strace new features dmitry levin
play

strace: new features Dmitry Levin BaseALT FOSDEM 2018 New - PowerPoint PPT Presentation

Mar 14, 2024 •380 likes •600 views

strace: new features Dmitry Levin BaseALT FOSDEM 2018 New features since FOSDEM 2017 Released 4.16 : Syscall return value injection 4.16 : Syscall signal injection 4.17 : Syscall specification improvements 4.18, 4.19 : Netlink socket

  1. strace: new features Dmitry Levin BaseALT FOSDEM 2018

  2. New features since FOSDEM 2017 Released 4.16 : Syscall return value injection 4.16 : Syscall signal injection 4.17 : Syscall specification improvements 4.18, 4.19 : Netlink socket parsers Being merged Syscall delay injection Advanced syscall filtering syntax Advanced syscall manipulations with Lua Advanced syscall information tool

  3. System call tampering and fault injection [1/5] traditional syscall fault injection -e fault= set [:error= errno ][:when= expr ] strace -a28 -e trace=open -e fault= open :when= 3 :error= EACCES cat /dev/null open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 open("/lib64/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 open("/dev/null", O_RDONLY) = -1 EACCES (Permission denied) cat: /dev/null: Permission denied +++ exited with 1 +++

  4. fault injection examples: python3.5 bug [2/5] Error opening /dev/urandom $ strace -P /dev/urandom -e fault=open:error=ENOENT python3 < /dev/null open("/dev/urandom", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or dir ectory) (INJECTED) Fatal Python error: Failed to open /dev/urandom --- SIGSEGV si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x50 --- +++ killed by SIGSEGV +++ Segmentation fault Error reading /dev/urandom $ strace -a30 -P /dev/urandom -e fault=read:error=EIO python3 < /dev/null open("/dev/urandom", O_RDONLY|O_CLOEXEC) = 3 fcntl(3, F_GETFD) = 0x1 (flags FD_CLOEXEC) read(3, 0x8db610, 24) = -1 EIO (Input/output error) (INJECTED) Fatal Python error: Failed to read bytes from /dev/urandom --- SIGSEGV si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x50 --- +++ killed by SIGSEGV +++ Segmentation fault

  5. fault injection examples: glibc dynamic linker bug [3/5] glibc <= 2.25: without a proper check $ strace -e mprotect -efault=mprotect:when=1:error=EPERM pwd > /dev/null mprotect(0x7fabcd00f000, 2097152, PROT_NONE) = -1 EPERM (Operation not pe rmitted) (INJECTED) mprotect(0x7fabcd20f000, 16384, PROT_READ) = 0 mprotect(0x606000, 4096, PROT_READ) = 0 mprotect(0x7fabcd441000, 4096, PROT_READ) = 0 +++ exited with 0 +++ glibc >= 2.26: with a proper check $ strace -e mprotect -efault=mprotect:when=1:error=EPERM pwd > /dev/null mprotect(0x7fabcd00f000, 2097152, PROT_NONE) = -1 EPERM (Operation not pe rmitted) (INJECTED) pwd: error while loading shared libraries: libc.so.6: cannot change memor y protections +++ exited with 127 +++

  6. System call tampering and fault injection [4/5] syscall tampering improvements new -e inject= option return value injection signal injection delay injection strace -e inject = set [:paramN]... Valid inject parameters: error= errno or retval= value signal= sig delay_enter= usecs delay_exit= usecs when= expr

  7. System call tampering and fault injection [5/5] syscall delay injection strace -e inject = set :delay_enter= usecs strace -e inject = set :delay_exit= usecs dd if=/dev/zero of=/dev/null bs=1M count=10 10+0 records in 10+0 records out 10485760 bytes (10 MB, 10 MiB) copied, 0.00211354 s, 5.0 GB/s strace -einject=write:delay_exit=100000 -ewrite -o/dev/null dd if=/dev/zero of=/dev/null bs=1M count=10 10+0 records in 10+0 records out 10485760 bytes (10 MB, 10 MiB) copied, 1.10658 s, 9.5 MB/s

