| blob | 7cf5508234d90302ec6cb4d83db21b0e4c110861 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
9 #include <stdio.h>
10 #include <stdlib.h>
11 #include <string.h>
15 #include <string>
16 #include <utility>
31 // Set this to 1 for verbose logging
32 #define DEBUG_MAIN 0
44 // WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
45 //
46 // Some functions in this file are marked RUNS IN NO-MALLOC CONTEXT.
47 // Any such function -- and, hence, the transitive closure of those
48 // reachable from it -- must not do any dynamic memory allocation.
49 // Doing so risks deadlock. There is exactly one root function for
50 // the transitive closure: Lul::Unwind.
51 //
52 // WARNING WARNING WARNING WARNING WARNING WARNING WARNING WARNING
54 ////////////////////////////////////////////////////////////////
55 // RuleSet //
56 ////////////////////////////////////////////////////////////////
62 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
69 #elif defined(GP_ARCH_arm)
82 #elif defined(GP_ARCH_arm64)
89 #elif defined(GP_ARCH_mips64)
96 #else
98 #endif
101 }
102 }
126 }
128 }
138 // For each reg we care about, print the recovery expression.
139 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
143 #elif defined(GP_ARCH_arm)
150 #elif defined(GP_ARCH_arm64)
154 #elif defined(GP_ARCH_mips64)
158 #else
160 #endif
162 }
168 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
175 #elif defined(GP_ARCH_arm)
188 #elif defined(GP_ARCH_arm64)
195 #elif defined(GP_ARCH_mips64)
202 #else
204 #endif
207 }
208 }
211 // All fields are of type LExpr and so are initialised by LExpr::LExpr().
212 }
214 ////////////////////////////////////////////////////////////////
215 // SecMap //
216 ////////////////////////////////////////////////////////////////
218 // See header file LulMainInt.h for comments about invariants.
224 InfallibleAllocPolicy>),
227 // Degenerate case.
233 }
234 }
242 }
243 }
245 // RUNS IN NO-MALLOC CONTEXT
247 // Binary search mExtents to find one that brackets |ia|.
248 // lo and hi need to be signed, else the loop termination tests
249 // don't work properly. Note that this works correctly even when
250 // mExtents.size() == 0.
252 // Can't do this until the array has been sorted and preened.
258 // current unsearched space is from lo to hi, inclusive.
260 // not found
262 }
272 }
276 }
281 }
282 // NOTREACHED
283 }
285 // Add a RuleSet to the collection. The rule is copied in. Calling
286 // this makes the map non-searchable.
290 // Zero length RuleSet? Meaningless, but ignore it anyway.
293 }
295 // Ignore attempts to add RuleSets whose address range doesn't fall within
296 // the declared address range for the SecMap. Maybe we should print some
297 // kind of error message rather than silently ignoring them.
300 }
302 // Because `mMapStartAVMA` .. `mMapEndAVMA` can specify at most a 2^32-1 byte
303 // chunk of address space, the following must now hold.
306 // See if `mUniqifier` already has `rs`. If so set `dictIx` to the assigned
307 // dictionary index; if not, add `rs` to `mUniqifier` and assign a new
308 // dictionary index. This is the core of the RuleSet-de-duplication process.
314 // If this ever fails, Extents::dictIx will need to be changed to be a
315 // type wider than the current uint16_t.
317 // This returns `false` on OOM. We ignore the return value since we asked
318 // for it to use the InfallibleAllocPolicy.
323 }
327 // Because Extents::len is a uint16_t, we have to add multiple `mExtents`
328 // entries to cover the case where `len` is equal to or greater than 2^16.
329 // This happens only exceedingly rarely. In order to get more test
330 // coverage on what would otherwise be a very low probability (less than
331 // 0.0002%) corner case, we do this in steps of 4095. On libxul.so as of
332 // Sept 2020, this increases the number of `mExtents` entries by about
333 // 0.05%, hence has no meaningful effect on space use, but increases the
334 // use of this corner case, and hence its test coverage, by a factor of 250.
339 }
340 }
342 // Add a PfxInstr to the vector of such instrs, and return the index
343 // in the vector. Calling this makes the map non-searchable.
