| blob | 6e6c1d235f10bfabde0b889f73b9ee0a11b0b2a5 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
9 #include <string.h>
10 #include <stdlib.h>
11 #include <stdio.h>
14 #include <string>
25 // Set this to 1 for verbose logging
26 #define DEBUG_MAIN 0
35 ////////////////////////////////////////////////////////////////
36 // AutoLulRWLocker //
37 ////////////////////////////////////////////////////////////////
39 // This is a simple RAII class that manages acquisition and release of
40 // LulRWLock reader-writer locks.
47 {
52 }
53 }
55 {
57 }
61 };
64 ////////////////////////////////////////////////////////////////
65 // RuleSet //
66 ////////////////////////////////////////////////////////////////
70 {
73 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
77 #elif defined(LUL_ARCH_arm)
84 #else
86 #endif
88 }
89 }
91 static string
93 {
111 }
113 }
115 void
117 {
125 // For each reg we care about, print the recovery expression.
126 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
130 #elif defined(LUL_ARCH_arm)
137 #else
139 #endif
141 }
143 LExpr*
147 # if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
151 # elif defined(LUL_ARCH_arm)
158 # else
160 # endif
162 }
163 }
166 {
169 // The only other fields are of type LExpr and those are initialised
170 // by LExpr::LExpr().
171 }
174 ////////////////////////////////////////////////////////////////
175 // SecMap //
176 ////////////////////////////////////////////////////////////////
178 // See header file LulMainInt.h for comments about invariants.
185 {}
189 }
191 RuleSet*
193 // Binary search mRuleSets to find one that brackets |ia|.
194 // lo and hi need to be signed, else the loop termination tests
195 // don't work properly. Note that this works correctly even when
196 // mRuleSets.size() == 0.
198 // Can't do this until the array has been sorted and preened.
204 // current unsearched space is from lo to hi, inclusive.
206 // not found
208 }
217 }
218 // NOTREACHED
219 }
221 // Add a RuleSet to the collection. The rule is copied in. Calling
222 // this makes the map non-searchable.
223 void
227 }
230 static bool
233 }
235 // Prepare the map for searching. Completely remove any which don't
236 // fall inside the specified range [start, +len).
237 void
239 {
242 }
246 // This should never happen.
249 }
251 // Sort by start addresses.
254 // Detect any entry not completely contained within [start, +len).
255 // Set its length to zero, so that the next pass will remove it.
261 }
262 }
264 // Iteratively truncate any overlaps and remove any zero length
265 // entries that might result, or that may have been present
266 // initially. Unless the input is seriously screwy, this is
267 // expected to iterate only once.
275 }
283 }
285 nZeroLen++;
286 }
289 nZeroLen++;
290 }
292 // At this point, the entries are in-order and non-overlapping.
293 // If none of them are zero-length, we are done.
296 }
298 // Slide back the entries to remove the zero length ones.
303 }
306 }
312 nZeroLen--;
313 }
316 }
320 #ifdef DEBUG
321 // Do a final check on the rules: their address ranges must be
322 // ascending, non overlapping, non zero sized.
331 }
332 }
333 #endif
335 // Set the summary min and max address values.
337 // Use the values defined in comments in the class declaration.
343 }
352 // Is now usable for binary search.
360 }
362 }
363 }
367 }
370 ////////////////////////////////////////////////////////////////
371 // SegArray //
372 ////////////////////////////////////////////////////////////////
374 // A SegArray holds a set of address ranges that together exactly
375 // cover an address range, with no overlaps or holes. Each range has
376 // an associated value, which in this case has been specialised to be
377 // a simple boolean. The representation is kept to minimal canonical
378 // form in which adjacent ranges with the same associated value are
379 // merged together. Each range is represented by a |struct Seg|.
380 //
381 // SegArrays are used to keep track of which parts of the address
382 // space are known to contain instructions.
389 }
393 }
399 }
401 }
408 }
412 }
417 }
425 };
433 }
436 // Back up one, so as not to miss an opportunity to merge
437 // with the entry after this one.
439 }
440 }
446 // The unsearched space is lo .. hi inclusive.
448 // Not found. This can't happen.
450 }
457 }
458 }
464 }
468 }
479 }
481 }
484 };
487 ////////////////////////////////////////////////////////////////
488 // PriMap //
489 ////////////////////////////////////////////////////////////////
495 {}
502 }
504 }
506 // This can happen with the global lock held for reading.
