Debugging support

Chainfire · Chainfire · commit 7ac33389cb74 · 2018-12-12T00:21:26.000+01:00
diff --git a/librootjava/README.md b/librootjava/README.md
@@ -6,6 +6,7 @@ Run Java (and Kotlin) code as root!
 - Access to all the classes in your projects
 - Access to Android classes
 - Easy Binder-based IPC/RPC
+- Debugging support
 
 ## License
 
@@ -69,14 +70,6 @@ While this library was originally built to support Android 4.2+ devices,
 it only officially supports 5.0+. The first public GitHub release was
 tested specifically on 5.0, 7.0, 8.0, and 9.0.
 
-## Debugging
-
-Debugging the code running as root is currently not supported. I made
-some headway getting the jdwp server running, but I've not been able
-to successfully connect jdb or AndroidStudio to it. If you want to take
-a stab at it, there are some comments in
-```RootJava.getLaunchString()``` related to it.
-
 ## Recommended reading
 
 I strongly recommend you read the library's source code in its entirety
@@ -270,6 +263,84 @@ non-root code.
 (See the [example project](../librootjava_example) for a more elaborate
 example for this entire process)
 
+#### Debugging
+
+Debugging is supported since version 1.1.0, but disabled by default.
+
+To enable debugging, first we must tell the non-root process to launch
+our root process with debug support enabled. We do this by calling
+```Debugger.setEnabled()``` *before* calling
+```RootJava.getLaunchScript()```:
+
+```
+public class MyActivity {
+    // ...
+    private void launchRootProcess() {
+        // ...
+
+        Debugger.setEnabled(BuildConfig.DEBUG);
+        rootShell.addCommand(RootJava.getLaunchScript(this, RootMain.class, null, null, null, BuildConfig.APPLICATION_ID + ":root"));
+    }
+}
+```
+
+We use ```BuildConfig.DEBUG``` instead of ```true``` to prevent
+potential issues with release builds.
+
+In the code running as root, we then call ```Debugger.waitFor()```
+to pause execution (of the current thread) until a debugger is connected:
+
+```
+public class RootMain {
+    public static void main(String[] args) {
+        RootJava.restoreOriginalLdLibraryPath(); // call this first!
+
+        if (BuildConfig.DEBUG) {
+            Debugger.waitFor(true); // wait for connection
+        }
+
+        setYourBreakpointHere();
+    }
+}
+```
+
+We wrap the call inside a ```BuildConfig.DEBUG``` check, again to prevent
+issues with release builds.
+
+Note that for long-running processes (such as daemons) you may not want
+to explicitly wait for a debugger connection, in that case you can use
+the ```Debugger.setName()``` method instead. That method may also be 
+called *before* ```Debugger.waitFor()``` to customize the debugger
+display name, as by default the process name is used.
+
+Now that debugging is enabled, we still need to actually connect to
+the process. You can do this in Android Studio via the *Attach
+debugger to Android process* option in the *Run* menu. Once the root
+process is running, it will be listed in the popup window.
+
+Note that you can debug *both* the non-root *and* root process at the
+same time. While Android Studio can only debug a single application
+*launched* in debug mode, you can *attach* to multiple processes. So
+you can simply run your application in debug mode, have it launch the
+root process, then *attach* to that root process, and debug both
+simultaneously.
+
+Android Studio of course has no knowledge of the relation between the
+multiple processes being debugged, so stepping into an IPC call in one
+process will not automatically break on the implementation code in the
+other process. You will have to set those breakpoints manually.
+
+#### BuildConfig
+
+The example snippets and projects make extensive use of the BuildConfig
+class. This class is generated during the build process for every
+module, library, etc. Double check you are importing the correct
+BuildConfig class, the one from your application's package (unless you
+know exactly what you're doing). Note that this complicates putting this
+code inside libraries and modules, as you cannot reference the
+application's BuildConfig class from a library. Work-arounds are beyond
+the scope of this README.
+
 #### Daemonizing
 
 For some use-cases you may want to run your root process as a daemon,
@@ -348,7 +419,7 @@ an Android 10 preview comes out!
 ## Gradle
 
 ```
-implementation 'eu.chainfire:librootjava:1.0.0'
+implementation 'eu.chainfire:librootjava:1.1.0'
 ```
 
