mirror of
https://github.com/zerotier/ZeroTierOne.git
synced 2024-12-24 15:16:40 +00:00
Added symbol checks in intercept. This seems wise after all
This commit is contained in:
parent
b0f6dc43b4
commit
f5c2600ca4
@ -35,7 +35,7 @@ char *progname = "";
|
|||||||
|
|
||||||
#include <unistd.h>
|
#include <unistd.h>
|
||||||
#include <stdint.h>
|
#include <stdint.h>
|
||||||
#include <pthread.h>
|
//#include <pthread.h>
|
||||||
#include <stdio.h>
|
#include <stdio.h>
|
||||||
#include <dlfcn.h>
|
#include <dlfcn.h>
|
||||||
#include <strings.h>
|
#include <strings.h>
|
||||||
@ -47,7 +47,7 @@ char *progname = "";
|
|||||||
#include <stdarg.h>
|
#include <stdarg.h>
|
||||||
#include <netdb.h>
|
#include <netdb.h>
|
||||||
#include <string.h>
|
#include <string.h>
|
||||||
#include <stdlib.h>
|
//#include <stdlib.h>
|
||||||
#include <sys/syscall.h>
|
#include <sys/syscall.h>
|
||||||
#include <sys/types.h>
|
#include <sys/types.h>
|
||||||
#include <sys/socket.h>
|
#include <sys/socket.h>
|
||||||
@ -80,7 +80,7 @@ static int (*realgetsockopt)(GETSOCKOPT_SIG);
|
|||||||
static int (*realaccept4)(ACCEPT4_SIG);
|
static int (*realaccept4)(ACCEPT4_SIG);
|
||||||
static long (*realsyscall)(SYSCALL_SIG);
|
static long (*realsyscall)(SYSCALL_SIG);
|
||||||
static int (*realclose)(CLOSE_SIG);
|
static int (*realclose)(CLOSE_SIG);
|
||||||
//static int (*realclone)(CLONE_SIG);
|
static int (*realclone)(CLONE_SIG);
|
||||||
//static int (*realpoll)(POLL_SIG);
|
//static int (*realpoll)(POLL_SIG);
|
||||||
static int (*realdup2)(DUP2_SIG);
|
static int (*realdup2)(DUP2_SIG);
|
||||||
static int (*realdup3)(DUP3_SIG);
|
static int (*realdup3)(DUP3_SIG);
|
||||||
@ -98,7 +98,7 @@ int getsockopt(GETSOCKOPT_SIG);
|
|||||||
int accept4(ACCEPT4_SIG);
|
int accept4(ACCEPT4_SIG);
|
||||||
long syscall(SYSCALL_SIG);
|
long syscall(SYSCALL_SIG);
|
||||||
int close(CLOSE_SIG);
|
int close(CLOSE_SIG);
|
||||||
//int clone(CLONE_SIG);
|
int clone(CLONE_SIG);
|
||||||
//int poll(POLL_SIG);
|
//int poll(POLL_SIG);
|
||||||
int dup2(DUP2_SIG);
|
int dup2(DUP2_SIG);
|
||||||
int dup3(DUP3_SIG);
|
int dup3(DUP3_SIG);
|
||||||
@ -148,6 +148,7 @@ static int fdret_sock; // used for fd-transfers
|
|||||||
static int newfd; // used for "this_end" socket
|
static int newfd; // used for "this_end" socket
|
||||||
static int thispid;
|
static int thispid;
|
||||||
static char* af_sock_name = "/tmp/.ztnc_e5cd7a9e1c5311ab";
|
static char* af_sock_name = "/tmp/.ztnc_e5cd7a9e1c5311ab";
|
||||||
|
static int instance_count = 0;
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Check for forking
|
* Check for forking
|
||||||
@ -156,7 +157,7 @@ int checkpid() {
|
|||||||
if(thispid != getpid()) {
|
if(thispid != getpid()) {
|
||||||
printf("clone/fork detected. re-initializing this instance.\n");
|
printf("clone/fork detected. re-initializing this instance.\n");
|
||||||
set_up_intercept();
|
set_up_intercept();
|
||||||
//fdret_sock = init_service_connection();
|
fdret_sock = init_service_connection();
|
||||||
thispid = getpid();
|
thispid = getpid();
|
||||||
}
|
}
|
||||||
return 0;
|
return 0;
|
||||||
@ -167,7 +168,8 @@ int checkpid() {
|
|||||||
*/
|
*/
|
||||||
int send_command(int rpc_fd, char *cmd)
|
int send_command(int rpc_fd, char *cmd)
|
||||||
{
|
{
|
||||||
#ifdef DEBUG_RPC
|
char metabuf[BUF_SZ]; // portion of buffer which contains RPC metadata for debugging
|
||||||
|
#ifdef VERBOSE
|
||||||
/*
|
/*
|
||||||
#define IDX_PID 0
|
#define IDX_PID 0
|
||||||
#define IDX_TID sizeof(pid_t)
|
#define IDX_TID sizeof(pid_t)
|
||||||
@ -177,7 +179,6 @@ int send_command(int rpc_fd, char *cmd)
|
|||||||
#define IDX_PAYLOAD IDX_TIME + sizeof(char)
|
#define IDX_PAYLOAD IDX_TIME + sizeof(char)
|
||||||
*/
|
*/
|
||||||
// [pid_t] [pid_t] [rpc_count] [int] [...]