510 }
512 // Add a secondary map. No overlaps allowed w.r.t. existing
513 // secondary maps. Global lock must be held for writing.
515 // We can't add an empty SecMap to the PriMap. But that's OK
516 // since we'd never be able to find anything in it anyway.
519 }
521 // Iterate through the SecMaps and find the right place for this
522 // one. At the same time, ensure that the in-order
523 // non-overlapping invariant is preserved (and, generally, holds).
524 // FIXME: this gives a cost that is O(N^2) in the total number of
525 // shared objects in the system. ToDo: better.
534 // |aSecMap| needs to be inserted immediately before mSecMaps[i].
536 }
537 }
540 // It goes at the end.
545 }
551 }
553 // Remove and delete any SecMaps in the mapping, that intersect
554 // with the specified address range.
560 // Iterate from end to start over the vector, so as to ensure
561 // that the special case where |avma_min| and |avma_max| denote
562 // the entire address space, can be completed in time proportional
563 // to the number of elements in the map.
568 // There's no overlap. Move on.
570 }
571 // We need to remove mSecMaps[i] and slide all those above it
572 // downwards to cover the hole.
575 }
576 }
577 }
579 // Return the number of currently contained SecMaps.
582 }
584 // Assess heuristically whether the given address is an instruction
585 // immediately following a call instruction. The caller is required
586 // to hold the global lock for reading.
590 }
594 // Assume that nobody would be crazy enough to put code in the
595 // first or last page.
598 }
600 // See if it falls inside a known r-x mapped area. Poking around
601 // outside such places risks segfaulting.
605 // no code (that we know about) at this address
607 }
609 // |ia| falls within an r-x range. So we can
610 // safely poke around in [insns_min, insns_max].
612 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
613 // Is the previous instruction recognisably a CALL? This is
614 // common for the 32- and 64-bit versions, except for the
615 // simm32(%rip) case, which is 64-bit only.
616 //
617 // For all other cases, the 64 bit versions are either identical
618 // to the 32 bit versions, or have an optional extra leading REX.W
619 // byte (0x41). Since the extra 0x41 is optional we have to
620 // ignore it, with the convenient result that the same matching
621 // logic works for both 32- and 64-bit cases.
624 # if defined(LUL_ARCH_x64)
625 // CALL simm32(%rip) == FF15 simm32
628 }
629 # endif
630 // CALL rel32 == E8 rel32 (both 32- and 64-bit)
633 }
634 // CALL *%eax .. CALL *%edi == FFD0 .. FFD7 (32-bit)
635 // CALL *%rax .. CALL *%rdi == FFD0 .. FFD7 (64-bit)
636 // CALL *%r8 .. CALL *%r15 == 41FFD0 .. 41FFD7 (64-bit)
640 }
641 // Almost all of the remaining cases that occur in practice are
642 // of the form CALL *simm8(reg) or CALL *simm32(reg).
643 //
644 // 64 bit cases:
645 //
646 // call *simm8(%rax) FF50 simm8
647 // call *simm8(%rcx) FF51 simm8
648 // call *simm8(%rdx) FF52 simm8
649 // call *simm8(%rbx) FF53 simm8
650 // call *simm8(%rsp) FF5424 simm8
651 // call *simm8(%rbp) FF55 simm8
652 // call *simm8(%rsi) FF56 simm8
653 // call *simm8(%rdi) FF57 simm8
654 //
655 // call *simm8(%r8) 41FF50 simm8
656 // call *simm8(%r9) 41FF51 simm8
657 // call *simm8(%r10) 41FF52 simm8
658 // call *simm8(%r11) 41FF53 simm8
659 // call *simm8(%r12) 41FF5424 simm8
660 // call *simm8(%r13) 41FF55 simm8
661 // call *simm8(%r14) 41FF56 simm8
662 // call *simm8(%r15) 41FF57 simm8
663 //
664 // call *simm32(%rax) FF90 simm32
665 // call *simm32(%rcx) FF91 simm32
666 // call *simm32(%rdx) FF92 simm32
667 // call *simm32(%rbx) FF93 simm32
668 // call *simm32(%rsp) FF9424 simm32
669 // call *simm32(%rbp) FF95 simm32
670 // call *simm32(%rsi) FF96 simm32
