1*94d3b452SApple OSS Distributions #include <errno.h>
2*94d3b452SApple OSS Distributions #include <stdlib.h>
3*94d3b452SApple OSS Distributions #include <libgen.h>
4*94d3b452SApple OSS Distributions #include <limits.h>
5*94d3b452SApple OSS Distributions #include <mach-o/dyld.h>
6*94d3b452SApple OSS Distributions #include <sys/types.h>
7*94d3b452SApple OSS Distributions #include <sys/sysctl.h>
8*94d3b452SApple OSS Distributions #include <xlocale.h>
9*94d3b452SApple OSS Distributions
10*94d3b452SApple OSS Distributions #include <darwintest.h>
11*94d3b452SApple OSS Distributions #include <darwintest_utils.h>
12*94d3b452SApple OSS Distributions
13*94d3b452SApple OSS Distributions #include "drop_priv.h"
14*94d3b452SApple OSS Distributions #include "test_utils.h"
15*94d3b452SApple OSS Distributions
16*94d3b452SApple OSS Distributions #if ENTITLED
17*94d3b452SApple OSS Distributions #define SET_TREATMENT_ID set_treatment_id_entitled
18*94d3b452SApple OSS Distributions #define SET_TREATMENT_ID_DESCR "Can set treatment id with entitlement"
19*94d3b452SApple OSS Distributions #else /* ENTITLED */
20*94d3b452SApple OSS Distributions #define SET_TREATMENT_ID set_treatment_id_unentitled
21*94d3b452SApple OSS Distributions #define SET_TREATMENT_ID_DESCR "Can't set treatment id without entitlement"
22*94d3b452SApple OSS Distributions #endif /* ENTITLED */
23*94d3b452SApple OSS Distributions
24*94d3b452SApple OSS Distributions T_DECL(SET_TREATMENT_ID, "Verifies that EXPERIMENT sysctls can only be set with the entitlement", T_META_ASROOT(false))
25*94d3b452SApple OSS Distributions {
26*94d3b452SApple OSS Distributions #define TEST_STR "testing"
27*94d3b452SApple OSS Distributions #define IDENTIFIER_LENGTH 36
28*94d3b452SApple OSS Distributions
29*94d3b452SApple OSS Distributions int ret;
30*94d3b452SApple OSS Distributions errno_t err;
31*94d3b452SApple OSS Distributions char val[IDENTIFIER_LENGTH + 1] = {0};
32*94d3b452SApple OSS Distributions size_t len = sizeof(val);
33*94d3b452SApple OSS Distributions char new_val[IDENTIFIER_LENGTH + 1] = {0};
34*94d3b452SApple OSS Distributions
35*94d3b452SApple OSS Distributions if (!is_development_kernel()) {
36*94d3b452SApple OSS Distributions T_SKIP("skipping test on release kernel");
37*94d3b452SApple OSS Distributions }
38*94d3b452SApple OSS Distributions
39*94d3b452SApple OSS Distributions strlcpy(new_val, TEST_STR, sizeof(new_val));
40*94d3b452SApple OSS Distributions if (running_as_root()) {
41*94d3b452SApple OSS Distributions drop_priv();
42*94d3b452SApple OSS Distributions }
43*94d3b452SApple OSS Distributions
44*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.trial_treatment_id", val, &len, new_val, strlen(new_val));
45*94d3b452SApple OSS Distributions err = errno;
46*94d3b452SApple OSS Distributions #if ENTITLED
47*94d3b452SApple OSS Distributions len = sizeof(val);
48*94d3b452SApple OSS Distributions memset(new_val, 0, sizeof(new_val));
49*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "set kern.trial_treatment_id");
50*94d3b452SApple OSS Distributions /* Cleanup. Set it back to the empty string. */
51*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.trial_treatment_id", val, &len, new_val, 1);
52*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_POSIX_SUCCESS(ret, "reset kern.trial_treatment_id");
53*94d3b452SApple OSS Distributions #else
54*94d3b452SApple OSS Distributions T_ASSERT_POSIX_FAILURE(ret, EPERM, "set kern.trial_treatment_id");
55*94d3b452SApple OSS Distributions #endif /* ENTITLED */
56*94d3b452SApple OSS Distributions }
57*94d3b452SApple OSS Distributions
58*94d3b452SApple OSS Distributions #if ENTITLED
59*94d3b452SApple OSS Distributions /* Check min and max value limits on numeric factors */
60*94d3b452SApple OSS Distributions T_DECL(experiment_factor_numeric_limits,
61*94d3b452SApple OSS Distributions "Can only set factors within the legal range.",
62*94d3b452SApple OSS Distributions T_META_ASROOT(false))