|
// [pid_t] [pid_t] [rpc_count] [int] [...]
|
||||||
char metabuf[BUF_SZ]; // portion of buffer which contains RPC meta-data for debugging
|
|
||||||
memset(metabuf, '\0', BUF_SZ);
|
memset(metabuf, '\0', BUF_SZ);
|
||||||
pid_t pid = syscall(SYS_getpid);
|
pid_t pid = syscall(SYS_getpid);
|
||||||
pid_t tid = syscall(SYS_gettid);
|
pid_t tid = syscall(SYS_gettid);
|
||||||
@ -186,15 +187,13 @@ int send_command(int rpc_fd, char *cmd)
|
|||||||
time_t timestamp;
|
time_t timestamp;
|
||||||
timestamp = time(NULL);
|
timestamp = time(NULL);
|
||||||
strftime(timestring, sizeof(timestring), "%H:%M:%S", localtime(×tamp));
|
strftime(timestring, sizeof(timestring), "%H:%M:%S", localtime(×tamp));
|
||||||
|
|
||||||
memcpy(&metabuf[IDX_PID], &pid, sizeof(pid_t) ); // pid
|
memcpy(&metabuf[IDX_PID], &pid, sizeof(pid_t) ); // pid
|
||||||
memcpy(&metabuf[IDX_TID], &tid, sizeof(pid_t) ); // tid
|
memcpy(&metabuf[IDX_TID], &tid, sizeof(pid_t) ); // tid
|
||||||
memcpy(&metabuf[IDX_COUNT], &rpc_count, sizeof(rpc_count) ); // rpc_count
|
memcpy(&metabuf[IDX_COUNT], &rpc_count, sizeof(rpc_count) ); // rpc_count
|
||||||
memcpy(&metabuf[IDX_TIME], ×tring, 20 ); // timestamp
|
memcpy(&metabuf[IDX_TIME], ×tring, 20 ); // timestamp
|
||||||
#endif
|
#endif
|
||||||
// copy payload into final command buffer
|
// Combine command flag+payload with RPC metadata
|
||||||
memcpy(&metabuf[IDX_PAYLOAD], cmd, PAYLOAD_SZ);
|
memcpy(&metabuf[IDX_PAYLOAD], cmd, PAYLOAD_SZ);
|
||||||
//dwr(MSG_DEBUG," RX: (pid=%d, tid=%d, rpc_count=%d, timestamp=%s, cmd=%d\n", pid, tid, rpc_count, timestring, cmd[0]);
|
|
||||||
int n_write = write(rpc_fd, &metabuf, BUF_SZ);
|
int n_write = write(rpc_fd, &metabuf, BUF_SZ);
|
||||||
if(n_write < 0){
|
if(n_write < 0){
|
||||||
dwr(MSG_DEBUG,"Error writing command to service (CMD = %d)\n", cmd[0]);
|
dwr(MSG_DEBUG,"Error writing command to service (CMD = %d)\n", cmd[0]);
|
||||||
@ -232,7 +231,7 @@ int get_new_fd(int oversock)
|
|||||||
char buf[BUF_SZ];
|
char buf[BUF_SZ];
|
||||||
int newfd;
|
int newfd;
|
||||||
ssize_t size = sock_fd_read(oversock, buf, sizeof(buf), &newfd);
|
ssize_t size = sock_fd_read(oversock, buf, sizeof(buf), &newfd);
|
||||||
dwr(MSG_DEBUG, "get_new_fd(): RX: fd = %d\n", newfd);
|
dwr(MSG_DEBUG, "get_new_fd(): RX: fd = (%d) over (%d)\n", newfd, oversock);
|
||||||
return newfd;
|
return newfd;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -262,20 +261,28 @@ int is_mapped_to_service(int sockfd)
|
|||||||
/* Sets up the connection pipes and sockets to the service */
|
/* Sets up the connection pipes and sockets to the service */
|
||||||
int init_service_connection()
|
int init_service_connection()
|
||||||
{
|
{
|
||||||
|
instance_count++;
|
||||||
dwr(MSG_DEBUG,"init_service_connection()\n");
|
dwr(MSG_DEBUG,"init_service_connection()\n");
|
||||||
if(!is_initialized) {
|
//if(!is_initialized) {
|
||||||
struct sockaddr_un addr;
|
struct sockaddr_un addr;
|
||||||
int tfd = -1, attempts = 0, conn_err = -1;
|
int tfd = -1, attempts = 0, conn_err = -1;
|
||||||
memset(&addr, 0, sizeof(addr));
|
memset(&addr, 0, sizeof(addr));
|
||||||
addr.sun_family = AF_UNIX;
|
addr.sun_family = AF_UNIX;
|
||||||
strncpy(addr.sun_path, af_sock_name, sizeof(addr.sun_path)-1);
|
strncpy(addr.sun_path, af_sock_name, sizeof(addr.sun_path)-1);
|
||||||
|
|
||||||
|
dwr(MSG_DEBUG, "init(): pre-realsocket\n");
|
||||||
if ( (tfd = realsocket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
|
if ( (tfd = realsocket(AF_UNIX, SOCK_STREAM, 0)) == -1) {
|
||||||
