Download Raw Diff

Details

Reviewers

clayborg
labath
eugene

Commits

rG3015341d45d8: Use socketpair on all Unix platforms
rLLDB314127: Use socketpair on all Unix platforms
rL314127: Use socketpair on all Unix platforms

Summary

Using TCP sockets is insecure against local attackers, and possibly against remote attackers too (some vulnerabilities may allow tricking a browser to make a request to localhost). Use socketpair (which is immune to such attacks) on all Unix platforms.

Diff Detail

Build Status

Buildable 8572
Build 8572: arc lint + arc unit

Event Timeline

DemiMarie created this revision.May 15 2017, 2:25 PM

Harbormaster completed remote builds in B6451: Diff 99062.May 15 2017, 2:25 PM

DemiMarie added a reviewer: clayborg.Jul 5 2017, 12:32 PM

DemiMarie added a subscriber: lldb-commits.Jul 5 2017, 12:36 PM

DemiMarie set the repository for this revision to rL LLVM.Jul 12 2017, 9:30 AM

DemiMarie removed a subscriber: lldb-commits.

DemiMarie added a subscriber: lldb-commits.

clayborg edited the summary of this revision. (Show Details)Jul 12 2017, 9:46 AM

clayborg added a reviewer: labath.

Looks fine to me, lets make sure Pavel is OK with this. On MacOS socketpair is also much faster. Please run the following command while stopped at a breakpoint with and without your change:

(lldb) process plugin packet speed-test

It will send and receive packets using a variety of sizes and report the number of packets per second.

Have you tried that this actually works? (It doesn't work for me)

As far as I can tell, you will have to teach lldb-server to understand the --fd argument before you can flip this switch.

This revision now requires changes to proceed.Jul 12 2017, 9:57 AM

Ah yes, I thought there was something missing...

Make --fd an alias for --pipe

Harbormaster completed remote builds in B8237: Diff 106708.Jul 14 2017, 2:17 PM

In D33213#806807, @clayborg wrote:

Ah yes, I thought there was something missing...

I just made --fd an alias for --pipe.

Let Pavel try this and verify and this is good to go.

Any news on any speed changes? Please post the output of:

(lldb) process plugin packet speed-test

Both without and with this change. Nice to track any perf improvements

This is completely wrong. The --pipe argument is used to write the port that lldb-server listens on. Making --fd an alias to that will not help.

Please make sure you test your change before submitting it for review. You should at least make sure you are able to debug a hello world program with your modifications.

This revision now requires changes to proceed.Jul 18 2017, 2:38 AM

Before any changes are submitted, we assume you are getting a clean test suite run.

In D33213#813037, @clayborg wrote:

Before any changes are submitted, we assume you are getting a clean test suite run.

On my system, I get build failures in clang.

In D33213#814041, @DemiMarie wrote:

In D33213#813037, @clayborg wrote:

Before any changes are submitted, we assume you are getting a clean test suite run.

On my system, I get build failures in clang.

I suggest you write an email to cfe-dev http://lists.llvm.org/mailman/listinfo/cfe-dev and ask for help (or just google around). It's kinda hard to develop a feature without even being able to build the code :)

I am not sure how you expect to submit any patches then. Patches must be tested prior to submission.

Fix connection when there is no host:port

Harbormaster completed remote builds in B8505: Diff 107805.Jul 22 2017, 5:58 PM

Get rid of silly and bogus #error

Harbormaster completed remote builds in B8506: Diff 107806.Jul 22 2017, 5:58 PM

Please init fd

tools/lldb-server/lldb-gdbserver.cpp
388	This must be initialized to -1 since only the 'F' case will store to this. Pretty much all of the time random memory would be used for this and incorrectly try to use a random integer as a file descriptor.

This revision now requires changes to proceed.Jul 24 2017, 9:58 AM

Initalize connection_fd

Otherwise undefined behavior ensues whenever --fd is not passed to
lldb-server -g.