63*94d3b452SApple OSS Distributions {
64*94d3b452SApple OSS Distributions #define kMinVal 5 /* The min value allowed for the testing factor. */
65*94d3b452SApple OSS Distributions #define kMaxVal 10 /* The max value allowed for the testing factor. */
66*94d3b452SApple OSS Distributions errno_t err;
67*94d3b452SApple OSS Distributions int ret;
68*94d3b452SApple OSS Distributions unsigned int current_val;
69*94d3b452SApple OSS Distributions size_t len = sizeof(current_val);
70*94d3b452SApple OSS Distributions unsigned int new_val;
71*94d3b452SApple OSS Distributions
72*94d3b452SApple OSS Distributions if (running_as_root()) {
73*94d3b452SApple OSS Distributions drop_priv();
74*94d3b452SApple OSS Distributions }
75*94d3b452SApple OSS Distributions new_val = kMinVal - 1;
76*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.testing_experiment_factor", ¤t_val, &len, &new_val, sizeof(new_val));
77*94d3b452SApple OSS Distributions err = errno;
78*94d3b452SApple OSS Distributions T_ASSERT_POSIX_FAILURE(ret, EINVAL, "set kern.testing_experiment_factor below range.");
79*94d3b452SApple OSS Distributions
80*94d3b452SApple OSS Distributions new_val = kMaxVal + 1;
81*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.testing_experiment_factor", ¤t_val, &len, &new_val, sizeof(new_val));
82*94d3b452SApple OSS Distributions err = errno;
83*94d3b452SApple OSS Distributions T_ASSERT_POSIX_FAILURE(ret, EINVAL, "set kern.testing_experiment_factor above range.");
84*94d3b452SApple OSS Distributions
85*94d3b452SApple OSS Distributions new_val = kMaxVal;
86*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.testing_experiment_factor", ¤t_val, &len, &new_val, sizeof(new_val));
87*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "set kern.testing_experiment_factor at top of range.");
88*94d3b452SApple OSS Distributions
89*94d3b452SApple OSS Distributions new_val = kMinVal;
90*94d3b452SApple OSS Distributions ret = sysctlbyname("kern.testing_experiment_factor", ¤t_val, &len, &new_val, sizeof(new_val));
91*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "set kern.testing_experiment_factor at bottom of range.");
92*94d3b452SApple OSS Distributions }
93*94d3b452SApple OSS Distributions
94*94d3b452SApple OSS Distributions static uint64_t original_libmalloc_experiment_value = 0;
95*94d3b452SApple OSS Distributions
96*94d3b452SApple OSS Distributions static void
reset_libmalloc_experiment(void)97*94d3b452SApple OSS Distributions reset_libmalloc_experiment(void)
98*94d3b452SApple OSS Distributions {
99*94d3b452SApple OSS Distributions int ret = sysctlbyname("kern.libmalloc_experiments", NULL, NULL, &original_libmalloc_experiment_value, sizeof(original_libmalloc_experiment_value));
100*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "reset kern.libmalloc_experiments");
101*94d3b452SApple OSS Distributions }
102*94d3b452SApple OSS Distributions
103*94d3b452SApple OSS Distributions static void
set_libmalloc_experiment(uint64_t val)104*94d3b452SApple OSS Distributions set_libmalloc_experiment(uint64_t val)
105*94d3b452SApple OSS Distributions {
106*94d3b452SApple OSS Distributions T_LOG("Setting kern.libmalloc_experiments to %llu", val);
107*94d3b452SApple OSS Distributions size_t len = sizeof(original_libmalloc_experiment_value);
108*94d3b452SApple OSS Distributions int ret = sysctlbyname("kern.libmalloc_experiments", &original_libmalloc_experiment_value, &len, &val, sizeof(val));
109*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "set kern.libmalloc_experiments");
110*94d3b452SApple OSS Distributions T_ATEND(reset_libmalloc_experiment);
111*94d3b452SApple OSS Distributions }
112*94d3b452SApple OSS Distributions
113*94d3b452SApple OSS Distributions #define PRINT_APPLE_ARRAY_TOOL "tools/print_apple_array"
114*94d3b452SApple OSS Distributions /*
115*94d3b452SApple OSS Distributions * Spawns a new binary and returns the contents of its apple array
116*94d3b452SApple OSS Distributions * (after libsystem initialization).
