scudo/standalone/fuchsia.cpp

353944Sdim//===-- fuchsia.cpp ---------------------------------------------*- C++ -*-===//
353944Sdim//
353944Sdim// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
353944Sdim// See https://llvm.org/LICENSE.txt for license information.
353944Sdim// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
353944Sdim//
353944Sdim//===----------------------------------------------------------------------===//
353944Sdim
353944Sdim#include "platform.h"
353944Sdim
353944Sdim#if SCUDO_FUCHSIA
353944Sdim
353944Sdim#include "common.h"
353944Sdim#include "mutex.h"
353944Sdim#include "string_utils.h"
353944Sdim
353944Sdim#include <lib/sync/mutex.h> // for sync_mutex_t
353944Sdim#include <limits.h>         // for PAGE_SIZE
353944Sdim#include <stdlib.h>         // for getenv()
353944Sdim#include <zircon/compiler.h>
353944Sdim#include <zircon/sanitizer.h>
353944Sdim#include <zircon/syscalls.h>
353944Sdim
353944Sdimnamespace scudo {
353944Sdim
353944Sdimuptr getPageSize() { return PAGE_SIZE; }
353944Sdim
353944Sdimvoid NORETURN die() { __builtin_trap(); }
353944Sdim
353944Sdim// We zero-initialize the Extra parameter of map(), make sure this is consistent
353944Sdim// with ZX_HANDLE_INVALID.
357095Sdimstatic_assert(ZX_HANDLE_INVALID == 0, "");
353944Sdim
353944Sdimstatic void *allocateVmar(uptr Size, MapPlatformData *Data, bool AllowNoMem) {
353944Sdim  // Only scenario so far.
353944Sdim  DCHECK(Data);
353944Sdim  DCHECK_EQ(Data->Vmar, ZX_HANDLE_INVALID);
353944Sdim
353944Sdim  const zx_status_t Status = _zx_vmar_allocate(
353944Sdim      _zx_vmar_root_self(),
353944Sdim      ZX_VM_CAN_MAP_READ | ZX_VM_CAN_MAP_WRITE | ZX_VM_CAN_MAP_SPECIFIC, 0,
353944Sdim      Size, &Data->Vmar, &Data->VmarBase);
353944Sdim  if (UNLIKELY(Status != ZX_OK)) {
353944Sdim    if (Status != ZX_ERR_NO_MEMORY || !AllowNoMem)
353944Sdim      dieOnMapUnmapError(Status == ZX_ERR_NO_MEMORY);
353944Sdim    return nullptr;
353944Sdim  }
353944Sdim  return reinterpret_cast<void *>(Data->VmarBase);
353944Sdim}
353944Sdim
353944Sdimvoid *map(void *Addr, uptr Size, const char *Name, uptr Flags,
353944Sdim          MapPlatformData *Data) {
353944Sdim  DCHECK_EQ(Size % PAGE_SIZE, 0);
353944Sdim  const bool AllowNoMem = !!(Flags & MAP_ALLOWNOMEM);
353944Sdim
353944Sdim  // For MAP_NOACCESS, just allocate a Vmar and return.
353944Sdim  if (Flags & MAP_NOACCESS)
353944Sdim    return allocateVmar(Size, Data, AllowNoMem);
353944Sdim
353944Sdim  const zx_handle_t Vmar = Data ? Data->Vmar : _zx_vmar_root_self();
353944Sdim  CHECK_NE(Vmar, ZX_HANDLE_INVALID);
353944Sdim
353944Sdim  zx_status_t Status;
353944Sdim  zx_handle_t Vmo;
353944Sdim  uint64_t VmoSize = 0;
353944Sdim  if (Data && Data->Vmo != ZX_HANDLE_INVALID) {
353944Sdim    // If a Vmo was specified, it's a resize operation.
353944Sdim    CHECK(Addr);
353944Sdim    DCHECK(Flags & MAP_RESIZABLE);
353944Sdim    Vmo = Data->Vmo;
353944Sdim    VmoSize = Data->VmoSize;
353944Sdim    Status = _zx_vmo_set_size(Vmo, VmoSize + Size);
353944Sdim    if (Status != ZX_OK) {
353944Sdim      if (Status != ZX_ERR_NO_MEMORY || !AllowNoMem)
353944Sdim        dieOnMapUnmapError(Status == ZX_ERR_NO_MEMORY);
353944Sdim      return nullptr;
353944Sdim    }
353944Sdim  } else {
353944Sdim    // Otherwise, create a Vmo and set its name.
353944Sdim    Status = _zx_vmo_create(Size, ZX_VMO_RESIZABLE, &Vmo);
353944Sdim    if (UNLIKELY(Status != ZX_OK)) {
353944Sdim      if (Status != ZX_ERR_NO_MEMORY || !AllowNoMem)
353944Sdim        dieOnMapUnmapError(Status == ZX_ERR_NO_MEMORY);
353944Sdim      return nullptr;
353944Sdim    }
353944Sdim    _zx_object_set_property(Vmo, ZX_PROP_NAME, Name, strlen(Name));
353944Sdim  }
353944Sdim
353944Sdim  uintptr_t P;
353944Sdim  zx_vm_option_t MapFlags =
353944Sdim      ZX_VM_PERM_READ | ZX_VM_PERM_WRITE | ZX_VM_ALLOW_FAULTS;
353944Sdim  const uint64_t Offset =
353944Sdim      Addr ? reinterpret_cast<uintptr_t>(Addr) - Data->VmarBase : 0;
353944Sdim  if (Offset)
353944Sdim    MapFlags |= ZX_VM_SPECIFIC;
353944Sdim  Status = _zx_vmar_map(Vmar, MapFlags, Offset, Vmo, VmoSize, Size, &P);
353944Sdim  // No need to track the Vmo if we don't intend on resizing it. Close it.
