1*8d741a5dSApple OSS Distributions /*
2*8d741a5dSApple OSS Distributions * cd $XNU/tests
3*8d741a5dSApple OSS Distributions * xcrun -sdk macosx.internal/iphoneos.internal make proc_rlimit LDFLAGS="-ldarwintest"
4*8d741a5dSApple OSS Distributions */
5*8d741a5dSApple OSS Distributions #include <stdio.h>
6*8d741a5dSApple OSS Distributions #include <unistd.h>
7*8d741a5dSApple OSS Distributions #include <sys/resource.h>
8*8d741a5dSApple OSS Distributions #include <errno.h>
9*8d741a5dSApple OSS Distributions #include <sys/sysctl.h>
10*8d741a5dSApple OSS Distributions #include <darwintest.h>
11*8d741a5dSApple OSS Distributions
12*8d741a5dSApple OSS Distributions /* Defined in <sys/resource.h> but not visible to user space */
13*8d741a5dSApple OSS Distributions #define RLIMIT_NLIMITS 9
14*8d741a5dSApple OSS Distributions
15*8d741a5dSApple OSS Distributions /* Defined in <sys/resource.h> and visible to user space */
16*8d741a5dSApple OSS Distributions static const char *RESOURCE_STRING[] = {
17*8d741a5dSApple OSS Distributions "RLIMIT_CPU", /* #define RLIMIT_CPU 0 */
18*8d741a5dSApple OSS Distributions "RLIMIT_FSIZE", /* #define RLIMIT_FSIZE 1 */
19*8d741a5dSApple OSS Distributions "RLIMIT_DATA", /* #define RLIMIT_DATA 2 */
20*8d741a5dSApple OSS Distributions "RLIMIT_STACK", /* #define RLIMIT_STACK 3 */
21*8d741a5dSApple OSS Distributions "RLIMIT_CORE", /* #define RLIMIT_CORE 4 */
22*8d741a5dSApple OSS Distributions "RLIMIT_AS/RSS", /* #define RLIMIT_AS 5 */
23*8d741a5dSApple OSS Distributions /* #define RLIMIT_RSS RLIMIT_AS */
24*8d741a5dSApple OSS Distributions "RLIMIT_MEMLOCK", /* #define RLIMIT_MEMLOCK 6 */
25*8d741a5dSApple OSS Distributions "RLIMIT_NPROC", /* #define RLIMIT_NPROC 7 */
26*8d741a5dSApple OSS Distributions "RLIMIT_NOFILE" /* #define RLIMIT_NOFILE 8 */
27*8d741a5dSApple OSS Distributions };
28*8d741a5dSApple OSS Distributions
29*8d741a5dSApple OSS Distributions /* Change limit values by this arbitrary amount */
30*8d741a5dSApple OSS Distributions #define LIMIT_DIFF 64
31*8d741a5dSApple OSS Distributions
32*8d741a5dSApple OSS Distributions /* Limit type */
33*8d741a5dSApple OSS Distributions #define SOFT_LIMIT 0
34*8d741a5dSApple OSS Distributions #define HARD_LIMIT 1
35*8d741a5dSApple OSS Distributions
36*8d741a5dSApple OSS Distributions /* Action on changing limit values */
37*8d741a5dSApple OSS Distributions #define LOWER 0
38*8d741a5dSApple OSS Distributions #define RAISE 1
39*8d741a5dSApple OSS Distributions
40*8d741a5dSApple OSS Distributions static struct rlimit orig_rlimit[RLIMIT_NLIMITS];
41*8d741a5dSApple OSS Distributions
42*8d741a5dSApple OSS Distributions /* Maximum number of open files allowed by normal user */
43*8d741a5dSApple OSS Distributions static rlim_t maxfilesperproc;
44*8d741a5dSApple OSS Distributions static size_t maxfilesperproc_size = sizeof(maxfilesperproc);
45*8d741a5dSApple OSS Distributions
46*8d741a5dSApple OSS Distributions /* Maximum number of open files allowed by super user */
47*8d741a5dSApple OSS Distributions static rlim_t maxfiles;
48*8d741a5dSApple OSS Distributions static size_t maxfiles_size = sizeof(maxfiles);
49*8d741a5dSApple OSS Distributions
50*8d741a5dSApple OSS Distributions /* Maximum number of simultaneous processes allowed by normal user */
51*8d741a5dSApple OSS Distributions static rlim_t maxprocperuid;