  8. Netlink socket parsers [1/3] Result of joined efforts GSoC 2016 : Fabien Siron, mentored by Gabriel Laskar GSoC 2017 : JingPiao Chen Currently supported netlink protocols NETLINK_AUDIT NETLINK_CRYPTO NETLINK_KOBJECT_UEVENT NETLINK_NETFILTER NETLINK_ROUTE NETLINK_SELINUX NETLINK_SOCK_DIAG NETLINK_XFRM NETLINK_GENERIC

  9. Netlink socket parsers: NETLINK_ROUTE [2/3] hsh-run −− ip route list table all broadcast 127.0.0.0 dev lo table local proto kernel scope link src 127.0.0.1 local 127.0.0.0/8 dev lo table local proto kernel scope host src 127.0.0.1 local 127.0.0.1 dev lo table local proto kernel scope host src 127.0.0.1 broadcast 127.255.255.255 dev lo table local proto kernel scope link src 127.0.0.1

  10. hsh-run –mount=/proc −− strace -e trace=sendto,recvmsg ip route list sendto(3, {{len=40, type=RTM_GETROUTE, flags=NLM_F_REQUEST|NLM_F_DUMP, seq=1357924680, pid=0}, {rtm_family=AF_UNSPEC, rtm_dst_len=0, rtm_src_len=0, rtm_tos=0, rtm_table=RT_TABLE_UNSPEC, rtm_protocol=RTPROT_UNSPEC, rtm_scope=RT_SCOPE_UNIVERSE, rtm_type=RTN_UNSPEC, rtm_flags=0}, {nla_len=0, nla_type=RTA_UNSPEC}}, 40, 0, NULL, 0) = 40 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[ {{len=60, type=RTM_NEWROUTE, flags=NLM_F_MULTI, seq=1357924680, pid=12345}, {rtm_family=AF_INET, rtm_dst_len=32, rtm_src_len=0, rtm_tos=0, rtm_table=RT_TABLE_LOCAL, rtm_protocol=RTPROT_KERNEL, rtm_scope=RT_SCOPE_LINK, rtm_type=RTN_BROADCAST, rtm_flags=0}, [{{nla_len=8, nla_type=RTA_TABLE}, RT_TABLE_LOCAL}, {{nla_len=8, nla_type=RTA_DST}, 127.0.0.0}, {{nla_len=8, nla_type=RTA_PREFSRC}, 127.0.0.1}, {{nla_len=8, nla_type=RTA_OIF}, if_nametoindex("lo")}]}, {{len=60, type=RTM_NEWROUTE, flags=NLM_F_MULTI, seq=1357924680, pid=12345}, {rtm_family=AF_INET, rtm_dst_len=8, rtm_src_len=0, rtm_tos=0, rtm_table=RT_TABLE_LOCAL, rtm_protocol=RTPROT_KERNEL, rtm_scope=RT_SCOPE_HOST, rtm_type=RTN_LOCAL, rtm_flags=0}, [{{nla_len=8, nla_type=RTA_TABLE}, RT_TABLE_LOCAL}, {{nla_len=8, nla_type=RTA_DST}, 127.0.0.0}, {{nla_len=8, nla_type=RTA_PREFSRC}, 127.0.0.1}, {{nla_len=8, nla_type=RTA_OIF}, if_nametoindex("lo")}]}, {{len=60, type=RTM_NEWROUTE, flags=NLM_F_MULTI, seq=1357924680, pid=12345}, {rtm_family=AF_INET, rtm_dst_len=32, rtm_src_len=0, rtm_tos=0, rtm_table=RT_TABLE_LOCAL, rtm_protocol=RTPROT_KERNEL, rtm_scope=RT_SCOPE_HOST, rtm_type=RTN_LOCAL, rtm_flags=0}, [{{nla_len=8, nla_type=RTA_TABLE}, RT_TABLE_LOCAL}, {{nla_len=8, nla_type=RTA_DST}, 127.0.0.1}, {{nla_len=8, nla_type=RTA_PREFSRC}, 127.0.0.1}, {{nla_len=8, nla_type=RTA_OIF}, if_nametoindex("lo")}]}, {{len=60, type=RTM_NEWROUTE, flags=NLM_F_MULTI, seq=1357924680, pid=12345}, {rtm_family=AF_INET, rtm_dst_len=32, rtm_src_len=0, rtm_tos=0, rtm_table=RT_TABLE_LOCAL, rtm_protocol=RTPROT_KERNEL, rtm_scope=RT_SCOPE_LINK, rtm_type=RTN_BROADCAST, rtm_flags=0}, [{{nla_len=8, nla_type=RTA_TABLE}, RT_TABLE_LOCAL}, {{nla_len=8, nla_type=RTA_DST}, 127.255.255.255}, {{nla_len=8, nla_type=RTA_PREFSRC}, 127.0.0.1}, {{nla_len=8, nla_type=RTA_OIF}, if_nametoindex("lo")}]} ], iov_len=32768}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 240 ...

