| blob | 59e547380e54dcb3cd1941ce3389f267f9838bc1 |
1 /*
2 * the Win32 incarnation of OS-dependent routines. See also
3 * $(sbcl_arch)-win32-os.c
4 *
5 * This file (along with os.h) exports an OS-independent interface to
6 * the operating system VM facilities. Surprise surprise, this
7 * interface looks a lot like the Mach interface (but simpler in some
8 * places). For some operating systems, a subset of these functions
9 * will have to be emulated.
10 */
12 /*
13 * This software is part of the SBCL system. See the README file for
14 * more information.
15 *
16 * This software is derived from the CMU CL system, which was
17 * written at Carnegie Mellon University and released into the
18 * public domain. The software is in the public domain and is
19 * provided with absolutely no warranty. See the COPYING and CREDITS
20 * files for more information.
21 */
23 /*
24 * This file was copied from the Linux version of the same, and
25 * likely still has some linuxisms in it have haven't been elimiated
26 * yet.
27 */
29 #include <malloc.h>
30 #include <stdio.h>
31 #include <stdlib.h>
32 #include <sys/param.h>
33 #include <sys/file.h>
34 #include <io.h>
48 #include <sys/types.h>
49 #include <sys/time.h>
50 #include <sys/stat.h>
51 #include <unistd.h>
53 #include <math.h>
54 #include <float.h>
56 #include <excpt.h>
62 #ifndef LISP_FEATURE_SB_THREAD
63 /* dummy definition to reduce ifdef clutter */
64 #define WITH_GC_AT_SAFEPOINTS_ONLY() if (0) ; else
65 #endif
67 os_vm_size_t os_vm_page_size;
71 #include <winsock2.h>
73 #if 0
76 #endif
78 #include <stdarg.h>
79 #include <string.h>
81 /* missing definitions for modern mingws */
82 #ifndef EH_UNWINDING
83 #define EH_UNWINDING 0x02
84 #endif
85 #ifndef EH_EXIT_UNWIND
86 #define EH_EXIT_UNWIND 0x04
87 #endif
89 /* Tired of writing arch_os_get_current_thread each time. */
90 #define this_thread (arch_os_get_current_thread())
92 /* wrappers for winapi calls that must be successful (like SBCL's
93 * (aver ...) form). */
95 /* win_aver function: basic building block for miscellaneous
96 * ..AVER.. macrology (below) */
98 /* To do: These routines used to be "customizable" with dyndebug_init()
99 * and variables like dyndebug_survive_aver, dyndebug_skip_averlax based
100 * on environment variables. Those features got lost on the way, but
101 * ought to be reintroduced. */
106 {
116 " (in thread %p)"
122 allocated =
124 FORMAT_MESSAGE_FROM_SYSTEM,
125 NULL,
126 errorCode,
130 NULL);
136 this_thread,
143 this_thread,
146 }
149 }
151 }
153 /* sys_aver function: really tiny adaptor of win_aver for
154 * "POSIX-parody" CRT results ("lowio" and similar stuff):
155 * negative number means something... negative. */
159 {
162 }
164 /* Check for (call) result being boolean true. (call) may be arbitrary
165 * expression now; massive attack of gccisms ensures transparent type
166 * conversion back and forth, so the type of AVER(expression) is the
167 * type of expression. Value is the same _if_ it can be losslessly
168 * converted to (void*) and back.