perror("socket error");
|
perror("socket error");
|
||||||
exit(-1);
|
exit(-1);
|
||||||
}
|
}
|
||||||
|
dwr(MSG_DEBUG, "init(): post-realsocket, conn_err = %d, attempts = %d\n", conn_err, attempts);
|
||||||
|
|
||||||
while(conn_err < 0 && attempts < SERVICE_CONNECT_ATTEMPTS) {
|
while(conn_err < 0 && attempts < SERVICE_CONNECT_ATTEMPTS) {
|
||||||
|
dwr(MSG_DEBUG, "init(): Attempting!\n");
|
||||||
|
|
||||||
conn_err = realconnect(tfd, (struct sockaddr*)&addr, sizeof(addr));
|
conn_err = realconnect(tfd, (struct sockaddr*)&addr, sizeof(addr));
|
||||||
|
dwr(MSG_DEBUG, "init(): post-realconnect\n");
|
||||||
|
|
||||||
if(conn_err < 0) {
|
if(conn_err < 0) {
|
||||||
dwr(MSG_DEBUG,"re-attempting connection in %ds\n", 1+attempts);
|
dwr(MSG_DEBUG,"re-attempting connection in %ds\n", 1+attempts);
|
||||||
sleep(1);
|
sleep(1);
|
||||||
@ -283,14 +290,14 @@ int init_service_connection()
|
|||||||
else {
|
else {
|
||||||
dwr(MSG_DEBUG,"AF_UNIX connection established: %d\n", tfd);
|
dwr(MSG_DEBUG,"AF_UNIX connection established: %d\n", tfd);
|
||||||
is_initialized = 1;
|
is_initialized = 1;
|
||||||
int newtfd = realdup2(tfd, 1023);
|
int newtfd = realdup2(tfd, RPC_FD-instance_count);
|
||||||
dwr(MSG_DEBUG,"dup'd to rpc_fd = %d\n", newtfd);
|
dwr(MSG_DEBUG,"dup'd to rpc_fd = %d\n", newtfd);
|
||||||
close(tfd);
|
close(tfd);
|
||||||
return newtfd;
|
return newtfd;
|
||||||
}
|
}
|
||||||
attempts++;
|
attempts++;
|
||||||
}
|
}
|
||||||
}
|
//}
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -330,7 +337,7 @@ void load_symbols(void)
|
|||||||
realsetsockopt = dlsym(RTLD_NEXT, "setsockopt");
|
realsetsockopt = dlsym(RTLD_NEXT, "setsockopt");
|
||||||
realgetsockopt = dlsym(RTLD_NEXT, "getsockopt");
|
realgetsockopt = dlsym(RTLD_NEXT, "getsockopt");
|
||||||
realaccept4 = dlsym(RTLD_NEXT, "accept4");
|
realaccept4 = dlsym(RTLD_NEXT, "accept4");
|
||||||
//realclone = dlsym(RTLD_NEXT, "clone");
|
realclone = dlsym(RTLD_NEXT, "clone");
|
||||||
realclose = dlsym(RTLD_NEXT, "close");
|
realclose = dlsym(RTLD_NEXT, "close");
|
||||||
realsyscall = dlsym(RTLD_NEXT, "syscall");
|
realsyscall = dlsym(RTLD_NEXT, "syscall");
|
||||||
//realsyscall = dlsym(RTLD_NEXT, "poll");
|
//realsyscall = dlsym(RTLD_NEXT, "poll");
|
||||||
@ -351,7 +358,7 @@ void load_symbols(void)
|
|||||||
realsetsockopt = dlsym(lib, "setsockopt");
|
realsetsockopt = dlsym(lib, "setsockopt");
|
||||||
realgetsockopt = dlsym(lib, "getsockopt");
|
realgetsockopt = dlsym(lib, "getsockopt");
|
||||||
realaccept4 = dlsym(lib), "accept4");
|
realaccept4 = dlsym(lib), "accept4");
|
||||||
//realclone = dlsym(lib, "clone");
|
realclone = dlsym(lib, "clone");
|
||||||
realclose = dlsym(lib, "close");
|
realclose = dlsym(lib, "close");
|
||||||
realsyscall = dlsym(lib, "syscall");
|
realsyscall = dlsym(lib, "syscall");
|
||||||
//realsyscall = dlsym(lib, "poll");
|
//realsyscall = dlsym(lib, "poll");
|
||||||
@ -392,7 +399,11 @@ void set_up_intercept()
|
|||||||
/* int socket, int level, int option_name, const void *option_value, socklen_t option_len */
|
/* int socket, int level, int option_name, const void *option_value, socklen_t option_len */
|
||||||
int setsockopt(SETSOCKOPT_SIG)
|
int setsockopt(SETSOCKOPT_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\nsetsockopt(%d)\n", socket);
|
if(realsetsockopt == NULL){
|
||||||
|
dwr(MSG_ERROR, "setsockopt(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\nsetsockopt(%d)\n", socket);
|
||||||
/*
|
/*
|
||||||
if(is_mapped_to_service(socket) < 0) { // First, check if the service manages this