348 }
350 // Prepare the map for searching, by sorting it, de-overlapping entries and
351 // removing any resulting zero-length entries. At the start of this routine,
352 // all Extents should fall within [mMapMinAVMA, mMapMaxAVMA] and not have zero
353 // length, as a result of the checks in AddRuleSet().
355 // At this point, the de-duped RuleSets are in `mUniqifier`, and
356 // `mDictionary` is empty. This method will, amongst other things, copy
357 // them into `mDictionary` in order of their assigned dictionary-index
358 // values, as established by `SecMap::AddRuleSet`, and free `mUniqifier`;
359 // after this method, it has no further use.
367 }
370 // The map is empty. This should never happen.
375 }
378 // We must have at least one Extent, and as a consequence there must be at
379 // least one entry in the uniqifier.
382 #ifdef DEBUG
383 // Check invariants on incoming Extents.
391 // Upper bounds test. There's no lower bounds test because `offset` is a
392 // positive displacement from `mMapMinAVMA`, so a small underrun will
393 // manifest as `len` being close to 2^32.
395 }
396 #endif
398 // Sort by start addresses.
402 });
404 // Iteratively truncate any overlaps and remove any zero length
405 // entries that might result, or that may have been present
406 // initially. Unless the input is seriously screwy, this is
407 // expected to iterate only once.
415 }
423 }
425 nZeroLen++;
426 }
427 }
430 nZeroLen++;
431 }
433 // At this point, the entries are in-order and non-overlapping.
434 // If none of them are zero-length, we are done.
437 }
439 // Slide back the entries to remove the zero length ones.
444 }
447 }
449 }
455 nZeroLen--;
456 }
459 }
463 #ifdef DEBUG
464 // Do a final check on the extents: their address ranges must be
465 // ascending, non overlapping, non zero sized.
474 }
475 }
476 #endif
478 // Create the final dictionary by enumerating the uniqifier.
481 RuleSet dummy;
487 }
492 }
498 buf,
499 "PrepareRuleSets: %lu extents, %lu rulesets, "
506 // Is now usable for binary search.
509 #if 0
516 }
518 #endif
519 }
526 // It's conceivable that these calls would be unsafe with some
527 // implementations of std::vector, but it seems to be working for now...
532 }
537 }
539 ////////////////////////////////////////////////////////////////
540 // SegArray //
541 ////////////////////////////////////////////////////////////////
543 // A SegArray holds a set of address ranges that together exactly
544 // cover an address range, with no overlaps or holes. Each range has
545 // an associated value, which in this case has been specialised to be
546 // a simple boolean. The representation is kept to minimal canonical
547 // form in which adjacent ranges with the same associated value are
548 // merged together. Each range is represented by a |struct Seg|.
549 //
550 // SegArrays are used to keep track of which parts of the address
551 // space are known to contain instructions.
557 }
561 }
567 }
569 }
571 // RUNS IN NO-MALLOC CONTEXT
577 }
581 }
586 }
594 };
601 }
604 // Back up one, so as not to miss an opportunity to merge
605 // with the entry after this one.
607 }
608 }
610 // RUNS IN NO-MALLOC CONTEXT
615 // The unsearched space is lo .. hi inclusive.
617 // Not found. This can't happen.
619 }
626 }
630 }
632 }
633 }
639 }
643 }
652 }
654 }
657 };
659 ////////////////////////////////////////////////////////////////
660 // PriMap //
661 ////////////////////////////////////////////////////////////////
667 // RUNS IN NO-MALLOC CONTEXT
672 }
674 // Add a secondary map. No overlaps allowed w.r.t. existing
675 // secondary maps.
677 // We can't add an empty SecMap to the PriMap. But that's OK
678 // since we'd never be able to find anything in it anyway.
681 }
683 // Iterate through the SecMaps and find the right place for this
684 // one. At the same time, ensure that the in-order
685 // non-overlapping invariant is preserved (and, generally, holds).
686 // FIXME: this gives a cost that is O(N^2) in the total number of
687 // shared objects in the system. ToDo: better.
696 // |aSecMap| needs to be inserted immediately before mSecMaps[i].
698 }
699 }
702 // It goes at the end.