353944Sdim  if (Flags & MAP_RESIZABLE) {
353944Sdim    DCHECK(Data);
353944Sdim    DCHECK_EQ(Data->Vmo, ZX_HANDLE_INVALID);
353944Sdim    Data->Vmo = Vmo;
353944Sdim  } else {
353944Sdim    CHECK_EQ(_zx_handle_close(Vmo), ZX_OK);
353944Sdim  }
353944Sdim  if (UNLIKELY(Status != ZX_OK)) {
353944Sdim    if (Status != ZX_ERR_NO_MEMORY || !AllowNoMem)
353944Sdim      dieOnMapUnmapError(Status == ZX_ERR_NO_MEMORY);
353944Sdim    return nullptr;
353944Sdim  }
353944Sdim  if (Data)
353944Sdim    Data->VmoSize += Size;
353944Sdim
353944Sdim  return reinterpret_cast<void *>(P);
353944Sdim}
353944Sdim
353944Sdimvoid unmap(void *Addr, uptr Size, uptr Flags, MapPlatformData *Data) {
353944Sdim  if (Flags & UNMAP_ALL) {
353944Sdim    DCHECK_NE(Data, nullptr);
353944Sdim    const zx_handle_t Vmar = Data->Vmar;
353944Sdim    DCHECK_NE(Vmar, _zx_vmar_root_self());
353944Sdim    // Destroying the vmar effectively unmaps the whole mapping.
353944Sdim    CHECK_EQ(_zx_vmar_destroy(Vmar), ZX_OK);
353944Sdim    CHECK_EQ(_zx_handle_close(Vmar), ZX_OK);
353944Sdim  } else {
353944Sdim    const zx_handle_t Vmar = Data ? Data->Vmar : _zx_vmar_root_self();
353944Sdim    const zx_status_t Status =
353944Sdim        _zx_vmar_unmap(Vmar, reinterpret_cast<uintptr_t>(Addr), Size);
353944Sdim    if (UNLIKELY(Status != ZX_OK))
353944Sdim      dieOnMapUnmapError();
353944Sdim  }
353944Sdim  if (Data) {
353944Sdim    if (Data->Vmo != ZX_HANDLE_INVALID)
353944Sdim      CHECK_EQ(_zx_handle_close(Data->Vmo), ZX_OK);
353944Sdim    memset(Data, 0, sizeof(*Data));
353944Sdim  }
353944Sdim}
353944Sdim
353944Sdimvoid releasePagesToOS(UNUSED uptr BaseAddress, uptr Offset, uptr Size,
353944Sdim                      MapPlatformData *Data) {
353944Sdim  DCHECK(Data);
353944Sdim  DCHECK_NE(Data->Vmar, ZX_HANDLE_INVALID);
353944Sdim  DCHECK_NE(Data->Vmo, ZX_HANDLE_INVALID);
353944Sdim  const zx_status_t Status =
353944Sdim      _zx_vmo_op_range(Data->Vmo, ZX_VMO_OP_DECOMMIT, Offset, Size, NULL, 0);
353944Sdim  CHECK_EQ(Status, ZX_OK);
353944Sdim}
353944Sdim
353944Sdimconst char *getEnv(const char *Name) { return getenv(Name); }
353944Sdim
353944Sdim// Note: we need to flag these methods with __TA_NO_THREAD_SAFETY_ANALYSIS
353944Sdim// because the Fuchsia implementation of sync_mutex_t has clang thread safety
353944Sdim// annotations. Were we to apply proper capability annotations to the top level
353944Sdim// HybridMutex class itself, they would not be needed. As it stands, the
353944Sdim// thread analysis thinks that we are locking the mutex and accidentally leaving
353944Sdim// it locked on the way out.
353944Sdimbool HybridMutex::tryLock() __TA_NO_THREAD_SAFETY_ANALYSIS {
353944Sdim  // Size and alignment must be compatible between both types.
353944Sdim  return sync_mutex_trylock(&M) == ZX_OK;
353944Sdim}
353944Sdim
353944Sdimvoid HybridMutex::lockSlow() __TA_NO_THREAD_SAFETY_ANALYSIS {
353944Sdim  sync_mutex_lock(&M);
353944Sdim}
353944Sdim
353944Sdimvoid HybridMutex::unlock() __TA_NO_THREAD_SAFETY_ANALYSIS {
353944Sdim  sync_mutex_unlock(&M);
353944Sdim}
353944Sdim
353944Sdimu64 getMonotonicTime() { return _zx_clock_get_monotonic(); }
353944Sdim
353944Sdimu32 getNumberOfCPUs() { return _zx_system_get_num_cpus(); }
353944Sdim
353944Sdimbool getRandom(void *Buffer, uptr Length, UNUSED bool Blocking) {
357095Sdim  static_assert(MaxRandomLength <= ZX_CPRNG_DRAW_MAX_LEN, "");
353944Sdim  if (UNLIKELY(!Buffer || !Length || Length > MaxRandomLength))
353944Sdim    return false;
353944Sdim  _zx_cprng_draw(Buffer, Length);
353944Sdim  return true;
353944Sdim}
353944Sdim
353944Sdimvoid outputRaw(const char *Buffer) {
353944Sdim  __sanitizer_log_write(Buffer, strlen(Buffer));
353944Sdim}
353944Sdim
353944Sdimvoid setAbortMessage(const char *Message) {}
353944Sdim
353944Sdim} // namespace scudo
353944Sdim
353944Sdim#endif // SCUDO_FUCHSIA