Harbormaster completed remote builds in B8572: Diff 108094.Jul 25 2017, 8:50 AM

So where did the other changes go where we use "--fd" for non Apple builds? Did those changes get lost? They will be needed.

Are you able to run the test suite now?

Actually use socketpair :)

Harbormaster completed remote builds in B8602: Diff 108214.Jul 25 2017, 9:37 PM

In D33213#820238, @clayborg wrote:

So where did the other changes go where we use "--fd" for non Apple builds? Did those changes get lost? They will be needed.

Are you able to run the test suite now?

I did. Not all tests passed, but none of the failures appeared to be related to this change, and the compiled lldb can debug /usr/bin/cat.

I'm ok as long as Pavel is ok. Please wait for the OK from him as well.

I am not able to test this right now. Eugene, can you take a look?

tools/lldb-server/lldb-gdbserver.cpp
241	you should set the O_CLOEXEC flag on the file descriptor, to avoid leakage.

Set FD_CLOEXEC on the communication fd

Harbormaster completed remote builds in B8731: Diff 108796.Jul 29 2017, 9:51 AM

DemiMarie marked 2 inline comments as done.Jul 29 2017, 9:52 AM

LGTM. Test run on Linux is clear. I also see a bit of perf bump.

Before checking in please remove outdated comment from ProcessGDBRemote::LaunchAndConnectToDebugserver.

// Use a socketpair on Apple for now until other platforms can verify it
// works and is fast enough

Remove the outdated comment and we are good to go.

Delete misleading comment

Harbormaster completed remote builds in B9213: Diff 110636.Aug 10 2017, 3:02 PM

Fix misleading comment for real

Harbormaster completed remote builds in B9215: Diff 110642.Aug 10 2017, 3:45 PM

Does this need any further action on my part?

This should be good to go. Watch the buildbots for failures.

Pavel & Eugene haven't marked it accepted yet, but from the comments is looks like they are both okay with the change. So it looks to me like everything is done but checking the code in.

If you have checkin privileges, then just check it in and as Greg says keep an eye on the bots. If you don't then speak up and one of us will check it in for you.

I did mark it Accepted.

In D33213#873962, @jingham wrote:

Pavel & Eugene haven't marked it accepted yet, but from the comments is looks like they are both okay with the change. So it looks to me like everything is done but checking the code in.

If you have checkin privileges, then just check it in and as Greg says keep an eye on the bots. If you don't then speak up and one of us will check it in for you.

I don’t have checkin privileges. Would one of you mind checking the code in?

Closed by commit rL314127: Use socketpair on all Unix platforms (authored by eugene). · Explain WhySep 25 2017, 10:42 AM

This revision was automatically updated to reflect the committed changes.

Diff 108094

tools/lldb-server/lldb-gdbserver.cpp

Show First 20 Lines • Show All 100 Lines • ▼ Show 20 Lines	static struct option g_long_options[] = {
'r'}, // Specify to use the native registers instead of the gdb defaults		'r'}, // Specify to use the native registers instead of the gdb defaults
// for the architecture. NOTE: this is a do-nothing arg as it's		// for the architecture. NOTE: this is a do-nothing arg as it's
// behavior is default now. FIXME remove call from lldb-platform.		// behavior is default now. FIXME remove call from lldb-platform.
{"reverse-connect", no_argument, NULL,		{"reverse-connect", no_argument, NULL,
'R'}, // Specifies that llgs attaches to the client address:port rather		'R'}, // Specifies that llgs attaches to the client address:port rather
// than llgs listening for a connection from address on port.		// than llgs listening for a connection from address on port.
{"setsid", no_argument, NULL,		{"setsid", no_argument, NULL,
'S'}, // Call setsid() to make llgs run in its own session.		'S'}, // Call setsid() to make llgs run in its own session.
		{"fd", required_argument, NULL, 'F'},
{NULL, 0, NULL, 0}};		{NULL, 0, NULL, 0}};

//----------------------------------------------------------------------		//----------------------------------------------------------------------
// Watch for signals		// Watch for signals
//----------------------------------------------------------------------		//----------------------------------------------------------------------
static int g_sighup_received_count = 0;		static int g_sighup_received_count = 0;

