This is an archive of the discontinued LLVM Phabricator instance.

Differential D68289

[lldb-server/android] Show more processes by relaxing some checks
ClosedPublic

Authored by wallace on Oct 1 2019, 12:17 PM.

Details

Reviewers
clayborg
aadsm
labath
xiaobai
Commits
rGd04855f820c5: [lldb-server/android] Show more processes by relaxing some checks
rL374853: [lldb-server/android] Show more processes by relaxing some checks
rLLDB374853: [lldb-server/android] Show more processes by relaxing some checks
rG856383555b3a: [lldb-server/android] Show more processes and package name when necessary
rL373758: [lldb-server/android] Show more processes and package name when necessary
rLLDB373758: [lldb-server/android] Show more processes and package name when necessary
Summary

By default platform process list only shows the processes of the current user that lldb-server can parse.
There are several problems:

  • apk programs don't have an executable file. They instead use a package name as identifier. We should show them instead.
  • each apk also runs under a different user. That's how android works
  • because of the user permission, some files like /proc/<pid>/{environ,exe} can't be read.

This results in a very small process list.

This is a local run on my machine

(lldb) platform process list
2 matching processes were found on "remote-android"
PID    PARENT USER       TRIPLE                   NAME
====== ====== ========== ======================== ============================
23291  3177              aarch64-unknown-linux-android sh
23301  23291            aarch64-unknown-linux-android lldb-server

However, I have 700 processes running at this time.

By implementing a few fallbacks for android, I've expanded this list to 202, filtering out kernel processes, which would presumably appear in this list if the device was rooted.

(lldb) platform process list
202 matching processes were found on "remote-android"
PID    PARENT USER       TRIPLE                   NAME
====== ====== ========== ======================== ============================
...
12647  3208              aarch64-unknown-linux-android sh
12649  12647             aarch64-unknown-linux-android lldb-server
12653  982                                        com.samsung.faceservice
13185  982                                        com.samsung.vvm
15899  982                                        com.samsung.android.spay
16220  982                                        com.sec.spp.push
17126  982                                        com.sec.spp.push:RemoteDlcProcess
19772  983                                        com.android.chrome
20209  982                                        com.samsung.cmh:CMH
20380  982                                        com.google.android.inputmethod.latin
20879  982                                        com.samsung.android.oneconnect:Receiver
21212  983                                        com.tencent.mm
24459  1                 aarch64-unknown-linux-android wpa_supplicant
25974  982                                        com.samsung.android.contacts
26293  982                                        com.samsung.android.messaging
28714  982                                        com.samsung.android.dialer
31605  982                                        com.samsung.android.MtpApplication
32256  982                                        com.bezobidny

Something to notice is that the architecture is unkonwn for all apks. And that's fine, because run-as would be required to gather this information and that would make this entire functionality massively slow.

There are still several improvements to make here, like displaying actual user names, which I'll try to do in a following diff.

Note: Regarding overall apk debugging support from lldb. I'm planning on having lldb spawn lldb-server by itself with the correct user, so that everything works well. The initial lldb-server used for connecting to the remote platform can be reused for such purpose. Furthermore, eventually lldb could also launch that initial lldb-server on its own.

Diff Detail

Event Timeline

wallace created this revision.Oct 1 2019, 12:17 PM
Herald added a project: Restricted Project. · View Herald TranscriptOct 1 2019, 12:17 PM
Herald added subscribers: lldb-commits, kristof.beyls, krytarowski, srhines. · View Herald Transcript
Harbormaster completed remote builds in B38837: Diff 222670.Oct 1 2019, 12:18 PM
wallace updated this revision to Diff 222671.Oct 1 2019, 12:19 PM

remove file accidentally included

Harbormaster completed remote builds in B38838: Diff 222671.Oct 1 2019, 12:21 PM
wallace updated this revision to Diff 222673.Oct 1 2019, 12:37 PM
  • [process list] make the TRIPLE column wider
Harbormaster completed remote builds in B38839: Diff 222673.Oct 1 2019, 12:38 PM
wallace edited the summary of this revision. (Show Details)Oct 1 2019, 12:38 PM
wallace updated this revision to Diff 222674.Oct 1 2019, 12:39 PM

.

