Stack trace should be printed by default on blocking a syscall · Issue #58 · AkihiroSuda/gomodjail

When blocking a syscall, the stack trace should be printed by default.

Currently the stack trace can be printed with DEBUG=1, but it is too long and unreadable

gomodjail/libgomodjail_hook_darwin/libgomodjail_hook_darwin.c

Lines 307 to 355 in 0a86b34

    
           { 
        
             void *callstack[128]; 
        
             int frames = backtrace(callstack, sizeof(callstack) / sizeof(callstack[0])); 
        
             for (int i = 0; i < frames; ++i) { 
        
               Dl_info dli; 
        
               if (dladdr(callstack[i], &dli) > 0) { 
        
                 DEBUGF("* %s\t%s", dli.dli_fname, dli.dli_sname); 
        
                 fprintf(json_fp, "{\"file\":\"%s\",\"symbol\":\"%s\"},", dli.dli_fname, 
        
                         dli.dli_sname); 
        
                 if (STR_EQ(dli.dli_sname, "runtime.asmcgocall.abi0")) { 
        
                   uint64_t g_addr = fetch_g(); 
        
                   if (!g_addr) { 
        
                     ERRORF("!g_addr"); 
        
                     break; 
        
                   } 
        
                   uint64_t m_addr_addr = g_addr + go_runtime_offset_current->g_m; 
        
                   uint64_t m_addr = *(uint64_t *)m_addr_addr; 
        
                   if (!m_addr) { 
        
                     ERRORF("!m_addr"); 
        
                     break; 
        
                   } 
        
                   uint64_t libcallpc_addr = 
        
                       m_addr + go_runtime_offset_current->m_libcallpc; 
        
                   uint64_t libcallsp_addr = 
        
                       m_addr + go_runtime_offset_current->m_libcallsp; 
        
                   uint64_t pc = *(uint64_t *)libcallpc_addr; 
        
                   uint64_t sp = *(uint64_t *)libcallsp_addr; 
        
                   if (sp) { 
        
                     uint64_t bp = sp - BP_ADJUSTMENT; 
        
                     while (bp != 0) { 
        
                       uint64_t saved_bp = *(uint64_t *)bp; 
        
                       uint64_t ret_addr = *(uint64_t *)(bp + 8); 
        
                       Dl_info dli2; 
        
                       if (dladdr((void *)pc, &dli2) > 0) { 
        
                         DEBUGF("* %s\t%s", dli2.dli_fname, dli2.dli_sname); 
        
                         fprintf(json_fp, "{\"file\":\"%s\",\"symbol\":\"%s\"},", 
        
                                 dli2.dli_fname, dli2.dli_sname); 
        
                       } 
        
                       pc = ret_addr; 
        
                       bp = saved_bp; 
        
                     } 
        
                   } 
        
                 } 
        
               } else { 
        
                 DEBUGF("* %p", callstack[i]); 
        
                 fprintf(json_fp, "{\"address\":%lld},", (uint64_t)callstack[i]); 
        
               } 
        
             } 
        
           }

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Stack trace should be printed by default on blocking a syscall #58

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

	{
	void *callstack[128];
	int frames = backtrace(callstack, sizeof(callstack) / sizeof(callstack[0]));
	for (int i = 0; i < frames; ++i) {
	Dl_info dli;
	if (dladdr(callstack[i], &dli) > 0) {
	DEBUGF("* %s\t%s", dli.dli_fname, dli.dli_sname);
	fprintf(json_fp, "{\"file\":\"%s\",\"symbol\":\"%s\"},", dli.dli_fname,
	dli.dli_sname);
	if (STR_EQ(dli.dli_sname, "runtime.asmcgocall.abi0")) {
	uint64_t g_addr = fetch_g();
	if (!g_addr) {
	ERRORF("!g_addr");
	break;
	}
	uint64_t m_addr_addr = g_addr + go_runtime_offset_current->g_m;
	uint64_t m_addr = (uint64_t )m_addr_addr;
	if (!m_addr) {
	ERRORF("!m_addr");
	break;
	}
	uint64_t libcallpc_addr =
	m_addr + go_runtime_offset_current->m_libcallpc;
	uint64_t libcallsp_addr =
	m_addr + go_runtime_offset_current->m_libcallsp;
	uint64_t pc = (uint64_t )libcallpc_addr;
	uint64_t sp = (uint64_t )libcallsp_addr;
	if (sp) {
	uint64_t bp = sp - BP_ADJUSTMENT;
	while (bp != 0) {
	uint64_t saved_bp = (uint64_t )bp;
	uint64_t ret_addr = (uint64_t )(bp + 8);
	Dl_info dli2;
	if (dladdr((void *)pc, &dli2) > 0) {
	DEBUGF("* %s\t%s", dli2.dli_fname, dli2.dli_sname);
	fprintf(json_fp, "{\"file\":\"%s\",\"symbol\":\"%s\"},",
	dli2.dli_fname, dli2.dli_sname);
	}
	pc = ret_addr;
	bp = saved_bp;
	}
	}
	}
	} else {
	DEBUGF("* %p", callstack[i]);
	fprintf(json_fp, "{\"address\":%lld},", (uint64_t)callstack[i]);
	}
	}
	}

Stack trace should be printed by default on blocking a syscall #58

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions