This is an archive of the discontinued LLVM Phabricator instance.

Differential D152933

[lldb][Android] Add platform.plugin.remote-android.package-name
ClosedPublic

Authored by splhack on Jun 14 2023, 9:14 AM.

Details

Reviewers
clayborg
bulbazord
labath
lanza
Commits
rGfabd16c7460e: [lldb][Android] Add platform.plugin.remote-android.package-name
Summary

When LLDB fails to pull file from a package directory due to security
constraint, user needs to set the package name to
'platform.plugin.remote-android.run-as' property to run shell commands
as the package user. (e.g. to get file with 'cat' and 'dd').

https://cs.android.com/android/platform/superproject/+/master:
system/core/run-as/run-as.cpp;l=39-61;
drc=4a77a84a55522a3b122f9c63ef0d0b8a6a131627

This supersedes D152494
Depends on D152855

Diff Detail

Event Timeline

splhack created this revision.Jun 14 2023, 9:14 AM
Herald added a project: Restricted Project. · View Herald TranscriptJun 14 2023, 9:14 AM
Herald added a subscriber: danielkiss. · View Herald Transcript
Harbormaster completed remote builds in B238841: Diff 531377.Jun 14 2023, 9:15 AM
splhack published this revision for review.Jun 14 2023, 9:20 AM
splhack added reviewers: clayborg, bulbazord, labath, lanza.
Herald added a project: Restricted Project. · View Herald TranscriptJun 14 2023, 9:20 AM
Herald added a subscriber: lldb-commits. · View Herald Transcript
splhack mentioned this in D152494: [lldb][Android] Fix adb shell cat.Jun 14 2023, 9:21 AM
splhack mentioned this in D152759: [lldb][Android] Support zip .so file.Jun 14 2023, 9:36 AM
splhack updated this revision to Diff 531392.Jun 14 2023, 9:43 AM

rebase onto D152855

Herald added a subscriber: JDevlieghere. · View Herald TranscriptJun 14 2023, 9:43 AM
Harbormaster completed remote builds in B238854: Diff 531392.Jun 14 2023, 9:43 AM
splhack updated this revision to Diff 531398.Jun 14 2023, 9:49 AM

remove 'Depends on' from commit message

Harbormaster completed remote builds in B238859: Diff 531398.Jun 14 2023, 9:50 AM
splhack updated this revision to Diff 531509.Jun 14 2023, 2:14 PM

rebase

Harbormaster completed remote builds in B238946: Diff 531509.Jun 14 2023, 2:15 PM
splhack updated this revision to Diff 531579.Jun 14 2023, 5:08 PM

Fixed diff dependencies in order to fix CI
https://reviews.llvm.org/B238946

Harbormaster completed remote builds in B239006: Diff 531579.Jun 14 2023, 5:12 PM
clayborg added a comment.Jun 15 2023, 1:56 PM

I am wondering if the current proposed setting name "platform.plugin.remote-android.run-as" should actually be "platform.plugin.remote-android. package-name" to be a bit more clear. Not sure if we can use the package name in other places?

bulbazord added a comment.Jun 15 2023, 2:01 PM

What happens if you do run-as with an empty package name?
I'm also not tied to the name "platform.plugin.remote-android.run-as" if others don't like it. platform.plugin.remote-android.package-name is fine too.

splhack added a comment.Jun 15 2023, 2:53 PM

@clayborg

platform.plugin.remote-android.package-name

sure, sounds good. will update.

@bulbazord

What happens if you do run-as with an empty package name?

$ adb shell "run-as '' ls"; echo $?
run-as: unknown package:
1

which is the same as when specify non-existing package.

$ adb shell "run-as 'unknown' ls"; echo $?
run-as: unknown package: unknown
1
splhack updated this revision to Diff 532243.Jun 16 2023, 11:16 AM

Rename it to platform.plugin.remote-android.package-name

splhack retitled this revision from [lldb][Android] Add platform.plugin.remote-android.run-as to [lldb][Android] Add platform.plugin.remote-android.package-name.Jun 16 2023, 11:16 AM
splhack updated this revision to Diff 532245.Jun 16 2023, 11:17 AM

update commit message

Harbormaster completed remote builds in B239491: Diff 532245.Jun 16 2023, 11:21 AM
clayborg accepted this revision.Jun 16 2023, 11:54 AM

lgtm now!

This revision is now accepted and ready to land.Jun 16 2023, 11:54 AM
Closed by commit rGfabd16c7460e: [lldb][Android] Add platform.plugin.remote-android.package-name (authored by splhack). · Explain WhyJun 20 2023, 4:39 PM
This revision was automatically updated to reflect the committed changes.
splhack added a commit: rGfabd16c7460e: [lldb][Android] Add platform.plugin.remote-android.package-name.

Revision Contents

PathSize
lldb/
source/
Plugins/
Platform/
Android/
12 lines
6 lines
70 lines
9 lines
unittests/
Platform/
Android/
64 lines

Diff 532243

lldb/source/Plugins/Platform/Android/CMakeLists.txt

lldb_tablegen(PlatformAndroidProperties.inc -gen-lldb-property-defs
SOURCE PlatformAndroidProperties.td
TARGET LLDBPluginPlatformAndroidPropertiesGen)
lldb_tablegen(PlatformAndroidPropertiesEnum.inc -gen-lldb-property-enum-defs
SOURCE PlatformAndroidProperties.td
TARGET LLDBPluginPlatformAndroidPropertiesEnumGen)
add_lldb_library(lldbPluginPlatformAndroid PLUGIN add_lldb_library(lldbPluginPlatformAndroid PLUGIN
AdbClient.cpp AdbClient.cpp
PlatformAndroid.cpp PlatformAndroid.cpp
PlatformAndroidRemoteGDBServer.cpp PlatformAndroidRemoteGDBServer.cpp
LINK_LIBS LINK_LIBS
lldbCore lldbCore
lldbHost lldbHost
lldbPluginPlatformLinux lldbPluginPlatformLinux
lldbPluginPlatformGDB lldbPluginPlatformGDB
LINK_COMPONENTS LINK_COMPONENTS
Support Support
) )
add_dependencies(lldbPluginPlatformAndroid
LLDBPluginPlatformAndroidPropertiesGen
LLDBPluginPlatformAndroidPropertiesEnumGen)

lldb/source/Plugins/Platform/Android/PlatformAndroid.h

Show All 24 Linespublic:
static void Initialize(); static void Initialize();
static void Terminate(); static void Terminate();
// lldb_private::PluginInterface functions // lldb_private::PluginInterface functions
static lldb::PlatformSP CreateInstance(bool force, const ArchSpec *arch); static lldb::PlatformSP CreateInstance(bool force, const ArchSpec *arch);
static void DebuggerInitialize(lldb_private::Debugger &debugger);
static llvm::StringRef GetPluginNameStatic(bool is_host) { static llvm::StringRef GetPluginNameStatic(bool is_host) {
return is_host ? Platform::GetHostPlatformName() : "remote-android"; return is_host ? Platform::GetHostPlatformName() : "remote-android";
} }
static llvm::StringRef GetPluginDescriptionStatic(bool is_host); static llvm::StringRef GetPluginDescriptionStatic(bool is_host);
llvm::StringRef GetPluginName() override { llvm::StringRef GetPluginName() override {
return GetPluginNameStatic(IsHost()); return GetPluginNameStatic(IsHost());
Show All 27 Lines Status DownloadSymbolFile(const lldb::ModuleSP &module_sp,
const FileSpec &dst_file_spec) override; const FileSpec &dst_file_spec) override;
llvm::StringRef llvm::StringRef
GetLibdlFunctionDeclarations(lldb_private::Process *process) override; GetLibdlFunctionDeclarations(lldb_private::Process *process) override;
typedef std::unique_ptr<AdbClient> AdbClientUP; typedef std::unique_ptr<AdbClient> AdbClientUP;
virtual AdbClientUP GetAdbClient(Status &error); virtual AdbClientUP GetAdbClient(Status &error);
virtual llvm::StringRef GetPropertyPackageName();
std::string GetRunAs();
private: private:
AdbClient::SyncService *GetSyncService(Status &error); AdbClient::SyncService *GetSyncService(Status &error);
std::unique_ptr<AdbClient::SyncService> m_adb_sync_svc; std::unique_ptr<AdbClient::SyncService> m_adb_sync_svc;
std::string m_device_id; std::string m_device_id;
uint32_t m_sdk_version; uint32_t m_sdk_version;
}; };
} // namespace platform_android } // namespace platform_android
} // namespace lldb_private } // namespace lldb_private
#endif // LLDB_SOURCE_PLUGINS_PLATFORM_ANDROID_PLATFORMANDROID_H #endif // LLDB_SOURCE_PLUGINS_PLATFORM_ANDROID_PLATFORMANDROID_H

lldb/source/Plugins/Platform/Android/PlatformAndroid.cpp

Show All 23 Lines
using namespace lldb; using namespace lldb;
using namespace lldb_private; using namespace lldb_private;
using namespace lldb_private::platform_android; using namespace lldb_private::platform_android;
using namespace std::chrono; using namespace std::chrono;
LLDB_PLUGIN_DEFINE(PlatformAndroid) LLDB_PLUGIN_DEFINE(PlatformAndroid)
static uint32_t g_initialize_count = 0; namespace {
static const unsigned int g_android_default_cache_size =
#define LLDB_PROPERTIES_android
#include "PlatformAndroidProperties.inc"
enum {
#define LLDB_PROPERTIES_android
#include "PlatformAndroidPropertiesEnum.inc"
};
class PluginProperties : public Properties {
public:
PluginProperties() {
m_collection_sp = std::make_shared<OptionValueProperties>(
ConstString(PlatformAndroid::GetPluginNameStatic(false)));
m_collection_sp->Initialize(g_android_properties);
}
};
static PluginProperties &GetGlobalProperties() {
static PluginProperties g_settings;
return g_settings;
}
uint32_t g_initialize_count = 0;
const unsigned int g_android_default_cache_size =
2048; // Fits inside 4k adb packet. 2048; // Fits inside 4k adb packet.
} // end of anonymous namespace
void PlatformAndroid::Initialize() { void PlatformAndroid::Initialize() {
PlatformLinux::Initialize(); PlatformLinux::Initialize();
if (g_initialize_count++ == 0) { if (g_initialize_count++ == 0) {
#if defined(__ANDROID__) #if defined(__ANDROID__)
PlatformSP default_platform_sp(new PlatformAndroid(true)); PlatformSP default_platform_sp(new PlatformAndroid(true));
default_platform_sp->SetSystemArchitecture(HostInfo::GetArchitecture()); default_platform_sp->SetSystemArchitecture(HostInfo::GetArchitecture());
Platform::SetHostPlatform(default_platform_sp); Platform::SetHostPlatform(default_platform_sp);
#endif #endif
PluginManager::RegisterPlugin( PluginManager::RegisterPlugin(
PlatformAndroid::GetPluginNameStatic(false), PlatformAndroid::GetPluginNameStatic(false),
PlatformAndroid::GetPluginDescriptionStatic(false), PlatformAndroid::GetPluginDescriptionStatic(false),
PlatformAndroid::CreateInstance); PlatformAndroid::CreateInstance, PlatformAndroid::DebuggerInitialize);
} }
} }
void PlatformAndroid::Terminate() { void PlatformAndroid::Terminate() {
if (g_initialize_count > 0) { if (g_initialize_count > 0) {
if (--g_initialize_count == 0) { if (--g_initialize_count == 0) {
PluginManager::UnregisterPlugin(PlatformAndroid::CreateInstance); PluginManager::UnregisterPlugin(PlatformAndroid::CreateInstance);
} }
▲ Show 20 LinesShow All 66 Lines▼ Show 20 Lines#endif
LLDB_LOGF( LLDB_LOGF(
log, "PlatformAndroid::%s() aborting creation of remote-android platform", log, "PlatformAndroid::%s() aborting creation of remote-android platform",
__FUNCTION__); __FUNCTION__);
return PlatformSP(); return PlatformSP();
} }
void PlatformAndroid::DebuggerInitialize(Debugger &debugger) {
if (!PluginManager::GetSettingForPlatformPlugin(
debugger, ConstString(GetPluginNameStatic(false)))) {
PluginManager::CreateSettingForPlatformPlugin(
debugger, GetGlobalProperties().GetValueProperties(),
"Properties for the Android platform plugin.",
/*is_global_property=*/true);
}
}
PlatformAndroid::PlatformAndroid(bool is_host) PlatformAndroid::PlatformAndroid(bool is_host)
: PlatformLinux(is_host), m_sdk_version(0) {} : PlatformLinux(is_host), m_sdk_version(0) {}
llvm::StringRef PlatformAndroid::GetPluginDescriptionStatic(bool is_host) { llvm::StringRef PlatformAndroid::GetPluginDescriptionStatic(bool is_host) {
if (is_host) if (is_host)
return "Local Android user platform plug-in."; return "Local Android user platform plug-in.";
return "Remote Android user platform plug-in."; return "Remote Android user platform plug-in.";
} }
▲ Show 20 LinesShow All 62 Lines▼ Show 20 LinesStatus PlatformAndroid::GetFile(const FileSpec &source,
// mode == 0 can signify that adbd cannot access the file due security // mode == 0 can signify that adbd cannot access the file due security
