2 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
4 * Copyright (c) 2007-2011 Robert N. M. Watson
5 * Copyright (c) 2015 Allan Jude <allanjude@freebsd.org>
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 #include <sys/param.h>
33 #include <sys/capsicum.h>
34 #include <sys/socket.h>
35 #include <sys/sysctl.h>
39 #include <netinet/in.h>
41 #include <arpa/inet.h>
44 #include <libprocstat.h>
53 protocol_to_string(int domain, int type, int protocol)
91 addr_to_string(struct sockaddr_storage *ss, char *buffer, int buflen)
93 char buffer2[INET6_ADDRSTRLEN];
94 struct sockaddr_in6 *sin6;
95 struct sockaddr_in *sin;
96 struct sockaddr_un *sun;
98 switch (ss->ss_family) {
100 sun = (struct sockaddr_un *)ss;
101 if (strlen(sun->sun_path) == 0)
102 strlcpy(buffer, "-", buflen);
104 strlcpy(buffer, sun->sun_path, buflen);
108 sin = (struct sockaddr_in *)ss;
109 snprintf(buffer, buflen, "%s:%d", inet_ntoa(sin->sin_addr),
110 ntohs(sin->sin_port));
114 sin6 = (struct sockaddr_in6 *)ss;
115 if (inet_ntop(AF_INET6, &sin6->sin6_addr, buffer2,
116 sizeof(buffer2)) != NULL)
117 snprintf(buffer, buflen, "%s.%d", buffer2,
118 ntohs(sin6->sin6_port));
120 strlcpy(buffer, "-", buflen);
124 strlcpy(buffer, "", buflen);
129 static struct cap_desc {
133 /* General file I/O. */
138 { CAP_CREATE, "cr" },
139 { CAP_FEXECVE, "fe" },
141 { CAP_FTRUNCATE, "ft" },
144 { CAP_FCHDIR, "cd" },
145 { CAP_FCHFLAGS, "cf" },
146 { CAP_FCHMOD, "cm" },
147 { CAP_FCHOWN, "cn" },
150 { CAP_FPATHCONF, "fp" },
153 { CAP_FSTATFS, "sf" },
154 { CAP_FUTIMES, "fu" },
155 { CAP_LINKAT_SOURCE, "ls" },
156 { CAP_LINKAT_TARGET, "lt" },
157 { CAP_MKDIRAT, "md" },
158 { CAP_MKFIFOAT, "mf" },
159 { CAP_MKNODAT, "mn" },
160 { CAP_RENAMEAT_SOURCE, "rs" },
161 { CAP_RENAMEAT_TARGET, "rt" },
162 { CAP_SYMLINKAT, "sl" },
163 { CAP_UNLINKAT, "un" },
165 /* Lookups - used to constrain *at() calls. */
166 { CAP_LOOKUP, "lo" },
168 /* Extended attributes. */
169 { CAP_EXTATTR_GET, "eg" },
170 { CAP_EXTATTR_SET, "es" },
171 { CAP_EXTATTR_DELETE, "ed" },
172 { CAP_EXTATTR_LIST, "el" },
174 /* Access Control Lists. */
175 { CAP_ACL_GET, "ag" },
176 { CAP_ACL_SET, "as" },
177 { CAP_ACL_DELETE, "ad" },
178 { CAP_ACL_CHECK, "ac" },
180 /* Socket operations. */
181 { CAP_ACCEPT, "at" },
183 { CAP_CONNECT, "co" },
184 { CAP_GETPEERNAME, "pn" },
185 { CAP_GETSOCKNAME, "sn" },
186 { CAP_GETSOCKOPT, "gs" },
187 { CAP_LISTEN, "ln" },
188 { CAP_PEELOFF, "pf" },
189 { CAP_SETSOCKOPT, "ss" },
190 { CAP_SHUTDOWN, "sh" },
192 /* Mandatory Access Control. */
193 { CAP_MAC_GET, "mg" },
194 { CAP_MAC_SET, "ms" },
196 /* Methods on semaphores. */
197 { CAP_SEM_GETVALUE, "sg" },
198 { CAP_SEM_POST, "sp" },
199 { CAP_SEM_WAIT, "sw" },
201 /* Event monitoring and posting. */
203 { CAP_KQUEUE_EVENT, "ke" },
204 { CAP_KQUEUE_CHANGE, "kc" },
206 /* Strange and powerful rights that should not be given lightly. */
208 { CAP_TTYHOOK, "ty" },
210 /* Process management via process descriptors. */
211 { CAP_PDGETPID, "pg" },
212 { CAP_PDWAIT, "pw" },
213 { CAP_PDKILL, "pk" },
216 * Rights that allow to use bindat(2) and connectat(2) syscalls on a
217 * directory descriptor.