117*94d3b452SApple OSS Distributions */
118*94d3b452SApple OSS Distributions static char **
get_apple_array(size_t * num_array_entries,const char * filename)119*94d3b452SApple OSS Distributions get_apple_array(size_t *num_array_entries, const char * filename)
120*94d3b452SApple OSS Distributions {
121*94d3b452SApple OSS Distributions if (filename == NULL) {
122*94d3b452SApple OSS Distributions filename = PRINT_APPLE_ARRAY_TOOL;
123*94d3b452SApple OSS Distributions }
124*94d3b452SApple OSS Distributions int ret;
125*94d3b452SApple OSS Distributions char stdout_path[MAXPATHLEN] = "apple_array.txt";
126*94d3b452SApple OSS Distributions dt_resultfile(stdout_path, MAXPATHLEN);
127*94d3b452SApple OSS Distributions int exit_status = 0, signum = 0;
128*94d3b452SApple OSS Distributions char binary_path[MAXPATHLEN], binary_dir[MAXPATHLEN];
129*94d3b452SApple OSS Distributions char *char_ret;
130*94d3b452SApple OSS Distributions const static size_t kMaxNumArguments = 256;
131*94d3b452SApple OSS Distributions size_t linecap = 0;
132*94d3b452SApple OSS Distributions ssize_t linelen = 0;
133*94d3b452SApple OSS Distributions char **apple_array;
134*94d3b452SApple OSS Distributions char **line = NULL;
135*94d3b452SApple OSS Distributions size_t num_lines = 0;
136*94d3b452SApple OSS Distributions FILE *stdout_f = NULL;
137*94d3b452SApple OSS Distributions uint32_t name_size = MAXPATHLEN;
138*94d3b452SApple OSS Distributions
139*94d3b452SApple OSS Distributions ret = _NSGetExecutablePath(binary_path, &name_size);
140*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_EQ(ret, 0, "_NSGetExecutablePath");
141*94d3b452SApple OSS Distributions char_ret = dirname_r(binary_path, binary_dir);
142*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_TRUE(char_ret != NULL, "dirname_r");
143*94d3b452SApple OSS Distributions snprintf(binary_path, MAXPATHLEN, "%s/%s", binary_dir, filename);
144*94d3b452SApple OSS Distributions
145*94d3b452SApple OSS Distributions char *launch_tool_args[] = {
146*94d3b452SApple OSS Distributions binary_path,
147*94d3b452SApple OSS Distributions NULL
148*94d3b452SApple OSS Distributions };
149*94d3b452SApple OSS Distributions pid_t child_pid;
150*94d3b452SApple OSS Distributions ret = dt_launch_tool(&child_pid, launch_tool_args, false, stdout_path, NULL);
151*94d3b452SApple OSS Distributions T_WITH_ERRNO; T_ASSERT_EQ(ret, 0, "dt_launch_tool: %s", binary_path);
152*94d3b452SApple OSS Distributions
153*94d3b452SApple OSS Distributions ret = dt_waitpid(child_pid, &exit_status, &signum, 60 * 5);
154*94d3b452SApple OSS Distributions T_ASSERT_EQ(ret, 1, "dt_waitpid");
155*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_EQ(exit_status, 0, "dt_waitpid: exit_status");
156*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_EQ(signum, 0, "dt_waitpid: signum");
157*94d3b452SApple OSS Distributions
158*94d3b452SApple OSS Distributions stdout_f = fopen(stdout_path, "r");
159*94d3b452SApple OSS Distributions T_WITH_ERRNO; T_ASSERT_NOTNULL(stdout_f, "open(%s)", stdout_path);
160*94d3b452SApple OSS Distributions apple_array = calloc(kMaxNumArguments, sizeof(char *));