// constraints - try "cat ..." as a fallback. // constraints - try "cat ..." as a fallback.
AdbClientUP adb(GetAdbClient(error)); AdbClientUP adb(GetAdbClient(error));
if (error.Fail()) if (error.Fail())
return error; return error;
char cmd[PATH_MAX]; char cmd[PATH_MAX];
snprintf(cmd, sizeof(cmd), "cat '%s'", source_file.c_str()); snprintf(cmd, sizeof(cmd), "%scat '%s'", GetRunAs().c_str(),
source_file.c_str());
return adb->ShellToFile(cmd, minutes(1), destination); return adb->ShellToFile(cmd, minutes(1), destination);
} }
Status PlatformAndroid::PutFile(const FileSpec &source, Status PlatformAndroid::PutFile(const FileSpec &source,
const FileSpec &destination, uint32_t uid, const FileSpec &destination, uint32_t uid,
uint32_t gid) { uint32_t gid) {
if (IsHost() || !m_remote_platform_sp) if (IsHost() || !m_remote_platform_sp)
Show All 37 LinesStatus PlatformAndroid::DownloadModuleSlice(const FileSpec &src_file_spec,
Status error; Status error;
AdbClientUP adb(GetAdbClient(error)); AdbClientUP adb(GetAdbClient(error));
if (error.Fail()) if (error.Fail())
return error; return error;
// Use 'shell dd' to download the file slice with the offset and size. // Use 'shell dd' to download the file slice with the offset and size.
char cmd[PATH_MAX]; char cmd[PATH_MAX];
snprintf(cmd, sizeof(cmd), snprintf(cmd, sizeof(cmd),
"dd if='%s' iflag=skip_bytes,count_bytes " "%sdd if='%s' iflag=skip_bytes,count_bytes "
"skip=%" PRIu64 " count=%" PRIu64 " status=none", "skip=%" PRIu64 " count=%" PRIu64 " status=none",
source_file.c_str(), src_offset, src_size); GetRunAs().c_str(), source_file.c_str(), src_offset, src_size);
return adb->ShellToFile(cmd, minutes(1), dst_file_spec); return adb->ShellToFile(cmd, minutes(1), dst_file_spec);
} }
Status PlatformAndroid::DisconnectRemote() { Status PlatformAndroid::DisconnectRemote() {
Status error = PlatformLinux::DisconnectRemote(); Status error = PlatformLinux::DisconnectRemote();
if (error.Success()) { if (error.Success()) {
m_device_id.clear(); m_device_id.clear();
▲ Show 20 LinesShow All 131 Lines▼ Show 20 LinesPlatformAndroid::AdbClientUP PlatformAndroid::GetAdbClient(Status &error) {
AdbClientUP adb(std::make_unique<AdbClient>(m_device_id)); AdbClientUP adb(std::make_unique<AdbClient>(m_device_id));
if (adb) if (adb)
error.Clear(); error.Clear();
else else
error = Status("Failed to create AdbClient"); error = Status("Failed to create AdbClient");
return adb; return adb;
} }
llvm::StringRef PlatformAndroid::GetPropertyPackageName() {
return GetGlobalProperties().GetPropertyAtIndexAs<llvm::StringRef>(
ePropertyPlatformPackageName, "");
}
std::string PlatformAndroid::GetRunAs() {
llvm::StringRef run_as = GetPropertyPackageName();
if (!run_as.empty()) {
// When LLDB fails to pull file from a package directory due to security
// constraint, user needs to set the package name to
// 'platform.plugin.remote-android.package-name' property in order to run
// shell commands as the package user using 'run-as' (e.g. to get file with
// 'cat' and 'dd').
// https://cs.android.com/android/platform/superproject/+/master:
// system/core/run-as/run-as.cpp;l=39-61;
// drc=4a77a84a55522a3b122f9c63ef0d0b8a6a131627
return std::string("run-as '") + run_as.str() + "' ";
}
return run_as.str();
}
AdbClient::SyncService *PlatformAndroid::GetSyncService(Status &error) { AdbClient::SyncService *PlatformAndroid::GetSyncService(Status &error) {
if (m_adb_sync_svc && m_adb_sync_svc->IsConnected()) if (m_adb_sync_svc && m_adb_sync_svc->IsConnected())
return m_adb_sync_svc.get(); return m_adb_sync_svc.get();
AdbClientUP adb(GetAdbClient(error)); AdbClientUP adb(GetAdbClient(error));
if (error.Fail()) if (error.Fail())
return nullptr; return nullptr;
m_adb_sync_svc = adb->GetSyncService(error); m_adb_sync_svc = adb->GetSyncService(error);
return (error.Success()) ? m_adb_sync_svc.get() : nullptr; return (error.Success()) ? m_adb_sync_svc.get() : nullptr;
} }