#ifndef _WIN32		#ifndef _WIN32
Show All 10 Lines
}		}
#endif // #ifndef _WIN32		#endif // #ifndef _WIN32

static void display_usage(const char progname, const char subcommand) {		static void display_usage(const char progname, const char subcommand) {
fprintf(stderr, "Usage:\n %s %s "		fprintf(stderr, "Usage:\n %s %s "
"[--log-file log-file-name] "		"[--log-file log-file-name] "
"[--log-channels log-channel-list] "		"[--log-channels log-channel-list] "
"[--setsid] "		"[--setsid] "
		"[--fd file-descriptor]"
"[--named-pipe named-pipe-path] "		"[--named-pipe named-pipe-path] "
"[--native-regs] "		"[--native-regs] "
"[--attach pid] "		"[--attach pid] "
"[[HOST]:PORT] "		"[[HOST]:PORT] "
"[-- PROGRAM ARG1 ARG2 ...]\n",		"[-- PROGRAM ARG1 ARG2 ...]\n",
progname, subcommand);		progname, subcommand);
exit(0);
}		}

void handle_attach_to_pid(GDBRemoteCommunicationServerLLGS &gdb_server,		void handle_attach_to_pid(GDBRemoteCommunicationServerLLGS &gdb_server,
lldb::pid_t pid) {		lldb::pid_t pid) {
Status error = gdb_server.AttachToProcess(pid);		Status error = gdb_server.AttachToProcess(pid);
if (error.Fail()) {		if (error.Fail()) {
fprintf(stderr, "error: failed to attach to pid %" PRIu64 ": %s\n", pid,		fprintf(stderr, "error: failed to attach to pid %" PRIu64 ": %s\n", pid,
error.AsCString());		error.AsCString());
▲ Show 20 Lines • Show All 77 Lines • ▼ Show 20 Lines	#else
return writeSocketIdToPipe(port_pipe, socket_id);		return writeSocketIdToPipe(port_pipe, socket_id);
#endif		#endif
}		}

void ConnectToRemote(MainLoop &mainloop,		void ConnectToRemote(MainLoop &mainloop,
GDBRemoteCommunicationServerLLGS &gdb_server,		GDBRemoteCommunicationServerLLGS &gdb_server,
bool reverse_connect, const char *const host_and_port,		bool reverse_connect, const char *const host_and_port,
const char const progname, const char const subcommand,		const char const progname, const char const subcommand,
const char *const named_pipe_path, int unnamed_pipe_fd) {		const char *const named_pipe_path, int unnamed_pipe_fd,
		int connection_fd) {
Status error;		Status error;

if (host_and_port && host_and_port[0]) {		std::unique_ptr<Connection> connection_up;
		if (connection_fd != -1) {
		labathUnsubmitted Done Reply Inline Actions you should set the O_CLOEXEC flag on the file descriptor, to avoid leakage. labath: you should set the O_CLOEXEC flag on the file descriptor, to avoid leakage.
		// Build the connection string.
		char connection_url[512];
		snprintf(connection_url, sizeof(connection_url), "fd://%d", connection_fd);

		// Create the connection.
		connection_up.reset(new ConnectionFileDescriptor);
		auto connection_result = connection_up->Connect(connection_url, &error);
		if (connection_result != eConnectionStatusSuccess) {
		fprintf(stderr, "error: failed to connect to client at '%s' "
		"(connection status: %d)",
		connection_url, static_cast<int>(connection_result));
		exit(-1);
		}
		if (error.Fail()) {
		fprintf(stderr, "error: failed to connect to client at '%s': %s",
		connection_url, error.AsCString());
		exit(-1);
		}
		} else if (host_and_port && host_and_port[0]) {
// Parse out host and port.		// Parse out host and port.
std::string final_host_and_port;		std::string final_host_and_port;
std::string connection_host;		std::string connection_host;
std::string connection_port;		std::string connection_port;
uint32_t connection_portno = 0;		uint32_t connection_portno = 0;

