Tried making the perm permissions faster by perparing queries

Added profiling logic to tests with perf
Added perf artifacts to gitignore
2025-04-14 18:47:56 +02:00 · 2025-04-14 18:47:32 +02:00 · 2025-04-14 16:47:40 +02:00 · 2025-04-14 16:46:06 +02:00
6 changed files with 111 additions and 25 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,5 @@ build/*
 test/protected/*
 test/.pt.db
 compile_commands.json
+test/perf*
+test/callgraph*
--- a/4
+++ b/4
@@ -21,14 +21,14 @@ endif

 # set up cflags and libs

-CFLAGS := -D_FILE_OFFSET_BITS=64
+CFLAGS := -D_FILE_OFFSET_BITS=64 -g
 LDFLAGS :=

 CFLAGS += $(shell pkg-config --cflags $(PACKAGE_NAMES))
 LDFLAGS += $(shell pkg-config --libs $(PACKAGE_NAMES))

 ifeq ($(DEBUG),1)
-	CFLAGS += -O0 -pedantic -g -Wall -Wextra -Wcast-align \
+	CFLAGS += -O0 -pedantic -Wall -Wextra -Wcast-align \
 						-Wcast-qual -Wdisabled-optimization -Wformat=2 \
 						-Winit-self -Wlogical-op -Wmissing-declarations \
 						-Wmissing-include-dirs -Wredundant-decls -Wshadow \
--- a/src/perm_permissions_table.c
+++ b/src/perm_permissions_table.c
@@ -27,6 +27,7 @@ const int column_count = 2;
 const char *const schema[] = {"executable", "filename"};
 const char *const types[] = {"TEXT", "TEXT"};
 uid_t ruid, euid, current_pid;
+sqlite3_stmt *perm_check_statement = NULL;
 pthread_mutex_t uid_switch = PTHREAD_MUTEX_INITIALIZER;

 void set_db_fsuid() {
@@ -141,6 +142,45 @@ int ensure_database_schema() {
  return 0;
 }

+int prepare_sql_queries() {
+  const char *query_template =
+      "SELECT * FROM %s WHERE executable = ? AND filename = ?;";
+  char *query_string = NULL;
+  int query_len = snprintf(NULL, 0, query_template, table_name) + 1;
+
+  if (query_len < 0) {
+    fprintf(stderr, "Failed to prepare statement");
+    perror("");
+    return 1;
+  }
+
+  query_string = malloc(query_len);
+  if (query_string == NULL) {
+    fprintf(stderr, "Failed to allocate memory for the query");
+    perror("");
+    return 1;
+  }
+
+  int ret = snprintf(query_string, query_len, query_template, table_name);
+  if (ret < 0) {
+    fprintf(stderr, "Failed to prepare statement");
+    perror("");
+    free(query_string);
+    return 1;
+  }
+
+  if (sqlite3_prepare_v2(perm_database, query_string, -1, &perm_check_statement,
+                         NULL) != SQLITE_OK) {
+    fprintf(stderr, "Failed to prepare statement: %s\n",
+            sqlite3_errmsg(perm_database));
+    free(query_string);
+    return 1;
+  }
+  free(query_string);
+  return 0;
+}
+
+void free_sql_queries(void) { sqlite3_finalize(perm_check_statement); }
 /**
 * Initializes the permanent permissions table.
 *
@@ -169,17 +209,24 @@ int init_perm_permissions_table(const char *db_filename) {

  int status = seteuid(ruid);
  if (status < 0) {
-    fprintf(stderr, "Couldn't set euid to ruid during database setup.\n");
+    fprintf(stderr, "Couldn't set euid to ruid.\n");
    exit(status);
  }

+  if (prepare_sql_queries()) {
+    fprintf(stderr, "Couldn't prepare sql queries.\n");
+    exit(status);
+  }
  return 0;
 }

 /**
 * Destroys the permanent permissions table.
 */
-void destroy_perm_permissions_table() { sqlite3_close(perm_database); }
+void destroy_perm_permissions_table(void) {
+  free_sql_queries();
+  sqlite3_close(perm_database);
+}