 ## Notes
diff --git a/librootjava/build.gradle b/librootjava/build.gradle
@@ -51,7 +51,7 @@ ext {
     gitUrl = 'https://github.com/Chainfire/librootjava.git'
     issueTrackerUrl = 'https://github.com/Chainfire/librootjava/issues'
 
-    libraryVersion = '1.0.0'
+    libraryVersion = '1.1.0'
 
     developerId = 'Chainfire'
     developerName = 'Jorrit Jongma'
@@ -72,7 +72,7 @@ task installMavenLocal(type: Upload) {
             packaging 'aar'
             groupId = publishedGroupId
             artifactId = artifact
-            version = '1.0.0-SNAPSHOT'
+            version = libraryVersion + '-SNAPSHOT'
         }
     }
 }
diff --git a/librootjava/src/main/java/eu/chainfire/librootjava/Debugger.java b/librootjava/src/main/java/eu/chainfire/librootjava/Debugger.java
@@ -0,0 +1,138 @@
+package eu.chainfire.librootjava;
+
+import java.io.BufferedReader;
+import java.io.ByteArrayOutputStream;
+import java.io.File;
+import java.io.FileDescriptor;
+import java.io.FileOutputStream;
+import java.io.FileReader;
+import java.io.IOException;
+import java.io.PrintStream;
+
+/**
+ * Utility methods to support debugging
+ */
+@SuppressWarnings({"unused", "WeakerAccess"})
+public class Debugger {
+    /**
+     * Is debugging enabled ?
+     */
+    static volatile boolean enabled = false;
+
+    /**
+     * Is debugging enabled ?<br>
+     * <br>
+     * If called from non-root, this will return if we are launching new processes with debugging
+     * enabled. If called from root, this will return if the current process was launched
+     * with debugging enabled.
+     *
+     * @return Debugging enabled
+     */
+    public static boolean isEnabled() {
+        if (android.os.Process.myUid() >= 10000) {
+            return enabled;
+        } else {
+            return Reflection.isDebuggingEnabled();
+        }
+    }
+
+    /**
+     * Launch root processes with debugging enabled ?
+     * <br>
+     * To prevent issues on release builds, BuildConfig.DEBUG should be respected. So instead
+     * of passing <em>true</em> you would pass <em>BuildConfig.DEBUG</em>, while <em>false</em>
+     * remains <em>false</em>.
+     *
+     * @param enabled Enable debugging (default: false)
+     */
+    public static void setEnabled(boolean enabled) {
+        Debugger.enabled = enabled;
+    }
+
+    /**
+     * Cache for name to present to debugger. Really only used to determine if we have manually
+     * set a name already.
+     */
+    private static volatile String name = null;
+
+    /**
+     * Set name to present to debugger<br>
+     * <br>
+     * This method should only be called from the process running as root.<br>
+     * <br>
+     * Debugging will <strong>not</strong> work if this method has not been called, but the
+     * {@link #waitFor(boolean)} method will call it for you, if used.<br>
+     * <br>
+     * {@link RootJava#restoreOriginalLdLibraryPath()} should have been called before calling
+     * this method.<br>
+     * <br>
+     * To prevent issues with release builds, this call should be wrapped in a BuildConfig.DEBUG
+     * check.
+     *
+     * @param name Name to present to debugger, or null to use process name
+     *
+     * @see #waitFor(boolean)
+     */
+    public static void setName(String name) {
+        if (Debugger.name == null) {
+            if (name == null) {
+                final File cmdline = new File("/proc/" + android.os.Process.myPid() + "/cmdline");
+                try (BufferedReader reader = new BufferedReader(new FileReader(cmdline))) {
+                    name = reader.readLine();
+                    if (name.indexOf(' ') > 0) name = name.substring(0, name.indexOf(' '));
+                    if (name.indexOf('\0') > 0) name = name.substring(0, name.indexOf('\0'));
+                } catch (IOException e) {
+                    name = "librootjava:unknown";
+                }
+            }
+            Debugger.name = name;
+            Reflection.setAppName(name);
+        }
+    }
+
+    /**
+     * Wait for debugger to connect<br>
+     * <br>
+     * This method should only be called from the process running as root.<br>
+     * <br>
+     * If {@link #setName(String)} has not been called manually, the display name for the
+     * debugger will be set to the current process name.<br>
+     * <br>
+     * After this method has been called, you can connect AndroidStudio's debugger to the root
+     * process via <em>Run-&gt;Attach Debugger to Android process</em>.<br>
+     * <br>
+     * {@link RootJava#restoreOriginalLdLibraryPath()} should have been called before calling
+     * this method.<br>
+     * <br>
+     * Android's internal debugger code will print to STDOUT during this call using System.println,
+     * which may be annoying if your non-root process communicates with the root process through
+     * STDIN/STDOUT/STDERR. If the <em>swallowOutput</em> parameter is set to true, System.println
+     * will be temporarily redirected, and reset back to STDOUT afterwards.<br>
+     * <br>
+     * To prevent issues with release builds, this call should be wrapped in a BuildConfig.DEBUG
+     * check:
+     *
+     * <pre>
+     * {@code
+     * if (BuildConfig.DEBUG) {
+     *     Debugger.waitFor(true);
+     * }
+     * }
+     * </pre>
+     *
+     * @param swallowOutput Temporarily redirect STDOUT ?
+     */
+    public static void waitFor(boolean swallowOutput) {
+        if (Reflection.isDebuggingEnabled()) {
+            if (swallowOutput) {
+                ByteArrayOutputStream buffer = new ByteArrayOutputStream();
+                System.setOut(new PrintStream(buffer));
+            }
+            setName(null);
+            android.os.Debug.waitForDebugger();
+            if (swallowOutput) {
+                System.setOut(new PrintStream(new FileOutputStream(FileDescriptor.out)));
+            }
+        }
+    }
+}
diff --git a/librootjava/src/main/java/eu/chainfire/librootjava/Reflection.java b/librootjava/src/main/java/eu/chainfire/librootjava/Reflection.java
@@ -211,6 +211,45 @@ static void sendBroadcast(Intent intent) {
         throw new RuntimeException("librootjava: unable to send broadcast");
     }
 
