */
2329 wpid = waitpid(fpid, &status, 0);
2330 ATF_REQUIRE(wpid == fpid);
2331 ATF_REQUIRE(WIFSTOPPED(status));
2332 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2334 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2335 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
2337 /* Continue the child process with a signal. */
2338 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2340 /* The third wait() should report a system call exit for getpid(). */
2341 wpid = waitpid(fpid, &status, 0);
2342 ATF_REQUIRE(wpid == fpid);
2343 ATF_REQUIRE(WIFSTOPPED(status));
2344 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2346 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2347 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCX);
2349 /* Continue the child process with a signal. */
2350 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2354 * The last wait() should report exit 2, i.e., a normal _exit
2355 * from the signal handler. In the meantime, catch and proceed
2356 * past any syscall stops.
2358 wpid = waitpid(fpid, &status, 0);
2359 ATF_REQUIRE(wpid == fpid);
2360 if (WIFSTOPPED(status) && WSTOPSIG(status) == SIGTRAP) {
2361 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2362 ATF_REQUIRE(pl.pl_flags & (PL_FLAG_SCE | PL_FLAG_SCX));
2363 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2365 ATF_REQUIRE(WIFEXITED(status));
2366 ATF_REQUIRE(WEXITSTATUS(status) == 2);
2371 wpid = wait(&status);
2372 ATF_REQUIRE(wpid == -1);
2373 ATF_REQUIRE(errno == ECHILD);
2377 * Verify that even if the signal queue is full for a child process,
2378 * a PT_CONTINUE with a signal will not result in loss of that signal.
2380 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_full_sigqueue);
2381 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_full_sigqueue, tc)
2385 int max_pending_per_proc;
2389 ATF_REQUIRE(signal(SIGUSR2, handler) != SIG_ERR);
2390 ATF_REQUIRE(signal(SIGUSR1, sigusr1_handler) != SIG_ERR);
2392 ATF_REQUIRE((fpid = fork()) != -1);
2398 /* The first wait() should report the stop from SIGSTOP. */
2399 wpid = waitpid(fpid, &status, 0);
2400 ATF_REQUIRE(wpid == fpid);
2401 ATF_REQUIRE(WIFSTOPPED(status));
2402 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2404 len = sizeof(max_pending_per_proc);
2405 ATF_REQUIRE(sysctlbyname("kern.sigqueue.max_pending_per_proc",
2406 &max_pending_per_proc, &len, NULL, 0) == 0);
2408 /* Fill the signal queue. */
2409 for (i = 0; i < max_pending_per_proc; ++i)
2410 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
2412 /* Continue with signal. */
2413 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2416 wpid = waitpid(fpid, &status, 0);
2417 ATF_REQUIRE(wpid == fpid);
2418 if (WIFSTOPPED(status)) {
2419 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
2420 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2423 * The last wait() should report normal _exit from the
2426 ATF_REQUIRE(WIFEXITED(status));
2427 ATF_REQUIRE(WEXITSTATUS(status) == 2);
2432 wpid = wait(&status);
2433 ATF_REQUIRE(wpid == -1);
2434 ATF_REQUIRE(errno == ECHILD);
2437 static sem_t sigusr1_sem;
2438 static int got_usr1;
2441 sigusr1_sempost_handler(int sig __unused)
2445 CHILD_REQUIRE(sem_post(&sigusr1_sem) == 0);
2449 * Verify that even if the signal queue is full for a child process,
2450 * and the signal is masked, a PT_CONTINUE with a signal will not
2451 * result in loss of that signal.
2453 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_masked_full_sigqueue);
2454 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_masked_full_sigqueue, tc)
2456 struct ptrace_lwpinfo pl;
2459 int max_pending_per_proc;
2464 ATF_REQUIRE(signal(SIGUSR2, handler) != SIG_ERR);
2465 ATF_REQUIRE(sem_init(&sigusr1_sem, 0, 0) == 0);
2466 ATF_REQUIRE(signal(SIGUSR1, sigusr1_sempost_handler) != SIG_ERR);
2469 ATF_REQUIRE((fpid = fork()) != -1);
2471 CHILD_REQUIRE(sigemptyset(&sigmask) == 0);
2472 CHILD_REQUIRE(sigaddset(&sigmask, SIGUSR1) == 0);
2473 CHILD_REQUIRE(sigprocmask(SIG_BLOCK, &sigmask, NULL) == 0);
2476 CHILD_REQUIRE(got_usr1 == 0);
2478 /* Allow the pending SIGUSR1 in now. */
2479 CHILD_REQUIRE(sigprocmask(SIG_UNBLOCK, &sigmask, NULL) == 0);
2480 /* Wait to receive the SIGUSR1. */
2482 err = sem_wait(&sigusr1_sem);
2483 CHILD_REQUIRE(err == 0 || errno == EINTR);
2484 } while (err != 0 && errno == EINTR);
2485 CHILD_REQUIRE(got_usr1 == 1);
2489 /* The first wait() should report the stop from SIGSTOP. */
2490 wpid = waitpid(fpid, &status, 0);
2491 ATF_REQUIRE(wpid == fpid);
2492 ATF_REQUIRE(WIFSTOPPED(status));
2493 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2495 len = sizeof(max_pending_per_proc);
2496 ATF_REQUIRE(sysctlbyname("kern.sigqueue.max_pending_per_proc",
2497 &max_pending_per_proc, &len, NULL, 0) == 0);
2499 /* Fill the signal queue. */
2500 for (i = 0; i < max_pending_per_proc; ++i)
2501 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
2503 /* Continue with signal. */
2504 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2506 /* Collect and ignore all of the SIGUSR2. */
2507 for (i = 0; i < max_pending_per_proc; ++i) {
2508 wpid = waitpid(fpid, &status, 0);
2509 ATF_REQUIRE(wpid == fpid);
2510 ATF_REQUIRE(WIFSTOPPED(status));
2511 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
2512 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2515 /* Now our PT_CONTINUE'd SIGUSR1 should cause a stop after unmask. */
2516 wpid = waitpid(fpid, &status, 0);
2517 ATF_REQUIRE(wpid == fpid);
2518 ATF_REQUIRE(WIFSTOPPED(status));
2519 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR1);
2520 ATF_REQUIRE(ptrace(PT_LWPINFO, fpid, (caddr_t)&pl, sizeof(pl)) != -1);
2521 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGUSR1);
2523 /* Continue the child, ignoring the SIGUSR1. */
2524 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2526 /* The last wait() should report exit after receiving SIGUSR1. */
2527 wpid = waitpid(fpid, &status, 0);
2528 ATF_REQUIRE(wpid == fpid);
2529 ATF_REQUIRE(WIFEXITED(status));
2530 ATF_REQUIRE(WEXITSTATUS(status) == 1);
2532 wpid = wait(&status);
2533 ATF_REQUIRE(wpid == -1);
2534 ATF_REQUIRE(errno == ECHILD);
2538 * Verify that, after stopping due to a signal, that signal can be
2539 * replaced with another signal.