 /**
 * Checks if the process has a permanent access to the file.
--- a/src/ui-socket.c
+++ b/src/ui-socket.c
@@ -13,7 +13,6 @@
 #include "perm_permissions_table.h"
 #include "temp_permissions_table.h"
 #include "ui-socket.h"
-#include <errno.h>
 #include <pthread.h>
 #include <stdio.h>
 #include <stdlib.h>
@@ -22,9 +21,10 @@
 #include <sys/un.h>
 #include <unistd.h>

+#define ZENITY_TEMP_ALLOW_MESSAGE "Allow this time\n"
+
 int init_ui_socket(const char *perm_permissions_db_filename) {
-  char line[256];
-  FILE *fp;
+  FILE *fp = NULL;

  if (init_temp_permissions_table()) {
    fprintf(stderr, "Could not initialize temporary permissions table.\n");
@@ -43,13 +43,11 @@ int init_ui_socket(const char *perm_permissions_db_filename) {
    return 1;
  }

-  while (fgets(line, sizeof(line), fp))
-    printf("%s", line);
  pclose(fp);
  return 0;
 }

-void destroy_ui_socket() {
+void destroy_ui_socket(void) {
  destroy_temp_permissions_table();
  destroy_perm_permissions_table();
 }
@@ -63,16 +61,16 @@ void destroy_ui_socket() {
 * @return: 0 if access is denied, 1 if access is allowed, 2 if access is
 * allowed for the runtime of the process
 */
-int ask_access(const char *filename, struct process_info pi) {
-  FILE *fp;
+int ask_access(const char *filename, struct process_info proc_info) {
+  FILE *fp = NULL;
  size_t command_len =
-      139 + sizeof(pid_t) * 8 + strlen(pi.name) + strlen(filename);
+      139 + sizeof(pid_t) * 8 + strlen(proc_info.name) + strlen(filename);
  char *command = (char *)malloc(command_len);
  snprintf(command, command_len,
           "zenity --question --extra-button \"Allow this time\" --title "
           "\"Allow Access?\" --text \"Allow process "
           "<tt>%s</tt> with PID <tt>%d</tt> to access <tt>%s</tt>\"",
-           pi.name, pi.PID, filename);
+           proc_info.name, proc_info.PID, filename);

  // Zenity Question Message Popup
  fp = popen(command, "r");
@@ -86,10 +84,10 @@ int ask_access(const char *filename, struct process_info pi) {
  // if the user clicks the "Allow this time" button, `zenity` will only
  // write it to `stdout`, but the exit code will still be `1`. So, we need
  // to manually check the output.
-  char buffer[1024];
+  char buffer[sizeof(ZENITY_TEMP_ALLOW_MESSAGE) + 1];
  while (fgets(buffer, sizeof(buffer), fp)) {
    printf("%s", buffer);
-    if (strcmp(buffer, "Allow this time\n") == 0) {
+    if (strcmp(buffer, ZENITY_TEMP_ALLOW_MESSAGE) == 0) {
      pclose(fp);
      return 2;
    }
@@ -116,9 +114,11 @@ int ask_access(const char *filename, struct process_info pi) {
 * @param opts: options (GRANT_TEMP, GRANT_PERM)
 * @return: 0 if access is denied, 1 if access is allowed
 */
-int interactive_access(const char *filename, struct process_info pi, int opts) {
+int interactive_access(const char *filename, struct process_info proc_info,
+                       int opts) {

-  if (check_temp_access(filename, pi) || check_perm_access(filename, pi)) {
+  if (check_temp_access(filename, proc_info) ||
+      check_perm_access(filename, proc_info)) {
    // access was already granted before
    return 1;
  }
@@ -127,22 +127,24 @@ int interactive_access(const char *filename, struct process_info pi, int opts) {
  // permissions are granted

  if (opts & GRANT_PERM) {
-    give_perm_access(filename, pi);
+    give_perm_access(filename, proc_info);
    return 1;
  }
  if (opts & GRANT_TEMP) {
-    give_temp_access(filename, pi);
+    give_temp_access(filename, proc_info);
    return 1;
  }