169 *
170 * Failed AVER() is normally fatal. Well, unless dyndebug_survive_aver
171 * flag is set. */
173 #define AVER(call) \
174 ({ __typeof__(call) __attribute__((unused)) me = \
175 (__typeof__(call)) \
176 win_aver((intptr_t)(call), #call, __FILE__, __LINE__, 0); \
177 me;})
179 /* AVERLAX(call): do the same check as AVER did, but be mild on
180 * failure: print an annoying unrequested message to stderr, and
181 * continue. With dyndebug_skip_averlax flag, AVERLAX stop even to
182 * check and complain. */
184 #define AVERLAX(call) \
185 ({ __typeof__(call) __attribute__((unused)) me = \
186 (__typeof__(call)) \
187 win_aver((intptr_t)(call), #call, __FILE__, __LINE__, 1); \
188 me;})
190 /* Now, when failed AVER... prints both errno and GetLastError(), two
191 * variants of "POSIX/lowio" style checks below are almost useless
192 * (they build on sys_aver like the two above do on win_aver). */
194 #define CRT_AVER_NONNEGATIVE(call) \
195 ({ __typeof__(call) __attribute__((unused)) me = \
196 (__typeof__(call)) \
197 sys_aver((call), #call, __FILE__, __LINE__, 0); \
198 me;})
200 #define CRT_AVERLAX_NONNEGATIVE(call) \
201 ({ __typeof__(call) __attribute__((unused)) me = \
202 (__typeof__(call)) \
203 sys_aver((call), #call, __FILE__, __LINE__, 1); \
204 me;})
206 /* to be removed */
207 #define CRT_AVER(booly) \
208 ({ __typeof__(booly) __attribute__((unused)) me = (booly); \
209 sys_aver((booly)?0:-1, #booly, __FILE__, __LINE__, 0); \
210 me;})
214 /*
215 * The following signal-mask-related alien routines are called from Lisp:
216 */
218 /* As of win32, deferrables _do_ matter. gc_signal doesn't. */
220 {
221 sigset_t sset;
224 }
226 #if defined(LISP_FEATURE_SB_THREAD)
228 {
231 }
232 #endif
234 /* The exception handling function looks like this: */
237 CONTEXT *,
239 /* handle_exception is defined further in this file, but since SBCL
240 * 1.0.1.24, it doesn't get registered as SEH handler directly anymore,
241 * not even by wos_install_interrupt_handlers. Instead, x86-assem.S
242 * provides exception_handler_wrapper; we install it here, and each
243 * exception frame on nested funcall()s also points to it.
244 */
250 {
252 #ifdef LISP_FEATURE_X86
254 #else
256 #endif
258 }
261 {
262 #ifdef LISP_FEATURE_X86
264 #else
266 #endif
267 }
269 #if defined(LISP_FEATURE_SB_THREAD)
271 /* Permit loads from GC_SAFEPOINT_PAGE_ADDR (NB page state change is
272 * "synchronized" with the memory region content/availability --
273 * e.g. you won't see other CPU flushing buffered writes after WP --
274 * but there is some window when other thread _seem_ to trap AFTER
275 * access is granted. You may think of it something like "OS enters
276 * SEH handler too slowly" -- what's important is there's no implicit
277 * synchronization between VirtualProtect caller and other thread's
278 * SEH handler, hence no ordering of events. VirtualProtect is
279 * implicitly synchronized with protected memory contents (only).
280 *
281 * The last fact may be potentially used with many benefits e.g. for
282 * foreign call speed, but we don't use it for now: almost the only
283 * fact relevant to the current signalling protocol is "sooner or
284 * later everyone will trap [everyone will stop trapping]".
285 *
286 * An interesting source on page-protection-based inter-thread
287 * communication is a well-known paper by Dave Dice, Hui Huang,
288 * Mingyao Yang: ``Asymmetric Dekker Synchronization''. Last time
289 * I checked it was available at
290 * http://home.comcast.net/~pjbishop/Dave/Asymmetric-Dekker-Synchronization.txt
291 */
293 {
294 DWORD oldProt;
297 }
300 {
301 DWORD oldProt;
304 }
306 #endif
308 #if defined(LISP_FEATURE_SB_THREAD)
309 /* We want to get a slot in TIB that (1) is available at constant
310 offset, (2) is our private property, so libraries wouldn't legally
311 override it, (3) contains something predefined for threads created
312 out of our sight.
314 Low 64 TLS slots are adressable directly, starting with
315 FS:[#xE10]. When SBCL runtime is initialized, some of the low slots
316 may be already in use by its prerequisite DLLs, as DllMain()s and
317 TLS callbacks have been called already. But slot 63 is unlikely to
318 be reached at this point: one slot per DLL that needs it is the
319 common practice, and many system DLLs use predefined TIB-based
320 areas outside conventional TLS storage and don't need TLS slots.
321 With our current dependencies, even slot 2 is observed to be free
322 (as of WinXP and wine).
324 Now we'll call TlsAlloc() repeatedly until slot 63 is officially
325 assigned to us, then TlsFree() all other slots for normal use. TLS
326 slot 63, alias FS:[#.(+ #xE10 (* 4 63))], now belongs to us.
328 To summarize, let's list the assumptions we make:
330 - TIB, which is FS segment base, contains first 64 TLS slots at the
331 offset #xE10 (i.e. TIB layout compatibility);
332 - TLS slots are allocated from lower to higher ones;
333 - All libraries together with CRT startup have not requested 64
334 slots yet.
