1*4882a593Smuzhiyun /*
2*4882a593Smuzhiyun * Copyright (c) 2019 Alexey Dobriyan <adobriyan@gmail.com>
3*4882a593Smuzhiyun *
4*4882a593Smuzhiyun * Permission to use, copy, modify, and distribute this software for any
5*4882a593Smuzhiyun * purpose with or without fee is hereby granted, provided that the above
6*4882a593Smuzhiyun * copyright notice and this permission notice appear in all copies.
7*4882a593Smuzhiyun *
8*4882a593Smuzhiyun * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9*4882a593Smuzhiyun * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10*4882a593Smuzhiyun * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11*4882a593Smuzhiyun * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12*4882a593Smuzhiyun * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13*4882a593Smuzhiyun * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14*4882a593Smuzhiyun * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
15*4882a593Smuzhiyun */
16*4882a593Smuzhiyun /*
17*4882a593Smuzhiyun * Fork and exec tiny 1 page executable which precisely controls its VM.
18*4882a593Smuzhiyun * Test /proc/$PID/maps
19*4882a593Smuzhiyun * Test /proc/$PID/smaps
20*4882a593Smuzhiyun * Test /proc/$PID/smaps_rollup
21*4882a593Smuzhiyun * Test /proc/$PID/statm
22*4882a593Smuzhiyun *
23*4882a593Smuzhiyun * FIXME require CONFIG_TMPFS which can be disabled
24*4882a593Smuzhiyun * FIXME test other values from "smaps"
25*4882a593Smuzhiyun * FIXME support other archs
26*4882a593Smuzhiyun */
27*4882a593Smuzhiyun #undef NDEBUG
28*4882a593Smuzhiyun #include <assert.h>
29*4882a593Smuzhiyun #include <errno.h>
30*4882a593Smuzhiyun #include <sched.h>
31*4882a593Smuzhiyun #include <signal.h>
32*4882a593Smuzhiyun #include <stdbool.h>
33*4882a593Smuzhiyun #include <stdint.h>
34*4882a593Smuzhiyun #include <stdio.h>
35*4882a593Smuzhiyun #include <string.h>
36*4882a593Smuzhiyun #include <stdlib.h>
37*4882a593Smuzhiyun #include <sys/mount.h>
38*4882a593Smuzhiyun #include <sys/types.h>
39*4882a593Smuzhiyun #include <sys/stat.h>
40*4882a593Smuzhiyun #include <sys/wait.h>
41*4882a593Smuzhiyun #include <fcntl.h>
42*4882a593Smuzhiyun #include <unistd.h>
43*4882a593Smuzhiyun #include <sys/syscall.h>
44*4882a593Smuzhiyun #include <sys/uio.h>
45*4882a593Smuzhiyun #include <linux/kdev_t.h>
46*4882a593Smuzhiyun #include <sys/time.h>
47*4882a593Smuzhiyun #include <sys/resource.h>
48*4882a593Smuzhiyun
sys_execveat(int dirfd,const char * pathname,char ** argv,char ** envp,int flags)49*4882a593Smuzhiyun static inline long sys_execveat(int dirfd, const char *pathname, char **argv, char **envp, int flags)