|
if(is_mapped_to_service(socket) < 0) { // First, check if the service manages this
|
||||||
return realsetsockopt(socket, level, option_name, option_value, option_len);
|
return realsetsockopt(socket, level, option_name, option_value, option_len);
|
||||||
@ -423,7 +434,11 @@ int setsockopt(SETSOCKOPT_SIG)
|
|||||||
/* int sockfd, int level, int optname, void *optval, socklen_t *optlen */
|
/* int sockfd, int level, int optname, void *optval, socklen_t *optlen */
|
||||||
int getsockopt(GETSOCKOPT_SIG)
|
int getsockopt(GETSOCKOPT_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\ngetsockopt(%d)\n", sockfd);
|
if(realgetsockopt == NULL){
|
||||||
|
dwr(MSG_ERROR, "getsockopt(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\ngetsockopt(%d)\n", sockfd);
|
||||||
/*
|
/*
|
||||||
if(is_mapped_to_service(sockfd) < 0) { // First, check if the service manages this
|
if(is_mapped_to_service(sockfd) < 0) { // First, check if the service manages this
|
||||||
return realgetsockopt(sockfd, level, optname, optval, optlen);
|
return realgetsockopt(sockfd, level, optname, optval, optlen);
|
||||||
@ -453,7 +468,11 @@ int getsockopt(GETSOCKOPT_SIG)
|
|||||||
socket() intercept function */
|
socket() intercept function */
|
||||||
int socket(SOCKET_SIG)
|
int socket(SOCKET_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\nsocket():\n");
|
if(realsocket == NULL){
|
||||||
|
dwr(MSG_ERROR, "socket(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\nsocket():\n");
|
||||||
int err;
|
int err;
|
||||||
#ifdef CHECKS
|
#ifdef CHECKS
|
||||||
/* Check that type makes sense */
|
/* Check that type makes sense */
|
||||||
@ -558,7 +577,11 @@ int socket(SOCKET_SIG)
|
|||||||
connect() intercept function */
|
connect() intercept function */
|
||||||
int connect(CONNECT_SIG)
|
int connect(CONNECT_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\nconnect(%d):\n", __fd);
|
if(realconnect == NULL){
|
||||||
|
dwr(MSG_ERROR, "connect(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\nconnect(%d):\n", __fd);
|
||||||
print_addr(__addr);
|
print_addr(__addr);
|
||||||
struct sockaddr_in *connaddr;
|
struct sockaddr_in *connaddr;
|
||||||
connaddr = (struct sockaddr_in *) __addr;
|
connaddr = (struct sockaddr_in *) __addr;
|
||||||
@ -639,6 +662,10 @@ int connect(CONNECT_SIG)
|
|||||||
fd_set *exceptfds, struct timeval *timeout */
|
fd_set *exceptfds, struct timeval *timeout */
|
||||||
int select(SELECT_SIG)
|
int select(SELECT_SIG)
|
||||||
{
|
{
|
||||||
|
if(realselect == NULL){
|
||||||
|
dwr(MSG_ERROR, "select(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
//dwr(MSG_DEBUG,"select():\n");
|
//dwr(MSG_DEBUG,"select():\n");
|
||||||
return realselect(n, readfds, writefds, exceptfds, timeout);
|
return realselect(n, readfds, writefds, exceptfds, timeout);
|
||||||
}
|
}
|
||||||
@ -651,7 +678,11 @@ int select(SELECT_SIG)
|
|||||||
bind() intercept function */
|
bind() intercept function */
|
||||||
int bind(BIND_SIG)
|
int bind(BIND_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\nbind(%d):\n", sockfd);
|
if(realbind == NULL){
|
||||||
|
dwr(MSG_ERROR, "bind(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\nbind(%d):\n", sockfd);
|
||||||
print_addr(addr);
|
print_addr(addr);
|
||||||
#ifdef CHECKS
|
#ifdef CHECKS
|
||||||
/* Check that this is a valid fd */
|
/* Check that this is a valid fd */
|
||||||
@ -714,7 +745,11 @@ int bind(BIND_SIG)
|
|||||||
/* int sockfd, struct sockaddr *addr, socklen_t *addrlen, int flags */
|