52*8d741a5dSApple OSS Distributions static size_t maxprocperuid_size = sizeof(maxprocperuid);
53*8d741a5dSApple OSS Distributions
54*8d741a5dSApple OSS Distributions /* Maximum number of simultaneous processes allowed by super user */
55*8d741a5dSApple OSS Distributions static rlim_t maxproc;
56*8d741a5dSApple OSS Distributions static size_t maxproc_size = sizeof(maxproc);
57*8d741a5dSApple OSS Distributions
58*8d741a5dSApple OSS Distributions static bool superuser = FALSE;
59*8d741a5dSApple OSS Distributions
60*8d741a5dSApple OSS Distributions static int
get_initial_rlimits(void)61*8d741a5dSApple OSS Distributions get_initial_rlimits(void)
62*8d741a5dSApple OSS Distributions {
63*8d741a5dSApple OSS Distributions int err = -1;
64*8d741a5dSApple OSS Distributions int i;
65*8d741a5dSApple OSS Distributions
66*8d741a5dSApple OSS Distributions for (i = 0; i < RLIMIT_NLIMITS; i++) {
67*8d741a5dSApple OSS Distributions err = getrlimit(i, &orig_rlimit[i]);
68*8d741a5dSApple OSS Distributions T_QUIET; T_EXPECT_EQ(0, err, "getrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) %s", RESOURCE_STRING[i], orig_rlimit[i].rlim_cur, orig_rlimit[i].rlim_max, err == 0 ? "" : strerror(errno));
69*8d741a5dSApple OSS Distributions }
70*8d741a5dSApple OSS Distributions return err;
71*8d741a5dSApple OSS Distributions }
72*8d741a5dSApple OSS Distributions
73*8d741a5dSApple OSS Distributions static void
print_rlimits(bool initial_limits)74*8d741a5dSApple OSS Distributions print_rlimits(bool initial_limits)
75*8d741a5dSApple OSS Distributions {
76*8d741a5dSApple OSS Distributions int err;
77*8d741a5dSApple OSS Distributions int i;
78*8d741a5dSApple OSS Distributions
79*8d741a5dSApple OSS Distributions for (i = 0; i < RLIMIT_NLIMITS; i++) {
80*8d741a5dSApple OSS Distributions struct rlimit lim;
81*8d741a5dSApple OSS Distributions
82*8d741a5dSApple OSS Distributions if (initial_limits) {
83*8d741a5dSApple OSS Distributions lim = orig_rlimit[i];
84*8d741a5dSApple OSS Distributions } else {
85*8d741a5dSApple OSS Distributions err = getrlimit(i, &lim);
86*8d741a5dSApple OSS Distributions T_QUIET; T_EXPECT_EQ(0, err, "getrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) %s", RESOURCE_STRING[i], lim.rlim_cur, lim.rlim_max, err == 0 ? "" : strerror(errno));
87*8d741a5dSApple OSS Distributions }
88*8d741a5dSApple OSS Distributions T_LOG("%35s soft: 0x%16llx hard 0x%16llx", RESOURCE_STRING[i], lim.rlim_cur, lim.rlim_max);
89*8d741a5dSApple OSS Distributions }
90*8d741a5dSApple OSS Distributions }
91*8d741a5dSApple OSS Distributions
92*8d741a5dSApple OSS Distributions /*
93*8d741a5dSApple OSS Distributions * Change "limit_type" of all of the process's "rlimit" by amount
94*8d741a5dSApple OSS Distributions *
95*8d741a5dSApple OSS Distributions * limit_type: SOFT_LIMIT/HARD_LIMIT
96*8d741a5dSApple OSS Distributions * amount: rlim_t
97*8d741a5dSApple OSS Distributions * action: RAISE/LOWER
98*8d741a5dSApple OSS Distributions */
99*8d741a5dSApple OSS Distributions static void
change_rlimits(int limit_type,rlim_t amount,int action)100*8d741a5dSApple OSS Distributions change_rlimits(int limit_type, rlim_t amount, int action)
101*8d741a5dSApple OSS Distributions {
102*8d741a5dSApple OSS Distributions int err = -1;
103*8d741a5dSApple OSS Distributions int i;
104*8d741a5dSApple OSS Distributions