  11. System call specification improvements [1/6] syscall classes now have % prefix strace -e trace=% class traditional syscall classes desc : take or return a descriptor file : take a file name memory : memory mapping, memory policy process : process management signal : signal related ipc : SysV IPC related network : network related

  12. System call specification improvements [2/6] new syscall classes %stat, %lstat, %fstat %statfs, %fstatfs %%stat, %%statfs strace -y -e %%stat ls /var/empty fstat(3</etc/ld.so.cache>, st_mode=S_IFREG|0644, st_size=30341, ... fstat(3</proc/filesystems>, st_mode=S_IFREG|0444, st_size=0, stat("/var/empty", st_mode=S_IFDIR|0555, st_size=40, ...) = fstat(3</var/empty>, st_mode=S_IFDIR|0555, st_size=40, ...) +++ exited with 0 +++

  13. System call specification improvements [3/6] %fstat syscall class fstat, fstat64 fstatat64, newfstatat oldfstat strace -y -e %fstat find /var/empty -mindepth 1 fstat(3</etc/ld.so.cache>, st_mode=S_IFREG|0644, ...) = 0 ... fstat(3</lib64/libdl-2.26.so>, st_mode=S_IFREG|0644, ...) = fstat(3</proc/filesystems>, st_mode=S_IFREG|0444, ...) = 0 newfstatat(AT_FDCWD, "/var/empty", st_mode=S_IFDIR|0555, ..., fstat(4</var/empty>, st_mode=S_IFDIR|0555, ...) = 0 newfstatat(AT_FDCWD, "/var/empty", st_mode=S_IFDIR|0555, ...,

  14. System call specification improvements [4/6] added support of regular expressions strace -e trace=/ regexp regexp is an extended regular expression strace -e ’/fstat(at)?(64)?$’ find /var/empty -mindepth 1 fstat(3</etc/ld.so.cache>, st_mode=S_IFREG|0644, ...) = 0 ... fstat(3</lib64/libdl-2.26.so>, st_mode=S_IFREG|0644, ...) = fstat(3</proc/filesystems>, st_mode=S_IFREG|0444, ...) = 0 newfstatat(AT_FDCWD, "/var/empty", st_mode=S_IFDIR|0555, ..., fstat(4</var/empty>, st_mode=S_IFDIR|0555, ...) = 0 newfstatat(AT_FDCWD, "/var/empty", st_mode=S_IFDIR|0555, ...,

  15. System call specification improvements [5/6] added support of conditional descriptions strace -e trace=? set strace -e trace=?statx ./tests/statx statx(AT_FDCWD, "/dev/full", AT_STATX_SYNC_AS_STAT, STATX_ALL, stx_mask=STATX_BASIC_STATS, stx_attributes=0, stx_mode=S_IFCHR|0666, stx_size=0, ...) = 0 strace -e trace=/statx might not work strace: invalid system call ’/statx’