Harbormaster completed remote builds in B38840: Diff 222674.Oct 1 2019, 12:42 PM
wallace updated this revision to Diff 222739.Oct 1 2019, 6:53 PM

.

Harbormaster completed remote builds in B38863: Diff 222739.Oct 1 2019, 6:54 PM
labath added a comment.Oct 2 2019, 1:59 AM

It seems to me that the Host class is too low level to be encoding some of the android specifics into it. I think it would be better to handle these things higher up. Please see inline comments for details.

lldb/source/Host/linux/Host.cpp
175–178

Why does this fail on android exactly? Is it some seccomp thingy? I'm surprised that we're allowed to read /proc/cmdline, but not the /proc/exe link..

Anyway, I don't think that pretending that "com.my.app" is an executable file name is a good idea. Maybe it would be better to implement something on the other end. I.e., we print out argv[0] if the file name is not present?

203–208

I think we can just make this non-android specific and say that we're ok with returning the results if we were unable to fetch the environment. For instance, you could make the caller not fail hard (but just log or something) if this returns false.

234–240

Just from the perspective of the FindProcesses API, I don't think it's reasonable for it to unilaterally ignore the explicit request to limit the set of processes to return. Ideally, this decision would be made higher up (somewhere near the code that actually enables us to attach to processes of other users), and communicated here via the GetMatchAllUsers flag. However, that code doesn't exist yet. Maybe we could drop this bit for now? Or implement a flag to the "platform process list" which would allow one to see all processes? Disregarding android, it may still be interesting to see all processes of some remote system, even if one cannot attach to them. And later, once we're actually able to attach to processes of other "users" we can set it up so that this flag becomes the default for android targets?

wallace marked 3 inline comments as done.Oct 2 2019, 10:36 AM
wallace added inline comments.
lldb/source/Host/linux/Host.cpp
175–178

From what I've been seeing, /proc/cmdline is always available, even for root processes. On the other hand, /proc/exe is only available for the user that is seeing it. In fact, if you use run-as, you can see the contents of /proc/exe, but that would involve making too many slow calls (run-as is slow).

I do think that having "com.my.app" as executable name is okay, because android doesn't let you interact with an apk by any other means, unless you root your device. When using android commands, "com.my.app" is just like any other process.

I don't have any strong opinions though, so I'm okay with following your suggestion if you prefer so.

Handling the android case from the host by doing exePath = argv[0] would look like this:

  • the Arg0 fallback is done inside the client when the exe path is empty
  • a special additional handling would be required for cases when lldb is running on Android. With the approach of this diff, that case is covered.
  • the current function, in the case of android, returns a possible empty exe path. For anything not android, empty exe paths are not allowed

what do you think?

203–208

agree!

234–240

this is a good plan. I'll implement that flag for now

labath added inline comments.Oct 2 2019, 11:08 AM
lldb/source/Host/linux/Host.cpp
175–178

Having "com.my.app" as an executable (more like, process) name is probably fine. However, having that as an executable _path_ (of type FileSpec!) is streching it too far, I believe. If this function was returning some higher-level concept of a process, which had a "name" as a separate property, then putting argv[0] there would be fine. However, for something of type FileSpec, I think it's better to have nothing rather than something that is definitely _not_ a file.

the Arg0 fallback is done inside the client when the exe path is empty

agreed, and this doesn't need to be android-specific

a special additional handling would be required for cases when lldb is running on Android. With the approach of this diff, that case is covered.

I am not sure what you mean by that. Can you elaborate?

the current function, in the case of android, returns a possible empty exe path. For anything not android, empty exe paths are not allowed

yes, and I think we should, like for the case of environment, just permit a ProcessInstanceInfo result with no executable path, regardless of the OS.

wallace updated this revision to Diff 222903.Oct 2 2019, 1:40 PM

simplify this diff

Harbormaster completed remote builds in B38910: Diff 222903.Oct 2 2019, 1:40 PM
wallace updated this revision to Diff 222905.Oct 2 2019, 1:43 PM

i'm learning arc...