708 }
714 }
716 // Remove and delete any SecMaps in the mapping, that intersect
717 // with the specified address range.
723 // Iterate from end to start over the vector, so as to ensure
724 // that the special case where |avma_min| and |avma_max| denote
725 // the entire address space, can be completed in time proportional
726 // to the number of elements in the map.
730 // There's no overlap. Move on.
732 }
733 // We need to remove mSecMaps[i] and slide all those above it
734 // downwards to cover the hole.
736 }
737 }
738 }
740 // Return the number of currently contained SecMaps.
746 // It's conceivable that this call would be unsafe with some
747 // implementations of std::vector, but it seems to be working for now...
752 }
755 }
758 // RUNS IN NO-MALLOC CONTEXT
760 // Binary search mSecMaps to find one that brackets |ia|.
761 // lo and hi need to be signed, else the loop termination tests
762 // don't work properly.
766 // current unsearched space is from lo to hi, inclusive.
768 // not found
770 }
778 }
782 }
785 }
786 // NOTREACHED
787 }
790 // sorted array of per-object ranges, non overlapping, non empty
793 // a logging sink, for debugging.
795 };
797 ////////////////////////////////////////////////////////////////
798 // LUL //
799 ////////////////////////////////////////////////////////////////
801 #define LUL_LOG(_str) \
802 do { \
803 char buf[200]; \
805 uint64_t(profiler_current_process_id().ToNumber()), \
806 uint64_t(profiler_current_thread_id().ToNumber()), this, \
807 (_str)); \
808 buf[sizeof(buf) - 1] = 0; \
809 mLog(buf); \
810 } while (0)
820 }
828 }
831 // This is racey in the sense that it can't guarantee that
832 // n_new == n_new_Context + n_new_CFI + n_new_Scanned
833 // if it should happen that mStats is updated by some other thread
834 // in between computation of n_new and n_new_{Context,CFI,FP}.
835 // But it's just stats printing, so we don't really care.
844 "LUL frame stats: TOTAL %5u"
849 }
850 }
856 // Measurement of the following members may be added later if DMD finds it
857 // is worthwhile:
858 // - mSegArray
859 // - mUSU
862 }
866 // Don't assert for Admin mode here. That is, tolerate a call here
867 // if we are already in Unwinding mode.
871 }
882 aFileName);
886 // We can't have a SecMap covering more than 2^32-1 bytes of address space.
887 // See the definition of SecMap for why. Rather than crash the system, just
888 // limit the SecMap's size accordingly. This case is never actually
889 // expected to happen.
892 }
895 // Ignore obviously-stupid notifications.
897 // Here's a new mapping, for this object.
901 // Read CFI or EXIDX unwind data into |smap|.
909 }
920 // Add it to the primary map (the top level set of mapped objects).
923 // Tell the segment array about the mapping, so that the stack
924 // scan and __kernel_syscall mechanisms know where valid code is.
926 }
927 }
941 // Ignore obviously-stupid notifications.
943 // Tell the segment array about the mapping, so that the stack
944 // scan and __kernel_syscall mechanisms know where valid code is.
946 }
947 }
963 // Remove from the primary map, any secondary maps that intersect
964 // with the address range. Also delete the secondary maps.
967 // Tell the segment array that the address range no longer
968 // contains valid code.
975 }
982 }
984 // RUNS IN NO-MALLOC CONTEXT
988 }
990 // Lower limit check. |aAddr.Value()| is the lowest requested address
991 // and |aStackImg->mStartAvma| is the lowest address we actually have,
992 // so the comparison is straightforward.
995 }
997 // Upper limit check. We must compute the highest requested address
998 // and the highest address we actually have, but being careful to
999 // avoid overflow. In particular if |aAddr| is 0xFFF...FFF or the
1000 // 3/7 values below that, then we will get overflow. See bug #1245477.
1002 CheckedUWord highest_requested_plus_one =
1004 CheckedUWord highest_available_plus_one =
1011 }
1016 }
1018 // RUNS IN NO-MALLOC CONTEXT
1020 TaggedUWord aCFA) {
1024 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
1031 #elif defined(GP_ARCH_arm)
1044 #elif defined(GP_ARCH_arm64)
1051 #elif defined(GP_ARCH_mips64)
1058 #else
1060 #endif
1064 }
1065 }
1067 // RUNS IN NO-MALLOC CONTEXT
1068 // See prototype for comment.