2541 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_change_sig);
2542 ATF_TC_BODY(ptrace__PT_CONTINUE_change_sig, tc)
2544 struct ptrace_lwpinfo pl;
2548 ATF_REQUIRE((fpid = fork()) != -1);
2555 /* The first wait() should report the stop from SIGSTOP. */
2556 wpid = waitpid(fpid, &status, 0);
2557 ATF_REQUIRE(wpid == fpid);
2558 ATF_REQUIRE(WIFSTOPPED(status));
2559 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2561 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2563 /* Send a signal without ptrace. */
2564 ATF_REQUIRE(kill(fpid, SIGINT) == 0);
2566 /* The second wait() should report a SIGINT was received. */
2567 wpid = waitpid(fpid, &status, 0);
2568 ATF_REQUIRE(wpid == fpid);
2569 ATF_REQUIRE(WIFSTOPPED(status));
2570 ATF_REQUIRE(WSTOPSIG(status) == SIGINT);
2572 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2573 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
2574 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGINT);
2576 /* Continue the child process with a different signal. */
2577 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGTERM) == 0);
2580 * The last wait() should report having died due to the new
2583 wpid = waitpid(fpid, &status, 0);
2584 ATF_REQUIRE(wpid == fpid);
2585 ATF_REQUIRE(WIFSIGNALED(status));
2586 ATF_REQUIRE(WTERMSIG(status) == SIGTERM);
2588 wpid = wait(&status);
2589 ATF_REQUIRE(wpid == -1);
2590 ATF_REQUIRE(errno == ECHILD);
2594 * Verify that a signal can be passed through to the child even when there
2595 * was no true signal originally. Such cases arise when a SIGTRAP is
2596 * invented for e.g, system call stops.
2598 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_sigtrap_system_call_entry);
2599 ATF_TC_BODY(ptrace__PT_CONTINUE_with_sigtrap_system_call_entry, tc)
2601 struct ptrace_lwpinfo pl;
2606 ATF_REQUIRE((fpid = fork()) != -1);
2609 /* SIGTRAP expected to cause exit on syscall entry. */
2610 rl.rlim_cur = rl.rlim_max = 0;
2611 ATF_REQUIRE(setrlimit(RLIMIT_CORE, &rl) == 0);
2616 /* The first wait() should report the stop from SIGSTOP. */
2617 wpid = waitpid(fpid, &status, 0);
2618 ATF_REQUIRE(wpid == fpid);
2619 ATF_REQUIRE(WIFSTOPPED(status));
2620 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2622 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
2623 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2625 /* The second wait() should report a system call entry for getpid(). */
2626 wpid = waitpid(fpid, &status, 0);
2627 ATF_REQUIRE(wpid == fpid);
2628 ATF_REQUIRE(WIFSTOPPED(status));
2629 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2631 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2632 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
2634 /* Continue the child process with a SIGTRAP. */
2635 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGTRAP) == 0);
2639 * The last wait() should report exit due to SIGTRAP. In the
2640 * meantime, catch and proceed past any syscall stops.
2642 wpid = waitpid(fpid, &status, 0);
2643 ATF_REQUIRE(wpid == fpid);
2644 if (WIFSTOPPED(status) && WSTOPSIG(status) == SIGTRAP) {
2645 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2646 ATF_REQUIRE(pl.pl_flags & (PL_FLAG_SCE | PL_FLAG_SCX));
2647 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2649 ATF_REQUIRE(WIFSIGNALED(status));
2650 ATF_REQUIRE(WTERMSIG(status) == SIGTRAP);
2655 wpid = wait(&status);
2656 ATF_REQUIRE(wpid == -1);
2657 ATF_REQUIRE(errno == ECHILD);
2662 * A mixed bag PT_CONTINUE with signal test.
2664 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_mix);
2665 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_mix, tc)
2667 struct ptrace_lwpinfo pl;
2671 ATF_REQUIRE(signal(SIGUSR1, sigusr1_counting_handler) != SIG_ERR);
2673 ATF_REQUIRE((fpid = fork()) != -1);
2680 /* The first wait() should report the stop from SIGSTOP. */
2681 wpid = waitpid(fpid, &status, 0);
2682 ATF_REQUIRE(wpid == fpid);
2683 ATF_REQUIRE(WIFSTOPPED(status));
2684 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2686 /* Continue the child ignoring the SIGSTOP and tracing system calls. */
2687 ATF_REQUIRE(ptrace(PT_SYSCALL, fpid, (caddr_t)1, 0) == 0);
2689 /* The second wait() should report a system call entry for getpid(). */
2690 wpid = waitpid(fpid, &status, 0);
2691 ATF_REQUIRE(wpid == fpid);
2692 ATF_REQUIRE(WIFSTOPPED(status));
2693 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2695 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2696 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCE);
2698 /* Continue with the first SIGUSR1. */
2699 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2701 /* The next wait() should report a system call exit for getpid(). */
2702 wpid = waitpid(fpid, &status, 0);
2703 ATF_REQUIRE(wpid == fpid);
2704 ATF_REQUIRE(WIFSTOPPED(status));
2705 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
2707 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2708 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SCX);
2710 /* Send an ABRT without ptrace. */
2711 ATF_REQUIRE(kill(fpid, SIGABRT) == 0);
2713 /* Continue normally. */
2714 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2716 /* The next wait() should report the SIGABRT. */
2717 wpid = waitpid(fpid, &status, 0);
2718 ATF_REQUIRE(wpid == fpid);
2719 ATF_REQUIRE(WIFSTOPPED(status));
2720 ATF_REQUIRE(WSTOPSIG(status) == SIGABRT);
2722 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2723 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
2724 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGABRT);
2726 /* Continue, replacing the SIGABRT with another SIGUSR1. */
2727 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2731 * The last wait() should report exit 2, i.e., a normal _exit
2732 * from the signal handler. In the meantime, catch and proceed
2733 * past any syscall stops.