Harbormaster completed remote builds in B38911: Diff 222905.Oct 2 2019, 1:45 PM
wallace retitled this revision from [lldb-server/android] Show more processes and package name when necessary to [lldb-server/android] Show more processes by relaxing some checks.Oct 2 2019, 1:52 PM

I removed all android-specific logic from this diff, and relaxed most of the checks inside GetProcessAndStatInfo so that more processes are displayed.

wallace updated this revision to Diff 222908.Oct 2 2019, 1:55 PM

.

Harbormaster completed remote builds in B38912: Diff 222908.Oct 2 2019, 1:56 PM
labath accepted this revision.Oct 3 2019, 4:28 AM

Looks good. I don't think there's a reasonable way to test this, as these will fail only when running stuff under a different user, or on a system with a paranoid security module.

lldb/source/Host/linux/Host.cpp
193–194

We usually don't put braces around short statements like this.

This revision is now accepted and ready to land.Oct 3 2019, 4:28 AM
wallace updated this revision to Diff 223235.Oct 4 2019, 9:30 AM

last nit

Harbormaster completed remote builds in B39000: Diff 223235.Oct 4 2019, 9:31 AM
wallace updated this revision to Diff 223236.Oct 4 2019, 9:32 AM

format

Harbormaster completed remote builds in B39001: Diff 223236.Oct 4 2019, 9:32 AM
Closed by commit rL373758: [lldb-server/android] Show more processes and package name when necessary (authored by wallace). · Explain WhyOct 4 2019, 9:34 AM
This revision was automatically updated to reflect the committed changes.
Herald added a project: Restricted Project. · View Herald TranscriptOct 4 2019, 9:34 AM
Herald added a subscriber: llvm-commits. · View Herald Transcript
jankratochvil added a subscriber: jankratochvil.Oct 6 2019, 8:47 AM

It has regressed on Linux Fedora 30 x86_64:

lldb-Suite :: commands/process/attach/TestProcessAttach.py
lldb-Suite :: tools/lldb-vscode/attach/TestVSCode_attach.py

122 KBDownload

jankratochvil mentioned this in D66791: [lldb][ELF] Read symbols from .gnu_debugdata sect..Oct 6 2019, 8:57 AM
labath added a comment.Oct 7 2019, 10:31 AM
In D68289#1696654, @jankratochvil wrote:

It has regressed on Linux Fedora 30 x86_64:

lldb-Suite :: commands/process/attach/TestProcessAttach.py
lldb-Suite :: tools/lldb-vscode/attach/TestVSCode_attach.py

122 KBDownload

Should be fixed by r373925.

labath mentioned this in rL373925: ProcessInstanceInfoMatch: Don't match processes with no name if a name match….Oct 7 2019, 10:15 PM
labath mentioned this in rGf7bd5bffede5: ProcessInstanceInfoMatch: Don't match processes with no name if a name match….
labath added a comment.Oct 8 2019, 2:07 AM

Hi Walter,

unfortunately my quick-fix ended up causing problems on mac os. I believe I have a solution to that, but it's going to be slightly more involved so, I'd like to get the patch reviewed first. I've reverted your patch for the time being to get the linux build green.

wallace added a comment.Oct 8 2019, 10:28 AM

thanks, @labath !

labath added a comment.Oct 11 2019, 4:29 AM

I've committed my ProcessInstanceInfoMatch fix now. Feel free to recommit when you're able to check the bots for failure.

wallace reopened this revision.Oct 11 2019, 12:41 PM
This revision is now accepted and ready to land.Oct 11 2019, 12:41 PM
wallace updated this revision to Diff 224931.Oct 14 2019, 4:29 PM

rebase

Harbormaster completed remote builds in B39540: Diff 224931.Oct 14 2019, 4:30 PM
Closed by commit rGd04855f820c5: [lldb-server/android] Show more processes by relaxing some checks (authored by wallace). · Explain WhyOct 14 2019, 5:00 PM
This revision was automatically updated to reflect the committed changes.
wallace mentioned this in rL374853: [lldb-server/android] Show more processes by relaxing some checks.
wallace mentioned this in rGd04855f820c5: [lldb-server/android] Show more processes by relaxing some checks.