/* int sockfd, struct sockaddr *addr, socklen_t *addrlen, int flags */
|
||||||
int accept4(ACCEPT4_SIG)
|
int accept4(ACCEPT4_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\naccept4(%d):\n", sockfd);
|
if(realaccept4 == NULL){
|
||||||
|
dwr(MSG_ERROR, "accept4(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\naccept4(%d):\n", sockfd);
|
||||||
#ifdef CHECKS
|
#ifdef CHECKS
|
||||||
if (flags & ~(SOCK_CLOEXEC | SOCK_NONBLOCK)) {
|
if (flags & ~(SOCK_CLOEXEC | SOCK_NONBLOCK)) {
|
||||||
errno = EINVAL;
|
errno = EINVAL;
|
||||||
@ -741,7 +776,11 @@ int accept4(ACCEPT4_SIG)
|
|||||||
accept() intercept function */
|
accept() intercept function */
|
||||||
int accept(ACCEPT_SIG)
|
int accept(ACCEPT_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\naccept(%d):\n", sockfd);
|
if(realaccept == NULL){
|
||||||
|
dwr(MSG_ERROR, "accept(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\naccept(%d):\n", sockfd);
|
||||||
#ifdef CHECKS
|
#ifdef CHECKS
|
||||||
/* Check that this is a valid fd */
|
/* Check that this is a valid fd */
|
||||||
if(fcntl(sockfd, F_GETFD) < 0) {
|
if(fcntl(sockfd, F_GETFD) < 0) {
|
||||||
@ -810,13 +849,19 @@ int accept(ACCEPT_SIG)
|
|||||||
if(n > 0)
|
if(n > 0)
|
||||||
{
|
{
|
||||||
new_conn_socket = get_new_fd(fdret_sock);
|
new_conn_socket = get_new_fd(fdret_sock);
|
||||||
|
dwr(MSG_DEBUG, " accept(): RX: fd = (%d) over (%d)\n", new_conn_socket, fdret_sock);
|
||||||
if(new_conn_socket > 0) {
|
if(new_conn_socket > 0) {
|
||||||
/* Send our local-fd number back to service so it can complete its mapping table */
|
/* Send our local-fd number back to service so it can complete its mapping table */
|
||||||
memset(cmd, '\0', BUF_SZ);
|
memset(cmd, '\0', BUF_SZ);
|
||||||
cmd[0] = RPC_MAP;
|
cmd[0] = RPC_MAP;
|
||||||
memcpy(&cmd[1], &new_conn_socket, sizeof(new_conn_socket));
|
memcpy(&cmd[1], &new_conn_socket, sizeof(new_conn_socket));
|
||||||
pthread_mutex_lock(&lock);
|
pthread_mutex_lock(&lock);
|
||||||
int n_write = write(fdret_sock, cmd, BUF_SZ);
|
|
||||||
|
dwr(MSG_DEBUG, "accept(): sending perceived fd (%d) to service.\n", new_conn_socket);
|
||||||
|
//int n_write = write(fdret_sock, cmd, BUF_SZ);
|
||||||
|
|
||||||
|
int n_write = send_command(fdret_sock, cmd);
|
||||||
|
|
||||||
if(n_write < 0) {
|
if(n_write < 0) {
|
||||||
errno = ECONNABORTED; // FIXME: Closest match, service unreachable
|
errno = ECONNABORTED; // FIXME: Closest match, service unreachable
|
||||||
handle_error("accept", "ECONNABORTED - Error sending perceived FD to service", -1);
|
handle_error("accept", "ECONNABORTED - Error sending perceived FD to service", -1);
|
||||||
@ -848,7 +893,11 @@ int accept(ACCEPT_SIG)
|
|||||||
listen() intercept function */
|
listen() intercept function */
|
||||||
int listen(LISTEN_SIG)
|
int listen(LISTEN_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"\n\nlisten(%d):\n", sockfd);
|
if(reallisten == NULL){
|
||||||
|
dwr(MSG_ERROR, "listen(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"\nlisten(%d):\n", sockfd);
|
||||||
int sock_type;
|
int sock_type;
|
||||||
socklen_t sock_type_len = sizeof(sock_type);
|
socklen_t sock_type_len = sizeof(sock_type);
|
||||||
|
|
||||||
@ -906,13 +955,17 @@ int listen(LISTEN_SIG)
|
|||||||
------------------------------------------------------------------------------*/
|
------------------------------------------------------------------------------*/
|
||||||
|
|
||||||
// int (*fn)(void *), void *child_stack, int flags, void *arg, ...
|
// int (*fn)(void *), void *child_stack, int flags, void *arg, ...