2735 wpid = waitpid(fpid, &status, 0);
2736 ATF_REQUIRE(wpid == fpid);
2737 if (WIFSTOPPED(status) && WSTOPSIG(status) == SIGTRAP) {
2738 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
2739 ATF_REQUIRE(pl.pl_flags & (PL_FLAG_SCE | PL_FLAG_SCX));
2740 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2742 ATF_REQUIRE(WIFEXITED(status));
2743 ATF_REQUIRE(WEXITSTATUS(status) == 2);
2748 wpid = wait(&status);
2749 ATF_REQUIRE(wpid == -1);
2750 ATF_REQUIRE(errno == ECHILD);
2755 * Verify a signal delivered by ptrace is noticed by kevent(2).
2757 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_kqueue);
2758 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_kqueue, tc)
2761 int status, kq, nevents;
2764 ATF_REQUIRE(signal(SIGUSR1, SIG_IGN) != SIG_ERR);
2766 ATF_REQUIRE((fpid = fork()) != -1);
2768 CHILD_REQUIRE((kq = kqueue()) > 0);
2769 EV_SET(&kev, SIGUSR1, EVFILT_SIGNAL, EV_ADD, 0, 0, 0);
2770 CHILD_REQUIRE(kevent(kq, &kev, 1, NULL, 0, NULL) == 0);
2775 nevents = kevent(kq, NULL, 0, &kev, 1, NULL);
2776 if (nevents == -1 && errno == EINTR)
2778 CHILD_REQUIRE(nevents > 0);
2779 CHILD_REQUIRE(kev.filter == EVFILT_SIGNAL);
2780 CHILD_REQUIRE(kev.ident == SIGUSR1);
2787 /* The first wait() should report the stop from SIGSTOP. */
2788 wpid = waitpid(fpid, &status, 0);
2789 ATF_REQUIRE(wpid == fpid);
2790 ATF_REQUIRE(WIFSTOPPED(status));
2791 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2793 /* Continue with the SIGUSR1. */
2794 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2797 * The last wait() should report normal exit with code 1.
2799 wpid = waitpid(fpid, &status, 0);
2800 ATF_REQUIRE(wpid == fpid);
2801 ATF_REQUIRE(WIFEXITED(status));
2802 ATF_REQUIRE(WEXITSTATUS(status) == 1);
2804 wpid = wait(&status);
2805 ATF_REQUIRE(wpid == -1);
2806 ATF_REQUIRE(errno == ECHILD);
2810 signal_thread(void *arg)
2815 pthread_barrier_t *pbarrier = (pthread_barrier_t*)arg;
2817 /* Wait for this thread to receive a SIGUSR1. */
2819 err = sem_wait(&sigusr1_sem);
2820 CHILD_REQUIRE(err == 0 || errno == EINTR);
2821 } while (err != 0 && errno == EINTR);
2823 /* Free our companion thread from the barrier. */
2824 pthread_barrier_wait(pbarrier);
2827 * Swap ignore duties; the next SIGUSR1 should go to the
2830 CHILD_REQUIRE(sigemptyset(&sigmask) == 0);
2831 CHILD_REQUIRE(sigaddset(&sigmask, SIGUSR1) == 0);
2832 CHILD_REQUIRE(pthread_sigmask(SIG_BLOCK, &sigmask, NULL) == 0);
2834 /* Sync up threads after swapping signal masks. */
2835 pthread_barrier_wait(pbarrier);
2837 /* Wait until our companion has received its SIGUSR1. */
2838 pthread_barrier_wait(pbarrier);
2844 * Verify that a traced process with blocked signal received the
2845 * signal from kill() once unmasked.
2847 ATF_TC_WITHOUT_HEAD(ptrace__killed_with_sigmask);
2848 ATF_TC_BODY(ptrace__killed_with_sigmask, tc)
2850 struct ptrace_lwpinfo pl;
2855 ATF_REQUIRE(sem_init(&sigusr1_sem, 0, 0) == 0);
2856 ATF_REQUIRE(signal(SIGUSR1, sigusr1_sempost_handler) != SIG_ERR);
2859 ATF_REQUIRE((fpid = fork()) != -1);
2861 CHILD_REQUIRE(sigemptyset(&sigmask) == 0);
2862 CHILD_REQUIRE(sigaddset(&sigmask, SIGUSR1) == 0);
2863 CHILD_REQUIRE(sigprocmask(SIG_BLOCK, &sigmask, NULL) == 0);
2866 CHILD_REQUIRE(got_usr1 == 0);
2868 /* Allow the pending SIGUSR1 in now. */
2869 CHILD_REQUIRE(sigprocmask(SIG_UNBLOCK, &sigmask, NULL) == 0);
2870 /* Wait to receive a SIGUSR1. */
2872 err = sem_wait(&sigusr1_sem);
2873 CHILD_REQUIRE(err == 0 || errno == EINTR);
2874 } while (err != 0 && errno == EINTR);
2875 CHILD_REQUIRE(got_usr1 == 1);
2879 /* The first wait() should report the stop from SIGSTOP. */
2880 wpid = waitpid(fpid, &status, 0);
2881 ATF_REQUIRE(wpid == fpid);
2882 ATF_REQUIRE(WIFSTOPPED(status));
2883 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2884 ATF_REQUIRE(ptrace(PT_LWPINFO, fpid, (caddr_t)&pl, sizeof(pl)) != -1);
2885 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGSTOP);
2887 /* Send blocked SIGUSR1 which should cause a stop. */
2888 ATF_REQUIRE(kill(fpid, SIGUSR1) == 0);
2890 /* Continue the child ignoring the SIGSTOP. */
2891 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2893 /* The next wait() should report the kill(SIGUSR1) was received. */
2894 wpid = waitpid(fpid, &status, 0);
2895 ATF_REQUIRE(wpid == fpid);
2896 ATF_REQUIRE(WIFSTOPPED(status));
2897 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR1);
2898 ATF_REQUIRE(ptrace(PT_LWPINFO, fpid, (caddr_t)&pl, sizeof(pl)) != -1);
2899 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGUSR1);
2901 /* Continue the child, allowing in the SIGUSR1. */
2902 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2904 /* The last wait() should report normal exit with code 1. */
2905 wpid = waitpid(fpid, &status, 0);
2906 ATF_REQUIRE(wpid == fpid);
2907 ATF_REQUIRE(WIFEXITED(status));
2908 ATF_REQUIRE(WEXITSTATUS(status) == 1);
2910 wpid = wait(&status);
2911 ATF_REQUIRE(wpid == -1);
2912 ATF_REQUIRE(errno == ECHILD);
2916 * Verify that a traced process with blocked signal received the
2917 * signal from PT_CONTINUE once unmasked.