1072 // A small evaluation stack, and a stack pointer, which points to
1073 // the highest numbered in-use element.
1079 #define PUSH(_tuw) \
1080 do { \
1082 stack[++stackPointer] = (_tuw); \
1083 } while (0)
1085 #define POP(_lval) \
1086 do { \
1088 _lval = stack[stackPointer--]; \
1089 } while (0)
1091 // Cursor in the instruction sequence.
1094 // Check the start point is sane.
1098 {
1099 // The instruction sequence must start with PX_Start. If not,
1100 // something is seriously wrong.
1104 // Push the CFA on the stack to start with (or not), as required by
1105 // the original DW_OP_*expression* CFI.
1107 }
1117 // This should appear only at the start of the sequence.
1120 // We just took care of that, so we shouldn't see it again.
1131 }
1133 TaggedUWord addr;
1137 }
1144 }
1151 }
1158 }
1165 }
1172 }
1179 }
1183 }
1186 // Evaluation finished. The top value on the stack is the result.
1189 }
1190 // Else fall through
1192 fail:
1195 #undef PUSH
1196 #undef POP
1197 }
1199 // RUNS IN NO-MALLOC CONTEXT
1210 }
1215 }
1220 }
1222 }
1226 }
1227 }
1229 // RUNS IN NO-MALLOC CONTEXT
1232 // Take a copy of regs, since we'll need to refer to the old values
1233 // whilst computing the new ones.
1236 // Mark all the current register values as invalid, so that the
1237 // caller can see, on our return, which ones have been computed
1238 // anew. If we don't even manage to compute a new PC value, then
1239 // the caller will have to abandon the unwind.
1240 // FIXME: Create and use instead: aRegs->SetAllInvalid();
1241 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
1245 #elif defined(GP_ARCH_arm)
1252 #elif defined(GP_ARCH_arm64)
1257 #elif defined(GP_ARCH_mips64)
1261 #else
1263 #endif
1265 // This is generally useful.
1268 // First, compute the CFA.
1272 // If we didn't manage to compute the CFA, well .. that's ungood,
1273 // but keep going anyway. It'll be OK provided none of the register
1274 // value rules mention the CFA. In any case, compute the new values
1275 // for each register that we're tracking.
1277 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
1284 #elif defined(GP_ARCH_arm)
1296 #elif defined(GP_ARCH_arm64)
1302 #elif defined(GP_ARCH_mips64)
1306 #else
1308 #endif
1310 // We're done. Any regs for which we didn't manage to compute a
1311 // new value will now be marked as invalid.
1312 }
1314 // RUNS IN NO-MALLOC CONTEXT
1323 /////////////////////////////////////////////////////////
1324 // BEGIN UNWIND
1335 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
1343 #elif defined(GP_ARCH_arm)
1345 buf,
1346 "LoopTop: r15 %d/%llx r7 %d/%llx r11 %d/%llx"
1356 #elif defined(GP_ARCH_arm64)
1358 buf,
1359 "LoopTop: pc %d/%llx x29 %d/%llx x30 %d/%llx"
1367 #elif defined(GP_ARCH_mips64)
1375 #else
1377 #endif
1378 }
1380 #if defined(GP_ARCH_amd64) || defined(GP_ARCH_x86)
1383 #elif defined(GP_ARCH_arm)
1386 #elif defined(GP_ARCH_arm64)
1389 #elif defined(GP_ARCH_mips64)
1392 #else
1394 #endif
1398 }
1400 // If we don't have a valid value for the PC, give up.
1403 }
1405 // If this is the innermost frame, record the SP value, which
1406 // presumably is valid. If this isn't the innermost frame, and we
1407 // have a valid SP value, check that its SP value isn't less that
1408 // the one we've seen so far, so as to catch potential SP value
1409 // cycles.
1416 // Hmm, SP going in the wrong direction. Let's stop.
1418 }
1419 // Remember where we got to.