|
||||||
/*
|
|
||||||
int clone(CLONE_SIG)
|
int clone(CLONE_SIG)
|
||||||
{
|
{
|
||||||
dwr(MSG_DEBUG,"clone()\n");
|
if(realclone == NULL){
|
||||||
return realclone(fn, child_stack, flags, arg);
|
dwr(MSG_ERROR, "clone(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
dwr(MSG_DEBUG,"clone()\n");
|
||||||
|
int err = realclone(fn, child_stack, flags, arg);
|
||||||
|
checkpid();
|
||||||
|
return err;
|
||||||
}
|
}
|
||||||
*/
|
|
||||||
|
|
||||||
|
|
||||||
/*------------------------------------------------------------------------------
|
/*------------------------------------------------------------------------------
|
||||||
@ -936,10 +989,14 @@ int poll(POLL_SIG)
|
|||||||
// int fd
|
// int fd
|
||||||
int close(CLOSE_SIG)
|
int close(CLOSE_SIG)
|
||||||
{
|
{
|
||||||
checkpid(); // Required for httpd-2.4.17-3.x86_64 -- After clone, some symbols aren't initialized yet
|
//checkpid(); // Required for httpd-2.4.17-3.x86_64 -- After clone, some symbols aren't initialized yet
|
||||||
|
if(realclose == NULL){
|
||||||
|
dwr(MSG_ERROR, "close(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
dwr(MSG_DEBUG,"close(%d)\n", fd);
|
dwr(MSG_DEBUG,"close(%d)\n", fd);
|
||||||
if(fd == fdret_sock)
|
if(fd == fdret_sock)
|
||||||
return 0; // FIXME: Ignore request to shut down our rpc fd, this is *almost always* safe
|
return -1; // FIXME: Ignore request to shut down our rpc fd, this is *almost always* safe
|
||||||
if(fd != STDIN_FILENO && fd != STDOUT_FILENO && fd != STDERR_FILENO)
|
if(fd != STDIN_FILENO && fd != STDOUT_FILENO && fd != STDERR_FILENO)
|
||||||
return realclose(fd);
|
return realclose(fd);
|
||||||
return -1;
|
return -1;
|
||||||
@ -952,6 +1009,10 @@ int close(CLOSE_SIG)
|
|||||||
// int oldfd, int newfd
|
// int oldfd, int newfd
|
||||||
int dup2(DUP2_SIG)
|
int dup2(DUP2_SIG)
|
||||||
{
|
{
|
||||||
|
if(realdup2 == NULL){
|
||||||
|
dwr(MSG_ERROR, "dup2(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
dwr(MSG_DEBUG,"dup2(%d, %d)\n", oldfd, newfd);
|
dwr(MSG_DEBUG,"dup2(%d, %d)\n", oldfd, newfd);
|
||||||
if(oldfd == fdret_sock) {
|
if(oldfd == fdret_sock) {
|
||||||
dwr(MSG_DEBUG,"client application attempted to dup2 RPC socket (%d). This is not allowed.\n", oldfd);
|
dwr(MSG_DEBUG,"client application attempted to dup2 RPC socket (%d). This is not allowed.\n", oldfd);
|
||||||
@ -959,6 +1020,7 @@ int dup2(DUP2_SIG)
|
|||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
if(oldfd != STDIN_FILENO && oldfd != STDOUT_FILENO && oldfd != STDERR_FILENO)
|
if(oldfd != STDIN_FILENO && oldfd != STDOUT_FILENO && oldfd != STDERR_FILENO)
|
||||||
|
if(newfd != STDIN_FILENO && newfd != STDOUT_FILENO && newfd != STDERR_FILENO)
|
||||||
return realdup2(oldfd, newfd);
|
return realdup2(oldfd, newfd);
|
||||||
return -1;
|
return -1;
|
||||||
}
|
}
|
||||||
@ -970,6 +1032,10 @@ int dup2(DUP2_SIG)
|
|||||||
// int oldfd, int newfd, int flags
|
// int oldfd, int newfd, int flags
|
||||||
int dup3(DUP3_SIG)
|
int dup3(DUP3_SIG)
|
||||||
{
|
{
|
||||||
|
if(realdup3 == NULL){
|
||||||
|
dwr(MSG_ERROR, "dup3(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
dwr(MSG_DEBUG,"dup3(%d, %d, %d)\n", oldfd, newfd, flags);
|
dwr(MSG_DEBUG,"dup3(%d, %d, %d)\n", oldfd, newfd, flags);
|
||||||
#ifdef DEBUG
|
#ifdef DEBUG
|
||||||
// Only do this check if we want to debug the intercept, otherwise, dont mess with
|
// Only do this check if we want to debug the intercept, otherwise, dont mess with
|
||||||
@ -987,8 +1053,11 @@ int dup3(DUP3_SIG)
|
|||||||
------------------------------------ syscall()----------------------------------
|
------------------------------------ syscall()----------------------------------
|
||||||
------------------------------------------------------------------------------*/
|
------------------------------------------------------------------------------*/
|
||||||
|
|
||||||
long syscall(SYSCALL_SIG)
|
long syscall(SYSCALL_SIG){
|
||||||
{
|
if(realsyscall == NULL){
|
||||||
|
dwr(MSG_ERROR, "syscall(): SYMBOL NOT FOUND.\n");
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
dwr(MSG_DEBUG_EXTRA,"syscall(%u, ...):\n", number);
|
dwr(MSG_DEBUG_EXTRA,"syscall(%u, ...):\n", number);
|
||||||
|
|
||||||
va_list ap;
|
va_list ap;
|
||||||
@ -1020,9 +1089,7 @@ long syscall(SYSCALL_SIG)
|
|||||||
errno = old_errno;
|
errno = old_errno;
|
||||||
|
|
||||||
if(err == -EBADF) {
|
if(err == -EBADF) {
|
||||||