Revision Contents

PathSize
lldb/
source/
Host/
linux/
79 lines

Diff 224937

lldb/source/Host/linux/Host.cpp

Show First 20 LinesShow All 138 Lines▼ Show 20 Linesstatic ArchSpec GetELFProcessCPUType(llvm::StringRef exe_path) {
case llvm::ELF::ELFCLASS64: case llvm::ELF::ELFCLASS64:
return HostInfo::GetArchitecture(HostInfo::eArchKind64); return HostInfo::GetArchitecture(HostInfo::eArchKind64);
default: default:
LLDB_LOG(log, "Unknown elf class ({0}) in file {1}", exe_class, exe_path); LLDB_LOG(log, "Unknown elf class ({0}) in file {1}", exe_class, exe_path);
return ArchSpec(); return ArchSpec();
} }
} }
static bool GetProcessAndStatInfo(::pid_t pid, static void GetProcessArgs(::pid_t pid, ProcessInstanceInfo &process_info) {
ProcessInstanceInfo &process_info, auto BufferOrError = getProcFile(pid, "cmdline");
ProcessState &State, ::pid_t &tracerpid) { if (!BufferOrError)
tracerpid = 0; return;
process_info.Clear(); std::unique_ptr<llvm::MemoryBuffer> Cmdline = std::move(*BufferOrError);
llvm::StringRef Arg0, Rest;
std::tie(Arg0, Rest) = Cmdline->getBuffer().split('\0');
process_info.SetArg0(Arg0);
while (!Rest.empty()) {
llvm::StringRef Arg;
std::tie(Arg, Rest) = Rest.split('\0');
process_info.GetArguments().AppendArgument(Arg);
}
}
static void GetExePathAndArch(::pid_t pid, ProcessInstanceInfo &process_info) {
Log *log(GetLogIfAllCategoriesSet(LIBLLDB_LOG_PROCESS)); Log *log(GetLogIfAllCategoriesSet(LIBLLDB_LOG_PROCESS));
std::string ExePath(PATH_MAX, '\0');
// We can't use getProcFile here because proc/[pid]/exe is a symbolic link. // We can't use getProcFile here because proc/[pid]/exe is a symbolic link.
llvm::SmallString<64> ProcExe; llvm::SmallString<64> ProcExe;
(llvm::Twine("/proc/") + llvm::Twine(pid) + "/exe").toVector(ProcExe); (llvm::Twine("/proc/") + llvm::Twine(pid) + "/exe").toVector(ProcExe);
std::string ExePath(PATH_MAX, '\0');
ssize_t len = readlink(ProcExe.c_str(), &ExePath[0], PATH_MAX); ssize_t len = readlink(ProcExe.c_str(), &ExePath[0], PATH_MAX);
if (len <= 0) { if (len > 0) {
ExePath.resize(len);
} else {
LLDB_LOG(log, "failed to read link exe link for {0}: {1}", pid, LLDB_LOG(log, "failed to read link exe link for {0}: {1}", pid,
Status(errno, eErrorTypePOSIX)); Status(errno, eErrorTypePOSIX));
return false; ExePath.resize(0);
} }
labathUnsubmitted
Not Done
ReplyInline Actions

Why does this fail on android exactly? Is it some seccomp thingy? I'm surprised that we're allowed to read /proc/cmdline, but not the /proc/exe link..

Anyway, I don't think that pretending that "com.my.app" is an executable file name is a good idea. Maybe it would be better to implement something on the other end. I.e., we print out argv[0] if the file name is not present?

labath: Why does this fail on android exactly? Is it some seccomp thingy? I'm surprised that we're…
wallaceAuthorUnsubmitted
Done
ReplyInline Actions

From what I've been seeing, /proc/cmdline is always available, even for root processes. On the other hand, /proc/exe is only available for the user that is seeing it. In fact, if you use run-as, you can see the contents of /proc/exe, but that would involve making too many slow calls (run-as is slow).