105*8d741a5dSApple OSS Distributions for (i = 0; i < RLIMIT_NLIMITS; i++) {
106*8d741a5dSApple OSS Distributions struct rlimit newlim; // for setrlimit
107*8d741a5dSApple OSS Distributions struct rlimit verifylim; // for getrlimit
108*8d741a5dSApple OSS Distributions bool expect_failure = FALSE;
109*8d741a5dSApple OSS Distributions int expect_errno = 0;
110*8d741a5dSApple OSS Distributions
111*8d741a5dSApple OSS Distributions /* Get the current limit values */
112*8d741a5dSApple OSS Distributions err = getrlimit(i, &newlim);
113*8d741a5dSApple OSS Distributions T_EXPECT_EQ(0, err, "getrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) %s", RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, err == 0 ? "" : strerror(errno));
114*8d741a5dSApple OSS Distributions
115*8d741a5dSApple OSS Distributions /* Changing soft limit */
116*8d741a5dSApple OSS Distributions if (limit_type == SOFT_LIMIT) {
117*8d741a5dSApple OSS Distributions if (action == RAISE) {
118*8d741a5dSApple OSS Distributions /* Raising soft limits to exceed hard limits is not allowed and we expect to see failure on setrlimit call later */
119*8d741a5dSApple OSS Distributions if (newlim.rlim_cur + amount > newlim.rlim_max) {
120*8d741a5dSApple OSS Distributions expect_failure = TRUE;
121*8d741a5dSApple OSS Distributions expect_errno = EINVAL;
122*8d741a5dSApple OSS Distributions }
123*8d741a5dSApple OSS Distributions newlim.rlim_cur += amount;
124*8d741a5dSApple OSS Distributions } else if (action == LOWER) {
125*8d741a5dSApple OSS Distributions if (newlim.rlim_cur == 0) {
126*8d741a5dSApple OSS Distributions /* Soft limit might be 0 already, if so skip lowering it */
127*8d741a5dSApple OSS Distributions } else {
128*8d741a5dSApple OSS Distributions newlim.rlim_cur -= amount;
129*8d741a5dSApple OSS Distributions }
130*8d741a5dSApple OSS Distributions } else {
131*8d741a5dSApple OSS Distributions T_FAIL("Unknown action on soft limit: %d", action);
132*8d741a5dSApple OSS Distributions }
133*8d741a5dSApple OSS Distributions }
134*8d741a5dSApple OSS Distributions /* Changing hard limit */
135*8d741a5dSApple OSS Distributions else if (limit_type == HARD_LIMIT) {
136*8d741a5dSApple OSS Distributions if (action == RAISE) {
137*8d741a5dSApple OSS Distributions newlim.rlim_max += amount;
138*8d741a5dSApple OSS Distributions
139*8d741a5dSApple OSS Distributions /* Raising hard limits is not allowed for normal user and we expect to see failure on setrlimit call later */
140*8d741a5dSApple OSS Distributions expect_failure = TRUE;
141*8d741a5dSApple OSS Distributions expect_errno = EPERM;
142*8d741a5dSApple OSS Distributions } else if (action == LOWER) {
143*8d741a5dSApple OSS Distributions if (newlim.rlim_max == 0) {
144*8d741a5dSApple OSS Distributions /* Hard limit might be 0 already, if so skip lowering it (e.g., RLIMIT_CORE on iOS) */
145*8d741a5dSApple OSS Distributions } else {
146*8d741a5dSApple OSS Distributions newlim.rlim_max -= amount;
147*8d741a5dSApple OSS Distributions }
148*8d741a5dSApple OSS Distributions /* Soft limit might need to be changed as well since soft cannot be greater than hard */
149*8d741a5dSApple OSS Distributions if (newlim.rlim_cur > newlim.rlim_max) {
150*8d741a5dSApple OSS Distributions newlim.rlim_cur = newlim.rlim_max;
151*8d741a5dSApple OSS Distributions }