50*4882a593Smuzhiyun {
51*4882a593Smuzhiyun return syscall(SYS_execveat, dirfd, pathname, argv, envp, flags);
52*4882a593Smuzhiyun }
53*4882a593Smuzhiyun
make_private_tmp(void)54*4882a593Smuzhiyun static void make_private_tmp(void)
55*4882a593Smuzhiyun {
56*4882a593Smuzhiyun if (unshare(CLONE_NEWNS) == -1) {
57*4882a593Smuzhiyun if (errno == ENOSYS || errno == EPERM) {
58*4882a593Smuzhiyun exit(4);
59*4882a593Smuzhiyun }
60*4882a593Smuzhiyun exit(1);
61*4882a593Smuzhiyun }
62*4882a593Smuzhiyun if (mount(NULL, "/", NULL, MS_PRIVATE|MS_REC, NULL) == -1) {
63*4882a593Smuzhiyun exit(1);
64*4882a593Smuzhiyun }
65*4882a593Smuzhiyun if (mount(NULL, "/tmp", "tmpfs", 0, NULL) == -1) {
66*4882a593Smuzhiyun exit(1);
67*4882a593Smuzhiyun }
68*4882a593Smuzhiyun }
69*4882a593Smuzhiyun
70*4882a593Smuzhiyun static pid_t pid = -1;
ate(void)71*4882a593Smuzhiyun static void ate(void)
72*4882a593Smuzhiyun {
73*4882a593Smuzhiyun if (pid > 0) {
74*4882a593Smuzhiyun kill(pid, SIGTERM);
75*4882a593Smuzhiyun }
76*4882a593Smuzhiyun }
77*4882a593Smuzhiyun
78*4882a593Smuzhiyun struct elf64_hdr {
79*4882a593Smuzhiyun uint8_t e_ident[16];
80*4882a593Smuzhiyun uint16_t e_type;
81*4882a593Smuzhiyun uint16_t e_machine;
82*4882a593Smuzhiyun uint32_t e_version;
83*4882a593Smuzhiyun uint64_t e_entry;
84*4882a593Smuzhiyun uint64_t e_phoff;
85*4882a593Smuzhiyun uint64_t e_shoff;
86*4882a593Smuzhiyun uint32_t e_flags;
87*4882a593Smuzhiyun uint16_t e_ehsize;
88*4882a593Smuzhiyun uint16_t e_phentsize;
89*4882a593Smuzhiyun uint16_t e_phnum;
90*4882a593Smuzhiyun uint16_t e_shentsize;
91*4882a593Smuzhiyun uint16_t e_shnum;
92*4882a593Smuzhiyun uint16_t e_shstrndx;
93*4882a593Smuzhiyun };
94*4882a593Smuzhiyun
95*4882a593Smuzhiyun struct elf64_phdr {
96*4882a593Smuzhiyun uint32_t p_type;
97*4882a593Smuzhiyun uint32_t p_flags;
98*4882a593Smuzhiyun uint64_t p_offset;
99*4882a593Smuzhiyun uint64_t p_vaddr;
100*4882a593Smuzhiyun uint64_t p_paddr;
101*4882a593Smuzhiyun uint64_t p_filesz;
102*4882a593Smuzhiyun uint64_t p_memsz;
103*4882a593Smuzhiyun uint64_t p_align;
104*4882a593Smuzhiyun };
105*4882a593Smuzhiyun
106*4882a593Smuzhiyun #ifdef __x86_64__
107*4882a593Smuzhiyun #define PAGE_SIZE 4096
108*4882a593Smuzhiyun #define VADDR (1UL << 32)
109*4882a593Smuzhiyun #define MAPS_OFFSET 73
110*4882a593Smuzhiyun
111*4882a593Smuzhiyun #define syscall 0x0f, 0x05
112*4882a593Smuzhiyun #define mov_rdi(x) \
113*4882a593Smuzhiyun 0x48, 0xbf, \