I do think that having "com.my.app" as executable name is okay, because android doesn't let you interact with an apk by any other means, unless you root your device. When using android commands, "com.my.app" is just like any other process.

I don't have any strong opinions though, so I'm okay with following your suggestion if you prefer so.

Handling the android case from the host by doing exePath = argv[0] would look like this:

  • the Arg0 fallback is done inside the client when the exe path is empty
  • a special additional handling would be required for cases when lldb is running on Android. With the approach of this diff, that case is covered.
  • the current function, in the case of android, returns a possible empty exe path. For anything not android, empty exe paths are not allowed

what do you think?

wallace: From what I've been seeing, /proc/cmdline is always available, even for root processes. On the…
labathUnsubmitted
Not Done
ReplyInline Actions

Having "com.my.app" as an executable (more like, process) name is probably fine. However, having that as an executable _path_ (of type FileSpec!) is streching it too far, I believe. If this function was returning some higher-level concept of a process, which had a "name" as a separate property, then putting argv[0] there would be fine. However, for something of type FileSpec, I think it's better to have nothing rather than something that is definitely _not_ a file.

the Arg0 fallback is done inside the client when the exe path is empty

agreed, and this doesn't need to be android-specific

a special additional handling would be required for cases when lldb is running on Android. With the approach of this diff, that case is covered.

I am not sure what you mean by that. Can you elaborate?

the current function, in the case of android, returns a possible empty exe path. For anything not android, empty exe paths are not allowed

yes, and I think we should, like for the case of environment, just permit a ProcessInstanceInfo result with no executable path, regardless of the OS.

labath: Having "com.my.app" as an executable (more like, process) name is probably fine. However…
ExePath.resize(len);
// If the binary has been deleted, the link name has " (deleted)" appended. // If the binary has been deleted, the link name has " (deleted)" appended.
// Remove if there. // Remove if there.
llvm::StringRef PathRef = ExePath; llvm::StringRef PathRef = ExePath;
PathRef.consume_back(" (deleted)"); PathRef.consume_back(" (deleted)");
if (!PathRef.empty()) {
process_info.GetExecutableFile().SetFile(PathRef, FileSpec::Style::native);
process_info.SetArchitecture(GetELFProcessCPUType(PathRef)); process_info.SetArchitecture(GetELFProcessCPUType(PathRef));
}
}
static void GetProcessEnviron(::pid_t pid, ProcessInstanceInfo &process_info) {
// Get the process environment. // Get the process environment.
auto BufferOrError = getProcFile(pid, "environ"); auto BufferOrError = getProcFile(pid, "environ");
if (!BufferOrError) if (!BufferOrError)
return false; return;
labathUnsubmitted
Not Done
ReplyInline Actions

We usually don't put braces around short statements like this.

labath: We usually don't put braces around short statements like this.
std::unique_ptr<llvm::MemoryBuffer> Environ = std::move(*BufferOrError);
// Get the command line used to start the process.
BufferOrError = getProcFile(pid, "cmdline");
if (!BufferOrError)
return false;
std::unique_ptr<llvm::MemoryBuffer> Cmdline = std::move(*BufferOrError);
// Get User and Group IDs and get tracer pid.
if (!GetStatusInfo(pid, process_info, State, tracerpid))
return false;
process_info.SetProcessID(pid);
process_info.GetExecutableFile().SetFile(PathRef, FileSpec::Style::native);
std::unique_ptr<llvm::MemoryBuffer> Environ = std::move(*BufferOrError);
llvm::StringRef Rest = Environ->getBuffer(); llvm::StringRef Rest = Environ->getBuffer();
while (!Rest.empty()) { while (!Rest.empty()) {
llvm::StringRef Var; llvm::StringRef Var;
std::tie(Var, Rest) = Rest.split('\0'); std::tie(Var, Rest) = Rest.split('\0');
process_info.GetEnvironment().insert(Var); process_info.GetEnvironment().insert(Var);
} }
llvm::StringRef Arg0;
std::tie(Arg0, Rest) = Cmdline->getBuffer().split('\0');
process_info.SetArg0(Arg0);
while (!Rest.empty()) {
llvm::StringRef Arg;
std::tie(Arg, Rest) = Rest.split('\0');
process_info.GetArguments().AppendArgument(Arg);
} }
static bool GetProcessAndStatInfo(::pid_t pid,
ProcessInstanceInfo &process_info,
ProcessState &State, ::pid_t &tracerpid) {
tracerpid = 0;
labathUnsubmitted
Not Done
ReplyInline Actions