152*8d741a5dSApple OSS Distributions } else {
153*8d741a5dSApple OSS Distributions T_FAIL("Unknown action on hard limit: %d", action);
154*8d741a5dSApple OSS Distributions }
155*8d741a5dSApple OSS Distributions }
156*8d741a5dSApple OSS Distributions /* Changing unknown limit type */
157*8d741a5dSApple OSS Distributions else {
158*8d741a5dSApple OSS Distributions T_FAIL("Unknown limit type: %d", limit_type);
159*8d741a5dSApple OSS Distributions }
160*8d741a5dSApple OSS Distributions
161*8d741a5dSApple OSS Distributions /* Request the kernel to change limit values */
162*8d741a5dSApple OSS Distributions err = setrlimit(i, &newlim);
163*8d741a5dSApple OSS Distributions
164*8d741a5dSApple OSS Distributions if (expect_failure) {
165*8d741a5dSApple OSS Distributions /* We expect the setrlimit call to fail */
166*8d741a5dSApple OSS Distributions T_EXPECT_EQ(-1, err, "setrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) failed as expected: %s", RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, strerror(errno));
167*8d741a5dSApple OSS Distributions T_EXPECT_EQ(expect_errno, errno, "Expect errno %d, errno returned %d", expect_errno, errno);
168*8d741a5dSApple OSS Distributions continue;
169*8d741a5dSApple OSS Distributions } else {
170*8d741a5dSApple OSS Distributions T_EXPECT_EQ(0, err, "setrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) %s", RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, err == 0 ? "" : strerror(errno));
171*8d741a5dSApple OSS Distributions }
172*8d741a5dSApple OSS Distributions
173*8d741a5dSApple OSS Distributions /* Verify the kernel correctly changed the limit values */
174*8d741a5dSApple OSS Distributions err = getrlimit(i, &verifylim);
175*8d741a5dSApple OSS Distributions T_EXPECT_EQ(0, err, "getrlimit(%15s, soft: 0x%16llx, hard 0x%16llx) %s", RESOURCE_STRING[i], verifylim.rlim_cur, verifylim.rlim_max, err == 0 ? "" : strerror(errno));
176*8d741a5dSApple OSS Distributions
177*8d741a5dSApple OSS Distributions /* The kernel forces the hard limit of RLIMIT_NOFILE to be at most maxfileperproc for normal user when changing the hard limit with setrlimit */
178*8d741a5dSApple OSS Distributions if (i == RLIMIT_NOFILE && limit_type == HARD_LIMIT && newlim.rlim_max > maxfilesperproc) {
179*8d741a5dSApple OSS Distributions if (newlim.rlim_cur != verifylim.rlim_cur ||
180*8d741a5dSApple OSS Distributions maxfilesperproc != verifylim.rlim_max) {
181*8d741a5dSApple OSS Distributions T_FAIL("Mismatch limit values %s despite a successful setrlimit call (setrlimit'd soft 0x%16llx hard 0x%16llx but getrlimit'd soft 0x%16llx hard 0x%16llx)",
182*8d741a5dSApple OSS Distributions RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, verifylim.rlim_cur, verifylim.rlim_max);
183*8d741a5dSApple OSS Distributions }
184*8d741a5dSApple OSS Distributions }
185*8d741a5dSApple OSS Distributions /* The kernel forces the hard limit of RLIMIT_NPROC to be at most maxproc for normal user when changing either soft/hard limit with setrlimit */
186*8d741a5dSApple OSS Distributions else if (i == RLIMIT_NPROC && newlim.rlim_max > maxprocperuid) {
187*8d741a5dSApple OSS Distributions if (newlim.rlim_cur != verifylim.rlim_cur ||
188*8d741a5dSApple OSS Distributions maxprocperuid != verifylim.rlim_max) {
