stat parsing bugs

88 点作者 ototot超过 2 年前

15 条评论

In my opinion, the fact that procfs is the only API for so many things is one of the biggest problems with Linux. BSDs have sysctl(), macOS has mach_* functions and, of course, Windows has a real API too.Plain text interfaces lead to complicated, potentially insecure code (especially in C!), they're prone to race conditions and slow.I wish it was possible to retrieve that information using real syscalls. I think it's a better approach than, for example, inventing a faster way to read procfs: <a href="https://lwn.net/Articles/813827/" rel="nofollow">https://lwn.net/Articles/813827/</a>

评论 #34096063 未加载

评论 #34096122 未加载

评论 #34095714 未加载

评论 #34097167 未加载

评论 #34095491 未加载

评论 #34098004 未加载

评论 #34108158 未加载

评论 #34098549 未加载

ilyt超过 2 年前

I wish /proc|/sys would just agree on serialization format and just serialize the data into some defined format instead of having a bunch of files that all need their own parser

评论 #34095356 未加载

评论 #34095414 未加载

评论 #34095413 未加载

评论 #34096986 未加载

评论 #34095039 未加载

评论 #34095029 未加载

评论 #34101187 未加载

评论 #34095174 未加载

mzs超过 2 年前

> sudo was bitten by this back in the day (CVE-2017-1000367):> <a href="https://www.openwall.com/lists/oss-security/2017/05/30/16" rel="nofollow">https://www.openwall.com/lists/oss-security/2017/05/30/16</a><a href="https://www.openwall.com/lists/oss-security/2022/12/22/5" rel="nofollow">https://www.openwall.com/lists/oss-security/2022/12/22/5</a>

评论 #34118023 未加载

woodruffw超过 2 年前

The /proc/<pid>/* hierarchy has always been a bit of a mess to parse./proc/<pid>/maps is similarly frustrating: there's no clear distinction between "special" maps (like the stack) and a file that might just happen to be named `[stack]`. Similarly, the handling for a mapped region on a deleted file is simply to append " (deleted)"[1].[1]: <a href="https://github.com/woodruffw/procmaps.rs/blob/79bd474104e9b3c853e49765e6ee9945fdf833ed/src/lib.rs#L206-L225">https://github.com/woodruffw/procmaps.rs/blob/79bd474104e9b3...</a>

esprehn超过 2 年前

The system level fix is to create a structured record format. That could mean quoting all the records or maybe Linux should finally adopt a standardized format like JSON.

评论 #34095244 未加载

jbverschoor超过 2 年前

Why do you have to parse this kind of stuff at all?Time to let go of the everything is a stream of unorganized characters

kbrazil超过 2 年前

Fortunately `jc`[0] does parse `/proc/<pid>/stat` correctly. I, of course, originally implemented it the naive/incorrect way until a contributor fixed it. :)<pre><code> $ cat /proc/2001/stat | jc --proc {"pid":2001,"comm":"my program with\nsp","state":"S","ppid":1888,"pgrp":2001,"session":1888,"tty_nr":34816,"tpg_id":2001,"flags":4202496,"minflt":428,"cminflt":0,"majflt":0,"cmajflt":0,"utime":0,"stime":0,"cutime":0,"cstime":0,"priority":20,"nice":0,"num_threads":1,"itrealvalue":0,"starttime":75513,"vsize":115900416,"rss":297,"rsslim":18446744073709551615,"startcode":4194304,"endcode":5100612,"startstack":140737020052256,"kstkeep":140737020050904,"kstkeip":140096699233308,"signal":0,"blocked":65536,"sigignore":4,"sigcatch":65538,"wchan":18446744072034584486,"nswap":0,"cnswap":0,"exit_signal":17,"processor":0,"rt_priority":0,"policy":0,"delayacct_blkio_ticks":0,"guest_time":0,"cguest_time":0,"start_data":7200240,"end_data":7236240,"start_brk":35389440,"arg_start":140737020057179,"arg_end":140737020057223,"env_start":140737020057223,"env_end":140737020059606,"exit_code":0,"state_pretty":"Sleeping in an interruptible wait"} </code></pre> [0] <a href="https://kellyjonbrazil.github.io/jc/docs/parsers/proc_pid_stat" rel="nofollow">https://kellyjonbrazil.github.io/jc/docs/parsers/proc_pid_st...</a>

smasher164超过 2 年前

makes you wonder if it's really that valuable to have all our infrastructure built on parsing text

评论 #34095729 未加载

avar超过 2 年前

I noticed this around a year ago when writing a /proc/paid/stat parser for git (for logging the chain of parent processes).Here's that commit, it has a comment with an overview of the kernel limits and caveats involved: <a href="https://github.com/git/git/commit/2d3491b117c6dd08e431acc3904a546c4304d276">https://github.com/git/git/commit/2d3491b117c6dd08e431acc390...</a>

评论 #34103146 未加载

bigcat12345678超过 2 年前

We are pixie.io ran into exact problem, we fixed that by parsing the braces, ugly but seems working<a href="https://github.com/pixie-io/pixie/blob/bd82bb48ef4da7d6b05f27fe7728dfff6687a5c6/src/common/system/proc_parser.cc#L227">https://github.com/pixie-io/pixie/blob/bd82bb48ef4da7d6b05f2...</a>

评论 #34095941 未加载

评论 #34098893 未加载

cryptonector超过 2 年前

The process name should have been last. Now parsers have to split on space and then take the first token and the last N-2 tokens to leave behind the tokens that make up the second field, then join those with spaces to reconstruct the second field (or use the length of the first and the offset of the third fields to re-parse the second).

评论 #34096149 未加载

inetknght超过 2 年前

It's almost as if there should be an API for procfs instead of having everyone write their own reader and parser...

YesThatTom2超过 2 年前

If there is exactly one field with the “may contain spaces” problem there’s a better solution: parse the line forwards for the fields up to that one, parse the line backwards for the remaining.

评论 #34098769 未加载

mort96超过 2 年前

I've been bitten by and tried to work around this as well. From what I can tell, the best you can really do is to parse by matching up parens, but someone could totally make a program with braces in its name. If I make a binary called "foo) R 10 20 30", the /proc/<pid>/stat entry will contain "1715376 (foo) R 10 20 30) 1544883 1715376 1544883...". It's terribly non-obvious how to deal with correctly.

评论 #34095048 未加载

评论 #34095122 未加载

graymatters超过 2 年前

Aside from bashing a paradigm one is not used to/doesn’t like/didn’t grow up with, what are the real cases where dealing with the textual output of procfs creates serious realistic performance issues? The argument about insecurity of a hand rolled C parser for that is utterly unconvincing.