336 All these assumptions together don't seem to be less warranted than
337 the availability of TIB arbitrary data slot for our use. There are
338 some more reasons to prefer slot 63 over TIB arbitrary data: (1) if
339 our assumptions for slot 63 are violated, it will be detected at
340 startup instead of causing some system-specific unreproducible
341 problems afterwards, depending on OS and loaded foreign libraries;
342 (2) if getting slot 63 reliably with our current approach will
343 become impossible for some future Windows version, we can add TLS
344 callback directory to SBCL binary; main image TLS callback is
345 started before _any_ TLS slot is allocated by libraries, and
346 some C compiler vendors rely on this fact. */
349 {
350 #ifdef LISP_FEATURE_X86
352 DWORD key;
364 }
366 }
369 }
373 }
374 #endif
375 }
381 {
382 SYSTEM_INFO system_info;
386 #if defined(LISP_FEATURE_X86)
388 #endif
392 }
395 {
401 }
403 /*
404 * So we have three fun scenarios here.
405 *
406 * First, we could be being called to reserve the memory areas
407 * during initialization (prior to loading the core file).
408 *
409 * Second, we could be being called by the GC to commit a page
410 * that has just been decommitted (for easy zero-fill).
411 *
412 * Third, we could be being called by create_thread_struct()
413 * in order to create the sundry and various stacks.
414 *
415 * The third case is easy to pick out because it passes an
416 * addr of 0.
417 *
418 * The second case is easy to pick out because it will be for
419 * a range of memory that is MEM_RESERVE rather than MEM_FREE.
420 *
421 * The second case is also an easy implement, because we leave
422 * the memory as reserved (since we do lazy commits).
423 */
425 os_vm_address_t
427 {
428 MEMORY_BASIC_INFORMATION mem_info;
431 /* the simple case first */
432 return
434 }
440 /* It would be correct to return here. However, support for Wine
441 * is beneficial, and Wine has a strange behavior in this
442 * department. It reports all memory below KERNEL32.DLL as
443 * reserved, but disallows MEM_COMMIT.
444 *
445 * Let's work around it: reserve the region we need for a second
446 * time. The second reservation is documented to fail on normal NT
447 * family, but it will succeed on Wine if this region is
448 * actually free.
449 */
451 /* If it is wine, the second call has succeded, and now the region
452 * is really reserved. */
454 }
459 /* Oddly, we do not treat this assertion as fatal; hence also the
460 * provision for MEM_RESERVE in the following code, I suppose: */
461 }
468 }
470 /*
471 * For os_invalidate(), we merely decommit the memory rather than
472 * freeing the address space. This loses when freeing per-thread
473 * data and related memory since it leaks address space.
474 *
475 * So far the original comment (author unknown). It used to continue as
476 * follows:
477 *
478 * It's not too lossy, however, since the two scenarios I'm aware of
479 * are fd-stream buffers, which are pooled rather than torched, and
480 * thread information, which I hope to pool (since windows creates
481 * threads at its own whim, and we probably want to be able to have
482 * them callback without funky magic on the part of the user, and
483 * full-on thread allocation is fairly heavyweight).
484 *
485 * But: As it turns out, we are no longer content with decommitting
486 * without freeing, and have now grown a second function
487 * os_invalidate_free(), sort of a really_os_invalidate().
488 *
489 * As discussed on #lisp, this is not a satisfactory solution, and probably
490 * ought to be rectified in the following way:
491 *
492 * - Any cases currently going through the non-freeing version of
493 * os_invalidate() are ultimately meant for zero-filling applications.
494 * Replace those use cases with an os_revalidate_bzero() or similarly
495 * named function, which explicitly takes care of that aspect of
496 * the semantics.
497 *
498 * - The remaining uses of os_invalidate should actually free, and once
499 * the above is implemented, we can rename os_invalidate_free back to
500 * just os_invalidate().
501 *
502 * So far the new plan, as yet unimplemented. -- DFL
503 */
505 void
507 {
509 }
511 void
513 {
515 }
517 void
519 {
520 MEMORY_BASIC_INFORMATION minfo;
524 }
526 /*
527 * os_map() is called to map a chunk of the core file into memory.
528 *
529 * Unfortunately, Windows semantics completely screws this up, so
530 * we just add backing store from the swapfile to where the chunk
531 * goes and read it up like a normal file. We could consider using
532 * a lazy read (demand page) setup, but that would mean keeping an
533 * open file pointer for the core indefinately (and be one more
534 * thing to maintain).