219 { CAP_BINDAT, "ba" },
220 { CAP_CONNECTAT, "ca" },
222 /* Aliases and defines that combine multiple rights. */
223 { CAP_PREAD, "prd" },
224 { CAP_PWRITE, "pwr" },
226 { CAP_MMAP_R, "mmr" },
227 { CAP_MMAP_W, "mmw" },
228 { CAP_MMAP_X, "mmx" },
229 { CAP_MMAP_RW, "mrw" },
230 { CAP_MMAP_RX, "mrx" },
231 { CAP_MMAP_WX, "mwx" },
232 { CAP_MMAP_RWX, "mma" },
237 { CAP_SOCK_CLIENT, "scl" },
238 { CAP_SOCK_SERVER, "ssr" },
240 static const u_int cap_desc_count = nitems(cap_desc);
243 width_capability(cap_rights_t *rightsp)
245 u_int count, i, width;
249 for (i = 0; i < cap_desc_count; i++) {
250 if (cap_rights_is_set(rightsp, cap_desc[i].cd_right)) {
251 width += strlen(cap_desc[i].cd_desc);
261 print_capability(cap_rights_t *rightsp, u_int capwidth)
263 u_int count, i, width;
267 for (i = width_capability(rightsp); i < capwidth; i++) {
273 xo_open_list("capabilities");
274 for (i = 0; i < cap_desc_count; i++) {
275 if (cap_rights_is_set(rightsp, cap_desc[i].cd_right)) {
276 xo_emit("{D:/%s}{l:capabilities/%s}", count ? "," : "",
277 cap_desc[i].cd_desc);
278 width += strlen(cap_desc[i].cd_desc);
284 xo_close_list("capabilities");
288 procstat_files(struct procstat *procstat, struct kinfo_proc *kipp)
290 struct sockstat sock;
291 struct filestat_list *head;
292 struct filestat *fst;
295 u_int capwidth, width;
297 char src_addr[PATH_MAX];
298 char dst_addr[PATH_MAX];
301 * To print the header in capability mode, we need to know the width
302 * of the widest capability string. Even if we get no processes
303 * back, we will print the header, so we defer aborting due to a lack
304 * of processes until after the header logic.