+    /**
+     * Determine if debugging is enabled on the VM level<br>
+     * <br>
+     * Stability: unlikely to change, this implementation works from 1.6 through 9.0<br>
+     *
+     * @see Debugger#isEnabled()
+     *
+     * @return Debugging enabled
+     */
+    @SuppressLint("PrivateApi")
+    static boolean isDebuggingEnabled() {
+        try {
+            Class<?> cVMDebug = Class.forName("dalvik.system.VMDebug");
+            Method mIsDebuggingEnabled = cVMDebug.getDeclaredMethod("isDebuggingEnabled");
+            return (Boolean)mIsDebuggingEnabled.invoke(null);
+        } catch (Exception e) {
+            Logger.ex(e);
+            return false;
+        }
+    }
+
+    /**
+     * Set app name for debugger connection
+     * <br>
+     * Stability: unlikely to change, this implementation works from 1.6 through 9.0<br>
+     *
+     * @see Debugger#setName(String)
+     */
+    @SuppressLint("PrivateApi")
+    static void setAppName(String name) {
+        try {
+            Class<?> cDdmHandleAppName = Class.forName("android.ddm.DdmHandleAppName");
+            Method m = cDdmHandleAppName.getDeclaredMethod("setAppName", String.class, int.class);
+            m.invoke(null, name, 0);
+        } catch (Exception e) {
+            Logger.ex(e);
+        }
+    }
+
     /**
      * Internal class to retrieve an interface from a Binder (Proxy)
      *
diff --git a/librootjava/src/main/java/eu/chainfire/librootjava/RootJava.java b/librootjava/src/main/java/eu/chainfire/librootjava/RootJava.java
@@ -52,6 +52,7 @@
  * @see #getSystemContext()
  * @see #getPackageContext(String)
  * @see #getLibraryPath(Context, String)
+ * @see Debugger#setEnabled(boolean)
  */
 @SuppressWarnings({"unused", "WeakerAccess", "Convert2Diamond"})
 public class RootJava {
@@ -182,10 +183,15 @@ public static String getLaunchString(String packageCodePath, String clazz, Strin
         if (niceName != null) {
             extraParams += " --nice-name=" + niceName;
         }
-        //TODO debugging; the next line is successful in creating a jdwp server on Pie, and it's listed in 'adb jdwp', but connecting to it seemingly does nothing
-        //vmParams += " -XjdwpProvider:adbconnection -XjdwpOptions:transport=dt_android_adb,suspend=n,server=y";
-        //vmParams += " -agentlib:jdwp=transport=dt_android_adb,suspend=n,server=y";
-        // android.os.Debug.waitForDebugger(); can be used in root's Main
+        if (Debugger.enabled) { // we don't use isEnabled() because that has a different meaning when called as root, and though rare we might call this method from root too
+            vmParams += " -Xcompiler-option --debuggable";
+            if (Build.VERSION.SDK_INT >= 28) {
+                // Android 9.0 Pie changed things up a bit
+                vmParams += " -XjdwpProvider:internal -XjdwpOptions:transport=dt_android_adb,suspend=n,server=y";
+            } else {
+                vmParams += " -agentlib:jdwp=transport=dt_android_adb,suspend=n,server=y";
+            }
+        }
         String ret = String.format("NO_ADDR_COMPAT_LAYOUT_FIXUP=1 %sCLASSPATH=%s %s%s /system/bin%s %s", prefix.toString(), packageCodePath, app_process, vmParams, extraParams, clazz);
         if (params != null) {
             StringBuilder full = new StringBuilder(ret);
diff --git a/librootjava_example/build.gradle b/librootjava_example/build.gradle
@@ -35,8 +35,8 @@ dependencies {
     //implementation project(':librootjava')
 