  16. System call specification improvements [6/6] glibc: open vs openat glibc-2.25$ strace -qq -e open cat /dev/null open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 open("/lib64/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 open("/dev/null", O_RDONLY) = 3 glibc-2.26$ strace -qq -e open cat /dev/null glibc-2.26$ strace -qq -e openat cat /dev/null openat(AT_FDCWD, "/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 openat(AT_FDCWD, "/lib64/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 openat(AT_FDCWD, "/dev/null", O_RDONLY) = 3 strace -e open , openat is not portable portable syscall specifications regexp : /^open(at)?$ condition : ?open,openat

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

strace: fight for performance Eugene Syromiatnikov, Dmitry Levin FOSDEM 2020 What is strace ?

strace: fight for performance Eugene Syromiatnikov, Dmitry Levin FOSDEM 2020 What is strace ?

strace: fight for performance Eugene Syromiatnikov, Dmitry Levin FOSDEM 2020 What is strace ? strace is a diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor and tamper with interactions between processes

975 views • 37 slides
Can strace make you fail? strace syscall fault injection Dmitry Levin FOSDEM 2017 What is

Can strace make you fail? strace syscall fault injection Dmitry Levin FOSDEM 2017 What is

Can strace make you fail? strace syscall fault injection Dmitry Levin FOSDEM 2017 What is strace? A diagnostic, debugging and instructional userspace utility for Linux. It is used to monitor interactions between processes and the Linux

541 views • 24 slides
Postmodern strace Dmitry Levin Brussels, 2020 Traditional strace [1/30] Printing instruction

Postmodern strace Dmitry Levin Brussels, 2020 Traditional strace [1/30] Printing instruction

Postmodern strace Dmitry Levin Brussels, 2020 Traditional strace [1/30] Printing instruction pointer and timestamps print instruction pointer: -i option print timestamps: -r , -t , -tt , -ttt , and -T options Size and format of strings string

447 views • 33 slides
strace fr bash -Versteher Endlich die UNIX-Shell verstehen dank strace Harald Knig

strace fr bash -Versteher Endlich die UNIX-Shell verstehen dank strace Harald Knig

strace fr bash -Versteher Endlich die UNIX-Shell verstehen dank strace Harald Knig science + computing ag IT-Dienstleistungen und Software fr anspruchsvolle Rechnernetze Tbingen | Mnchen | Berlin | Dsseldorf Agenda me and s+c

358 views • 24 slides
Performance vs new features: it doesnt have to be a zero-sum game QCon London 2020 Dmitry

Performance vs new features: it doesnt have to be a zero-sum game QCon London 2020 Dmitry

Performance vs new features: it doesnt have to be a zero-sum game QCon London 2020 Dmitry Vyazelenko @DVyazelenko Do you trust your file system? Do you trust your file system? All File Systems are Not Created Equal: On the Complexity of

361 views • 34 slides
Programs for voice communication Tikhonov Dmitry AS-46i Objective: find out unique features of

Programs for voice communication Tikhonov Dmitry AS-46i Objective: find out unique features of

Programs for voice communication Tikhonov Dmitry AS-46i Objective: find out unique features of programs listed below Skype Viber TeamSpeak RaidCall Discord Skype One of the oldest voice communication programs and the

351 views • 8 slides
Moving Least Squares Outline The Approximation Power of Moving Least- Squares D. Levin

Moving Least Squares Outline The Approximation Power of Moving Least- Squares D. Levin

David Levin presented by Niloy J. Mitra Moving Least Squares Outline The Approximation Power of Moving Least- Squares D. Levin Mesh-Independent Surface Interpolation D. Levin Defining point-set surfaces N. Amenta and Y. Kil CS

455 views • 32 slides
Tracing and Profiling MySQL Mostly with Linux tools: from strace and gdb to ftrace, bpftrace,

Tracing and Profiling MySQL Mostly with Linux tools: from strace and gdb to ftrace, bpftrace,