2919 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_sigmask);
2920 ATF_TC_BODY(ptrace__PT_CONTINUE_with_sigmask, tc)
2922 struct ptrace_lwpinfo pl;
2927 ATF_REQUIRE(sem_init(&sigusr1_sem, 0, 0) == 0);
2928 ATF_REQUIRE(signal(SIGUSR1, sigusr1_sempost_handler) != SIG_ERR);
2931 ATF_REQUIRE((fpid = fork()) != -1);
2933 CHILD_REQUIRE(sigemptyset(&sigmask) == 0);
2934 CHILD_REQUIRE(sigaddset(&sigmask, SIGUSR1) == 0);
2935 CHILD_REQUIRE(sigprocmask(SIG_BLOCK, &sigmask, NULL) == 0);
2938 CHILD_REQUIRE(got_usr1 == 0);
2940 /* Allow the pending SIGUSR1 in now. */
2941 CHILD_REQUIRE(sigprocmask(SIG_UNBLOCK, &sigmask, NULL) == 0);
2942 /* Wait to receive a SIGUSR1. */
2944 err = sem_wait(&sigusr1_sem);
2945 CHILD_REQUIRE(err == 0 || errno == EINTR);
2946 } while (err != 0 && errno == EINTR);
2948 CHILD_REQUIRE(got_usr1 == 1);
2952 /* The first wait() should report the stop from SIGSTOP. */
2953 wpid = waitpid(fpid, &status, 0);
2954 ATF_REQUIRE(wpid == fpid);
2955 ATF_REQUIRE(WIFSTOPPED(status));
2956 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
2957 ATF_REQUIRE(ptrace(PT_LWPINFO, fpid, (caddr_t)&pl, sizeof(pl)) != -1);
2958 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGSTOP);
2960 /* Continue the child replacing SIGSTOP with SIGUSR1. */
2961 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
2963 /* The next wait() should report the SIGUSR1 was received. */
2964 wpid = waitpid(fpid, &status, 0);
2965 ATF_REQUIRE(wpid == fpid);
2966 ATF_REQUIRE(WIFSTOPPED(status));
2967 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR1);
2968 ATF_REQUIRE(ptrace(PT_LWPINFO, fpid, (caddr_t)&pl, sizeof(pl)) != -1);
2969 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGUSR1);
2971 /* Continue the child, ignoring the SIGUSR1. */
2972 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
2974 /* The last wait() should report normal exit with code 1. */
2975 wpid = waitpid(fpid, &status, 0);
2976 ATF_REQUIRE(wpid == fpid);
2977 ATF_REQUIRE(WIFEXITED(status));
2978 ATF_REQUIRE(WEXITSTATUS(status) == 1);
2980 wpid = wait(&status);
2981 ATF_REQUIRE(wpid == -1);
2982 ATF_REQUIRE(errno == ECHILD);
2986 * Verify that if ptrace stops due to a signal but continues with
2987 * a different signal that the new signal is routed to a thread
2988 * that can accept it, and that that thread is awakened by the signal
2989 * in a timely manner.
2991 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_with_signal_thread_sigmask);
2992 ATF_TC_BODY(ptrace__PT_CONTINUE_with_signal_thread_sigmask, tc)
2998 pthread_barrier_t barrier;
3000 ATF_REQUIRE(pthread_barrier_init(&barrier, NULL, 2) == 0);
3001 ATF_REQUIRE(sem_init(&sigusr1_sem, 0, 0) == 0);
3002 ATF_REQUIRE(signal(SIGUSR1, sigusr1_sempost_handler) != SIG_ERR);
3004 ATF_REQUIRE((fpid = fork()) != -1);
3006 CHILD_REQUIRE(pthread_create(&t, NULL, signal_thread, (void*)&barrier) == 0);
3008 /* The other thread should receive the first SIGUSR1. */
3009 CHILD_REQUIRE(sigemptyset(&sigmask) == 0);
3010 CHILD_REQUIRE(sigaddset(&sigmask, SIGUSR1) == 0);
3011 CHILD_REQUIRE(pthread_sigmask(SIG_BLOCK, &sigmask, NULL) == 0);
3015 /* Wait until other thread has received its SIGUSR1. */
3016 pthread_barrier_wait(&barrier);
3019 * Swap ignore duties; the next SIGUSR1 should go to this
3022 CHILD_REQUIRE(pthread_sigmask(SIG_UNBLOCK, &sigmask, NULL) == 0);
3024 /* Sync up threads after swapping signal masks. */
3025 pthread_barrier_wait(&barrier);
3028 * Sync up with test code; we're ready for the next SIGUSR1
3033 /* Wait for this thread to receive a SIGUSR1. */
3035 err = sem_wait(&sigusr1_sem);
3036 CHILD_REQUIRE(err == 0 || errno == EINTR);
3037 } while (err != 0 && errno == EINTR);
3039 /* Free the other thread from the barrier. */
3040 pthread_barrier_wait(&barrier);
3042 CHILD_REQUIRE(pthread_join(t, NULL) == 0);
3047 /* The first wait() should report the stop from SIGSTOP. */
3048 wpid = waitpid(fpid, &status, 0);
3049 ATF_REQUIRE(wpid == fpid);
3050 ATF_REQUIRE(WIFSTOPPED(status));
3051 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3053 /* Continue the child ignoring the SIGSTOP. */
3054 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3057 * Send a signal without ptrace that either thread will accept (USR2,
3060 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