161*94d3b452SApple OSS Distributions T_QUIET; T_ASSERT_NOTNULL(apple_array, "calloc: %lu\n", sizeof(char *) * kMaxNumArguments);
162*94d3b452SApple OSS Distributions while (num_lines < kMaxNumArguments) {
163*94d3b452SApple OSS Distributions line = &(apple_array[num_lines++]);
164*94d3b452SApple OSS Distributions linecap = 0;
165*94d3b452SApple OSS Distributions linelen = getline(line, &linecap, stdout_f);
166*94d3b452SApple OSS Distributions if (linelen == -1) {
167*94d3b452SApple OSS Distributions break;
168*94d3b452SApple OSS Distributions }
169*94d3b452SApple OSS Distributions }
170*94d3b452SApple OSS Distributions *num_array_entries = num_lines - 1;
171*94d3b452SApple OSS Distributions
172*94d3b452SApple OSS Distributions ret = fclose(stdout_f);
173*94d3b452SApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "fclose(%s)", stdout_path);
174*94d3b452SApple OSS Distributions
175*94d3b452SApple OSS Distributions return apple_array;
176*94d3b452SApple OSS Distributions }
177*94d3b452SApple OSS Distributions
178*94d3b452SApple OSS Distributions #define LIBMALLOC_EXPERIMENT_FACTORS_KEY "MallocExperiment="
179*94d3b452SApple OSS Distributions
180*94d3b452SApple OSS Distributions #define HARDENED_RUNTIME_KEY "HardenedRuntime="
181*94d3b452SApple OSS Distributions
182*94d3b452SApple OSS Distributions
183*94d3b452SApple OSS Distributions /*
184*94d3b452SApple OSS Distributions * Get the value of the key in the apple array.
185*94d3b452SApple OSS Distributions * Returns true iff the key is present.
186*94d3b452SApple OSS Distributions */
187*94d3b452SApple OSS Distributions static bool
get_apple_array_key(char ** apple_array,size_t num_array_entries,uint64_t * factors,const char * key)188*94d3b452SApple OSS Distributions get_apple_array_key(char **apple_array, size_t num_array_entries, uint64_t *factors, const char *key)
189*94d3b452SApple OSS Distributions {
190*94d3b452SApple OSS Distributions bool found = false;
191*94d3b452SApple OSS Distributions for (size_t i = 0; i < num_array_entries; i++) {
192*94d3b452SApple OSS Distributions char *str = apple_array[i];
193*94d3b452SApple OSS Distributions if (strstr(str, key)) {
194*94d3b452SApple OSS Distributions found = true;
195*94d3b452SApple OSS Distributions if (factors != NULL) {
196*94d3b452SApple OSS Distributions str = strchr(str, '=');
197*94d3b452SApple OSS Distributions T_ASSERT_NOTNULL(str, "skip over =");
198*94d3b452SApple OSS Distributions ++str;
199*94d3b452SApple OSS Distributions *factors = strtoull_l(str, NULL, 16, NULL);
200*94d3b452SApple OSS Distributions }
201*94d3b452SApple OSS Distributions break;
202*94d3b452SApple OSS Distributions }
203*94d3b452SApple OSS Distributions }
204*94d3b452SApple OSS Distributions return found;
205*94d3b452SApple OSS Distributions }
206*94d3b452SApple OSS Distributions
207*94d3b452SApple OSS Distributions /* libmalloc relies on these values not changing. If they change,
208*94d3b452SApple OSS Distributions * you need to update the values in that project as well */
209*94d3b452SApple OSS Distributions __options_decl(HR_flags_t, uint32_t, {
210*94d3b452SApple OSS Distributions BrowserHostEntitlementMask = 0x01,