//errno = EAGAIN;
|
err = -EAGAIN; // For hysterical raisons
|
||||||
err = -EAGAIN;
|
|
||||||
//exit(0);
|
|
||||||
}
|
}
|
||||||
|
|
||||||
return err;
|
return err;
|
||||||
|
@ -449,12 +449,12 @@ void NetconEthernetTap::threadMain()
|
|||||||
compact_dump();
|
compact_dump();
|
||||||
prev_status_time = now;
|
prev_status_time = now;
|
||||||
if(rpc_sockets.size() || tcp_connections.size()) {
|
if(rpc_sockets.size() || tcp_connections.size()) {
|
||||||
|
/*
|
||||||
// dump();
|
// dump();
|
||||||
/* Here we will periodically check the list of rpc_sockets for those that
|
// Here we will periodically check the list of rpc_sockets for those that
|
||||||
do not currently have any data connection associated with them. If they are
|
// do not currently have any data connection associated with them. If they are
|
||||||
unused, then we will try to read from them, if they fail, we can safely assume
|
// unused, then we will try to read from them, if they fail, we can safely assume
|
||||||
that the client has closed their end and we can close ours */
|
// that the client has closed their end and we can close ours
|
||||||
for(size_t i = 0; i<tcp_connections.size(); i++) {
|
for(size_t i = 0; i<tcp_connections.size(); i++) {
|
||||||
if(tcp_connections[i]->listening) {
|
if(tcp_connections[i]->listening) {
|
||||||
char c;
|
char c;
|
||||||
@ -495,6 +495,7 @@ void NetconEthernetTap::threadMain()
|
|||||||
phyOnUnixData(rpc_sockets[i],_phy.getuptr(rpc_sockets[i]),&tmpbuf,BUF_SZ);
|
phyOnUnixData(rpc_sockets[i],_phy.getuptr(rpc_sockets[i]),&tmpbuf,BUF_SZ);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
*/
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
// Main TCP/ETHARP timer section
|
// Main TCP/ETHARP timer section
|
||||||
@ -527,7 +528,7 @@ void NetconEthernetTap::phyOnTcpWritable(PhySocket *sock,void **uptr) {}
|
|||||||
void NetconEthernetTap::phyOnUnixClose(PhySocket *sock,void **uptr) {
|
void NetconEthernetTap::phyOnUnixClose(PhySocket *sock,void **uptr) {
|
||||||
dwr(MSG_DEBUG, " phyOnUnixClose(sock=0x%x, uptr=0x%x): fd = %d\n", sock, uptr, _phy.getDescriptor(sock));
|
dwr(MSG_DEBUG, " phyOnUnixClose(sock=0x%x, uptr=0x%x): fd = %d\n", sock, uptr, _phy.getDescriptor(sock));
|
||||||
TcpConnection *conn = (TcpConnection*)*uptr;
|
TcpConnection *conn = (TcpConnection*)*uptr;
|
||||||
closeConnection(conn);
|
//closeConnection(conn);
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
@ -537,9 +538,7 @@ void NetconEthernetTap::phyOnFileDescriptorActivity(PhySocket *sock,void **uptr,
|
|||||||
{
|
{
|
||||||
if(readable) {
|
if(readable) {
|
||||||
TcpConnection *conn = (TcpConnection*)*uptr;
|
TcpConnection *conn = (TcpConnection*)*uptr;
|
||||||
if(conn->dataSock) // Sometimes a connection may be closed via nc_recved, check first
|
if(conn->dataSock) { // Sometimes a connection may be closed via nc_recved, check first
|
||||||
{
|
|
||||||
//Mutex::Lock _l(lwipstack->_lock);
|
|
||||||
lwipstack->_lock.lock();
|
lwipstack->_lock.lock();
|
||||||
handle_write(conn);
|
handle_write(conn);
|
||||||
lwipstack->_lock.unlock();
|
lwipstack->_lock.unlock();
|
||||||
@ -554,6 +553,7 @@ void NetconEthernetTap::phyOnFileDescriptorActivity(PhySocket *sock,void **uptr,
|
|||||||
* Add a new PhySocket for the client connections
|
* Add a new PhySocket for the client connections
|
||||||
*/
|
*/
|
||||||
void NetconEthernetTap::phyOnUnixAccept(PhySocket *sockL,PhySocket *sockN,void **uptrL,void **uptrN) {
|
void NetconEthernetTap::phyOnUnixAccept(PhySocket *sockL,PhySocket *sockN,void **uptrL,void **uptrN) {
|
||||||
|
dwr(MSG_DEBUG, " phyOnUnixAccept(): accepting new connection\n");
|
||||||
if(find(rpc_sockets.begin(), rpc_sockets.end(), sockN) != rpc_sockets.end()){
|
if(find(rpc_sockets.begin(), rpc_sockets.end(), sockN) != rpc_sockets.end()){
|
||||||
dwr(MSG_ERROR, " phyOnUnixAccept(): SockN (0x%x) already exists!\n", sockN);
|
dwr(MSG_ERROR, " phyOnUnixAccept(): SockN (0x%x) already exists!\n", sockN);
|
||||||
return;
|
return;
|
||||||
@ -806,9 +806,10 @@ err_t NetconEthernetTap::nc_recved(void *arg, struct tcp_pcb *tpcb, struct pbuf
|
|||||||
dwr(MSG_INFO, " nc_recved(): unable to write entire pbuf to buffer\n");
|
dwr(MSG_INFO, " nc_recved(): unable to write entire pbuf to buffer\n");
|
||||||
}
|
}
|
||||||
l->tap->lwipstack->_tcp_recved(tpcb, n); // TODO: would it be more efficient to call this once at the end?
