Open Menu / darwin / libc_hooks.h
Loading...
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
/*
* Copyright (c) 2024 Apple Inc. All rights reserved.
*
* @APPLE_LICENSE_HEADER_START@
*
* This file contains Original Code and/or Modifications of Original Code
* as defined in and that are subject to the Apple Public Source License
* Version 2.0 (the 'License'). You may not use this file except in
* compliance with the License. Please obtain a copy of the License at
* http://www.opensource.apple.com/apsl/ and read it before using this
* file.
*
* The Original Code and all software distributed under the License are
* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
* Please see the License for the specific language governing rights and
* limitations under the License.
*
* @APPLE_LICENSE_HEADER_END@
*/

#ifndef __LIBC_HOOKS_H__
#define __LIBC_HOOKS_H__

#include <os/base.h>
#include <sys/cdefs.h>
#include <wchar.h>

// Investigate using ptrauth_key_process_dependent_code which may provide
// additional security features for mixed arm64/arm64e processes
// rdar://123026531
#if __has_feature(ptrauth_calls)
#include <ptrauth.h>
#define __PTRAUTH_LIBC_HOOK(hook) \
	__ptrauth(ptrauth_key_process_independent_code, 1, \
			  ptrauth_string_discriminator("libc_hook_ptr." #hook)) hook
#else
#define __PTRAUTH_LIBC_HOOK(hook) hook
#endif

// This header file defines the entire interface between libc and an external
// user of libc. It's purpose is to allow an external user the ability to get
// notification whenever libc accesses the data provided to it by a client or
// caller of an API. The initial purpose of this sort of notification is for
// an address sanitizer, containing additional meta-data about memory related
// bounds and accessibility, to perform such checks and respond appropriately
// such as failing with a diagnostic message. There is only a single hook for
// each of the (presently) four entrypoints and these hooks are initially all
// empty. All of the entrypoints must be set in a single call and the opera-
// tion is destructive to any hook already registered but chaining is allowed
// but will have to managed by the setter which returns the current earlier
// set of hooks which can then be used by the setter to pre or post chain to
// as desired.

__BEGIN_DECLS

typedef unsigned long libc_hooks_version_t;
#define libc_hooks_version ((libc_hooks_version_t) 1)

typedef void (*__PTRAUTH_LIBC_HOOK(libc_hooks_will_read_t)) (const void *p, size_t size);
typedef void (*__PTRAUTH_LIBC_HOOK(libc_hooks_will_read_cstring_t)) (const char *s);
typedef void (*__PTRAUTH_LIBC_HOOK(libc_hooks_will_read_wcstring_t)) (const wchar_t *wcs);
typedef void (*__PTRAUTH_LIBC_HOOK(libc_hooks_will_write_t)) (const void *p, size_t size);

typedef struct {
	libc_hooks_version_t version;
	libc_hooks_will_read_t will_read;
	libc_hooks_will_read_cstring_t will_read_cstring;
	libc_hooks_will_read_wcstring_t will_read_wcstring;
	libc_hooks_will_write_t will_write;
} libc_hooks_t;

// Note:
//  libc_set_introspection_hooks is not thread-safe. It should
//  only be called while the process is still single-threaded.
OS_EXPORT
void
libc_set_introspection_hooks(const libc_hooks_t *new_hooks, libc_hooks_t *old_hooks, size_t size);

__END_DECLS

#endif // __LIBC_HOOKS_H__