211*94d3b452SApple OSS Distributions BrowserGPUEntitlementMask = 0x02,
212*94d3b452SApple OSS Distributions BrowserNetworkEntitlementMask = 0x04,
213*94d3b452SApple OSS Distributions BrowserWebContentEntitlementMask = 0x08,
214*94d3b452SApple OSS Distributions });
215*94d3b452SApple OSS Distributions
216*94d3b452SApple OSS Distributions T_DECL(libmalloc_hardened_binary_present,
217*94d3b452SApple OSS Distributions "hardened binary flags show up in apple array",
218*94d3b452SApple OSS Distributions T_META_ASROOT(false))
219*94d3b452SApple OSS Distributions {
220*94d3b452SApple OSS Distributions uint64_t apple_array_val = 0;
221*94d3b452SApple OSS Distributions size_t num_array_entries = 0;
222*94d3b452SApple OSS Distributions char **apple_array;
223*94d3b452SApple OSS Distributions bool found = false;
224*94d3b452SApple OSS Distributions
225*94d3b452SApple OSS Distributions /* These are the entitlements on the HR1 binary */
226*94d3b452SApple OSS Distributions uint32_t mask_val = BrowserHostEntitlementMask | BrowserGPUEntitlementMask | BrowserWebContentEntitlementMask;
227*94d3b452SApple OSS Distributions apple_array = get_apple_array(&num_array_entries, "tools/print_apple_array_HR1");
228*94d3b452SApple OSS Distributions found = get_apple_array_key(apple_array, num_array_entries, &apple_array_val, HARDENED_RUNTIME_KEY);
229*94d3b452SApple OSS Distributions T_ASSERT_TRUE(found, "Found " HARDENED_RUNTIME_KEY " in apple array");
230*94d3b452SApple OSS Distributions T_ASSERT_EQ(apple_array_val, mask_val, "Bitmask value matches");
231*94d3b452SApple OSS Distributions
232*94d3b452SApple OSS Distributions /* These are the entitlements on the HR2 binary */
233*94d3b452SApple OSS Distributions mask_val = BrowserGPUEntitlementMask | BrowserNetworkEntitlementMask;
234*94d3b452SApple OSS Distributions apple_array = get_apple_array(&num_array_entries, "tools/print_apple_array_HR2");
235*94d3b452SApple OSS Distributions found = get_apple_array_key(apple_array, num_array_entries, &apple_array_val, HARDENED_RUNTIME_KEY);
236*94d3b452SApple OSS Distributions T_ASSERT_TRUE(found, "Found " HARDENED_RUNTIME_KEY " in apple array");
237*94d3b452SApple OSS Distributions T_ASSERT_EQ(apple_array_val, mask_val, "Bitmask value matches");
238*94d3b452SApple OSS Distributions free(apple_array);
239*94d3b452SApple OSS Distributions }
240*94d3b452SApple OSS Distributions
241*94d3b452SApple OSS Distributions
242*94d3b452SApple OSS Distributions T_DECL(libmalloc_hardened_binary_absent,
243*94d3b452SApple OSS Distributions "hardened binary flags do not show up in apple array for normal third party processes",
244*94d3b452SApple OSS Distributions T_META_ASROOT(false))
245*94d3b452SApple OSS Distributions {
246*94d3b452SApple OSS Distributions uint64_t new_val, apple_array_val = 0;
247*94d3b452SApple OSS Distributions size_t num_array_entries = 0;
248*94d3b452SApple OSS Distributions char **apple_array;
249*94d3b452SApple OSS Distributions bool found = false;
250*94d3b452SApple OSS Distributions apple_array = get_apple_array(&num_array_entries, NULL); // todo apple_array_3p?
