Improve error handling for checkpoint and restore

adrianM27 · meecash · commit f46af4008d19 · 2025-07-28T12:08:48.000+02:00
* Log what failed and for which VM
  * Kill PID on error
  * Verify restored VM size
diff --git a/compress.c b/compress.c
@@ -65,20 +65,26 @@ static int lz4_write(const char *src, const size_t len, int (*_write)(int fd, co
 	dbg("%s(%p, %zu, %p, %d)\n", __func__, src, len, _write, fd);
 
 	ret = LZ4_compress_default(src, dst, len, MAX_DATA_SIZE_LZ4);
-	if (ret <= 0)
+	if (ret <= 0) {
+		err("%s() compression error: %d\n", __func__, ret);
 		return -1;
+	}
 
 	dst_len = ret;
 
 	dbg("%s() compressed %zu -> %d bytes\n", __func__, len, dst_len);
 
 	ret = _write(fd, &dst_len, sizeof(dst_len));
-	if (ret != sizeof(dst_len))
+	if (ret != sizeof(dst_len)) {
+		err("%s() write dst_len failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	ret = _write(fd, dst, dst_len);
-	if (ret != dst_len)
+	if (ret != dst_len) {
+		err("%s() write compressed data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	return len;
 }
@@ -92,19 +98,27 @@ static int lz4_read(char *dst, const size_t len, int (*_read)(int fd, void *buf,
 	dbg("%s(%p, %zu, %p, %d)\n", __func__, dst, len, _read, fd);
 
 	ret = _read(fd, &src_len, sizeof(src_len));
-	if (ret != sizeof(src_len))
+	if (ret != sizeof(src_len)) {
+		err("%s() read src_len failed: %d\n", __func__, ret);
 		return -1;
+	}
 
-	if (src_len > sizeof(src))
+	if (src_len > sizeof(src)) {
+		err("%s() src_len %u exceeds buffer size %zu\n", __func__, src_len, sizeof(src));
 		return -1;
+	}
 
 	ret = _read(fd, src, src_len);
-	if (ret != src_len)
+	if (ret != src_len) {
+		err("%s() read compressed data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	ret = LZ4_decompress_safe(src, dst, src_len, len);
-	if (ret <= 0)
+	if (ret <= 0) {
+		err("%s() decompression error: %d\n", __func__, ret);
 		return -1;
+	}
 
 	return len;
 }
@@ -122,7 +136,7 @@ static int zstd_write(const char *src, const size_t len, int (*_write)(int fd, c
 
 	size = ZSTD_compress(dst, MAX_DATA_SIZE_ZSTD, src, len, ZSTD_LEVEL);
 	if (ZSTD_isError(size)) {
-		fprintf(stderr, "compression error: %s\n", ZSTD_getErrorName(size));
+		err("%s() compression error: %s\n", __func__, ZSTD_getErrorName(size));
 		return -1;
 	}
 
@@ -131,12 +145,16 @@ static int zstd_write(const char *src, const size_t len, int (*_write)(int fd, c
 	dbg("%s() compressed %zu -> %d bytes\n", __func__, len, dst_len);
 
 	ret = _write(fd, &dst_len, sizeof(dst_len));
-	if (ret != sizeof(dst_len))
+	if (ret != sizeof(dst_len)) {
+		err("%s() write dst_len failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	ret = _write(fd, dst, dst_len);
-	if (ret != dst_len)
+	if (ret != dst_len) {
+		err("%s() write compressed data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	return len;
 }
@@ -151,19 +169,25 @@ static int zstd_read(char *dst, const size_t len, int (*_read)(int fd, void *buf
 	dbg("%s(%p, %zu, %p, %d)\n", __func__, dst, len, _read, fd);
 
 	ret = _read(fd, &src_len, sizeof(src_len));
-	if (ret != sizeof(src_len))
+	if (ret != sizeof(src_len)) {
+		err("%s() read src_len failed: %d\n", __func__, ret);
 		return -1;
+	}
 
-	if (src_len > sizeof(src))
+	if (src_len > sizeof(src)) {
+		err("%s() src_len %u exceeds buffer size %zu\n", __func__, src_len, sizeof(src));
 		return -1;
+	}
 
 	ret = _read(fd, src, src_len);
-	if (ret != src_len)
+	if (ret != src_len) {
+		err("%s() read compressed data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	size = ZSTD_decompress(dst, len, src, src_len);
 	if (ZSTD_isError(size)) {
-		fprintf(stderr, "decompression error: %s\n", ZSTD_getErrorName(size));
+		err("decompression error: %s\n", ZSTD_getErrorName(size));
 		return -1;
 	}
 