671 // call *simm32(%rdi) FF97 simm32
672 //
673 // call *simm32(%r8) 41FF90 simm32
674 // call *simm32(%r9) 41FF91 simm32
675 // call *simm32(%r10) 41FF92 simm32
676 // call *simm32(%r11) 41FF93 simm32
677 // call *simm32(%r12) 41FF9424 simm32
678 // call *simm32(%r13) 41FF95 simm32
679 // call *simm32(%r14) 41FF96 simm32
680 // call *simm32(%r15) 41FF97 simm32
681 //
682 // 32 bit cases:
683 //
684 // call *simm8(%eax) FF50 simm8
685 // call *simm8(%ecx) FF51 simm8
686 // call *simm8(%edx) FF52 simm8
687 // call *simm8(%ebx) FF53 simm8
688 // call *simm8(%esp) FF5424 simm8
689 // call *simm8(%ebp) FF55 simm8
690 // call *simm8(%esi) FF56 simm8
691 // call *simm8(%edi) FF57 simm8
692 //
693 // call *simm32(%eax) FF90 simm32
694 // call *simm32(%ecx) FF91 simm32
695 // call *simm32(%edx) FF92 simm32
696 // call *simm32(%ebx) FF93 simm32
697 // call *simm32(%esp) FF9424 simm32
698 // call *simm32(%ebp) FF95 simm32
699 // call *simm32(%esi) FF96 simm32
700 // call *simm32(%edi) FF97 simm32
704 // imm8 case, not including %esp/%rsp
706 }
709 // imm8 case for %esp/%rsp
711 }
715 // imm32 case, not including %esp/%rsp
717 }
720 // imm32 case for %esp/%rsp
722 }
724 #elif defined(LUL_ARCH_arm)
727 // The return address has its lowest bit set, indicating a return
728 // to Thumb code.
732 }
735 }
736 // Is it a 32-bit Thumb call insn?
737 // BL simm26 (Encoding T1)
740 }
741 // BLX simm26 (Encoding T2)
744 }
745 // Other possible cases:
746 // (BLX Rm, Encoding T1).
747 // BLX Rm (encoding T1, 16 bit, inspect w1 and ignore w0.)
748 // 0100 0111 1 Rm 000
750 // Returning to ARM code.
754 }
755 // Leading E forces unconditional only -- fix. It could be
756 // anything except F, which is the deprecated NV code.
757 // BL simm26 (Encoding A1)
760 }
761 // Other possible cases:
762 // BLX simm26 (Encoding A2)
763 //if ((a0 & 0xFE000000) == 0xFA000000)
764 // return true;
765 // BLX (register) (A1): BLX <c> <Rm>
766 // cond 0001 0010 1111 1111 1111 0011 Rm
767 // again, cond can be anything except NV (0xF)
768 }
770 #else
772 #endif
774 // Not an insn we recognise.
776 }
779 // FindSecMap's caller must hold the global lock for reading or writing.
781 // Binary search mSecMaps to find one that brackets |ia|.
782 // lo and hi need to be signed, else the loop termination tests
783 // don't work properly.
787 // current unsearched space is from lo to hi, inclusive.
789 // not found
791 }
800 }
801 // NOTREACHED
802 }
805 // sorted array of per-object ranges, non overlapping, non empty
808 // a logging sink, for debugging.
810 };
813 ////////////////////////////////////////////////////////////////
814 // CFICache //
815 ////////////////////////////////////////////////////////////////
817 // This is the thread-local cache. It maps individual insn AVMAs to
818 // the associated CFI record, which live in LUL::mPriMap.
819 //
820 // The cache is a direct map hash table indexed by address.
821 // It has to distinguish 3 cases:
822 //
823 // (1) .mRSet == (RuleSet*)0 ==> cache slot not in use
824 // (2) .mRSet == (RuleSet*)1 ==> slot in use, no RuleSet avail
825 // (3) .mRSet > (RuleSet*)1 ==> slot in use, RuleSet* available
826 //
827 // Distinguishing between (2) and (3) is important, because if we look
828 // up an address in LUL::mPriMap and find there is no RuleSet, then
829 // that fact needs to cached here, so as to avoid potentially
830 // expensive repeat lookups.
832 // A CFICacheEntry::mRSet value of zero indicates that the slot is not
833 // in use, and a value of one indicates that the slot is in use but
834 // there is no RuleSet available.
835 #define ENTRY_NOT_IN_USE ((RuleSet*)0)
836 #define NO_RULESET_AVAILABLE ((RuleSet*)1)
844 }
850 }
851 }
857 // The cache has an entry for |ia|. Interpret it.