lldb/source/Plugins/Platform/Android/PlatformAndroidProperties.td

  • This file was added.
include "../../../../include/lldb/Core/PropertiesBase.td"
let Definition = "android" in {
def PlatformPackageName: Property<"package-name", "String">,
Global,
DefaultStringValue<"">,
Desc<"Specify package name to run adb shell command with 'run-as' as the "
"package user when necessary (e.g. to get file with 'cat' and 'dd').">;
}

lldb/unittests/Platform/Android/PlatformAndroidTest.cpp

Show First 20 LinesShow All 43 Lines▼ Show 20 Lines
class PlatformAndroidTest : public PlatformAndroid, public ::testing::Test { class PlatformAndroidTest : public PlatformAndroid, public ::testing::Test {
public: public:
PlatformAndroidTest() : PlatformAndroid(false) { PlatformAndroidTest() : PlatformAndroid(false) {
m_remote_platform_sp = PlatformSP(new PlatformAndroidRemoteGDBServer()); m_remote_platform_sp = PlatformSP(new PlatformAndroidRemoteGDBServer());
} }
MOCK_METHOD1(GetAdbClient, AdbClientUP(Status &error)); MOCK_METHOD1(GetAdbClient, AdbClientUP(Status &error));
MOCK_METHOD0(GetPropertyPackageName, llvm::StringRef());
}; };
} // namespace } // namespace
TEST_F(PlatformAndroidTest, DownloadModuleSliceWithAdbClientError) { TEST_F(PlatformAndroidTest, DownloadModuleSliceWithAdbClientError) {
EXPECT_CALL(*this, GetAdbClient(_)) EXPECT_CALL(*this, GetAdbClient(_))
.Times(1) .Times(1)
.WillOnce(DoAll(WithArg<0>([](auto &arg) { .WillOnce(DoAll(WithArg<0>([](auto &arg) {
▲ Show 20 LinesShow All 47 Lines▼ Show 20 LinesTEST_F(PlatformAndroidTest, DownloadModuleSliceWithZipFile) {
EXPECT_TRUE( EXPECT_TRUE(
DownloadModuleSlice( DownloadModuleSlice(
FileSpec("/system/app/Test/Test.apk!/lib/arm64-v8a/libtest.so"), 4096, FileSpec("/system/app/Test/Test.apk!/lib/arm64-v8a/libtest.so"), 4096,
3600, FileSpec()) 3600, FileSpec())
.Success()); .Success());
} }
TEST_F(PlatformAndroidTest, DownloadModuleSliceWithZipFileAndRunAs) {
auto adb_client = new MockAdbClient();
EXPECT_CALL(*adb_client,
ShellToFile(StrEq("run-as 'com.example.test' "
"dd if='/system/app/Test/Test.apk' "
"iflag=skip_bytes,count_bytes "
"skip=4096 count=3600 status=none"),
_, _))
.Times(1)
.WillOnce(Return(Status()));
EXPECT_CALL(*this, GetPropertyPackageName())
.Times(1)
.WillOnce(Return(llvm::StringRef("com.example.test")));
EXPECT_CALL(*this, GetAdbClient(_))
.Times(1)