307 head = procstat_getfiles(procstat, kipp, 0);
308 if (head != NULL && Cflag) {
309 STAILQ_FOREACH(fst, head, next) {
310 width = width_capability(&fst->fs_cap_rights);
311 if (width > capwidth)
314 if (capwidth < strlen("CAPABILITIES"))
315 capwidth = strlen("CAPABILITIES");
320 xo_emit("{T:/%5s %-16s %5s %1s %-8s %-*s "
321 "%-3s %-12s}\n", "PID", "COMM", "FD", "T",
322 "FLAGS", capwidth, "CAPABILITIES", "PRO",
325 xo_emit("{T:/%5s %-16s %5s %1s %1s %-8s "
326 "%3s %7s %-3s %-12s}\n", "PID", "COMM", "FD", "T",
327 "V", "FLAGS", "REF", "OFFSET", "PRO", "NAME");
332 xo_emit("{ek:process_id/%5d/%d}", kipp->ki_pid);
333 xo_emit("{e:command/%-16s/%s}", kipp->ki_comm);
334 xo_open_list("files");
335 STAILQ_FOREACH(fst, head, next) {
336 xo_open_instance("files");
337 xo_emit("{dk:process_id/%5d/%d} ", kipp->ki_pid);
338 xo_emit("{d:command/%-16s/%s} ", kipp->ki_comm);
339 if (fst->fs_uflags & PS_FST_UFLAG_CTTY)
340 xo_emit("{P: }{:fd/%s} ", "ctty");
341 else if (fst->fs_uflags & PS_FST_UFLAG_CDIR)
342 xo_emit("{P: }{:fd/%s} ", "cwd");
343 else if (fst->fs_uflags & PS_FST_UFLAG_JAIL)
344 xo_emit("{P: }{:fd/%s} ", "jail");
345 else if (fst->fs_uflags & PS_FST_UFLAG_RDIR)
346 xo_emit("{P: }{:fd/%s} ", "root");
347 else if (fst->fs_uflags & PS_FST_UFLAG_TEXT)
348 xo_emit("{P: }{:fd/%s} ", "text");
349 else if (fst->fs_uflags & PS_FST_UFLAG_TRACE)
350 xo_emit("{:fd/%s} ", "trace");
352 xo_emit("{:fd/%5d} ", fst->fs_fd);
354 switch (fst->fs_type) {
355 case PS_FST_TYPE_VNODE:
357 xo_emit("{eq:fd_type/vnode}");
360 case PS_FST_TYPE_SOCKET:
362 xo_emit("{eq:fd_type/socket}");
365 case PS_FST_TYPE_PIPE:
367 xo_emit("{eq:fd_type/pipe}");
370 case PS_FST_TYPE_FIFO:
372 xo_emit("{eq:fd_type/fifo}");
375 case PS_FST_TYPE_KQUEUE:
377 xo_emit("{eq:fd_type/kqueue}");
380 case PS_FST_TYPE_CRYPTO:
382 xo_emit("{eq:fd_type/crypto}");
385 case PS_FST_TYPE_MQUEUE:
387 xo_emit("{eq:fd_type/mqueue}");
390 case PS_FST_TYPE_SHM:
392 xo_emit("{eq:fd_type/shm}");
395 case PS_FST_TYPE_PTS:
397 xo_emit("{eq:fd_type/pts}");
400 case PS_FST_TYPE_SEM:
402 xo_emit("{eq:fd_type/sem}");
405 case PS_FST_TYPE_PROCDESC:
407 xo_emit("{eq:fd_type/procdesc}");
410 case PS_FST_TYPE_DEV:
412 xo_emit("{eq:fd_type/dev}");
415 case PS_FST_TYPE_NONE:
417 xo_emit("{eq:fd_type/none}");
420 case PS_FST_TYPE_UNKNOWN:
423 xo_emit("{eq:fd_type/unknown}");
426 xo_emit("{d:fd_type/%1s/%s} ", str);
429 if (fst->fs_type == PS_FST_TYPE_VNODE) {
430 error = procstat_get_vnode_info(procstat, fst,
432 switch (vn.vn_type) {
433 case PS_FST_VTYPE_VREG:
435 xo_emit("{eq:vode_type/regular}");
438 case PS_FST_VTYPE_VDIR:
440 xo_emit("{eq:vode_type/directory}");
443 case PS_FST_VTYPE_VBLK:
445 xo_emit("{eq:vode_type/block}");
448 case PS_FST_VTYPE_VCHR:
450 xo_emit("{eq:vode_type/character}");
453 case PS_FST_VTYPE_VLNK:
455 xo_emit("{eq:vode_type/link}");
458 case PS_FST_VTYPE_VSOCK:
460 xo_emit("{eq:vode_type/socket}");
463 case PS_FST_VTYPE_VFIFO:
465 xo_emit("{eq:vode_type/fifo}");
468 case PS_FST_VTYPE_VBAD:
470 xo_emit("{eq:vode_type/revoked_device}");
473 case PS_FST_VTYPE_VNON:
475 xo_emit("{eq:vode_type/non}");
478 case PS_FST_VTYPE_UNKNOWN:
481 xo_emit("{eq:vode_type/unknown}");
485 xo_emit("{d:vnode_type/%1s/%s} ", str);
488 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_READ ?