@@ -178,8 +202,10 @@ static int plain_write(const char *src, const size_t len, int (*_write)(int fd,
 	dbg("%s(%p, %zu, %p, %d)\n", __func__, src, len, _write, fd);
 
 	ret = _write(fd, src, len);
-	if (ret != len)
+	if (ret != len) {
+		err("%s() write data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	return len;
 }
@@ -191,8 +217,10 @@ static int plain_read(char *dst, const size_t len, int (*_read)(int fd, void *bu
 	dbg("%s(%p, %zu, %p, %d)\n", __func__, dst, len, _read, fd);
 
 	ret = _read(fd, dst, len);
-	if (ret != len)
+	if (ret != len) {
+		err("%s() read data failed: %d\n", __func__, ret);
 		return -1;
+	}
 
 	return ret;
 }
diff --git a/memcr.c b/memcr.c
@@ -174,6 +174,8 @@ static struct {
 	.cond = PTHREAD_COND_INITIALIZER,
 };
 
+static size_t dumped_vm_size;
+
 /*
  * man sigaction: For a ptrace(2) event, si_code will contain SIG‐TRAP and have the ptrace event in the high byte:
  * (SIGTRAP | PTRACE_EVENT_foo << 8).
@@ -1029,13 +1031,31 @@ static int read_vm_region(int fd, struct vm_region *vmr, char *buf)
 	int ret;
 
 	ret = dump_read(fd, vmr, sizeof(struct vm_region));
-	if (ret != sizeof(struct vm_region))
+	if (ret != sizeof(struct vm_region)) {
+		if (ret < 0)
+			fprintf(stderr, "[-] dump_read() failed: %d\n", ret);
+		else if (ret > 0)
+			fprintf(stderr, "[-] dump_read() returned %d bytes, expected %zu\n", ret, sizeof(struct vm_region));
+		/* ret == 0 : EOF */
 		return ret;
+	}
+
+	if (vmr->len > dumped_vm_size) {
+		fprintf(stderr, "[-] read_vm_region() VM region %lx len %ld exceeds dumped size %zu\n", vmr->addr, vmr->len, dumped_vm_size);
+		return -1;
+	}
+
+	dumped_vm_size -= vmr->len;
 
 	if (!vm_region_valid(vmr))
 		return -1;
 
 	ret = compress_read(buf, vmr->len, dump_read, fd);
+	if (ret < 0) {
+		fprintf(stderr, "[-] compress_read() failed: %d for VM region %lx len %ld\n", ret, vmr->addr, vmr->len);
+		return ret;
+	}
+
 #ifdef CHECKSUM_MD5
 	if (checksum && ret > 0) {
 		md5_update(&md5_restore_ctx, vmr, sizeof(struct vm_region));
@@ -1053,10 +1073,22 @@ static int write_vm_region(int fd, const struct vm_region *vmr, const void *buf)
 		return -1;
 
 	ret = dump_write(fd, vmr, sizeof(struct vm_region));
-	if (ret != sizeof(struct vm_region))
+	if (ret != sizeof(struct vm_region)) {
+		if (ret < 0)
+			fprintf(stderr, "[-] dump_write() failed: %d\n", ret);
+		else if (ret >= 0)
+			fprintf(stderr, "[-] dump_write() returned %d bytes, expected %zu\n", ret, sizeof(struct vm_region));
 		return -1;
+	}
 
 	ret = compress_write(buf, vmr->len, dump_write, fd);
+	if (ret < 0) {
+		fprintf(stderr, "[-] compress_write() failed: %d for VM region %lx len %ld\n", ret, vmr->addr, vmr->len);
+		return ret;
+	}
+
+	dumped_vm_size += vmr->len;
+
 #ifdef CHECKSUM_MD5
 	if (checksum && ret > 0) {
 		md5_update(&md5_checkpoint_ctx, vmr, sizeof(struct vm_region));
@@ -1850,6 +1882,7 @@ static int cmd_checkpoint(pid_t pid)
 static int cmd_restore(pid_t pid)
 {
 	struct timespec ts;
+	int ret = 1;
 
 	if (!parasite_status_ok()) {
 		return 1;
@@ -1862,9 +1895,14 @@ static int cmd_restore(pid_t pid)
 
 	fprintf(stdout, "[+] uploading pages\n");
 	clock_gettime(CLOCK_MONOTONIC, &ts);
-	target_set_pages(pid);
+	ret = target_set_pages(pid);
 	fprintf(stdout, "[i] upload took %lu ms\n", diff_ms(&ts));
 
