Skip to content

fix(tracer): exec-check ptrace binary, not just file existence (P0-3)#86

Open
christophergeyer wants to merge 1 commit intocg/preload-event-cleanupfrom
cg/tracer-check-exec
Open

fix(tracer): exec-check ptrace binary, not just file existence (P0-3)#86
christophergeyer wants to merge 1 commit intocg/preload-event-cleanupfrom
cg/tracer-check-exec

Conversation

@christophergeyer
Copy link
Copy Markdown
Member

@christophergeyer christophergeyer commented May 9, 2026

Summary

The ptrace tracer was treated as "available" anywhere a path-existence check returned True, even when the binary was a wrong-arch ELF that produced ENOEXEC at exec time. P0-3 reproduction on Mac (and reproducible on this aarch64 box by replacing the binary with non-ELF content):

$ roar tracer status
  ptrace:  /home/.../roar-tracer        # ← claimed available, no exec check
$ roar run python script.py
[Errno 8] Exec format error             # ← actually running it crashes

roar tracer check --backend ptrace and --backend auto were already exec-based (they go through the binary's --preflight --json and catch OSError(ENOEXEC)). The bug surfaced in three other places that all reduced ptrace's readiness to file-existence:

  1. roar tracer status — printed ptrace: <path> with no readiness check, while ebpf/preload showed their ready state
  2. Runtime auto-selection (_resolve_backend_candidate) — only called _find_ptrace_tracer, returned the candidate without exec-checking
  3. _backend_ready_non_auto — same existence-only shortcut

Fix

Add ptrace_readiness(path) mirroring preload_readiness: exec the binary's --preflight --json once (cached via @cache), parse the JSON, surface either the binary's own failure summary or the OS error. Wire into all three call sites.

After-fix output (with broken ptrace binary)

$ roar tracer status
  ptrace:  /home/.../roar-tracer (ptrace tracer failed to exec: [Errno 8] Exec format error: '...')
  ebpf:    ...
  preload: ... (ready; ...)

$ roar tracer check --backend auto
Tracer check passed for 'auto': selected backend 'preload'   # ← falls through correctly

Test plan

  • New tracer_backends unit tests: ptrace_is_ready happy path; ENOEXEC catch; binary-reports-its-own-failure path; auto-mode skips an unready ptrace and falls through
  • New tracer_selection unit test: auto must skip ptrace when its readiness check fails (regression for the existence-only bug)
  • Existing test_auto_skips_unready_ebpf_and_selects_ptrace updated to mock _ptrace_is_ready (the gate it didn't have before)
  • pytest integration: 96 passed, 2 skipped, 0 failed
  • pytest unit + happy_path: 1387 passed, 3 skipped, 0 failed
  • ruff check / ruff format --check / mypy roar: clean
  • Manual reproduction: replaced the ptrace binary with a non-ELF text file, confirmed all three commands now report the failure and --backend auto correctly falls through to preload

Stacks on #85.

🤖 Generated with Claude Code

@christophergeyer christophergeyer mentioned this pull request May 9, 2026
Open
5 tasks
@chrisgeyertreqs @claude
fix(tracer): exec-check ptrace binary, not just file existence (P0-3)
feefb7e 
The ptrace tracer was treated as "available" anywhere a path-existence
check returned True, even when the binary was a wrong-arch ELF that
produced ENOEXEC at exec time. The eval team's P0-3 reproducer (an
x86_64 ptrace tracer in an aarch64 wheel) confirmed this on Mac too:
`roar tracer status` listed ptrace as ready, runtime auto-selection
picked it, then the actual run failed with "Exec format error" while
roar had already committed to ptrace as the chosen backend.

`roar tracer check --backend ptrace` and `--backend auto` were already
exec-based — they call the binary's `--preflight --json` mode and
catch OSError(ENOEXEC). The bug was elsewhere:

  1. `roar tracer status` printed `ptrace: <path>` with no readiness
     check, while ebpf and preload showed their ready state.
  2. Runtime auto-selection in `_resolve_backend_candidate` only
     called `_find_ptrace_tracer` (file-exists), then returned the
     candidate without exec-checking — inconsistent with the ebpf
     and preload branches which both gate on `*_is_ready`.
  3. `_backend_ready_non_auto` had the same existence-only shortcut.

Fix: add `ptrace_readiness(path)` mirroring `preload_readiness` —
exec the binary's `--preflight --json` once (cached via `@cache`),
parse the JSON, surface either the binary's own summary or the OS
error. Wire it into `_resolve_backend_candidate`, `_backend_ready_non_auto`,
and `_print_status` so all three call sites consistently exec the
binary before declaring it usable.

Tests:
  - tracer_backends: ptrace_is_ready happy path, ENOEXEC catch, and
    binary-reports-its-own-failure path; auto-mode skips an unready
    ptrace and falls through to "no usable tracer found"
  - tracer_selection: existing auto-skips-ebpf-and-picks-ptrace test
    now mocks _ptrace_is_ready as ready (the gate it didn't have
    before); new test pins the regression — auto must skip ptrace
    when its readiness check fails

Verification:
  - pytest integration: 96 passed
  - pytest unit: 1387 passed (was 1382 + 5 new)
  - ruff check + format / mypy: clean

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@christophergeyer christophergeyer force-pushed the cg/preload-event-cleanup branch from 66e45c9 to 0e673ef Compare May 9, 2026 20:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@christophergeyer @chrisgeyertreqs