114*4882a593Smuzhiyun (x)&0xff, ((x)>>8)&0xff, ((x)>>16)&0xff, ((x)>>24)&0xff, \
115*4882a593Smuzhiyun ((x)>>32)&0xff, ((x)>>40)&0xff, ((x)>>48)&0xff, ((x)>>56)&0xff
116*4882a593Smuzhiyun
117*4882a593Smuzhiyun #define mov_rsi(x) \
118*4882a593Smuzhiyun 0x48, 0xbe, \
119*4882a593Smuzhiyun (x)&0xff, ((x)>>8)&0xff, ((x)>>16)&0xff, ((x)>>24)&0xff, \
120*4882a593Smuzhiyun ((x)>>32)&0xff, ((x)>>40)&0xff, ((x)>>48)&0xff, ((x)>>56)&0xff
121*4882a593Smuzhiyun
122*4882a593Smuzhiyun #define mov_eax(x) \
123*4882a593Smuzhiyun 0xb8, (x)&0xff, ((x)>>8)&0xff, ((x)>>16)&0xff, ((x)>>24)&0xff
124*4882a593Smuzhiyun
125*4882a593Smuzhiyun static const uint8_t payload[] = {
126*4882a593Smuzhiyun /* Casually unmap stack, vDSO and everything else. */
127*4882a593Smuzhiyun /* munmap */
128*4882a593Smuzhiyun mov_rdi(VADDR + 4096),
129*4882a593Smuzhiyun mov_rsi((1ULL << 47) - 4096 - VADDR - 4096),
130*4882a593Smuzhiyun mov_eax(11),
131*4882a593Smuzhiyun syscall,
132*4882a593Smuzhiyun
133*4882a593Smuzhiyun /* Ping parent. */
134*4882a593Smuzhiyun /* write(0, &c, 1); */
135*4882a593Smuzhiyun 0x31, 0xff, /* xor edi, edi */
136*4882a593Smuzhiyun 0x48, 0x8d, 0x35, 0x00, 0x00, 0x00, 0x00, /* lea rsi, [rip] */
137*4882a593Smuzhiyun 0xba, 0x01, 0x00, 0x00, 0x00, /* mov edx, 1 */
138*4882a593Smuzhiyun mov_eax(1),
139*4882a593Smuzhiyun syscall,
140*4882a593Smuzhiyun
141*4882a593Smuzhiyun /* 1: pause(); */
142*4882a593Smuzhiyun mov_eax(34),
143*4882a593Smuzhiyun syscall,
144*4882a593Smuzhiyun
145*4882a593Smuzhiyun 0xeb, 0xf7, /* jmp 1b */
146*4882a593Smuzhiyun };
147*4882a593Smuzhiyun
make_exe(const uint8_t * payload,size_t len)148*4882a593Smuzhiyun static int make_exe(const uint8_t *payload, size_t len)
149*4882a593Smuzhiyun {
150*4882a593Smuzhiyun struct elf64_hdr h;
151*4882a593Smuzhiyun struct elf64_phdr ph;
152*4882a593Smuzhiyun
153*4882a593Smuzhiyun struct iovec iov[3] = {
154*4882a593Smuzhiyun {&h, sizeof(struct elf64_hdr)},
155*4882a593Smuzhiyun {&ph, sizeof(struct elf64_phdr)},
156*4882a593Smuzhiyun {(void *)payload, len},
157*4882a593Smuzhiyun };
158*4882a593Smuzhiyun int fd, fd1;
159*4882a593Smuzhiyun char buf[64];
160*4882a593Smuzhiyun
161*4882a593Smuzhiyun memset(&h, 0, sizeof(h));
162*4882a593Smuzhiyun h.e_ident[0] = 0x7f;
163*4882a593Smuzhiyun h.e_ident[1] = 'E';
164*4882a593Smuzhiyun h.e_ident[2] = 'L';
165*4882a593Smuzhiyun h.e_ident[3] = 'F';
166*4882a593Smuzhiyun h.e_ident[4] = 2;
167*4882a593Smuzhiyun h.e_ident[5] = 1;
168*4882a593Smuzhiyun h.e_ident[6] = 1;
169*4882a593Smuzhiyun h.e_ident[7] = 0;