859 // There's a RuleSet. So return it.
861 }
863 // There's no RuleSet for this address. Don't update
864 // the cache, since we might get queried again.
866 }
867 // Otherwise, the slot is not in use. Fall through to
868 // the 'miss' case.
869 }
871 // The cache entry is for some other address, or is not in use.
872 // Update it. If it can be found in the priMap then install it
873 // as-is. Else put NO_RULESET_AVAILABLE in, so as to indicate
874 // there's no info for this address.
879 }
882 // This should be a prime number.
885 // See comment above for the meaning of these entries.
889 };
892 // Need to have a pointer to the PriMap, so as to be able
893 // to service misses.
895 };
897 #undef ENTRY_NOT_IN_USE
898 #undef NO_RULESET_AVAILABLE
901 ////////////////////////////////////////////////////////////////
902 // LUL //
903 ////////////////////////////////////////////////////////////////
906 {
912 }
916 {
917 // The auto-locked section must have its own scope, so that the
918 // unlock is performed before the mRWLock is deleted.
919 {
925 }
929 }
930 // Now we don't hold the lock. Hence it is safe to delete it.
932 }
935 void
937 {
945 // "this thread is not already registered"
947 // Using mozilla::DebugOnly to declare |res| leads to compilation error
949 }
951 void
954 {
961 aFileName);
967 // Ignore obviously-stupid notifications.
970 // Here's a new mapping, for this object.
973 // Read CFI or EXIDX unwind data into |smap|.
983 }
994 // Add it to the primary map (the top level set of mapped objects).
997 // Tell the segment array about the mapping, so that the stack
998 // scan and __kernel_syscall mechanisms know where valid code is.
1000 }
1001 }
1004 void
1006 {
1018 // Ignore obviously-stupid notifications.
1020 // Tell the segment array about the mapping, so that the stack
1021 // scan and __kernel_syscall mechanisms know where valid code is.
1023 }
1024 }
1027 void
1029 {
1044 // Remove from the primary map, any secondary maps that intersect
1045 // with the address range. Also delete the secondary maps.
1048 // Tell the segment array that the address range no longer
1049 // contains valid code.
1056 }
1059 size_t
1061 {
1064 }
1067 static
1069 {
1072 }
1075 }
1079 }
1082 }
1084 static
1086 {
1089 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1093 #elif defined(LUL_ARCH_arm)
1100 #else
1102 #endif
1104 }
1105 }
1107 static
1110 {
1118 }
1123 }
1127 }
1128 }
1130 static
1133 {
1134 // Take a copy of regs, since we'll need to refer to the old values
1135 // whilst computing the new ones.
1138 // Mark all the current register values as invalid, so that the
1139 // caller can see, on our return, which ones have been computed
1140 // anew. If we don't even manage to compute a new PC value, then
1141 // the caller will have to abandon the unwind.
1142 // FIXME: Create and use instead: aRegs->SetAllInvalid();
1143 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1147 #elif defined(LUL_ARCH_arm)
1154 #else
1156 #endif
1158 // This is generally useful.
1161 // First, compute the CFA.
1165 // If we didn't manage to compute the CFA, well .. that's ungood,
1166 // but keep going anyway. It'll be OK provided none of the register
1167 // value rules mention the CFA. In any case, compute the new values
1168 // for each register that we're tracking.
1170 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1174 #elif defined(LUL_ARCH_arm)
1181 #else
1183 #endif
1185 // We're done. Any regs for which we didn't manage to compute a
1186 // new value will now be marked as invalid.
1187 }
1189 void
1197 {
1204 // The calling thread is not registered for unwinding.
1207 }
1212 // Do unwindery, possibly modifying |cache|.
1214 /////////////////////////////////////////////////////////
1215 // BEGIN UNWIND
1222 // Stack-scan control
1231 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1239 #elif defined(LUL_ARCH_arm)
1241 "LoopTop: r15 %d/%llx r7 %d/%llx r11 %d/%llx"
1251 #else
1253 #endif
1254 }
1256 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1259 #elif defined(LUL_ARCH_arm)
1262 #else
1264 #endif
1268 }
1270 // If we don't have a valid value for the PC, give up.