-  int user_response = ask_access(filename, pi);
+  int user_response = ask_access(filename, proc_info);
  if (user_response == 1) {
    // user said "yes"
-    give_perm_access(filename, pi);
+    give_perm_access(filename, proc_info);
    return 1;
-  } else if (user_response == 2) {
+  }
+
+  if (user_response == 2) {
    // user said "yes, but only this time"
-    give_temp_access(filename, pi);
+    give_temp_access(filename, proc_info);
    return 1;
  }

--- a/test/mock/zenity
+++ b/test/mock/zenity
@@ -12,10 +12,17 @@ else
    if [[ $FAKE_ZENITY_RESPONSE == "yes_tmp" ]]; then
      printf "Allow this time\n"
      exit 1
+    elif [[ $FAKE_ZENITY_RESPONSE == "yes_tmp_alt" ]]; then
+      printf "Allow this time\n"
+      echo "yes_alt" >~/.fake_zenity_response
+      exit 1
    elif [[ $FAKE_ZENITY_RESPONSE == "no" ]]; then
      exit 1
    elif [[ $FAKE_ZENITY_RESPONSE == "yes" ]]; then
      exit 0
+    elif [[ $FAKE_ZENITY_RESPONSE == "yes_alt" ]]; then
+      echo "yes_tmp_alt" >~/.fake_zenity_response
+      exit 0
    fi
  fi
 fi
--- a/test/test.bash
+++ b/test/test.bash
@@ -25,10 +25,18 @@ if [[ $1 == "--setuid" ]]; then
  echo "Valgrind will not be used due to setuid compatibility issues."
  ../build/icfs -o default_permissions ./protected ./.pt.db &
  sleep 1
+elif [[ $1 == "--perf" ]]; then
+  echo "Profiling with perf..."
+  ../build/icfs -o default_permissions ./protected ./.pt.db &
+  echo "Profiling will require root privilieges."
+  sleep 3
+  echo "Attaching to $(pgrep icfs)"
+  sudo perf record -g -e cycles:u --call-graph dwarf -p $(pgrep icfs) &
+  sleep 10
 else
  echo "Database protection will not be tested due to the lack of setuid capabilites."
  echo "To test it, run this script with '--setuid'."
-  valgrind -s ../build/icfs -o default_permissions ./protected ./.pt.db &
+  valgrind --leak-check=full -s ../build/icfs -o default_permissions ./protected ./.pt.db &
  sleep 5
 fi

@@ -126,9 +134,29 @@ else
  echo "[ICFS-TEST]: OK"
 fi

+if [[ $1 == "--perf" ]]; then
+  zenity --set-fake-response yes_tmp
+  rm -rf ./protected/*
+  zenity --set-fake-response yes_alt
+  bonnie++ -p 4
+  bonnie++ -d ./protected -c 4 -r 256 -y s >/dev/null &
+  bonnie++ -d ./protected -c 4 -r 256 -y s >/dev/null &
+  bonnie++ -d ./protected -c 4 -r 256 -y s >/dev/null &
+  bonnie++ -d ./protected -c 4 -r 256 -y s >/dev/null
+  bonnie++ -p -1
+fi
+
 # unmount

 sleep 0.5
 #lsof +f -- $(realpath ./protected)
 umount $(realpath ./protected)
 sleep 0.5
+
+if [[ $1 == "--perf" ]]; then
+  mv ./callgraph.png ./callgraph_old.png
+  real_user=$USER
+  sudo chown "$real_user" ./perf.data
+  perf script --dsos=icfs | gprof2dot -f perf | dot -Tpng -o callgraph.png
+  echo "Profile graph was written to \"callgraph.png\""
+fi
Author	SHA1	Message	Date
fedir	6fd6907121	Tried making the perm permissions faster by perparing queries	2025-04-14 18:47:56 +02:00
fedir	1bc25af6f1	Added profiling logic to tests with perf	2025-04-14 18:47:32 +02:00
BritishTeapot	13fd0db8a8	Added perf artifacts to gitignore	2025-04-14 16:47:40 +02:00
BritishTeapot	55fb5c54c6	Improved code readability	2025-04-14 16:46:06 +02:00