251*94d3b452SApple OSS Distributions found = get_apple_array_key(apple_array, num_array_entries, &apple_array_val, HARDENED_RUNTIME_KEY);
252*94d3b452SApple OSS Distributions T_ASSERT_TRUE(!found, "Did not find " HARDENED_RUNTIME_KEY " in apple array");
253*94d3b452SApple OSS Distributions free(apple_array);
254*94d3b452SApple OSS Distributions }
255*94d3b452SApple OSS Distributions
256*94d3b452SApple OSS Distributions T_DECL(libmalloc_experiment,
257*94d3b452SApple OSS Distributions "libmalloc experiment flags show up in apple array if we're doing an experiment",
258*94d3b452SApple OSS Distributions T_META_ASROOT(false))
259*94d3b452SApple OSS Distributions {
260*94d3b452SApple OSS Distributions uint64_t new_val, apple_array_val = 0;
261*94d3b452SApple OSS Distributions size_t num_array_entries = 0;
262*94d3b452SApple OSS Distributions char **apple_array;
263*94d3b452SApple OSS Distributions bool found = false;
264*94d3b452SApple OSS Distributions
265*94d3b452SApple OSS Distributions if (running_as_root()) {
266*94d3b452SApple OSS Distributions drop_priv();
267*94d3b452SApple OSS Distributions }
268*94d3b452SApple OSS Distributions new_val = (1ULL << 63) - 1;
269*94d3b452SApple OSS Distributions set_libmalloc_experiment(new_val);
270*94d3b452SApple OSS Distributions
271*94d3b452SApple OSS Distributions apple_array = get_apple_array(&num_array_entries, NULL);
272*94d3b452SApple OSS Distributions found = get_apple_array_key(apple_array, num_array_entries, &apple_array_val, LIBMALLOC_EXPERIMENT_FACTORS_KEY);
273*94d3b452SApple OSS Distributions T_ASSERT_TRUE(found, "Found " LIBMALLOC_EXPERIMENT_FACTORS_KEY " in apple array");
274*94d3b452SApple OSS Distributions T_ASSERT_EQ(apple_array_val, new_val, "Experiment value matches");
275*94d3b452SApple OSS Distributions free(apple_array);
276*94d3b452SApple OSS Distributions }
277*94d3b452SApple OSS Distributions
278*94d3b452SApple OSS Distributions T_DECL(libmalloc_experiment_not_in_array,
279*94d3b452SApple OSS Distributions "libmalloc experiment flags do not show up in apple array if we're not doing an experiment",
280*94d3b452SApple OSS Distributions T_META_ASROOT(false))
281*94d3b452SApple OSS Distributions {
282*94d3b452SApple OSS Distributions size_t num_array_entries = 0;
283*94d3b452SApple OSS Distributions char **apple_array;
284*94d3b452SApple OSS Distributions bool found = false;
285*94d3b452SApple OSS Distributions
286*94d3b452SApple OSS Distributions if (running_as_root()) {
287*94d3b452SApple OSS Distributions drop_priv();
288*94d3b452SApple OSS Distributions }
289*94d3b452SApple OSS Distributions set_libmalloc_experiment(0);
290*94d3b452SApple OSS Distributions
291*94d3b452SApple OSS Distributions apple_array = get_apple_array(&num_array_entries, NULL);
292*94d3b452SApple OSS Distributions found = get_apple_array_key(apple_array, num_array_entries, NULL, LIBMALLOC_EXPERIMENT_FACTORS_KEY);
293*94d3b452SApple OSS Distributions T_ASSERT_TRUE(!found, "Did not find " LIBMALLOC_EXPERIMENT_FACTORS_KEY " in apple array");
294*94d3b452SApple OSS Distributions free(apple_array);
295*94d3b452SApple OSS Distributions }
296*94d3b452SApple OSS Distributions #endif /* ENTITLED */
297