On Sun, Oct 27 2024 at 23:29, Celeste Liu wrote:
On 2024-10-27 04:21, Thomas Gleixner wrote:
The real problem is that orig_a0 is not exposed in the user view of the registers. Changing that struct breaks the existing applications obviously.
But you can expose it without changing the struct by exposing a regset for orig_a0 which allows you to read and write it similar to what ARM64 does for the syscall number.
If we add something like NT_SYSCALL_NR to UAPI, it cannot solve anything: We already have PTRACE_GET_SYSCALL_INFO to get syscall number, which was introduced in 5.3 kernel. The problem is only in the kernel before 5.3. So we can't fix this issue unless we also backport NT_SYSCALL_NR to 4.19 LTS. But if we can backport it, we can backport PTRACE_GET_SYSCALL_INFO directly instead.
PTRACE_GET_SYSCALL_INFO only solves half of the problem. It correctly returns orig_a0, but there is no way to modify orig_a0, which is required to change arg0.
On x86 AX contains the syscall number and is used for the return value. So the tracer has do modify orig_AX when it wants to change the syscall number.
Equivalently you need to be able to modify orig_a0 for changing arg0, no?
Thanks,
tglx