|
l->tap->lwipstack->_tcp_recved(tpcb, n); // TODO: would it be more efficient to call this once at the end?
|
||||||
|
dwr(MSG_DEBUG, " nc_recved(): wrote %d bytes to (%d)\n", n, l->tap->_phy.getDescriptor(l->conn->dataSock));
|
||||||
}
|
}
|
||||||
else {
|
else {
|
||||||
dwr(MSG_INFO, " nc_recved(): No data written to intercept buffer\n");
|
dwr(MSG_INFO, " nc_recved(): No data written to intercept buffer (%d)\n", l->tap->_phy.getDescriptor(l->conn->dataSock));
|
||||||
}
|
}
|
||||||
p = p->next;
|
p = p->next;
|
||||||
}
|
}
|
||||||
@ -1015,22 +1016,20 @@ void NetconEthernetTap::handle_map_request(PhySocket *sock, void **uptr, unsigne
|
|||||||
*/
|
*/
|
||||||
void NetconEthernetTap::handle_retval(PhySocket *sock, void **uptr, int rpc_count, int newfd)
|
void NetconEthernetTap::handle_retval(PhySocket *sock, void **uptr, int rpc_count, int newfd)
|
||||||
{
|
{
|
||||||
dwr(4, " handle_retval()\n");
|
dwr(MSG_DEBUG, " handle_retval()\n");
|
||||||
TcpConnection *conn = (TcpConnection*)*uptr;
|
TcpConnection *conn = (TcpConnection*)*uptr;
|
||||||
if(!conn->pending)
|
if(!conn->pending)
|
||||||
return;
|
return;
|
||||||
|
|
||||||
conn->pending = false;
|
conn->pending = false;
|
||||||
conn->perceived_fd = newfd;
|
conn->perceived_fd = newfd;
|
||||||
|
|
||||||
if(rpc_count==rpc_counter) {
|
if(rpc_count==rpc_counter) {
|
||||||
dwr(2, "Detected repeat RPC.\n");
|
dwr(MSG_ERROR, " handle_retval(): Detected repeat RPC.\n");
|
||||||
//return;
|
//return;
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
rpc_counter = rpc_count;
|
rpc_counter = rpc_count;
|
||||||
|
|
||||||
dwr(4, " handle_retval(): CONN:%x - Mapping [our=%d -> their=%d]\n",conn,
|
dwr(MSG_DEBUG, " handle_retval(): CONN:%x - Mapping [our=%d -> their=%d]\n",conn,
|
||||||
_phy.getDescriptor(conn->dataSock), conn->perceived_fd);
|
_phy.getDescriptor(conn->dataSock), conn->perceived_fd);
|
||||||
|
|
||||||
/* Check for pre-existing connection for this socket ---
|
/* Check for pre-existing connection for this socket ---
|
||||||
@ -1103,7 +1102,7 @@ void NetconEthernetTap::handle_bind(PhySocket *sock, void **uptr, struct bind_st
|
|||||||
conn_addr.addr = *((u32_t *)_ips[0].rawIpData());
|
conn_addr.addr = *((u32_t *)_ips[0].rawIpData());
|
||||||
TcpConnection *conn = getConnectionByTheirFD(sock, bind_rpc->sockfd);
|
TcpConnection *conn = getConnectionByTheirFD(sock, bind_rpc->sockfd);
|
||||||
|
|
||||||
dwr(3, " handle_bind(%d)\n", bind_rpc->sockfd);
|
dwr(MSG_DEBUG, " handle_bind(%d)\n", bind_rpc->sockfd);
|
||||||
|
|
||||||
if(conn) {
|
if(conn) {
|
||||||
if(conn->pcb->state == CLOSED){
|
if(conn->pcb->state == CLOSED){
|
||||||
|
Binary file not shown.
@ -27,7 +27,7 @@
|
|||||||
|
|
||||||
SHCC=gcc
|
SHCC=gcc
|
||||||
|
|
||||||
intercept_CFLAGS = -c -fPIC -g -O2 -Wall -std=c99 -DERRORS_ARE_FATAL -DDEBUG_RPC -DCHECKS -D_GNU_SOURCE -DNETCON_INTERCEPT
|
intercept_CFLAGS = -c -fPIC -g -O2 -Wall -std=c99 -DERRORS_ARE_FATAL -DVERBOSE -DDEBUG_RPC -DCHECKS -D_GNU_SOURCE -DNETCON_INTERCEPT
|
||||||
LIB_NAME = intercept
|
LIB_NAME = intercept
|
||||||
SHLIB_EXT=dylib
|
SHLIB_EXT=dylib
|
||||||
SHLIB_MAJOR = 1
|
SHLIB_MAJOR = 1
|
||||||
|
1635
netcon/trace.txt
1635
netcon/trace.txt
File diff suppressed because it is too large
Load Diff
Loading…
Reference in New Issue
Block a user