535 */
537 os_vm_address_t
539 {
540 os_vm_size_t count;
544 PAGE_EXECUTE_READWRITE));
552 }
555 PAGE_NOACCESS,
556 PAGE_READONLY,
557 PAGE_READWRITE,
558 PAGE_READWRITE,
559 PAGE_EXECUTE,
560 PAGE_EXECUTE_READ,
561 PAGE_EXECUTE_READWRITE,
562 PAGE_EXECUTE_READWRITE,
563 };
565 void
567 {
568 DWORD old_prot;
577 }
579 /* FIXME: Now that FOO_END, rather than FOO_SIZE, is the fundamental
580 * description of a space, we could probably punt this and just do
581 * (FOO_START <= x && x < FOO_END) everywhere it's called. */
582 static boolean
584 {
589 }
591 boolean
593 {
595 }
599 boolean
601 {
608 }
610 /* test if an address is within thread-local space */
611 static boolean
613 {
614 /* Assuming that this is correct, it would warrant further comment,
615 * I think. Based on what our call site is doing, we have been
616 * tasked to check for the address of a lisp object; not merely any
617 * foreign address within the thread's area. Indeed, this used to
618 * be a check for control and binding stack only, rather than the
619 * full thread "struct". So shouldn't the THREAD_STRUCT_SIZE rather
620 * be (thread_control_stack_size+BINDING_STACK_SIZE) instead? That
621 * would also do away with the LISP_FEATURE_SB_THREAD case. Or does
622 * it simply not matter? --DFL */
625 #ifdef LISP_FEATURE_SB_THREAD
627 #endif
628 ;
629 }
631 static boolean
633 {
635 #ifdef LISP_FEATURE_SB_THREAD
642 }
643 }
645 #endif
647 }
650 /* A tiny bit of interrupt.c state we want our paws on. */
655 void
657 {
667 {
672 }
673 }
675 #ifdef LISP_FEATURE_X86
676 #define voidreg(ctxptr,name) ((void*)((ctxptr)->E##name))
677 #else
678 #define voidreg(ctxptr,name) ((void*)((ctxptr)->R##name))
679 #endif
682 #if defined(LISP_FEATURE_X86)
683 static int
685 {
689 /* We are doing a displaced instruction. At least function
690 * end breakpoints use this. */
695 }
696 #endif
698 #ifdef LISP_FEATURE_UD2_BREAKPOINTS
699 #define SBCL_EXCEPTION_BREAKPOINT EXCEPTION_ILLEGAL_INSTRUCTION
700 #define TRAP_CODE_WIDTH 2
701 #else
702 #define SBCL_EXCEPTION_BREAKPOINT EXCEPTION_BREAKPOINT
703 #define TRAP_CODE_WIDTH 1
704 #endif
706 static int
708 {
709 #ifdef LISP_FEATURE_UD2_BREAKPOINTS
712 #endif
714 /* Unlike some other operating systems, Win32 leaves EIP
715 * pointing to the breakpoint instruction. */
718 /* Now EIP points just after the INT3 byte and aims at the
719 * 'kind' value (eg trap_Cerror). */
722 #ifdef LISP_FEATURE_SB_THREAD
723 /* Before any other trap handler: gc_safepoint ensures that
724 inner alloc_sap for passing the context won't trap on
725 pseudo-atomic. */
727 /* Done everything needed for this trap, except EIP
728 adjustment */
732 }
733 #endif
735 /* This is just for info in case the monitor wants to print an
736 * approximation. */
741 #if defined(LISP_FEATURE_SB_THREAD)
743 #endif
745 #if defined(LISP_FEATURE_SB_THREAD)
747 #endif
748 }
750 /* Done, we're good to go! */
752 }
754 static int
759 {
762 #if defined(LISP_FEATURE_X86)
764 "SEGV. ThSap %p, Eip %p, Esp %p, Esi %p, Edi %p, "
766 self,
771 fault_address,
773 #else
775 "SEGV. ThSap %p, Eip %p, Esp %p, Esi %p, Edi %p, "
777 self,
782 fault_address,
784 #endif
786 /* Stack: This case takes care of our various stack exhaustion
787 * protect pages (with the notable exception of the control stack!). */
792 }
794 /* Safepoint pages */
795 #ifdef LISP_FEATURE_SB_THREAD
799 }
804 }
805 #endif
807 /* dynamic space */
810 /*
811 * Now, if the page is supposedly write-protected and this
812 * is a write, tell the gc that it's been hit.