1273 }
1275 // If this is the innermost frame, record the SP value, which
1276 // presumably is valid. If this isn't the innermost frame, and we
1277 // have a valid SP value, check that its SP value isn't less that
1278 // the one we've seen so far, so as to catch potential SP value
1279 // cycles.
1286 // Hmm, SP going in the wrong direction. Let's stop.
1288 }
1289 // Remember where we got to.
1291 }
1292 }
1294 // For the innermost frame, the IA value is what we need. For all
1295 // other frames, it's actually the return address, so back up one
1296 // byte so as to get it into the calling instruction.
1301 // Find the RuleSet for the current IA, if any. This will also
1302 // query the backing (secondary) maps if it isn't found in the
1303 // thread-local cache.
1305 // If this isn't the innermost frame, back up into the calling insn.
1308 }
1317 }
1319 /////////////////////////////////////////////
1320 ////
1321 // On 32 bit x86-linux, syscalls are often done via the VDSO
1322 // function __kernel_vsyscall, which doesn't have a corresponding
1323 // object that we can read debuginfo from. That effectively kills
1324 // off all stack traces for threads blocked in syscalls. Hence
1325 // special-case by looking at the code surrounding the program
1326 // counter.
1327 //
1328 // 0xf7757420 <__kernel_vsyscall+0>: push %ecx
1329 // 0xf7757421 <__kernel_vsyscall+1>: push %edx
1330 // 0xf7757422 <__kernel_vsyscall+2>: push %ebp
1331 // 0xf7757423 <__kernel_vsyscall+3>: mov %esp,%ebp
1332 // 0xf7757425 <__kernel_vsyscall+5>: sysenter
1333 // 0xf7757427 <__kernel_vsyscall+7>: nop
1334 // 0xf7757428 <__kernel_vsyscall+8>: nop
1335 // 0xf7757429 <__kernel_vsyscall+9>: nop
1336 // 0xf775742a <__kernel_vsyscall+10>: nop
1337 // 0xf775742b <__kernel_vsyscall+11>: nop
1338 // 0xf775742c <__kernel_vsyscall+12>: nop
1339 // 0xf775742d <__kernel_vsyscall+13>: nop
1340 // 0xf775742e <__kernel_vsyscall+14>: int $0x80
1341 // 0xf7757430 <__kernel_vsyscall+16>: pop %ebp
1342 // 0xf7757431 <__kernel_vsyscall+17>: pop %edx
1343 // 0xf7757432 <__kernel_vsyscall+18>: pop %ecx
1344 // 0xf7757433 <__kernel_vsyscall+19>: ret
1345 //
1346 // In cases where the sampled thread is blocked in a syscall, its
1347 // program counter will point at "pop %ebp". Hence we look for
1348 // the sequence "int $0x80; pop %ebp; pop %edx; pop %ecx; ret", and
1349 // the corresponding register-recovery actions are:
1350 // new_ebp = *(old_esp + 0)
1351 // new eip = *(old_esp + 12)
1352 // new_esp = old_esp + 16
1353 //
1354 // It may also be the case that the program counter points two
1355 // nops before the "int $0x80", viz, is __kernel_vsyscall+12, in
1356 // the case where the syscall has been restarted but the thread
1357 // hasn't been rescheduled. The code below doesn't handle that;
1358 // it could easily be made to.
1359 //
1360 #if defined(LUL_PLAT_x86_android) || defined(LUL_PLAT_x86_linux)
1382 }
1383 }
1384 }
1385 }
1386 #endif
1387 ////
1388 /////////////////////////////////////////////
1390 // So, do we have a ruleset for this address? If so, use it now.
1395 }
1396 // Use the RuleSet to compute the registers for the previous
1397 // frame. |regs| is modified in-place.
1402 // There's no RuleSet for the specified address, so see if
1403 // it's possible to get anywhere by stack-scanning.
1405 // Use stack scanning frugally.
1408 }
1410 // We can't scan the stack without a valid, aligned stack pointer.
1413 }
1418 // aWord is something we fished off the stack. It should be
1419 // valid, unless we overran the stack bounds.
1422 }
1424 // Now, does aWord point inside a text section and immediately
1425 // after something that looks like a call instruction?
1427 // Yes it does. Update the unwound registers heuristically,
1428 // using the same schemes as Breakpad does.
1432 #if defined(LUL_ARCH_x64) || defined(LUL_ARCH_x86)
1433 // The same logic applies for the 32- and 64-bit cases.