Tracing and Profiling MySQL Mostly with Linux tools: from strace and gdb to ftrace, bpftrace, perf and dynamic probes Valerii Kravchuk, Principal Support Engineer, MariaDB vkravchuk@gmail.com 1 Who am I? Valerii (aka Valeriy ) Kravchuk :

549 views • 27 slides
Complexity of distributions and average-case hardness Dmitry Sokolov joint work with Dmitry

Complexity of distributions and average-case hardness Dmitry Sokolov joint work with Dmitry

Complexity of distributions and average-case hardness Dmitry Sokolov joint work with Dmitry Itsykson and Alexander Knop St. Petersburg Department of V. A. Steklov Institute of Mathematics Problems in Theoretical Computer Science Moscow

716 views • 34 slides
Dmitry Pushkar Dmitry Pushkar No Disclosure 2018 Non surgical (pessary,tampons)

Dmitry Pushkar Dmitry Pushkar No Disclosure 2018 Non surgical (pessary,tampons)

No Mesh repair of SUI: Conclusions Dmitry Pushkar Dmitry Pushkar No Disclosure 2018 Non surgical (pessary,tampons) Bulking agents No mesh New Lasers And many more EAU Do you still ASlings ? Yes 11% Cochrane

403 views • 15 slides
SRM Dmitry Litvintsev 7th international dCache workshop, May 27-29,2013 dCache Team Dmitry

SRM Dmitry Litvintsev 7th international dCache workshop, May 27-29,2013 dCache Team Dmitry

SRM Dmitry Litvintsev 7th international dCache workshop, May 27-29,2013 dCache Team Dmitry Litvintsev Wednesday, May 29, 13 Plan SRM, a reminder SRM parameters SRM troubleshooting dCache Team 2 Dmitry Litvintsev

827 views • 34 slides
Toward Active Learning in Data Selection: Automatic Discovery of Language Features During

Toward Active Learning in Data Selection: Automatic Discovery of Language Features During

Toward Active Learning in Data Selection: Automatic Discovery of Language Features During Elicitation Jonathan Clark Robert Frederking Lori Levin Language Technologies Institute Carnegie Mellon University Pittsburgh, PA Feature Detection

550 views • 26 slides
11 11 11 Learning to Route in Similarity Graphs Dmitry Baranchuk joint work with Dmitry

11 11 11 Learning to Route in Similarity Graphs Dmitry Baranchuk joint work with Dmitry

The Budgeted Nearest Neighbor Search Problem Similarity Graphs Learning to Route in Similarity Graphs Evaluation 11 11 11 Learning to Route in Similarity Graphs Dmitry Baranchuk joint work with Dmitry Persiyanov, Anton Sinitsin and Artem

417 views • 8 slides
dCache @ Fermilab Dmitry Litvintsev Dmitry Litvintsev, 6th International dCache Workshop, 17-19

dCache @ Fermilab Dmitry Litvintsev Dmitry Litvintsev, 6th International dCache Workshop, 17-19

dCache @ Fermilab Dmitry Litvintsev Dmitry Litvintsev, 6th International dCache Workshop, 17-19 April 2012, DESY Zeuthen Wednesday, April 18, 2012 Science at Fermilab Fermilab: Home of the Tevatron and buffalos Energy frontier: BSM,

209 views • 18 slides
Dimension of Finitely Generated Differential and Difference Field Extensions Alexander Levin

Dimension of Finitely Generated Differential and Difference Field Extensions Alexander Levin

Dimension of Finitely Generated Differential and Difference Field Extensions Alexander Levin The Catholic University of America Washington, D. C. 20064 E-mail: levin@cua.edu Fourth International Workshop on Differential Algebra and Related

543 views • 30 slides
How to treat SUI in women with Detrusor Underactivity Dmitry Pushkar Moscow, Russia Dmitry

How to treat SUI in women with Detrusor Underactivity Dmitry Pushkar Moscow, Russia Dmitry

How to treat SUI in women with Detrusor Underactivity Dmitry Pushkar Moscow, Russia Dmitry Pushkar No Disclosure Detrusor underactivity: definition Detrusor contraction with Reduced contraction strength Or duration Resulting Prolonged