3062 /* The second wait() should report a SIGUSR2 was received. */
3063 wpid = waitpid(fpid, &status, 0);
3064 ATF_REQUIRE(wpid == fpid);
3065 ATF_REQUIRE(WIFSTOPPED(status));
3066 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
3068 /* Continue the child, changing the signal to USR1. */
3069 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
3071 /* The next wait() should report the stop from SIGSTOP. */
3072 wpid = waitpid(fpid, &status, 0);
3073 ATF_REQUIRE(wpid == fpid);
3074 ATF_REQUIRE(WIFSTOPPED(status));
3075 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3077 /* Continue the child ignoring the SIGSTOP. */
3078 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3080 ATF_REQUIRE(kill(fpid, SIGUSR2) == 0);
3082 /* The next wait() should report a SIGUSR2 was received. */
3083 wpid = waitpid(fpid, &status, 0);
3084 ATF_REQUIRE(wpid == fpid);
3085 ATF_REQUIRE(WIFSTOPPED(status));
3086 ATF_REQUIRE(WSTOPSIG(status) == SIGUSR2);
3088 /* Continue the child, changing the signal to USR1. */
3089 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, SIGUSR1) == 0);
3091 /* The last wait() should report normal exit with code 1. */
3092 wpid = waitpid(fpid, &status, 0);
3093 ATF_REQUIRE(wpid == fpid);
3094 ATF_REQUIRE(WIFEXITED(status));
3095 ATF_REQUIRE(WEXITSTATUS(status) == 1);
3097 wpid = wait(&status);
3098 ATF_REQUIRE(wpid == -1);
3099 ATF_REQUIRE(errno == ECHILD);
3103 raise_sigstop_thread(void *arg __unused)
3111 sleep_thread(void *arg __unused)
3119 terminate_with_pending_sigstop(bool sigstop_from_main_thread)
3128 * Become the reaper for this process tree. We need to be able to check
3129 * that both child and grandchild have died.
3131 ATF_REQUIRE(procctl(P_PID, getpid(), PROC_REAP_ACQUIRE, NULL) == 0);
3134 ATF_REQUIRE(fpid >= 0);
3137 CHILD_REQUIRE(fpid >= 0);
3141 /* Pin to CPU 0 to serialize thread execution. */
3143 CPU_SET(0, &setmask);
3144 CHILD_REQUIRE(cpuset(&setid) == 0);
3145 CHILD_REQUIRE(cpuset_setaffinity(CPU_LEVEL_CPUSET,
3146 CPU_WHICH_CPUSET, setid,
3147 sizeof(setmask), &setmask) == 0);
3149 if (sigstop_from_main_thread) {
3151 * We expect the SIGKILL sent when our parent
3152 * dies to be delivered to the new thread.
3153 * Raise the SIGSTOP in this thread so the
3156 CHILD_REQUIRE(pthread_create(&t, NULL,
3157 sleep_thread, NULL) == 0);
3161 * We expect the SIGKILL to be delivered to
3162 * this thread. After creating the new thread,
3163 * just get off the CPU so the other thread can
3164 * raise the SIGSTOP.
3166 CHILD_REQUIRE(pthread_create(&t, NULL,
3167 raise_sigstop_thread, NULL) == 0);
3173 /* First stop is trace_me() immediately after fork. */
3174 wpid = waitpid(fpid, &status, 0);
3175 CHILD_REQUIRE(wpid == fpid);
3176 CHILD_REQUIRE(WIFSTOPPED(status));
3177 CHILD_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3179 CHILD_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3181 /* Second stop is from the raise(SIGSTOP). */
3182 wpid = waitpid(fpid, &status, 0);
3183 CHILD_REQUIRE(wpid == fpid);
3184 CHILD_REQUIRE(WIFSTOPPED(status));
3185 CHILD_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3188 * Terminate tracing process without detaching. Our child
3195 * We should get a normal exit from our immediate child and a SIGKILL
3196 * exit from our grandchild. The latter case is the interesting one.
3197 * Our grandchild should not have stopped due to the SIGSTOP that was
3198 * left dangling when its parent died.
3200 for (i = 0; i < 2; ++i) {
3201 wpid = wait(&status);
3203 ATF_REQUIRE(WIFEXITED(status) &&
3204 WEXITSTATUS(status) == 0);
3206 ATF_REQUIRE(WIFSIGNALED(status) &&
3207 WTERMSIG(status) == SIGKILL);
3212 * These two tests ensure that if the tracing process exits without detaching
3213 * just after the child received a SIGSTOP, the child is cleanly killed and
3214 * doesn't go to sleep due to the SIGSTOP. The parent's death will send a
3215 * SIGKILL to the child. If the SIGKILL and the SIGSTOP are handled by
3216 * different threads, the SIGKILL must win. There are two variants of this
3217 * test, designed to catch the case where the SIGKILL is delivered to the
3218 * younger thread (the first test) and the case where the SIGKILL is delivered
3219 * to the older thread (the second test). This behavior has changed in the
3220 * past, so make no assumption.