170*4882a593Smuzhiyun h.e_type = 2;
171*4882a593Smuzhiyun h.e_machine = 0x3e;
172*4882a593Smuzhiyun h.e_version = 1;
173*4882a593Smuzhiyun h.e_entry = VADDR + sizeof(struct elf64_hdr) + sizeof(struct elf64_phdr);
174*4882a593Smuzhiyun h.e_phoff = sizeof(struct elf64_hdr);
175*4882a593Smuzhiyun h.e_shoff = 0;
176*4882a593Smuzhiyun h.e_flags = 0;
177*4882a593Smuzhiyun h.e_ehsize = sizeof(struct elf64_hdr);
178*4882a593Smuzhiyun h.e_phentsize = sizeof(struct elf64_phdr);
179*4882a593Smuzhiyun h.e_phnum = 1;
180*4882a593Smuzhiyun h.e_shentsize = 0;
181*4882a593Smuzhiyun h.e_shnum = 0;
182*4882a593Smuzhiyun h.e_shstrndx = 0;
183*4882a593Smuzhiyun
184*4882a593Smuzhiyun memset(&ph, 0, sizeof(ph));
185*4882a593Smuzhiyun ph.p_type = 1;
186*4882a593Smuzhiyun ph.p_flags = (1<<2)|1;
187*4882a593Smuzhiyun ph.p_offset = 0;
188*4882a593Smuzhiyun ph.p_vaddr = VADDR;
189*4882a593Smuzhiyun ph.p_paddr = 0;
190*4882a593Smuzhiyun ph.p_filesz = sizeof(struct elf64_hdr) + sizeof(struct elf64_phdr) + len;
191*4882a593Smuzhiyun ph.p_memsz = sizeof(struct elf64_hdr) + sizeof(struct elf64_phdr) + len;
192*4882a593Smuzhiyun ph.p_align = 4096;
193*4882a593Smuzhiyun
194*4882a593Smuzhiyun fd = openat(AT_FDCWD, "/tmp", O_WRONLY|O_EXCL|O_TMPFILE, 0700);
195*4882a593Smuzhiyun if (fd == -1) {
196*4882a593Smuzhiyun exit(1);
197*4882a593Smuzhiyun }
198*4882a593Smuzhiyun
199*4882a593Smuzhiyun if (writev(fd, iov, 3) != sizeof(struct elf64_hdr) + sizeof(struct elf64_phdr) + len) {
200*4882a593Smuzhiyun exit(1);
201*4882a593Smuzhiyun }
202*4882a593Smuzhiyun
203*4882a593Smuzhiyun /* Avoid ETXTBSY on exec. */
204*4882a593Smuzhiyun snprintf(buf, sizeof(buf), "/proc/self/fd/%u", fd);
205*4882a593Smuzhiyun fd1 = open(buf, O_RDONLY|O_CLOEXEC);
206*4882a593Smuzhiyun close(fd);
207*4882a593Smuzhiyun
208*4882a593Smuzhiyun return fd1;
209*4882a593Smuzhiyun }
210*4882a593Smuzhiyun #endif
211*4882a593Smuzhiyun
212*4882a593Smuzhiyun static bool g_vsyscall = false;
213*4882a593Smuzhiyun
214*4882a593Smuzhiyun static const char str_vsyscall[] =
215*4882a593Smuzhiyun "ffffffffff600000-ffffffffff601000 r-xp 00000000 00:00 0 [vsyscall]\n";
216*4882a593Smuzhiyun
217*4882a593Smuzhiyun #ifdef __x86_64__
sigaction_SIGSEGV(int _,siginfo_t * __,void * ___)218*4882a593Smuzhiyun static void sigaction_SIGSEGV(int _, siginfo_t *__, void *___)
219*4882a593Smuzhiyun {
220*4882a593Smuzhiyun _exit(1);
221*4882a593Smuzhiyun }
222*4882a593Smuzhiyun
223*4882a593Smuzhiyun /*
224*4882a593Smuzhiyun * vsyscall page can't be unmapped, probe it with memory load.