// If host_and_port starts with ':', default the host to be "localhost" and		// If host_and_port starts with ':', default the host to be "localhost" and
// expect the remainder to be the port.		// expect the remainder to be the port.
if (host_and_port[0] == ':')		if (host_and_port[0] == ':')
final_host_and_port.append("localhost");		final_host_and_port.append("localhost");
final_host_and_port.append(host_and_port);		final_host_and_port.append(host_and_port);

const std::string::size_type colon_pos = final_host_and_port.find(':');		const std::string::size_type colon_pos = final_host_and_port.find(':');
if (colon_pos != std::string::npos) {		if (colon_pos != std::string::npos) {
connection_host = final_host_and_port.substr(0, colon_pos);		connection_host = final_host_and_port.substr(0, colon_pos);
connection_port = final_host_and_port.substr(colon_pos + 1);		connection_port = final_host_and_port.substr(colon_pos + 1);
connection_portno = StringConvert::ToUInt32(connection_port.c_str(), 0);		connection_portno = StringConvert::ToUInt32(connection_port.c_str(), 0);
}		}

std::unique_ptr<Connection> connection_up;

if (reverse_connect) {		if (reverse_connect) {
// llgs will connect to the gdb-remote client.		// llgs will connect to the gdb-remote client.

// Ensure we have a port number for the connection.		// Ensure we have a port number for the connection.
if (connection_portno == 0) {		if (connection_portno == 0) {
fprintf(stderr, "error: port number must be specified on when using "		fprintf(stderr, "error: port number must be specified on when using "
"reverse connect");		"reverse connect");
▲ Show 20 Lines • Show All 56 Lines • ▼ Show 20 Lines	if (reverse_connect) {
Connection *conn = nullptr;		Connection *conn = nullptr;
error = acceptor_up->Accept(false, conn);		error = acceptor_up->Accept(false, conn);
if (error.Fail()) {		if (error.Fail()) {
printf("failed to accept new connection: %s\n", error.AsCString());		printf("failed to accept new connection: %s\n", error.AsCString());
exit(1);		exit(1);
}		}
connection_up.reset(conn);		connection_up.reset(conn);
}		}
		}
error = gdb_server.InitializeConnection(std::move(connection_up));		error = gdb_server.InitializeConnection(std::move(connection_up));
if (error.Fail()) {		if (error.Fail()) {
fprintf(stderr, "Failed to initialize connection: %s\n",		fprintf(stderr, "Failed to initialize connection: %s\n",
error.AsCString());		error.AsCString());
exit(-1);		exit(-1);
}		}
printf("Connection established.\n");		printf("Connection established.\n");
}		}
}

//----------------------------------------------------------------------		//----------------------------------------------------------------------
// main		// main
//----------------------------------------------------------------------		//----------------------------------------------------------------------
int main_gdbserver(int argc, char *argv[]) {		int main_gdbserver(int argc, char *argv[]) {
Status error;		Status error;
MainLoop mainloop;		MainLoop mainloop;
#ifndef _WIN32		#ifndef _WIN32
Show All 11 Lines	#endif
int ch;		int ch;
std::string attach_target;		std::string attach_target;
std::string named_pipe_path;		std::string named_pipe_path;
std::string log_file;		std::string log_file;
StringRef		StringRef
log_channels; // e.g. "lldb process threads:gdb-remote default:linux all"		log_channels; // e.g. "lldb process threads:gdb-remote default:linux all"
int unnamed_pipe_fd = -1;		int unnamed_pipe_fd = -1;
bool reverse_connect = false;		bool reverse_connect = false;
		int connection_fd = -1;
		clayborgUnsubmitted Done Reply Inline Actions This must be initialized to -1 since only the 'F' case will store to this. Pretty much all of the time random memory would be used for this and incorrectly try to use a random integer as a file descriptor. clayborg: This must be initialized to -1 since only the 'F' case will store to this. Pretty much all of…