3222 ATF_TC(ptrace__parent_terminate_with_pending_sigstop1);
3223 ATF_TC_HEAD(ptrace__parent_terminate_with_pending_sigstop1, tc)
3226 atf_tc_set_md_var(tc, "require.user", "root");
3228 ATF_TC_BODY(ptrace__parent_terminate_with_pending_sigstop1, tc)
3231 terminate_with_pending_sigstop(true);
3234 ATF_TC(ptrace__parent_terminate_with_pending_sigstop2);
3235 ATF_TC_HEAD(ptrace__parent_terminate_with_pending_sigstop2, tc)
3238 atf_tc_set_md_var(tc, "require.user", "root");
3240 ATF_TC_BODY(ptrace__parent_terminate_with_pending_sigstop2, tc)
3243 terminate_with_pending_sigstop(false);
3247 * Verify that after ptrace() discards a SIGKILL signal, the event mask
3250 ATF_TC_WITHOUT_HEAD(ptrace__event_mask_sigkill_discard);
3251 ATF_TC_BODY(ptrace__event_mask_sigkill_discard, tc)
3253 struct ptrace_lwpinfo pl;
3255 int status, event_mask, new_event_mask;
3257 ATF_REQUIRE((fpid = fork()) != -1);
3264 /* The first wait() should report the stop from trace_me(). */
3265 wpid = waitpid(fpid, &status, 0);
3266 ATF_REQUIRE(wpid == fpid);
3267 ATF_REQUIRE(WIFSTOPPED(status));
3268 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3270 /* Set several unobtrusive event bits. */
3271 event_mask = PTRACE_EXEC | PTRACE_FORK | PTRACE_LWP;
3272 ATF_REQUIRE(ptrace(PT_SET_EVENT_MASK, wpid, (caddr_t)&event_mask,
3273 sizeof(event_mask)) == 0);
3275 /* Send a SIGKILL without using ptrace. */
3276 ATF_REQUIRE(kill(fpid, SIGKILL) == 0);
3278 /* Continue the child ignoring the SIGSTOP. */
3279 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3281 /* The next stop should be due to the SIGKILL. */
3282 wpid = waitpid(fpid, &status, 0);
3283 ATF_REQUIRE(wpid == fpid);
3284 ATF_REQUIRE(WIFSTOPPED(status));
3285 ATF_REQUIRE(WSTOPSIG(status) == SIGKILL);
3287 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3288 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
3289 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGKILL);
3291 /* Continue the child ignoring the SIGKILL. */
3292 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3294 /* The next wait() should report the stop from SIGSTOP. */
3295 wpid = waitpid(fpid, &status, 0);
3296 ATF_REQUIRE(wpid == fpid);
3297 ATF_REQUIRE(WIFSTOPPED(status));
3298 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3300 /* Check the current event mask. It should not have changed. */
3302 ATF_REQUIRE(ptrace(PT_GET_EVENT_MASK, wpid, (caddr_t)&new_event_mask,
3303 sizeof(new_event_mask)) == 0);
3304 ATF_REQUIRE(event_mask == new_event_mask);
3306 /* Continue the child to let it exit. */
3307 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3309 /* The last event should be for the child process's exit. */
3310 wpid = waitpid(fpid, &status, 0);
3311 ATF_REQUIRE(WIFEXITED(status));
3312 ATF_REQUIRE(WEXITSTATUS(status) == 0);
3314 wpid = wait(&status);
3315 ATF_REQUIRE(wpid == -1);
3316 ATF_REQUIRE(errno == ECHILD);
3320 flock_thread(void *arg)
3325 (void)flock(fd, LOCK_EX);
3326 (void)flock(fd, LOCK_UN);
3331 * Verify that PT_ATTACH will suspend threads sleeping in an SBDRY section.
3332 * We rely on the fact that the lockf implementation sets SBDRY before blocking
3333 * on a lock. This is a regression test for r318191.
3335 ATF_TC_WITHOUT_HEAD(ptrace__PT_ATTACH_with_SBDRY_thread);
3336 ATF_TC_BODY(ptrace__PT_ATTACH_with_SBDRY_thread, tc)
3338 pthread_barrier_t barrier;
3339 pthread_barrierattr_t battr;
3342 int error, fd, i, status;
3344 ATF_REQUIRE(pthread_barrierattr_init(&battr) == 0);
3345 ATF_REQUIRE(pthread_barrierattr_setpshared(&battr,
3346 PTHREAD_PROCESS_SHARED) == 0);
3347 ATF_REQUIRE(pthread_barrier_init(&barrier, &battr, 2) == 0);
3349 (void)snprintf(tmpfile, sizeof(tmpfile), "./ptrace.XXXXXX");
3350 fd = mkstemp(tmpfile);
3351 ATF_REQUIRE(fd >= 0);
3353 ATF_REQUIRE((child = fork()) != -1);
3358 error = pthread_barrier_wait(&barrier);
3359 if (error != 0 && error != PTHREAD_BARRIER_SERIAL_THREAD)
3362 cfd = open(tmpfile, O_RDONLY);
3367 * We want at least two threads blocked on the file lock since
3368 * the SIGSTOP from PT_ATTACH may kick one of them out of
3371 if (pthread_create(&t[0], NULL, flock_thread, &cfd) != 0)
3373 if (pthread_create(&t[1], NULL, flock_thread, &cfd) != 0)
3375 if (pthread_join(t[0], NULL) != 0)
3377 if (pthread_join(t[1], NULL) != 0)
3382 ATF_REQUIRE(flock(fd, LOCK_EX) == 0);
3384 error = pthread_barrier_wait(&barrier);
3385 ATF_REQUIRE(error == 0 || error == PTHREAD_BARRIER_SERIAL_THREAD);
3388 * Give the child some time to block. Is there a better way to do this?
3393 * Attach and give the child 3 seconds to stop.
3395 ATF_REQUIRE(ptrace(PT_ATTACH, child, NULL, 0) == 0);
3396 for (i = 0; i < 3; i++) {
3397 wpid = waitpid(child, &status, WNOHANG);
3398 if (wpid == child && WIFSTOPPED(status) &&
3399 WSTOPSIG(status) == SIGSTOP)
3403 ATF_REQUIRE_MSG(i < 3, "failed to stop child process after PT_ATTACH");
3405 ATF_REQUIRE(ptrace(PT_DETACH, child, NULL, 0) == 0);
3407 ATF_REQUIRE(flock(fd, LOCK_UN) == 0);
3408 ATF_REQUIRE(unlink(tmpfile) == 0);
3409 ATF_REQUIRE(close(fd) == 0);
3413 sigusr1_step_handler(int sig)
3416 CHILD_REQUIRE(sig == SIGUSR1);
3421 * Verify that PT_STEP with a signal invokes the signal before
3422 * stepping the next instruction (and that the next instruction is
3423 * stepped correctly).
