register_handler: calling cage should be the destination grate. (#979)

stupendoussuperpowers · web-flow · commit 2793f29dc04e · 2026-03-26T15:32:07.000-04:00
* register_handler: use destination grate as the calling cage

* update interpose-register tests.
diff --git a/src/glibc/lind_syscall/lind_syscall.c b/src/glibc/lind_syscall/lind_syscall.c
@@ -122,11 +122,14 @@ int register_handler (int64_t targetcage,
     uint64_t this_grate_id,
     uint64_t in_grate_fn_ptr_u64)
 {
+    // register_handler is treated as a syscall called by `this_grate_id`.
+    // This approach allows us to interpose on register_handler calls based on which cage
+    // this syscall was meant to be redirected to. 
     return make_threei_call(
         REGISTER_HANDLER_SYSCALL, 
         NOTUSED, // callname is not used in the trampoline
-        targetcage, // pass targetcage as self_cageid
-        targetcage, // pass targetcage as target_cageid. Self_cageid and target_cageid are the same to adapt with regular make_syscall lookup logic in 3i
+        this_grate_id, // pass grate calling register handler as self_cageid
+        this_grate_id, // self_cageid and target_cageid are the same to adapt with regular make_syscall lookup logic in 3i
         targetcage, 
         targetcallnum, 
         NOTUSED, // runtime_id currently not used
diff --git a/tests/grate-tests/interposing-calls/interpose-register.c b/tests/grate-tests/interposing-calls/interpose-register.c
@@ -3,21 +3,32 @@
 #include <unistd.h>
 #include <assert.h>
 #include <lind_syscall.h>
+#include <sys/wait.h>
 
+// This is grate-2. It spawns a child cage and tries to interpose the child's
+// geteuid syscall.
 int main(int argc, char *argv[]) {
-    printf("[Cage|interpose-register] In cage %d, about to register handler for geteuid\n", getpid());
-    int ret_reg = register_handler(2, 107, 1, 0);
-    if (ret_reg != 0) {
-        fprintf(stderr, "[Cage|interpose-register] Failed to register handler for cage %d in "
-                "grate %d with fn ptr addr: %llu, ret: %d\n",
-                2, 1, 0ULL, ret_reg);
-        assert(0);
-    }
-    int ret = geteuid();
-    if (ret != 10) {
-        fprintf(stderr, "[Cage|interpose-register] FAIL: expected 10, got %d\n", ret);
-        assert(0);
-    }
-    printf("[Cage|interpose-register] PASS: geteuid ret = %d\n", ret);
-    return 0;
+	int grateid = getpid();
+
+	int pid = fork();
+
+	if (pid < 0) {
+		exit(1);
+	} else if (pid == 0) {
+		int cageid = getpid();
+		// This grateid has it's register_handler interposed. This call
+		// should go to the grate-1.
+		printf("[cage] registering 107. grateid: %d cageid: %d\n",
+		       grateid, cageid);
+		register_handler(cageid, 107, grateid, 0);
+
+		int ret = geteuid();
+		if (ret != 10) {
+			assert(0);
+		}
+	} else {
+		wait(NULL);
+	}
+
+	return 0;
 }
diff --git a/tests/grate-tests/interposing-calls/interpose-register_grate.c b/tests/grate-tests/interposing-calls/interpose-register_grate.c
@@ -9,129 +9,130 @@
 
 // Dispatcher function
 int pass_fptr_to_wt(uint64_t fn_ptr_uint, uint64_t cageid, uint64_t arg1,
-                    uint64_t arg1cage, uint64_t arg2, uint64_t arg2cage,
-                    uint64_t arg3, uint64_t arg3cage, uint64_t arg4,
-                    uint64_t arg4cage, uint64_t arg5, uint64_t arg5cage,
-                    uint64_t arg6, uint64_t arg6cage) {
-  if (fn_ptr_uint == 0) {
-    fprintf(stderr, "[Grate|interpose-register] Invalid function ptr=%llu\n", fn_ptr_uint);
-    assert(0);
-  }
-
-  printf("[Grate|interpose-register] Handling function ptr: %llu from cage: %llu\n",
-         fn_ptr_uint, cageid);
-
-  int (*fn)(uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
-          uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
-          uint64_t, uint64_t, uint64_t) =
-    (int (*)(uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
-              uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
-              uint64_t, uint64_t, uint64_t))(uintptr_t)fn_ptr_uint;
-
-
-  return fn(cageid, arg1, arg1cage, arg2, arg2cage,
-            arg3, arg3cage, arg4, arg4cage,
-            arg5, arg5cage, arg6, arg6cage);
+		    uint64_t arg1cage, uint64_t arg2, uint64_t arg2cage,
+		    uint64_t arg3, uint64_t arg3cage, uint64_t arg4,
+		    uint64_t arg4cage, uint64_t arg5, uint64_t arg5cage,
+		    uint64_t arg6, uint64_t arg6cage) {
+	if (fn_ptr_uint == 0) {
+		fprintf(
+		    stderr,
+		    "[Grate|interpose-register] Invalid function ptr=%llu\n",
+		    fn_ptr_uint);
+		assert(0);
+	}
+
+	printf("[Grate|interpose-register] Handling function ptr: %llu from "
+	       "cage: %llu\n",
+	       fn_ptr_uint, cageid);
+
+	int (*fn)(uint64_t, uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
+		  uint64_t, uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
+		  uint64_t) =
+	    (int (*)(uint64_t, uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
+		     uint64_t, uint64_t, uint64_t, uint64_t, uint64_t, uint64_t,
+		     uint64_t))(uintptr_t)fn_ptr_uint;
+
+	return fn(cageid, arg1, arg1cage, arg2, arg2cage, arg3, arg3cage, arg4,
+		  arg4cage, arg5, arg5cage, arg6, arg6cage);
 }
 