225*4882a593Smuzhiyun */
vsyscall(void)226*4882a593Smuzhiyun static void vsyscall(void)
227*4882a593Smuzhiyun {
228*4882a593Smuzhiyun pid_t pid;
229*4882a593Smuzhiyun int wstatus;
230*4882a593Smuzhiyun
231*4882a593Smuzhiyun pid = fork();
232*4882a593Smuzhiyun if (pid < 0) {
233*4882a593Smuzhiyun fprintf(stderr, "fork, errno %d\n", errno);
234*4882a593Smuzhiyun exit(1);
235*4882a593Smuzhiyun }
236*4882a593Smuzhiyun if (pid == 0) {
237*4882a593Smuzhiyun struct rlimit rlim = {0, 0};
238*4882a593Smuzhiyun (void)setrlimit(RLIMIT_CORE, &rlim);
239*4882a593Smuzhiyun
240*4882a593Smuzhiyun /* Hide "segfault at ffffffffff600000" messages. */
241*4882a593Smuzhiyun struct sigaction act;
242*4882a593Smuzhiyun memset(&act, 0, sizeof(struct sigaction));
243*4882a593Smuzhiyun act.sa_flags = SA_SIGINFO;
244*4882a593Smuzhiyun act.sa_sigaction = sigaction_SIGSEGV;
245*4882a593Smuzhiyun (void)sigaction(SIGSEGV, &act, NULL);
246*4882a593Smuzhiyun
247*4882a593Smuzhiyun *(volatile int *)0xffffffffff600000UL;
248*4882a593Smuzhiyun exit(0);
249*4882a593Smuzhiyun }
250*4882a593Smuzhiyun waitpid(pid, &wstatus, 0);
251*4882a593Smuzhiyun if (WIFEXITED(wstatus) && WEXITSTATUS(wstatus) == 0) {
252*4882a593Smuzhiyun g_vsyscall = true;
253*4882a593Smuzhiyun }
254*4882a593Smuzhiyun }
255*4882a593Smuzhiyun
main(void)256*4882a593Smuzhiyun int main(void)
257*4882a593Smuzhiyun {
258*4882a593Smuzhiyun int pipefd[2];
259*4882a593Smuzhiyun int exec_fd;
260*4882a593Smuzhiyun
261*4882a593Smuzhiyun vsyscall();
262*4882a593Smuzhiyun
263*4882a593Smuzhiyun atexit(ate);
264*4882a593Smuzhiyun
265*4882a593Smuzhiyun make_private_tmp();
266*4882a593Smuzhiyun
267*4882a593Smuzhiyun /* Reserve fd 0 for 1-byte pipe ping from child. */
268*4882a593Smuzhiyun close(0);
269*4882a593Smuzhiyun if (open("/", O_RDONLY|O_DIRECTORY|O_PATH) != 0) {
270*4882a593Smuzhiyun return 1;
271*4882a593Smuzhiyun }
272*4882a593Smuzhiyun
273*4882a593Smuzhiyun exec_fd = make_exe(payload, sizeof(payload));
274*4882a593Smuzhiyun
275*4882a593Smuzhiyun if (pipe(pipefd) == -1) {
276*4882a593Smuzhiyun return 1;
277*4882a593Smuzhiyun }
278*4882a593Smuzhiyun if (dup2(pipefd[1], 0) != 0) {
279*4882a593Smuzhiyun return 1;
280*4882a593Smuzhiyun }
281*4882a593Smuzhiyun
282*4882a593Smuzhiyun pid = fork();
283*4882a593Smuzhiyun if (pid == -1) {
284*4882a593Smuzhiyun return 1;
285*4882a593Smuzhiyun }
286*4882a593Smuzhiyun if (pid == 0) {
287*4882a593Smuzhiyun sys_execveat(exec_fd, "", NULL, NULL, AT_EMPTY_PATH);
288*4882a593Smuzhiyun return 1;