1434 // Register names of the form xsp etc refer to (eg) esp in
1435 // the 32-bit case and rsp in the 64-bit case.
1436 # if defined(LUL_ARCH_x64)
1438 # else
1440 # endif
1441 // The return address -- at XSP -- will have been pushed by
1442 // the CALL instruction. So the caller's XSP value
1443 // immediately before and after that CALL instruction is the
1444 // word above XSP.
1448 // aWord points at the return point, so back up one byte
1449 // to put it in the calling instruction.
1453 // Computing a new value from the frame pointer is more tricky.
1456 // One possibility is that the callee begins with the standard
1457 // preamble "push %xbp; mov %xsp, %xbp". In which case, the
1458 // (1) caller's XBP value will be at the word below XSP, and
1459 // (2) the current (callee's) XBP will point at that word:
1463 // If that didn't work out, maybe the callee didn't change
1464 // XBP, so it still holds the caller's value. For that to
1465 // be plausible, XBP will need to have a value at least
1466 // higher than XSP since that holds the purported return
1467 // address. In which case do nothing, since XBP already
1468 // holds the "right" value.
1470 // Mark XBP as invalid, so that subsequent unwind iterations
1471 // don't assume it holds valid data.
1473 }
1475 // Move on to the next word up the stack
1478 #elif defined(LUL_ARCH_arm)
1479 // Set all registers to be undefined, except for SP(R13) and
1480 // PC(R15).
1482 // aWord points either at the return point, if returning to
1483 // ARM code, or one insn past the return point if returning
1484 // to Thumb code. In both cases, aWord-2 is guaranteed to
1485 // fall within the calling instruction.
1489 // Make SP be the word above the location where the return
1490 // address was found.
1494 // All other regs are undefined.
1497 // Move on to the next word up the stack
1500 #else
1502 #endif
1505 }
1509 // We tried to make progress by scanning the stack, but failed.
1510 // So give up -- fall out of the top level unwind loop.
1513 }
1514 }
1518 // END UNWIND
1519 /////////////////////////////////////////////////////////
1520 }
1523 void
1525 {
1526 // NB: the caller must hold m_rwl for writing.
1528 // FIXME: this could get expensive. Use a bool to remember when the
1529 // caches have been invalidated and hence avoid duplicate invalidations.
1534 }
1535 }
1538 ////////////////////////////////////////////////////////////////
1539 // LUL Unit Testing //
1540 ////////////////////////////////////////////////////////////////
1544 // This function is innermost in the test call sequence. It uses LUL
1545 // to unwind, and compares the result with the sequence specified in
1546 // the director string. These need to agree in order for the test to
1547 // pass. In order not to screw up the results, this function needs
1548 // to have a not-very big stack frame, since we're only presenting
1549 // the innermost LUL_UNIT_TEST_STACK_SIZE bytes of stack to LUL, and
1550 // that chunk unavoidably includes the frame for this function.
1551 //
1552 // This function must not be inlined into its callers. Doing so will
1553 // cause the expected-vs-actual backtrace consistency checking to
1554 // fail. Prints summary results to |aLUL|'s logging sink and also
1555 // returns a boolean indicating whether or not the test passed.
1558 {
1559 // Get hold of the current unwind-start registers.
1560 UnwindRegs startRegs;
1562 #if defined(LUL_PLAT_x64_linux)
1571 );
1577 #elif defined(LUL_PLAT_x86_linux) || defined(LUL_PLAT_x86_android)
1587 );
1593 #elif defined(LUL_PLAT_arm_android)
1605 );
1614 #else
1616 #endif
1618 // Get hold of the innermost LUL_UNIT_TEST_STACK_SIZE bytes of the
1619 // stack.
1627 }
1635 }
1637 // Unwind it.
1652 //if (0) {
1653 // // Show what we have.
1654 // fprintf(stderr, "Got %d frames:\n", (int)framesUsed);
1655 // for (size_t i = 0; i < framesUsed; i++) {
1656 // fprintf(stderr, " [%2d] SP %p PC %p\n",
1657 // (int)i, (void*)frameSPs[i], (void*)framePCs[i]);
1658 // }
1659 // fprintf(stderr, "\n");
1660 //}
1662 // Check to see if there's a consistent binding between digits in
1663 // the director string ('1' .. '8') and the PC values acquired by
1664 // the unwind. If there isn't, the unwinding has failed somehow.