-int geteuid_grate(uint64_t cageid, 
-    uint64_t arg1, uint64_t arg1cage, 
-    uint64_t arg2, uint64_t arg2cage,
-    uint64_t arg3, uint64_t arg3cage, 
-    uint64_t arg4, uint64_t arg4cage, 
-    uint64_t arg5, uint64_t arg5cage,
-    uint64_t arg6, uint64_t arg6cage) {
-  printf("[Grate|interpose-register] In register_grate %d handler for cage: %llu\n",
-         getpid(), cageid);
-  return 10;
+int geteuid_grate(uint64_t cageid, uint64_t arg1, uint64_t arg1cage,
+		  uint64_t arg2, uint64_t arg2cage, uint64_t arg3,
+		  uint64_t arg3cage, uint64_t arg4, uint64_t arg4cage,
+		  uint64_t arg5, uint64_t arg5cage, uint64_t arg6,
+		  uint64_t arg6cage) {
+	printf("[Grate|interpose-register] In register_grate %d handler for "
+	       "cage: %llu\n",
+	       getpid(), cageid);
+	return 10;
 }
 
-// We want to register a handler for geteuid (syscall num 107) in child cage, but also 
-// monitor the register_handler behaviors, and the blow handler function
-// will redirect the register_handler call from cage to this grate, attach the function ptr
-// as the arg and then this grate will call the register_handler syscall to register 
-// the handler in the target cage.
-int register_grate(uint64_t cageid, 
-    uint64_t arg1, uint64_t arg1cage, 
-    uint64_t arg2, uint64_t arg2cage,
-    uint64_t arg3, uint64_t arg3cage, 
-    uint64_t arg4, uint64_t arg4cage, 
-    uint64_t arg5, uint64_t arg5cage,
-    uint64_t arg6, uint64_t arg6cage) {
-    printf("[Grate|interpose-register] In register_grate %d handler for cage: %llu\n",
-            getpid(), cageid);
-    int self_grate_id = getpid();
-    uint64_t fn_ptr_addr = (uint64_t)(uintptr_t)&geteuid_grate;
-    printf("[Grate|geteuid] Registering geteuid handler for cage %llu in "
-            "grate %d with fn ptr addr: %llu\n",
-            cageid, self_grate_id, fn_ptr_addr);
-    int ret = make_threei_call(
-        1001, // syscallnum for register_handler
-        0,    // callname is not used in the trampoline, set to 0
-        self_grate_id,    // self_grate_id is used in the 3i
-        arg1cage,    // target_cageid is used in the 3i
-        arg1, arg1cage, 
-        arg2, arg2cage,
-        fn_ptr_addr, arg3cage, 
-        arg4, arg4cage, 
-        arg5, arg5cage,
-        arg6, arg6cage,
-        0 // we will handle the errno in this grate instead of translating it to -1 in the trampoline
-    );
-    return ret;
+// We interpose on a child grate's register_handler syscall.
+//
+// This implementation overrides the (fn_ptr_addr, grate-2) with
+// (&geteuid_grate, grate-1)
+int register_grate(uint64_t cageid, uint64_t arg1, uint64_t arg1cage,
+		   uint64_t arg2, uint64_t arg2cage, uint64_t arg3,
+		   uint64_t arg3cage, uint64_t arg4, uint64_t arg4cage,
+		   uint64_t arg5, uint64_t arg5cage, uint64_t arg6,
+		   uint64_t arg6cage) {
+	printf("[Grate|interpose-register] In register_grate %d handler for "
+	       "cage: %llu\n",
+	       getpid(), cageid);
+
+	int self_grate_id = getpid();
+	int target_cage = arg1;
+	int syscall_num = arg1cage;
+	uint64_t fn_ptr_addr = (uint64_t)(uintptr_t)&geteuid_grate;
+
+	printf("[Grate|geteuid] Registering geteuid handler for cage %llu in "
+	       "grate %d with fn ptr addr: %llu\n",
+	       cageid, self_grate_id, fn_ptr_addr);
+
+	int ret = register_handler(target_cage, syscall_num, self_grate_id,
+				   fn_ptr_addr);
+
+	return ret;
 }
 