1421 }
1422 }
1428 // Find the RuleSet for the current IA, if any. This will also
1429 // query the backing (secondary) maps if it isn't found in the
1430 // thread-local cache.
1432 // If this isn't the innermost frame, back up into the calling insn.
1435 }
1448 }
1450 #if defined(GP_PLAT_x86_android) || defined(GP_PLAT_x86_linux)
1451 /////////////////////////////////////////////
1452 ////
1453 // On 32 bit x86-linux, syscalls are often done via the VDSO
1454 // function __kernel_vsyscall, which doesn't have a corresponding
1455 // object that we can read debuginfo from. That effectively kills
1456 // off all stack traces for threads blocked in syscalls. Hence
1457 // special-case by looking at the code surrounding the program
1458 // counter.
1459 //
1460 // 0xf7757420 <__kernel_vsyscall+0>: push %ecx
1461 // 0xf7757421 <__kernel_vsyscall+1>: push %edx
1462 // 0xf7757422 <__kernel_vsyscall+2>: push %ebp
1463 // 0xf7757423 <__kernel_vsyscall+3>: mov %esp,%ebp
1464 // 0xf7757425 <__kernel_vsyscall+5>: sysenter
1465 // 0xf7757427 <__kernel_vsyscall+7>: nop
1466 // 0xf7757428 <__kernel_vsyscall+8>: nop
1467 // 0xf7757429 <__kernel_vsyscall+9>: nop
1468 // 0xf775742a <__kernel_vsyscall+10>: nop
1469 // 0xf775742b <__kernel_vsyscall+11>: nop
1470 // 0xf775742c <__kernel_vsyscall+12>: nop
1471 // 0xf775742d <__kernel_vsyscall+13>: nop
1472 // 0xf775742e <__kernel_vsyscall+14>: int $0x80
1473 // 0xf7757430 <__kernel_vsyscall+16>: pop %ebp
1474 // 0xf7757431 <__kernel_vsyscall+17>: pop %edx
1475 // 0xf7757432 <__kernel_vsyscall+18>: pop %ecx
1476 // 0xf7757433 <__kernel_vsyscall+19>: ret
1477 //
1478 // In cases where the sampled thread is blocked in a syscall, its
1479 // program counter will point at "pop %ebp". Hence we look for
1480 // the sequence "int $0x80; pop %ebp; pop %edx; pop %ecx; ret", and
1481 // the corresponding register-recovery actions are:
1482 // new_ebp = *(old_esp + 0)
1483 // new eip = *(old_esp + 12)
1484 // new_esp = old_esp + 16
1485 //
1486 // It may also be the case that the program counter points two
1487 // nops before the "int $0x80", viz, is __kernel_vsyscall+12, in
1488 // the case where the syscall has been restarted but the thread
1489 // hasn't been rescheduled. The code below doesn't handle that;
1490 // it could easily be made to.
1491 //
1513 }
1514 }
1515 }
1516 }
1517 ////
1518 /////////////////////////////////////////////
1521 // So, do we have a ruleset for this address? If so, use it now.
1526 }
1527 // Use the RuleSet to compute the registers for the previous
1528 // frame. |regs| is modified in-place.
1531 }
1533 #if defined(GP_PLAT_amd64_linux) || defined(GP_PLAT_x86_linux) || \
1534 defined(GP_PLAT_amd64_android) || defined(GP_PLAT_x86_android) || \
1535 defined(GP_PLAT_amd64_freebsd)
1536 // There's no RuleSet for the specified address. On amd64/x86_linux, see if
1537 // it's possible to recover the caller's frame by using the frame pointer.
1539 // We seek to compute (new_IP, new_SP, new_BP) from (old_BP, stack image),
1540 // and assume the following layout:
1541 //
1542 // <--- new_SP
1543 // +----------+
1544 // | new_IP | (return address)
1545 // +----------+
1546 // | new_BP | <--- old_BP
1547 // +----------+
1548 // | .... |
1549 // | .... |
1550 // | .... |
1551 // +----------+ <---- old_SP (arbitrary, but must be <= old_BP)
1556 // points at new_BP ?
1558 // points at new_IP ?
1560 // is the new_SP ?