I think we can just make this non-android specific and say that we're ok with returning the results if we were unable to fetch the environment. For instance, you could make the caller not fail hard (but just log or something) if this returns false.

labath: I think we can just make this non-android specific and say that we're ok with returning the…
wallaceAuthorUnsubmitted
Done
ReplyInline Actions

agree!

wallace: agree!
process_info.Clear();
process_info.SetProcessID(pid);
GetExePathAndArch(pid, process_info);
GetProcessArgs(pid, process_info);
GetProcessEnviron(pid, process_info);
// Get User and Group IDs and get tracer pid.
if (!GetStatusInfo(pid, process_info, State, tracerpid))
return false;
return true; return true;
} }
uint32_t Host::FindProcesses(const ProcessInstanceInfoMatch &match_info, uint32_t Host::FindProcesses(const ProcessInstanceInfoMatch &match_info,
ProcessInstanceInfoList &process_infos) { ProcessInstanceInfoList &process_infos) {
static const char procdir[] = "/proc/"; static const char procdir[] = "/proc/";
DIR *dirproc = opendir(procdir); DIR *dirproc = opendir(procdir);
if (dirproc) { if (dirproc) {
struct dirent *direntry = nullptr; struct dirent *direntry = nullptr;
const uid_t our_uid = getuid(); const uid_t our_uid = getuid();
const lldb::pid_t our_pid = getpid(); const lldb::pid_t our_pid = getpid();
bool all_users = match_info.GetMatchAllUsers(); bool all_users = match_info.GetMatchAllUsers();
while ((direntry = readdir(dirproc)) != nullptr) { while ((direntry = readdir(dirproc)) != nullptr) {
if (direntry->d_type != DT_DIR || !IsDirNumeric(direntry->d_name)) if (direntry->d_type != DT_DIR || !IsDirNumeric(direntry->d_name))
continue; continue;
lldb::pid_t pid = atoi(direntry->d_name); lldb::pid_t pid = atoi(direntry->d_name);
labathUnsubmitted
Not Done
ReplyInline Actions

Just from the perspective of the FindProcesses API, I don't think it's reasonable for it to unilaterally ignore the explicit request to limit the set of processes to return. Ideally, this decision would be made higher up (somewhere near the code that actually enables us to attach to processes of other users), and communicated here via the GetMatchAllUsers flag. However, that code doesn't exist yet. Maybe we could drop this bit for now? Or implement a flag to the "platform process list" which would allow one to see all processes? Disregarding android, it may still be interesting to see all processes of some remote system, even if one cannot attach to them. And later, once we're actually able to attach to processes of other "users" we can set it up so that this flag becomes the default for android targets?

labath: Just from the perspective of the FindProcesses API, I don't think it's reasonable for it to…
wallaceAuthorUnsubmitted
Done
ReplyInline Actions

this is a good plan. I'll implement that flag for now

wallace: this is a good plan. I'll implement that flag for now
// Skip this process. // Skip this process.
if (pid == our_pid) if (pid == our_pid)
continue; continue;
::pid_t tracerpid; ::pid_t tracerpid;
ProcessState State; ProcessState State;
ProcessInstanceInfo process_info; ProcessInstanceInfo process_info;
▲ Show 20 LinesShow All 63 LinesShow Last 20 Lines