     /* Use local Maven repository version, installed by installMavenLocal Gradle task */
-    //implementation('eu.chainfire:librootjava:1.0.0-SNAPSHOT') { changing = true }
+    //implementation('eu.chainfire:librootjava:1.1.0-SNAPSHOT') { changing = true }
 
     /* Use bintray/jcenter version */
-    implementation 'eu.chainfire:librootjava:1.0.0'
+    implementation 'eu.chainfire:librootjava:1.1.0'
 }
diff --git a/librootjavadaemon/README.md b/librootjavadaemon/README.md
@@ -140,7 +140,7 @@ on the Android site.
 ## Gradle
 
 ```
-implementation 'eu.chainfire:librootjavadaemon:1.0.0'
+implementation 'eu.chainfire:librootjavadaemon:1.1.0'
 ```
 
 You should update to the latest libRootJava and libRootJavaDaemon at the
diff --git a/librootjavadaemon/build.gradle b/librootjavadaemon/build.gradle
diff --git a/librootjavadaemon_example/build.gradle b/librootjavadaemon_example/build.gradle

Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,7 @@ ext {`
`51`	`51`	`gitUrl = 'https://github.com/Chainfire/librootjava.git'`
`52`	`52`	`issueTrackerUrl = 'https://github.com/Chainfire/librootjava/issues'`
`53`	`53`
`54`		`- libraryVersion = '1.0.0'`
	`54`	`+ libraryVersion = '1.1.0'`
`55`	`55`
`56`	`56`	`developerId = 'Chainfire'`
`57`	`57`	`developerName = 'Jorrit Jongma'`
`@@ -72,7 +72,7 @@ task installMavenLocal(type: Upload) {`
`72`	`72`	`packaging 'aar'`
`73`	`73`	`groupId = publishedGroupId`
`74`	`74`	`artifactId = artifact`
`75`		`- version = '1.0.0-SNAPSHOT'`
	`75`	`+ version = libraryVersion + '-SNAPSHOT'`
`76`	`76`	`}`
`77`	`77`	`}`
`78`	`78`	`}`
Original file line number	Diff line number	Diff line change
`@@ -35,8 +35,8 @@ dependencies {`
`35`	`35`	`//implementation project(':librootjava')`
`36`	`36`
`37`	`37`	`/* Use local Maven repository version, installed by installMavenLocal Gradle task */`
`38`		`- //implementation('eu.chainfire:librootjava:1.0.0-SNAPSHOT') { changing = true }`
	`38`	`+ //implementation('eu.chainfire:librootjava:1.1.0-SNAPSHOT') { changing = true }`
`39`	`39`
`40`	`40`	`/* Use bintray/jcenter version */`
`41`		`- implementation 'eu.chainfire:librootjava:1.0.0'`
	`41`	`+ implementation 'eu.chainfire:librootjava:1.1.0'`
`42`	`42`	`}`