636 views • 15 slides
Learning and Using Image Manifolds Robert Pless Associate Professor of Computer Science What

Learning and Using Image Manifolds Robert Pless Associate Professor of Computer Science What

Learning and Using Image Manifolds Robert Pless Associate Professor of Computer Science What are image manifolds? Sets of images that locally have only a few degrees of freedom. For example, 8 s from the NIST character

1.01k views • 65 slides
Approximating Pareto Curves using Semidefinite Relaxations Victor MAGRON Postdoc LAAS-CNRS

Approximating Pareto Curves using Semidefinite Relaxations Victor MAGRON Postdoc LAAS-CNRS

Pareto Curves Parametric POP Outer Approximations of f ( S ) Perspectives Approximating Pareto Curves using Semidefinite Relaxations Victor MAGRON Postdoc LAAS-CNRS (Joint work with Didier Henrion and Jean-Bernard Lasserre) Optimisation Non

769 views • 66 slides
Integer-Forcing: An Algebraic Approach to Interference Management Bobak Nazer Boston University

Integer-Forcing: An Algebraic Approach to Interference Management Bobak Nazer Boston University

Integer-Forcing: An Algebraic Approach to Interference Management Bobak Nazer Boston University Thanks to Wenbo He, Engin Tunali, and Krishna Narayanan for help with the plots. Communications Theory Workshop Interference Management Session

755 views • 53 slides
Local Search Topology Implications for planner performance Mark Roberts Adele Howe Colorado

Local Search Topology Implications for planner performance Mark Roberts Adele Howe Colorado

Local Search Topology Implications for planner performance Mark Roberts Adele Howe Colorado State University Fort Collins, Colorado Hoffmanns Topological Analyses: The Taxonomy M BW4oop Mystery Mprime I M Mic-ADL N. Schedule

459 views • 9 slides
Review of muSR studies for SRF applications Tobias Junginger Acknowledgement

Review of muSR studies for SRF applications Tobias Junginger Acknowledgement

Review of muSR studies for SRF applications Tobias Junginger Acknowledgement Experimentalists: D. Bazyl, R. Dastley, M. Dehn, D. Azzoni Gravel, S. Gehdi, Z. He, R. Kiefl, P. Kolb, R. Laxdal, Y. Ma, D. Storey, E. Thoeng, W. Wasserman, L.

477 views • 32 slides
Computer Graphics CS 543 Lecture 7 (Part 3) CS 543 Lecture 7 (Part 3) Lighting, Shading and

Computer Graphics CS 543 Lecture 7 (Part 3) CS 543 Lecture 7 (Part 3) Lighting, Shading and

Computer Graphics CS 543 Lecture 7 (Part 3) CS 543 Lecture 7 (Part 3) Lighting, Shading and Materials (Part 3) Prof Emmanuel Agu Computer Science Dept. Worcester Polytechnic Institute (WPI) S Smooth shading th h di Fix mach band effect

900 views • 48 slides
Machine Learning for Biometrics Dong XU School of Electrical and Information Engineering

Machine Learning for Biometrics Dong XU School of Electrical and Information Engineering

Machine Learning for Biometrics Dong XU School of Electrical and Information Engineering University of Syndey Outline Dimensionality Reduction for Tensor-based Objects Graph Embedding: A General Framework for Dimensionality Reduction

1.01k views • 61 slides
BBN-ANG-243 Advanced Phonology: Phonological Analysis Lecture 7: Word Stress part 1 Annotated

BBN-ANG-243 Advanced Phonology: Phonological Analysis Lecture 7: Word Stress part 1 Annotated

Phonological Analysis BBN-ANG-241_stress1 &lt;EngPhonBA_243_stress1_2020_annotated.wpd&gt; Page 1 of 31 BBN-ANG-243 Advanced Phonology: Phonological Analysis Lecture 7: Word Stress part 1 Annotated version: see the Yellow Pages after sets of

652 views • 31 slides

More recommend