 // Main function will always be same in all grates
 int main(int argc, char *argv[]) {
-  // Should be at least two inputs (at least one grate file and one cage file)
-  if (argc < 2) {
-    fprintf(stderr, "Usage: %s <cage_file> <grate_file> <cage_file> [...]\n",
-            argv[0]);
-    assert(0);
-  }
-
-  int grateid = getpid();
-
-  for (int i = 1; i < (argc < 3 ? argc : 3); i++) {
-    pid_t pid = fork();
-    if (pid < 0) {
-      perror("fork failed");
-      assert(0);
-    } else if (pid == 0) {
-        // Next one is cage, only set the register_handler when next one is cage
-        int cageid = getpid();
-        // Set the register_handler (syscallnum=1001) of this cage to call this grate
-        // function register_grate 
-        // Syntax of register_handler:
-        // <targetcage, targetcallnum, this_grate_id, fn_ptr_u64)>
-        uint64_t fn_ptr_addr = (uint64_t)(uintptr_t)&register_grate;
-        printf("[Grate|interpose-register] Registering register_handler for cage %d in "
-                "grate %d with fn ptr addr: %llu\n",
-                cageid, grateid, fn_ptr_addr);
-        int ret = register_handler(cageid, 1001, grateid, fn_ptr_addr);
-        if (ret != 0) {
-            fprintf(stderr, "[Grate|interpose-register] Failed to register handler for cage %d in "
-                    "grate %d with fn ptr addr: %llu, ret: %d\n",
-                    cageid, grateid, fn_ptr_addr, ret);
-            assert(0);
-        }
-
-        if (execv(argv[i], &argv[i]) == -1) {
-            perror("execv failed");
-            assert(0);
-        }
-    }
-  }
-
-  int status;
-  int failed = 0;
-  while (wait(&status) > 0) {
-    if (status != 0) {
-      fprintf(stderr, "[Grate|interpose-register] FAIL: child exited with status %d\n", status);
-      assert(0);
-    }
-  }
-
-  printf("[Grate|interpose-register] PASS\n");
-  return 0;
+	// Should be at least two inputs (at least one grate file and one cage
+	// file)
+	if (argc < 2) {
+		fprintf(
+		    stderr,
+		    "Usage: %s <cage_file> <grate_file> <cage_file> [...]\n",
+		    argv[0]);
+		assert(0);
+	}
+
+	int grateid = getpid();
+
+	pid_t pid = fork();
+	if (pid < 0) {
+		perror("fork failed");
+		assert(0);
+	} else if (pid == 0) {
+		int cageid = getpid();
+		// Set the register_handler (syscallnum=1001) of this cage to
+		// call this grate function register_grate Syntax of
+		// register_handler: <targetcage, targetcallnum, this_grate_id,
+		// fn_ptr_u64)>
+		uint64_t fn_ptr_addr = (uint64_t)(uintptr_t)&register_grate;
+		printf("[Grate|interpose-register] Registering "
+		       "register_handler for cage %d in "
+		       "grate %d with fn ptr addr: %llu\n",
+		       cageid, grateid, fn_ptr_addr);
+
+		int ret = register_handler(cageid, 1001, grateid, fn_ptr_addr);
+		if (ret != 0) {
+			fprintf(stderr,
+				"[Grate|interpose-register] Failed to register "
+				"handler for cage %d in "
+				"grate %d with fn ptr addr: %llu, ret: %d\n",
+				cageid, grateid, fn_ptr_addr, ret);
+			assert(0);
+		}
+
+		if (execv(argv[1], &argv[1]) == -1) {
+			perror("execv failed");
+			assert(0);
+		}
+	}
+
+	int status;
+	int failed = 0;
+	while (wait(&status) > 0) {
+		if (status != 0) {
+			fprintf(stderr,
+				"[Grate|interpose-register] FAIL: child exited "
+				"with status %d\n",
+				status);
+			assert(0);
+		}
+	}
+
+	printf("[Grate|interpose-register] PASS\n");
+	return 0;
 }