+	if (ret) {
+		fprintf(stderr, "target_set_pages() failed\n");
+		return ret;
+	}
+
 #ifdef CHECKSUM_MD5
 	if (checksum) {
 		md5_final(md5_restore_digest, &md5_restore_digest_len, &md5_restore_ctx);
@@ -1886,10 +1924,7 @@ static int cmd_restore(pid_t pid)
 			|| (md5_restore_digest_len == 0)
 			|| (md5_checkpoint_digest_len != md5_restore_digest_len)
 			|| (memcmp(md5_checkpoint_digest, md5_restore_digest, md5_restore_digest_len) != 0) ) {
-			printf("[-] dump checksum do not match!\n");
-
-			fprintf(stderr, "[%d] Restore failed! Killing the target app...\n", getpid());
-			kill(pid, SIGKILL);
+			fprintf(stderr, "[-] Checksum mismatch! Checkpoint and restore digests differ!\n");
 			return 1;
 		}
 	}
@@ -2256,8 +2291,13 @@ static int execute_parasite_restore(pid_t pid)
 {
 	unsigned long ret;
 	int status;
+	int err;
 
-	cmd_restore(pid);
+	err = cmd_restore(pid);
+	if (err) {
+		fprintf(stderr, "[-] cmd_restore() failed: %d\n", err);
+		return err;
+	}
 
 	parasite_status_wait(&status);
 
@@ -2457,11 +2497,13 @@ static int checkpoint_worker(pid_t pid)
 
 	ret = seize_target(pid);
 	if (ret)
-		return ret;
+		goto out;
 
 	ret = execute_parasite_checkpoint(pid);
+
+out:
 	if (ret) {
-		fprintf(stderr, "[%d] Parasite checkpoint failed! Killing the target app...\n", getpid());
+		fprintf(stderr, "[%d] %s() Checkpoint failed! Killing the target PID %d...\n", getpid(), __func__, pid);
 		kill(pid, SIGKILL);
 		cleanup_pid(pid);
 		return ret;
@@ -2480,13 +2522,19 @@ static int restore_worker(int rd)
 
 	if (ret < 0 || MEMCR_RESTORE != post_checkpoint_cmd.cmd) {
 		fprintf(stdout, "[%d] Error reading restore command!\n", getpid());
-		return -1;
+		goto out;
 	}
 
 	fprintf(stdout, "[%d] Worker received RESTORE command for %d.\n", getpid(), post_checkpoint_cmd.pid);
 
 	signal(SIGCHLD, SIG_DFL);
 	ret = execute_parasite_restore(post_checkpoint_cmd.pid);
+
+out:
+	if (ret) {
+		fprintf(stderr, "[%d] %s() Restore failed! Killing the target PID %d...\n", getpid(), __func__, post_checkpoint_cmd.pid);
+		kill(post_checkpoint_cmd.pid, SIGKILL);
+	}
 	unseize_target();
 	cleanup_pid(post_checkpoint_cmd.pid);
 
@@ -2884,8 +2932,10 @@ static int user_interactive_mode(pid_t pid)
 		return ret;
 
 	ret = execute_parasite_checkpoint(pid);
-	if (ret)
+	if (ret) {
+		fprintf(stderr, "[!] Parasite checkpoint failed: %d!\n", ret);
 		goto out;
+	}
 
 	if (!no_wait && !interrupted) {
 		long dms;
@@ -2906,8 +2956,17 @@ static int user_interactive_mode(pid_t pid)
 	}
 
 	ret = execute_parasite_restore(pid);
+	if (ret) {
+		fprintf(stderr, "[!] Parasite restore failed: %d!\n", ret);
+		goto out;
+	}
 
 out:
+	if (ret) {
+		fprintf(stderr, "[!] Killing the target PID %d...\n", pid);
+		kill(pid, SIGKILL);
+	}
+
 	unseize_target();
 	cleanup_pid(pid);
 