289*4882a593Smuzhiyun }
290*4882a593Smuzhiyun
291*4882a593Smuzhiyun char _;
292*4882a593Smuzhiyun if (read(pipefd[0], &_, 1) != 1) {
293*4882a593Smuzhiyun return 1;
294*4882a593Smuzhiyun }
295*4882a593Smuzhiyun
296*4882a593Smuzhiyun struct stat st;
297*4882a593Smuzhiyun if (fstat(exec_fd, &st) == -1) {
298*4882a593Smuzhiyun return 1;
299*4882a593Smuzhiyun }
300*4882a593Smuzhiyun
301*4882a593Smuzhiyun /* Generate "head -n1 /proc/$PID/maps" */
302*4882a593Smuzhiyun char buf0[256];
303*4882a593Smuzhiyun memset(buf0, ' ', sizeof(buf0));
304*4882a593Smuzhiyun int len = snprintf(buf0, sizeof(buf0),
305*4882a593Smuzhiyun "%08lx-%08lx r-xp 00000000 %02lx:%02lx %llu",
306*4882a593Smuzhiyun VADDR, VADDR + PAGE_SIZE,
307*4882a593Smuzhiyun MAJOR(st.st_dev), MINOR(st.st_dev),
308*4882a593Smuzhiyun (unsigned long long)st.st_ino);
309*4882a593Smuzhiyun buf0[len] = ' ';
310*4882a593Smuzhiyun snprintf(buf0 + MAPS_OFFSET, sizeof(buf0) - MAPS_OFFSET,
311*4882a593Smuzhiyun "/tmp/#%llu (deleted)\n", (unsigned long long)st.st_ino);
312*4882a593Smuzhiyun
313*4882a593Smuzhiyun /* Test /proc/$PID/maps */
314*4882a593Smuzhiyun {
315*4882a593Smuzhiyun const size_t len = strlen(buf0) + (g_vsyscall ? strlen(str_vsyscall) : 0);
316*4882a593Smuzhiyun char buf[256];
317*4882a593Smuzhiyun ssize_t rv;
318*4882a593Smuzhiyun int fd;
319*4882a593Smuzhiyun
320*4882a593Smuzhiyun snprintf(buf, sizeof(buf), "/proc/%u/maps", pid);
321*4882a593Smuzhiyun fd = open(buf, O_RDONLY);
322*4882a593Smuzhiyun if (fd == -1) {
323*4882a593Smuzhiyun return 1;
324*4882a593Smuzhiyun }
325*4882a593Smuzhiyun rv = read(fd, buf, sizeof(buf));
326*4882a593Smuzhiyun assert(rv == len);
327*4882a593Smuzhiyun assert(memcmp(buf, buf0, strlen(buf0)) == 0);
328*4882a593Smuzhiyun if (g_vsyscall) {
329*4882a593Smuzhiyun assert(memcmp(buf + strlen(buf0), str_vsyscall, strlen(str_vsyscall)) == 0);
330*4882a593Smuzhiyun }
331*4882a593Smuzhiyun }
332*4882a593Smuzhiyun
333*4882a593Smuzhiyun /* Test /proc/$PID/smaps */
334*4882a593Smuzhiyun {
335*4882a593Smuzhiyun char buf[4096];
336*4882a593Smuzhiyun ssize_t rv;
337*4882a593Smuzhiyun int fd;
338*4882a593Smuzhiyun
339*4882a593Smuzhiyun snprintf(buf, sizeof(buf), "/proc/%u/smaps", pid);
340*4882a593Smuzhiyun fd = open(buf, O_RDONLY);
341*4882a593Smuzhiyun if (fd == -1) {
342*4882a593Smuzhiyun return 1;
343*4882a593Smuzhiyun }
344*4882a593Smuzhiyun rv = read(fd, buf, sizeof(buf));
345*4882a593Smuzhiyun assert(0 <= rv && rv <= sizeof(buf));
346*4882a593Smuzhiyun
347*4882a593Smuzhiyun assert(rv >= strlen(buf0));
