implement attaching and detaching to process threads

2024-07-23 02:28:48 +03:00 · 2024-07-23 02:28:48 +03:00 · 0196d39a4b
commit 0196d39a4b
parent 57c74b1abb
3 changed files with 70 additions and 3 deletions
--- a/include/process.h
+++ b/include/process.h
@ -55,4 +55,10 @@ int find_active_thread(process_status_t* list, size_t count, process_status_t**
 // check if this process has any capability or is ran as root to be able to ptrace attach
 int check_ptrace_permissions();

+// attach to all threads of the process. on error returns 1 and detaches from already attached
+int process_attach_all(process_status_t* threads, size_t thread_count);
+
+// detaches from all threads
+void process_detach_all(process_status_t* threads, size_t thread_count);
+
 #endif
--- a/src/main.c
+++ b/src/main.c
@ -1,7 +1,9 @@
 #define _DEFAULT_SOURCE
 #include <unistd.h>
+#include <errno.h>
 #include <stdio.h>
 #include <stdlib.h>
+#include <string.h>
 #include "process.h"

 void print_process(process_status_t* proc)
@ -69,9 +71,6 @@ int main(int argc, char** argv)
    puts("Active thread:");
    print_process(active);

-    free(threads);
-    free(list);
-
    if (!check_ptrace_permissions())
    {
        fputs("this process doesn't have permission to ptrace.\n", stderr);
@ -79,5 +78,24 @@ int main(int argc, char** argv)
        return 1;
    }

+    // attach
+    if (process_attach_all(threads, thread_count))
+    {
+        fprintf(stderr, "failed to attach: %s\n", strerror(errno));
+        
+        free(threads);
+        free(list);
+        
+        return 1;
+    }
+    
+    puts("attached to all threads. press any key");
+    getc(stdin);
+
+    process_detach_all(threads, thread_count);
+    
+    free(threads);
+    free(list);
+    
    return 0;
 }
--- a/src/process.c
+++ b/src/process.c
@ -2,6 +2,8 @@
 #include "process.h"
 #include "debug.h"
 #include <sys/capability.h>
+#include <sys/ptrace.h>
+#include <sys/wait.h>
 #include <unistd.h>
 #include <fcntl.h>
 #include <dirent.h>
@ -236,3 +238,44 @@ int check_ptrace_permissions()

    return 0;
 }
+
+int process_attach_all(process_status_t* threads, size_t thread_count)
+{
+    for (size_t i = 0; i < thread_count; i++)
+    {
+        pid_t pid = threads[i].pid;
+        if (ptrace(PTRACE_ATTACH, pid, NULL, NULL) < 0)
+        {
+            // we've encountered error. now we must detach from attached and return 1
+            process_detach_all(threads, i+1);
+            return 1;
+        }
+
+        // now wait for thread to be stopped
+        int wstatus;
+        do {
+            waitpid(pid, &wstatus, 0);
+#if DEBUG
+            if (WIFEXITED(wstatus)) {
+                TRACE("exited, status=%d\n", WEXITSTATUS(wstatus));
+            } else if (WIFSIGNALED(wstatus)) {
+                TRACE("killed by signal %d\n", WTERMSIG(wstatus));
+            } else if (WIFSTOPPED(wstatus)) {
+                TRACE("stopped by signal %d\n", WSTOPSIG(wstatus));
+            } else if (WIFCONTINUED(wstatus)) {
+                TRACE("continued\n");
+            }
+
+#endif
+        } while (!(WIFSTOPPED(wstatus) && WSTOPSIG(wstatus) == SIGSTOP));
+
+        // since thread is properly stopped we can continue to the next one
+    }
+
+    return 0;
+}
+
+void process_detach_all(process_status_t* threads, size_t thread_count)
+{
+    while (thread_count--) ptrace(PTRACE_DETACH, threads[thread_count].pid, NULL, NULL);
+}