3425 ATF_TC_WITHOUT_HEAD(ptrace__PT_STEP_with_signal);
3426 ATF_TC_BODY(ptrace__PT_STEP_with_signal, tc)
3428 struct ptrace_lwpinfo pl;
3432 ATF_REQUIRE((fpid = fork()) != -1);
3435 signal(SIGUSR1, sigusr1_step_handler);
3440 /* The first wait() should report the stop from SIGSTOP. */
3441 wpid = waitpid(fpid, &status, 0);
3442 ATF_REQUIRE(wpid == fpid);
3443 ATF_REQUIRE(WIFSTOPPED(status));
3444 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3446 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3448 /* The next stop should report the SIGABRT in the child body. */
3449 wpid = waitpid(fpid, &status, 0);
3450 ATF_REQUIRE(wpid == fpid);
3451 ATF_REQUIRE(WIFSTOPPED(status));
3452 ATF_REQUIRE(WSTOPSIG(status) == SIGABRT);
3454 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3455 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
3456 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGABRT);
3458 /* Step the child process inserting SIGUSR1. */
3459 ATF_REQUIRE(ptrace(PT_STEP, fpid, (caddr_t)1, SIGUSR1) == 0);
3461 /* The next stop should report the SIGABRT in the signal handler. */
3462 wpid = waitpid(fpid, &status, 0);
3463 ATF_REQUIRE(wpid == fpid);
3464 ATF_REQUIRE(WIFSTOPPED(status));
3465 ATF_REQUIRE(WSTOPSIG(status) == SIGABRT);
3467 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3468 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
3469 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGABRT);
3471 /* Continue the child process discarding the signal. */
3472 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3474 /* The next stop should report a trace trap from PT_STEP. */
3475 wpid = waitpid(fpid, &status, 0);
3476 ATF_REQUIRE(wpid == fpid);
3477 ATF_REQUIRE(WIFSTOPPED(status));
3478 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
3480 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3481 ATF_REQUIRE(pl.pl_flags & PL_FLAG_SI);
3482 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGTRAP);
3483 ATF_REQUIRE(pl.pl_siginfo.si_code == TRAP_TRACE);
3485 /* Continue the child to let it exit. */
3486 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3488 /* The last event should be for the child process's exit. */
3489 wpid = waitpid(fpid, &status, 0);
3490 ATF_REQUIRE(WIFEXITED(status));
3491 ATF_REQUIRE(WEXITSTATUS(status) == 1);
3493 wpid = wait(&status);
3494 ATF_REQUIRE(wpid == -1);
3495 ATF_REQUIRE(errno == ECHILD);
3498 #if defined(HAVE_BREAKPOINT) && defined(SKIP_BREAK)
3500 continue_thread(void *arg __unused)
3507 continue_thread_main(void)
3509 pthread_t threads[2];
3511 CHILD_REQUIRE(pthread_create(&threads[0], NULL, continue_thread,
3513 CHILD_REQUIRE(pthread_create(&threads[1], NULL, continue_thread,
3515 CHILD_REQUIRE(pthread_join(threads[0], NULL) == 0);
3516 CHILD_REQUIRE(pthread_join(threads[1], NULL) == 0);
3521 * Ensure that PT_CONTINUE clears the status of the thread that
3522 * triggered the stop even if a different thread's LWP was passed to
3525 ATF_TC_WITHOUT_HEAD(ptrace__PT_CONTINUE_different_thread);
3526 ATF_TC_BODY(ptrace__PT_CONTINUE_different_thread, tc)
3528 struct ptrace_lwpinfo pl;
3535 ATF_REQUIRE((fpid = fork()) != -1);
3538 continue_thread_main();
3541 /* The first wait() should report the stop from SIGSTOP. */
3542 wpid = waitpid(fpid, &status, 0);
3543 ATF_REQUIRE(wpid == fpid);
3544 ATF_REQUIRE(WIFSTOPPED(status));
3545 ATF_REQUIRE(WSTOPSIG(status) == SIGSTOP);
3547 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
3550 ATF_REQUIRE(ptrace(PT_LWP_EVENTS, wpid, NULL, 1) == 0);
3552 /* Continue the child ignoring the SIGSTOP. */
3553 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3555 /* One of the new threads should report it's birth. */
3556 wpid = waitpid(fpid, &status, 0);
3557 ATF_REQUIRE(wpid == fpid);
3558 ATF_REQUIRE(WIFSTOPPED(status));
3559 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
3561 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3562 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_BORN | PL_FLAG_SCX)) ==
3563 (PL_FLAG_BORN | PL_FLAG_SCX));
3564 lwps[0] = pl.pl_lwpid;
3567 * Suspend this thread to ensure both threads are alive before
3568 * hitting the breakpoint.