189*8d741a5dSApple OSS Distributions T_FAIL("Mismatch limit values %s despite a successful setrlimit call (setrlimit'd soft 0x%16llx hard 0x%16llx but getrlimit'd soft 0x%16llx hard 0x%16llx)",
190*8d741a5dSApple OSS Distributions RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, verifylim.rlim_cur, verifylim.rlim_max);
191*8d741a5dSApple OSS Distributions }
192*8d741a5dSApple OSS Distributions } else {
193*8d741a5dSApple OSS Distributions if (newlim.rlim_cur != verifylim.rlim_cur ||
194*8d741a5dSApple OSS Distributions newlim.rlim_max != verifylim.rlim_max) {
195*8d741a5dSApple OSS Distributions T_FAIL("Mismatch limit values %s despite a successful setrlimit call (setrlimit'd soft 0x%16llx hard 0x%16llx but getrlimit'd soft 0x%16llx hard 0x%16llx)",
196*8d741a5dSApple OSS Distributions RESOURCE_STRING[i], newlim.rlim_cur, newlim.rlim_max, verifylim.rlim_cur, verifylim.rlim_max);
197*8d741a5dSApple OSS Distributions }
198*8d741a5dSApple OSS Distributions }
199*8d741a5dSApple OSS Distributions }
200*8d741a5dSApple OSS Distributions }
201*8d741a5dSApple OSS Distributions
202*8d741a5dSApple OSS Distributions T_DECL(proc_rlimit,
203*8d741a5dSApple OSS Distributions "Test basic functionalities of the getrlimit and setrlimit", T_META_TAG_VM_PREFERRED)
204*8d741a5dSApple OSS Distributions {
205*8d741a5dSApple OSS Distributions int err;
206*8d741a5dSApple OSS Distributions struct rlimit lim;
207*8d741a5dSApple OSS Distributions
208*8d741a5dSApple OSS Distributions T_SETUPBEGIN;
209*8d741a5dSApple OSS Distributions
210*8d741a5dSApple OSS Distributions if (geteuid() == 0) {
211*8d741a5dSApple OSS Distributions superuser = TRUE;
212*8d741a5dSApple OSS Distributions T_SKIP("This test should not be run as super user.");
213*8d741a5dSApple OSS Distributions }
214*8d741a5dSApple OSS Distributions
215*8d741a5dSApple OSS Distributions /* Use sysctl to query the real limits of RLIMIT_NOFILE/RLIMIT_NPROC for normal user on Apple's systems */
216*8d741a5dSApple OSS Distributions err = sysctlbyname("kern.maxfilesperproc", &maxfilesperproc, &maxfilesperproc_size, NULL, 0);
217*8d741a5dSApple OSS Distributions T_EXPECT_EQ_INT(0, err, "maxfilesperproc: %llu", maxfilesperproc);
218*8d741a5dSApple OSS Distributions
219*8d741a5dSApple OSS Distributions err = sysctlbyname("kern.maxprocperuid", &maxprocperuid, &maxprocperuid_size, NULL, 0);
220*8d741a5dSApple OSS Distributions T_EXPECT_EQ_INT(0, err, "maxprocperuid: %llu", maxprocperuid);
221*8d741a5dSApple OSS Distributions
222*8d741a5dSApple OSS Distributions /* Use sysctl to query the real limits of RLIMIT_NOFILE/RLIMIT_NPROC for super user on Apple's systems (placeholder for adding super user tests) */
223*8d741a5dSApple OSS Distributions err = sysctlbyname("kern.maxfiles", &maxfiles, &maxfiles_size, NULL, 0);
224*8d741a5dSApple OSS Distributions T_EXPECT_EQ_INT(0, err, "maxfiles: %llu", maxfiles);
225*8d741a5dSApple OSS Distributions
226*8d741a5dSApple OSS Distributions err = sysctlbyname("kern.maxproc", &maxproc, &maxproc_size, NULL, 0);
227*8d741a5dSApple OSS Distributions T_EXPECT_EQ_INT(0, err, "maxproc: %llu", maxproc);
228*8d741a5dSApple OSS Distributions
229*8d741a5dSApple OSS Distributions /* Issue getrlimit syscall to retrieve the initial resource limit values before calling setrlimit */
230*8d741a5dSApple OSS Distributions err = get_initial_rlimits();