348*4882a593Smuzhiyun assert(memcmp(buf, buf0, strlen(buf0)) == 0);
349*4882a593Smuzhiyun
350*4882a593Smuzhiyun #define RSS1 "Rss: 4 kB\n"
351*4882a593Smuzhiyun #define RSS2 "Rss: 0 kB\n"
352*4882a593Smuzhiyun #define PSS1 "Pss: 4 kB\n"
353*4882a593Smuzhiyun #define PSS2 "Pss: 0 kB\n"
354*4882a593Smuzhiyun assert(memmem(buf, rv, RSS1, strlen(RSS1)) ||
355*4882a593Smuzhiyun memmem(buf, rv, RSS2, strlen(RSS2)));
356*4882a593Smuzhiyun assert(memmem(buf, rv, PSS1, strlen(PSS1)) ||
357*4882a593Smuzhiyun memmem(buf, rv, PSS2, strlen(PSS2)));
358*4882a593Smuzhiyun
359*4882a593Smuzhiyun static const char *S[] = {
360*4882a593Smuzhiyun "Size: 4 kB\n",
361*4882a593Smuzhiyun "KernelPageSize: 4 kB\n",
362*4882a593Smuzhiyun "MMUPageSize: 4 kB\n",
363*4882a593Smuzhiyun "Anonymous: 0 kB\n",
364*4882a593Smuzhiyun "AnonHugePages: 0 kB\n",
365*4882a593Smuzhiyun "Shared_Hugetlb: 0 kB\n",
366*4882a593Smuzhiyun "Private_Hugetlb: 0 kB\n",
367*4882a593Smuzhiyun "Locked: 0 kB\n",
368*4882a593Smuzhiyun };
369*4882a593Smuzhiyun int i;
370*4882a593Smuzhiyun
371*4882a593Smuzhiyun for (i = 0; i < sizeof(S)/sizeof(S[0]); i++) {
372*4882a593Smuzhiyun assert(memmem(buf, rv, S[i], strlen(S[i])));
373*4882a593Smuzhiyun }
374*4882a593Smuzhiyun
375*4882a593Smuzhiyun if (g_vsyscall) {
376*4882a593Smuzhiyun assert(memmem(buf, rv, str_vsyscall, strlen(str_vsyscall)));
377*4882a593Smuzhiyun }
378*4882a593Smuzhiyun }
379*4882a593Smuzhiyun
380*4882a593Smuzhiyun /* Test /proc/$PID/smaps_rollup */
381*4882a593Smuzhiyun {
382*4882a593Smuzhiyun char bufr[256];
383*4882a593Smuzhiyun memset(bufr, ' ', sizeof(bufr));
384*4882a593Smuzhiyun len = snprintf(bufr, sizeof(bufr),
385*4882a593Smuzhiyun "%08lx-%08lx ---p 00000000 00:00 0",
386*4882a593Smuzhiyun VADDR, VADDR + PAGE_SIZE);
387*4882a593Smuzhiyun bufr[len] = ' ';
388*4882a593Smuzhiyun snprintf(bufr + MAPS_OFFSET, sizeof(bufr) - MAPS_OFFSET,
389*4882a593Smuzhiyun "[rollup]\n");
390*4882a593Smuzhiyun
391*4882a593Smuzhiyun char buf[1024];
392*4882a593Smuzhiyun ssize_t rv;
393*4882a593Smuzhiyun int fd;
394*4882a593Smuzhiyun
395*4882a593Smuzhiyun snprintf(buf, sizeof(buf), "/proc/%u/smaps_rollup", pid);
396*4882a593Smuzhiyun fd = open(buf, O_RDONLY);
397*4882a593Smuzhiyun if (fd == -1) {
398*4882a593Smuzhiyun return 1;
399*4882a593Smuzhiyun }
400*4882a593Smuzhiyun rv = read(fd, buf, sizeof(buf));
401*4882a593Smuzhiyun assert(0 <= rv && rv <= sizeof(buf));
402*4882a593Smuzhiyun
403*4882a593Smuzhiyun assert(rv >= strlen(bufr));