1668 // The general plan is to work backwards along the director string
1669 // and forwards along the framePCs array. Doing so corresponds to
1670 // working outwards from the innermost frame of the recursive test set.
1673 // Find the end. This leaves |cursor| two bytes past the first
1674 // character we want to look at -- see comment below.
1677 // Counts the number of consistent frames.
1680 // Iterate back to the start of the director string. The starting
1681 // points are a bit complex. We can't use framePCs[0] because that
1682 // contains the PC in this frame (above). We can't use framePCs[1]
1683 // because that will contain the PC at return point in the recursive
1684 // test group (TestFn[1-8]) for their call "out" to this function,
1685 // GetAndCheckStackTrace. Although LUL will compute a correct
1686 // return address, that will not be the same return address as for a
1687 // recursive call out of the the function to another function in the
1688 // group. Hence we can only start consistency checking at
1689 // framePCs[2].
1690 //
1691 // To be consistent, then, we must ignore the last element in the
1692 // director string as that corresponds to framePCs[1]. Hence the
1693 // start points are: framePCs[2] and the director string 2 bytes
1694 // before the terminating zero.
1695 //
1696 // Also as a result of this, the number of consistent frames counted
1697 // will always be one less than the length of the director string
1698 // (not including its terminating zero).
1705 // If this doesn't hold, the director string is ill-formed.
1709 // There's no binding for |c| yet, so install |pc| and carry on.
1711 nConsistent++;
1713 }
1714 // There's a pre-existing binding for |c|. Check it's consistent.
1716 // Not consistent. Give up now.
1718 }
1719 // Consistent. Keep going.
1720 nConsistent++;
1721 }
1723 // So, did we succeed?
1726 // Show the results.
1739 }
1742 // Macro magic to create a set of 8 mutually recursive functions with
1743 // varying frame sizes. These will recurse amongst themselves as
1744 // specified by |strP|, the directory string, and call
1745 // GetAndCheckStackTrace when the string becomes empty, passing it the
1746 // original value of the string. This checks the result, printing
1747 // results on |aLUL|'s logging sink, and also returns a boolean
1748 // indicating whether or not the results are acceptable (correct).
1750 #define DECL_TEST_FN(NAME) \
1751 bool NAME(LUL* aLUL, const char* strPorig, const char* strP);
1753 #define GEN_TEST_FN(NAME, FRAMESIZE) \
1754 bool NAME(LUL* aLUL, const char* strPorig, const char* strP) { \
1755 volatile char space[FRAMESIZE]; \
1756 memset((char*)&space[0], 0, sizeof(space)); \
1760 return GetAndCheckStackTrace(aLUL, strPorig); \
1761 } else { \
1773 bool (*nextFn)(LUL*, const char*, const char*) = NULL; \
1774 switch (*strP) { \
1783 default: nextFn = TestFn8; break; \
1784 } \
1786 bool passed = nextFn(aLUL, strPorig, strP+1); \
1788 return passed; \
1789 } \
1790 }
1792 // The test functions are mutually recursive, so it is necessary to
1793 // declare them before defining them.
1813 // This starts the test sequence going. Call here to generate a
1814 // sequence of calls as directed by the string |dstring|. The call
1815 // sequence will, from its innermost frame, finish by calling
1816 // GetAndCheckStackTrace() and passing it |dstring|.
1817 // GetAndCheckStackTrace() will unwind the stack, check consistency
1818 // of those results against |dstring|, and print a pass/fail message
1819 // to aLUL's logging sink. It also updates the counters in *aNTests
1820 // and aNTestsPassed.
1824 {
1825 // Ensure that the stack has at least this much space on it. This
1826 // makes it safe to saw off the top LUL_UNIT_TEST_STACK_SIZE bytes
1827 // and hand it to LUL. Safe in the sense that no segfault can
1828 // happen because the stack is at least this big. This is all
1829 // somewhat dubious in the sense that a sufficiently clever compiler
1830 // (clang, for one) can figure out that space[] is unused and delete
1831 // it from the frame. Hence the somewhat elaborate hoop jumping to
1832 // fill it up before the call and to at least appear to use the
1833 // value afterwards.
1838 }
1840 // Really run the test.
1843 // Appear to use space[], by visiting the value to compute some kind
1844 // of checksum, and then (apparently) using the checksum.
1847 // If this doesn't fool LLVM, I don't know what will.
1849 }
1852 // Update the counters.
1856 }
1857 }
1860 void
1862 {
1875 }