231*8d741a5dSApple OSS Distributions T_EXPECT_EQ(0, err, "Obtained initial resource values.");
232*8d741a5dSApple OSS Distributions
233*8d741a5dSApple OSS Distributions /* Print out resource limit values to stdout for less-painful triage in case needed */
234*8d741a5dSApple OSS Distributions T_LOG("Resource limits before the test:");
235*8d741a5dSApple OSS Distributions print_rlimits(TRUE);
236*8d741a5dSApple OSS Distributions
237*8d741a5dSApple OSS Distributions T_SETUPEND;
238*8d741a5dSApple OSS Distributions
239*8d741a5dSApple OSS Distributions /* Lower soft limits by arbitrary amount */
240*8d741a5dSApple OSS Distributions T_LOG("---------Lowering soft limits by 0x%x---------:\n", LIMIT_DIFF);
241*8d741a5dSApple OSS Distributions change_rlimits(SOFT_LIMIT, LIMIT_DIFF, LOWER);
242*8d741a5dSApple OSS Distributions
243*8d741a5dSApple OSS Distributions /* Raise soft limits back to the orginal values */
244*8d741a5dSApple OSS Distributions T_LOG("---------Raising soft limits by 0x%x---------:\n", LIMIT_DIFF);
245*8d741a5dSApple OSS Distributions change_rlimits(SOFT_LIMIT, LIMIT_DIFF, RAISE);
246*8d741a5dSApple OSS Distributions
247*8d741a5dSApple OSS Distributions /* Lower hard limits */
248*8d741a5dSApple OSS Distributions T_LOG("---------Lowering hard limits by 0x%x---------:", LIMIT_DIFF);
249*8d741a5dSApple OSS Distributions change_rlimits(HARD_LIMIT, LIMIT_DIFF, LOWER);
250*8d741a5dSApple OSS Distributions
251*8d741a5dSApple OSS Distributions /* Raise soft limits to exceed hard limits (setrlimit should fail, but the darwintest should pass) */
252*8d741a5dSApple OSS Distributions T_LOG("---------Attempting to raised soft limits by 0x%x to exceed hard limits---------:", LIMIT_DIFF);
253*8d741a5dSApple OSS Distributions change_rlimits(SOFT_LIMIT, LIMIT_DIFF, RAISE);
254*8d741a5dSApple OSS Distributions
255*8d741a5dSApple OSS Distributions /* Raise hard limits (setrlimit should fail, but the darwintest should pass) */
256*8d741a5dSApple OSS Distributions T_LOG("---------Attempting to raise hard limits by 0x%x---------:", LIMIT_DIFF);
257*8d741a5dSApple OSS Distributions change_rlimits(HARD_LIMIT, LIMIT_DIFF, RAISE);
258*8d741a5dSApple OSS Distributions
259*8d741a5dSApple OSS Distributions /* Get and set a non-existing resource limit */
260*8d741a5dSApple OSS Distributions T_LOG("---------Accessing a non-existing resource---------:");
261*8d741a5dSApple OSS Distributions err = getrlimit(RLIMIT_NLIMITS + 1, &lim);
262*8d741a5dSApple OSS Distributions T_EXPECT_EQ(-1, err, "Expect getrlimit to fail when accessing a non-existing resource: %s\n", strerror(errno));
263*8d741a5dSApple OSS Distributions T_EXPECT_EQ(EINVAL, errno, "Expect errno %d, errno returned %d", EINVAL, errno);
264*8d741a5dSApple OSS Distributions
265*8d741a5dSApple OSS Distributions err = setrlimit(RLIMIT_NLIMITS + 1, &lim);
266*8d741a5dSApple OSS Distributions T_EXPECT_EQ(-1, err, "Expect setrlimit to fail when accessing a non-existing resource: %s\n", strerror(errno));
267*8d741a5dSApple OSS Distributions T_EXPECT_EQ(EINVAL, errno, "Expect errno %d, errno returned %d", EINVAL, errno);
268*8d741a5dSApple OSS Distributions
269*8d741a5dSApple OSS Distributions T_LOG("Resource limits after the test:");
270*8d741a5dSApple OSS Distributions print_rlimits(FALSE);
271*8d741a5dSApple OSS Distributions }
272