// ProcessLaunchInfo launch_info;		// ProcessLaunchInfo launch_info;
ProcessAttachInfo attach_info;		ProcessAttachInfo attach_info;

bool show_usage = false;		bool show_usage = false;
int option_error = 0;		int option_error = 0;
#if __GLIBC__		#if __GLIBC__
optind = 0;		optind = 0;
Show All 33 Lines	while ((ch = getopt_long_only(argc, argv, short_options.c_str(),
case 'r':		case 'r':
// Do nothing, native regs is the default these days		// Do nothing, native regs is the default these days
break;		break;

case 'R':		case 'R':
reverse_connect = true;		reverse_connect = true;
break;		break;

		case 'F':
		connection_fd = StringConvert::ToUInt32(optarg, -1);
		break;

#ifndef _WIN32		#ifndef _WIN32
case 'S':		case 'S':
// Put llgs into a new session. Terminals group processes		// Put llgs into a new session. Terminals group processes
// into sessions and when a special terminal key sequences		// into sessions and when a special terminal key sequences
// (like control+c) are typed they can cause signals to go out to		// (like control+c) are typed they can cause signals to go out to
// all processes in a session. Using this --setsid (-S) option		// all processes in a session. Using this --setsid (-S) option
// will cause debugserver to run in its own sessions and be free		// will cause debugserver to run in its own sessions and be free
// from such issues.		// from such issues.
▲ Show 20 Lines • Show All 43 Lines • ▼ Show 20 Lines	for (int i = 0; i < argc; i++) {
log->Printf("argv[%i] = '%s'", i, argv[i]);		log->Printf("argv[%i] = '%s'", i, argv[i]);
}		}
}		}

// Skip any options we consumed with getopt_long_only.		// Skip any options we consumed with getopt_long_only.
argc -= optind;		argc -= optind;
argv += optind;		argv += optind;

if (argc == 0) {		if (argc == 0 && connection_fd == -1) {
		fputs("No arguments\n", stderr);
display_usage(progname, subcommand);		display_usage(progname, subcommand);
exit(255);		exit(255);
}		}

NativeProcessFactory factory;		NativeProcessFactory factory;
GDBRemoteCommunicationServerLLGS gdb_server(mainloop, factory);		GDBRemoteCommunicationServerLLGS gdb_server(mainloop, factory);

const char *const host_and_port = argv[0];		const char *const host_and_port = argv[0];
Show All 12 Lines	#endif
else if (argc > 0)		else if (argc > 0)
handle_launch(gdb_server, argc, argv);		handle_launch(gdb_server, argc, argv);

// Print version info.		// Print version info.
printf("%s-%s", LLGS_PROGRAM_NAME, LLGS_VERSION_STR);		printf("%s-%s", LLGS_PROGRAM_NAME, LLGS_VERSION_STR);

ConnectToRemote(mainloop, gdb_server, reverse_connect, host_and_port,		ConnectToRemote(mainloop, gdb_server, reverse_connect, host_and_port,
progname, subcommand, named_pipe_path.c_str(),		progname, subcommand, named_pipe_path.c_str(),
unnamed_pipe_fd);		unnamed_pipe_fd, connection_fd);

if (!gdb_server.IsConnected()) {		if (!gdb_server.IsConnected()) {
fprintf(stderr, "no connection information provided, unable to run\n");		fprintf(stderr, "no connection information provided, unable to run\n");
display_usage(progname, subcommand);		display_usage(progname, subcommand);
return 1;		return 1;
}		}

mainloop.Run();		mainloop.Run();
fprintf(stderr, "lldb-server exiting...\n");		fprintf(stderr, "lldb-server exiting...\n");

return 0;		return 0;
}		}

This is an archive of the discontinued LLVM Phabricator instance.

Use socketpair on all Unix platforms
ClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 108094

tools/lldb-server/lldb-gdbserver.cpp

This is an archive of the discontinued LLVM Phabricator instance.

Use socketpair on all Unix platformsClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 108094

tools/lldb-server/lldb-gdbserver.cpp

Use socketpair on all Unix platforms
ClosedPublic