813 */
818 os_vm_page_size,
820 }
822 }
827 /* linkage table or a "valid_lisp_addr" outside of dynamic space (?) */
834 try_recommit:
835 /* First use of a new page, lets get some memory for it. */
837 #if defined(LISP_FEATURE_X86)
839 os_vm_page_size,
847 #else
849 os_vm_page_size,
857 #endif
860 }
862 static void
866 {
867 /*
868 * If we fall through to here then we need to either forward
869 * the exception to the lisp-side exception handler if it's
870 * set up, or drop to LDB.
871 */
874 lispobj context_sap;
875 lispobj exception_record_sap;
878 /* We're making the somewhat arbitrary decision that having
879 * internal errors enabled means that lisp has sufficient
880 * marbles to be able to handle exceptions, but exceptions
881 * aren't supposed to happen during cold init or reinit
882 * anyway. */
884 #if defined(LISP_FEATURE_SB_THREAD)
886 #endif
890 /* Allocate the SAP objects while the "interrupts" are still
891 * disabled. */
894 #if defined(LISP_FEATURE_SB_THREAD)
896 #endif
898 /* The exception system doesn't automatically clear pending
899 * exceptions, so we lose as soon as we execute any FP
900 * instruction unless we do this first. */
901 /* Call into lisp to handle things. */
903 context_sap,
904 exception_record_sap);
905 }
906 /* If Lisp doesn't nlx, we need to put things back. */
908 #if defined(LISP_FEATURE_SB_THREAD)
910 #endif
911 /* FIXME: HANDLE-WIN32-EXCEPTION should be allowed to decline */
913 }
920 MEMORY_BASIC_INFORMATION mem_info;
924 }
928 fault_address);
929 }
935 }
937 /*
938 * A good explanation of the exception handling semantics is
939 * http://win32assembly.online.fr/Exceptionhandling.html (possibly defunct)
940 * or:
941 * http://www.microsoft.com/msj/0197/exception/exception.aspx
942 */
944 EXCEPTION_DISPOSITION
949 {
951 /* Not certain why this should be possible, but let's be safe... */
955 /* If we're being unwound, be graceful about it. */
957 /* Undo any dynamic bindings. */
961 }
970 #if defined(LISP_FEATURE_SB_THREAD)
972 #endif
974 /* For EXCEPTION_ACCESS_VIOLATION only. */
980 exception_record,
981 win32_context,
983 fault_address,
988 /* This function had become unwieldy. Let's cut it down into
989 * pieces based on the different exception codes. Each exception
990 * code handler gets the chance to decline by returning non-zero if it
991 * isn't happy: */
1004 #if defined(LISP_FEATURE_X86)
1008 #endif
1012 }
1015 /* All else failed, drop through to the lisp-side exception handler. */
1021 }
1023 void
1025 {
1026 #ifdef LISP_FEATURE_X86
1030 #else
1034 #endif
1035 }
1037 /*
1038 * The stubs below are replacements for the windows versions,
1039 * which can -fail- when used in our memory spaces because they
1040 * validate the memory spaces they are passed in a way that
1041 * denies our exception handler a chance to run.
1042 */
1045 {
1051 }
1053 }
1056 {
1059 }
1062 {
1070 }
1077 }
1078 }
1081 }
1083 /* This is a manually-maintained version of ldso_stubs.S. */
1088 {
1123 #ifndef LISP_FEATURE_SB_UNICODE
1136 #else
1150 #endif
1152 }
1156 {
1159 DWORD size;
1167 }
1169 #ifdef LISP_FEATURE_SB_THREAD
1171 int
1173 {
1178 return
1180 }
1182 /*
1183 * Portability glue for win32 waitable timers.
1184 *
1185 * One may ask: Why is there a wrapper in C when the calls are so
1186 * obvious that Lisp could do them directly (as it did on Windows)?
1187 *
1188 * But the answer is that on POSIX platforms, we now emulate the win32
1189 * calls and hide that emulation behind this os_* abstraction.
1190 */
1191 HANDLE
1193 {
1195 }
1197 int
1199 {
1201 }
1203 void
1205 {
1207 }
1209 void
1211 {
1212 /* in units of 100ns, i.e. 0.1us. Negative for relative semantics. */
1213 long long dueTime
1217 }
1219 void
1221 {
1223 }
1224 #endif
1226 /* EOF */