404*4882a593Smuzhiyun assert(memcmp(buf, bufr, strlen(bufr)) == 0);
405*4882a593Smuzhiyun
406*4882a593Smuzhiyun assert(memmem(buf, rv, RSS1, strlen(RSS1)) ||
407*4882a593Smuzhiyun memmem(buf, rv, RSS2, strlen(RSS2)));
408*4882a593Smuzhiyun assert(memmem(buf, rv, PSS1, strlen(PSS1)) ||
409*4882a593Smuzhiyun memmem(buf, rv, PSS2, strlen(PSS2)));
410*4882a593Smuzhiyun
411*4882a593Smuzhiyun static const char *S[] = {
412*4882a593Smuzhiyun "Anonymous: 0 kB\n",
413*4882a593Smuzhiyun "AnonHugePages: 0 kB\n",
414*4882a593Smuzhiyun "Shared_Hugetlb: 0 kB\n",
415*4882a593Smuzhiyun "Private_Hugetlb: 0 kB\n",
416*4882a593Smuzhiyun "Locked: 0 kB\n",
417*4882a593Smuzhiyun };
418*4882a593Smuzhiyun int i;
419*4882a593Smuzhiyun
420*4882a593Smuzhiyun for (i = 0; i < sizeof(S)/sizeof(S[0]); i++) {
421*4882a593Smuzhiyun assert(memmem(buf, rv, S[i], strlen(S[i])));
422*4882a593Smuzhiyun }
423*4882a593Smuzhiyun }
424*4882a593Smuzhiyun
425*4882a593Smuzhiyun /* Test /proc/$PID/statm */
426*4882a593Smuzhiyun {
427*4882a593Smuzhiyun char buf[64];
428*4882a593Smuzhiyun ssize_t rv;
429*4882a593Smuzhiyun int fd;
430*4882a593Smuzhiyun
431*4882a593Smuzhiyun snprintf(buf, sizeof(buf), "/proc/%u/statm", pid);
432*4882a593Smuzhiyun fd = open(buf, O_RDONLY);
433*4882a593Smuzhiyun if (fd == -1) {
434*4882a593Smuzhiyun return 1;
435*4882a593Smuzhiyun }
436*4882a593Smuzhiyun rv = read(fd, buf, sizeof(buf));
437*4882a593Smuzhiyun assert(rv == 7 * 2);
438*4882a593Smuzhiyun
439*4882a593Smuzhiyun assert(buf[0] == '1'); /* ->total_vm */
440*4882a593Smuzhiyun assert(buf[1] == ' ');
441*4882a593Smuzhiyun assert(buf[2] == '0' || buf[2] == '1'); /* rss */
442*4882a593Smuzhiyun assert(buf[3] == ' ');
443*4882a593Smuzhiyun assert(buf[4] == '0' || buf[2] == '1'); /* file rss */
444*4882a593Smuzhiyun assert(buf[5] == ' ');
445*4882a593Smuzhiyun assert(buf[6] == '1'); /* ELF executable segments */
446*4882a593Smuzhiyun assert(buf[7] == ' ');
447*4882a593Smuzhiyun assert(buf[8] == '0');
448*4882a593Smuzhiyun assert(buf[9] == ' ');
449*4882a593Smuzhiyun assert(buf[10] == '0'); /* ->data_vm + ->stack_vm */
450*4882a593Smuzhiyun assert(buf[11] == ' ');
451*4882a593Smuzhiyun assert(buf[12] == '0');
452*4882a593Smuzhiyun assert(buf[13] == '\n');
453*4882a593Smuzhiyun }
454*4882a593Smuzhiyun
455*4882a593Smuzhiyun return 0;
456*4882a593Smuzhiyun }
457*4882a593Smuzhiyun #else
main(void)458*4882a593Smuzhiyun int main(void)
459*4882a593Smuzhiyun {
460*4882a593Smuzhiyun return 4;
461*4882a593Smuzhiyun }
462*4882a593Smuzhiyun #endif
463