490 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_WRITE ?
492 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_APPEND ?
494 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_ASYNC ?
496 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_SYNC ?
498 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_NONBLOCK ?
500 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_DIRECT ?
502 xo_emit("{d:/%s}", fst->fs_fflags & PS_FST_FFLAG_HASLOCK ?
505 xo_open_list("fd_flags");
506 if (fst->fs_fflags & PS_FST_FFLAG_READ)
507 xo_emit("{elq:fd_flags/read}");
508 if (fst->fs_fflags & PS_FST_FFLAG_WRITE)
509 xo_emit("{elq:fd_flags/write}");
510 if (fst->fs_fflags & PS_FST_FFLAG_APPEND)
511 xo_emit("{elq:fd_flags/append}");
512 if (fst->fs_fflags & PS_FST_FFLAG_ASYNC)
513 xo_emit("{elq:fd_flags/async}");
514 if (fst->fs_fflags & PS_FST_FFLAG_SYNC)
515 xo_emit("{elq:fd_flags/fsync}");
516 if (fst->fs_fflags & PS_FST_FFLAG_NONBLOCK)
517 xo_emit("{elq:fd_flags/nonblocking}");
518 if (fst->fs_fflags & PS_FST_FFLAG_DIRECT)
519 xo_emit("{elq:fd_flags/direct_io}");
520 if (fst->fs_fflags & PS_FST_FFLAG_HASLOCK)
521 xo_emit("{elq:fd_flags/lock_held}");
522 xo_close_list("fd_flags");
525 if (fst->fs_ref_count > -1)
526 xo_emit("{:ref_count/%3d/%d} ",
529 xo_emit("{q:ref_count/%3c/%c} ", '-');
530 if (fst->fs_offset > -1)
531 xo_emit("{:offset/%7jd/%jd} ",
532 (intmax_t)fst->fs_offset);
534 xo_emit("{q:offset/%7c/%c} ", '-');
537 print_capability(&fst->fs_cap_rights, capwidth);
540 switch (fst->fs_type) {
541 case PS_FST_TYPE_SOCKET:
542 error = procstat_get_socket_info(procstat, fst, &sock,
546 xo_emit("{:protocol/%-3s/%s} ",
547 protocol_to_string(sock.dom_family,
548 sock.type, sock.proto));
550 * While generally we like to print two addresses,
551 * local and peer, for sockets, it turns out to be
552 * more useful to print the first non-nul address for
553 * local sockets, as typically they aren't bound and
554 * connected, and the path strings can get long.
556 if (sock.dom_family == AF_LOCAL) {
557 struct sockaddr_un *sun =
558 (struct sockaddr_un *)&sock.sa_local;
560 if (sun->sun_path[0] != 0)
561 addr_to_string(&sock.sa_local,
562 src_addr, sizeof(src_addr));
564 addr_to_string(&sock.sa_peer,
565 src_addr, sizeof(src_addr));
566 xo_emit("{:path/%s}", src_addr);
568 addr_to_string(&sock.sa_local, src_addr,
570 addr_to_string(&sock.sa_peer, dst_addr,
572 xo_emit("{:path/%s %s}", src_addr, dst_addr);
577 xo_emit("{:protocol/%-3s/%s} ", "-");
578 xo_emit("{:path/%-18s/%s}", fst->fs_path != NULL ?
583 xo_close_instance("files");
585 xo_close_list("files");
586 procstat_freefiles(procstat, head);
projects / FreeBSD / FreeBSD.git / blob