3570 ATF_REQUIRE(ptrace(PT_SUSPEND, lwps[0], NULL, 0) != -1);
3572 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3574 /* Second thread should report it's birth. */
3575 wpid = waitpid(fpid, &status, 0);
3576 ATF_REQUIRE(wpid == fpid);
3577 ATF_REQUIRE(WIFSTOPPED(status));
3578 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
3580 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3581 ATF_REQUIRE((pl.pl_flags & (PL_FLAG_BORN | PL_FLAG_SCX)) ==
3582 (PL_FLAG_BORN | PL_FLAG_SCX));
3583 ATF_REQUIRE(pl.pl_lwpid != lwps[0]);
3584 lwps[1] = pl.pl_lwpid;
3586 /* Resume both threads waiting for breakpoint events. */
3587 hit_break[0] = hit_break[1] = false;
3588 ATF_REQUIRE(ptrace(PT_RESUME, lwps[0], NULL, 0) != -1);
3589 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3591 /* One thread should report a breakpoint. */
3592 wpid = waitpid(fpid, &status, 0);
3593 ATF_REQUIRE(wpid == fpid);
3594 ATF_REQUIRE(WIFSTOPPED(status));
3595 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
3597 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl, sizeof(pl)) != -1);
3598 ATF_REQUIRE((pl.pl_flags & PL_FLAG_SI) != 0);
3599 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGTRAP &&
3600 pl.pl_siginfo.si_code == TRAP_BRKPT);
3601 if (pl.pl_lwpid == lwps[0])
3605 hit_break[i] = true;
3606 ATF_REQUIRE(ptrace(PT_GETREGS, pl.pl_lwpid, (caddr_t)®, 0) != -1);
3608 ATF_REQUIRE(ptrace(PT_SETREGS, pl.pl_lwpid, (caddr_t)®, 0) != -1);
3611 * Resume both threads but pass the other thread's LWPID to
3614 ATF_REQUIRE(ptrace(PT_CONTINUE, lwps[i ^ 1], (caddr_t)1, 0) == 0);
3617 * Will now get two thread exit events and one more breakpoint
3620 for (j = 0; j < 3; j++) {
3621 wpid = waitpid(fpid, &status, 0);
3622 ATF_REQUIRE(wpid == fpid);
3623 ATF_REQUIRE(WIFSTOPPED(status));
3624 ATF_REQUIRE(WSTOPSIG(status) == SIGTRAP);
3626 ATF_REQUIRE(ptrace(PT_LWPINFO, wpid, (caddr_t)&pl,
3629 if (pl.pl_lwpid == lwps[0])
3634 ATF_REQUIRE_MSG(lwps[i] != 0, "event for exited thread");
3635 if (pl.pl_flags & PL_FLAG_EXITED) {
3636 ATF_REQUIRE_MSG(hit_break[i],
3637 "exited thread did not report breakpoint");
3640 ATF_REQUIRE((pl.pl_flags & PL_FLAG_SI) != 0);
3641 ATF_REQUIRE(pl.pl_siginfo.si_signo == SIGTRAP &&
3642 pl.pl_siginfo.si_code == TRAP_BRKPT);
3643 ATF_REQUIRE_MSG(!hit_break[i],
3644 "double breakpoint event");
3645 hit_break[i] = true;
3646 ATF_REQUIRE(ptrace(PT_GETREGS, pl.pl_lwpid, (caddr_t)®,
3649 ATF_REQUIRE(ptrace(PT_SETREGS, pl.pl_lwpid, (caddr_t)®,
3653 ATF_REQUIRE(ptrace(PT_CONTINUE, fpid, (caddr_t)1, 0) == 0);
3656 /* Both threads should have exited. */
3657 ATF_REQUIRE(lwps[0] == 0);
3658 ATF_REQUIRE(lwps[1] == 0);
3660 /* The last event should be for the child process's exit. */
3661 wpid = waitpid(fpid, &status, 0);
3662 ATF_REQUIRE(WIFEXITED(status));
3663 ATF_REQUIRE(WEXITSTATUS(status) == 1);
3665 wpid = wait(&status);
3666 ATF_REQUIRE(wpid == -1);
3667 ATF_REQUIRE(errno == ECHILD);
3674 ATF_TP_ADD_TC(tp, ptrace__parent_wait_after_trace_me);
3675 ATF_TP_ADD_TC(tp, ptrace__parent_wait_after_attach);
3676 ATF_TP_ADD_TC(tp, ptrace__parent_sees_exit_after_child_debugger);
3677 ATF_TP_ADD_TC(tp, ptrace__parent_sees_exit_after_unrelated_debugger);
3678 ATF_TP_ADD_TC(tp, ptrace__follow_fork_both_attached);
3679 ATF_TP_ADD_TC(tp, ptrace__follow_fork_child_detached);
3680 ATF_TP_ADD_TC(tp, ptrace__follow_fork_parent_detached);
3681 ATF_TP_ADD_TC(tp, ptrace__follow_fork_both_attached_unrelated_debugger);
3683 ptrace__follow_fork_child_detached_unrelated_debugger);
3685 ptrace__follow_fork_parent_detached_unrelated_debugger);
3686 ATF_TP_ADD_TC(tp, ptrace__getppid);
3687 ATF_TP_ADD_TC(tp, ptrace__new_child_pl_syscall_code_fork);
3688 ATF_TP_ADD_TC(tp, ptrace__new_child_pl_syscall_code_vfork);
3689 ATF_TP_ADD_TC(tp, ptrace__new_child_pl_syscall_code_thread);
3690 ATF_TP_ADD_TC(tp, ptrace__lwp_events);
3691 ATF_TP_ADD_TC(tp, ptrace__lwp_events_exec);
3692 ATF_TP_ADD_TC(tp, ptrace__siginfo);
3693 ATF_TP_ADD_TC(tp, ptrace__ptrace_exec_disable);
3694 ATF_TP_ADD_TC(tp, ptrace__ptrace_exec_enable);
3695 ATF_TP_ADD_TC(tp, ptrace__event_mask);
3696 ATF_TP_ADD_TC(tp, ptrace__ptrace_vfork);
3697 ATF_TP_ADD_TC(tp, ptrace__ptrace_vfork_follow);
3698 #ifdef HAVE_BREAKPOINT
3699 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_breakpoint);
3701 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_system_call);
3702 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_threads);
3703 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_competing_signal);
3704 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_competing_stop);
3705 ATF_TP_ADD_TC(tp, ptrace__PT_KILL_with_signal_full_sigqueue);
3706 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_system_call_entry);
3708 ptrace__PT_CONTINUE_with_signal_system_call_entry_and_exit);
3709 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_full_sigqueue);
3710 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_masked_full_sigqueue);
3711 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_change_sig);
3712 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_sigtrap_system_call_entry);
3713 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_mix);
3714 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_kqueue);
3715 ATF_TP_ADD_TC(tp, ptrace__killed_with_sigmask);
3716 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_sigmask);
3717 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_with_signal_thread_sigmask);
3718 ATF_TP_ADD_TC(tp, ptrace__parent_terminate_with_pending_sigstop1);
3719 ATF_TP_ADD_TC(tp, ptrace__parent_terminate_with_pending_sigstop2);
3720 ATF_TP_ADD_TC(tp, ptrace__event_mask_sigkill_discard);
3721 ATF_TP_ADD_TC(tp, ptrace__PT_ATTACH_with_SBDRY_thread);
3722 ATF_TP_ADD_TC(tp, ptrace__PT_STEP_with_signal);
3723 #if defined(HAVE_BREAKPOINT) && defined(SKIP_BREAK)
3724 ATF_TP_ADD_TC(tp, ptrace__PT_CONTINUE_different_thread);
3727 return (atf_no_error());
projects / FreeBSD / FreeBSD.git / blob