.WillOnce(Return(ByMove(AdbClientUP(adb_client))));
EXPECT_TRUE(
DownloadModuleSlice(
FileSpec("/system/app/Test/Test.apk!/lib/arm64-v8a/libtest.so"), 4096,
3600, FileSpec())
.Success());
}
TEST_F(PlatformAndroidTest, GetFileWithNormalFile) { TEST_F(PlatformAndroidTest, GetFileWithNormalFile) {
auto sync_service = new MockSyncService(); auto sync_service = new MockSyncService();
EXPECT_CALL(*sync_service, Stat(FileSpec("/data/local/tmp/test"), _, _, _)) EXPECT_CALL(*sync_service, Stat(FileSpec("/data/local/tmp/test"), _, _, _))
.Times(1) .Times(1)
.WillOnce(DoAll(SetArgReferee<1>(1), Return(Status()))); .WillOnce(DoAll(SetArgReferee<1>(1), Return(Status())));
EXPECT_CALL(*sync_service, PullFile(FileSpec("/data/local/tmp/test"), _)) EXPECT_CALL(*sync_service, PullFile(FileSpec("/data/local/tmp/test"), _))
.Times(1) .Times(1)
.WillOnce(Return(Status())); .WillOnce(Return(Status()));
Show All 36 Lines EXPECT_CALL(*this, GetAdbClient(_))
.WillOnce(Return(ByMove(AdbClientUP(adb_client0)))) .WillOnce(Return(ByMove(AdbClientUP(adb_client0))))
.WillOnce(Return(ByMove(AdbClientUP(adb_client1)))); .WillOnce(Return(ByMove(AdbClientUP(adb_client1))));
EXPECT_TRUE( EXPECT_TRUE(
GetFile(FileSpec("/data/data/com.example.app/lib-main/libtest.so"), GetFile(FileSpec("/data/data/com.example.app/lib-main/libtest.so"),
FileSpec()) FileSpec())
.Success()); .Success());
} }
TEST_F(PlatformAndroidTest, GetFileWithCatFallbackAndRunAs) {
auto sync_service = new MockSyncService();
EXPECT_CALL(
*sync_service,
Stat(FileSpec("/data/data/com.example.app/lib-main/libtest.so"), _, _, _))
.Times(1)
.WillOnce(DoAll(SetArgReferee<1>(0), Return(Status())));
auto adb_client0 = new MockAdbClient();
EXPECT_CALL(*adb_client0, GetSyncService(_))
.Times(1)
.WillOnce(Return(ByMove(SyncServiceUP(sync_service))));
auto adb_client1 = new MockAdbClient();
EXPECT_CALL(
*adb_client1,
ShellToFile(StrEq("run-as 'com.example.app' "
"cat '/data/data/com.example.app/lib-main/libtest.so'"),
_, _))
.Times(1)
.WillOnce(Return(Status()));
EXPECT_CALL(*this, GetPropertyPackageName())
.Times(1)
.WillOnce(Return(llvm::StringRef("com.example.app")));
EXPECT_CALL(*this, GetAdbClient(_))
.Times(2)
.WillOnce(Return(ByMove(AdbClientUP(adb_client0))))
.WillOnce(Return(ByMove(AdbClientUP(adb_client1))));
EXPECT_TRUE(
GetFile(FileSpec("/data/data/com.example.app/lib-main/libtest.so"),
FileSpec())
.Success());
}