1565 // We don't need to do any range, alignment or validity checks for
1566 // addresses passed to DerefTUW, since that performs them itself, and
1567 // returns an invalid value on failure. Any such value will poison
1568 // subsequent uses, and we do a final check for validity before putting
1569 // the computed values into |regs|.
1581 }
1582 }
1583 }
1584 #elif defined(GP_ARCH_arm64)
1585 // Here is an example of generated code for prologue and epilogue..
1586 //
1587 // stp x29, x30, [sp, #-16]!
1588 // mov x29, sp
1589 // ...
1590 // ldp x29, x30, [sp], #16
1591 // ret
1592 //
1593 // Next is another example of generated code.
1594 //
1595 // stp x20, x19, [sp, #-32]!
1596 // stp x29, x30, [sp, #16]
1597 // add x29, sp, #0x10
1598 // ...
1599 // ldp x29, x30, [sp, #16]
1600 // ldp x20, x19, [sp], #32
1601 // ret
1602 //
1603 // Previous x29 and x30 register are stored in the address of x29 register.
1604 // But since sp register value depends on local variables, we cannot compute
1605 // previous sp register from current sp/fp/lr register and there is no
1606 // regular rule for sp register in prologue. But since return address is lr
1607 // register, if x29 is valid, we will get return address without sp
1608 // register.
1609 //
1610 // So we assume the following layout that if no rule set. x29 is frame
1611 // pointer, so we will be able to compute x29 and x30 .
1612 //
1613 // +----------+ <--- new_sp (cannot compute)
1614 // | .... |
1615 // +----------+
1616 // | new_lr | (return address)
1617 // +----------+
1618 // | new_fp | <--- old_fp
1619 // +----------+
1620 // | .... |
1621 // | .... |
1622 // +----------+ <---- old_sp (arbitrary, but unused)
1635 // When using frame pointer to walk stack, we cannot compute sp
1636 // register since we cannot compute sp register from fp/lr/sp
1637 // register, and there is no regular rule to compute previous sp
1638 // register. So mark as invalid.
1642 }
1643 }
1644 }
1646 // defined(GP_PLAT_amd64_android) || defined(GP_PLAT_x86_android) ||
1647 // defined(GP_PLAT_amd64_freebsd)
1649 // We failed to recover a frame either using CFI or FP chasing, and we
1650 // have no other ways to recover the frame. So we have to give up.
1655 // END UNWIND
1656 /////////////////////////////////////////////////////////
1657 }
1659 ////////////////////////////////////////////////////////////////
1660 // LUL Unit Testing //
1661 ////////////////////////////////////////////////////////////////
1665 #if defined(GP_ARCH_mips64)
1670 }
1671 #endif
1673 // This function is innermost in the test call sequence. It uses LUL
1674 // to unwind, and compares the result with the sequence specified in
1675 // the director string. These need to agree in order for the test to
1676 // pass. In order not to screw up the results, this function needs
1677 // to have a not-very big stack frame, since we're only presenting
1678 // the innermost LUL_UNIT_TEST_STACK_SIZE bytes of stack to LUL, and
1679 // that chunk unavoidably includes the frame for this function.
1680 //
1681 // This function must not be inlined into its callers. Doing so will
1682 // cause the expected-vs-actual backtrace consistency checking to
1683 // fail. Prints summary results to |aLUL|'s logging sink and also
1684 // returns a boolean indicating whether or not the test failed.
1687 // Get hold of the current unwind-start registers.
1688 UnwindRegs startRegs;
1690 #if defined(GP_ARCH_amd64)
1694 "leaq 0(%%rip), %%r15"
1696 "movq %%r15, 0(%0)"
1698 "movq %%rsp, 8(%0)"
1700 "movq %%rbp, 16(%0)"
1702 :
1710 #elif defined(GP_PLAT_x86_linux) || defined(GP_PLAT_x86_android)
1716 "popl %%edi"
1718 "movl %%edi, 0(%0)"
1720 "movl %%esp, 4(%0)"
1722 "movl %%ebp, 8(%0)"
1724 :
1732 #elif defined(GP_PLAT_arm_linux) || defined(GP_PLAT_arm_android)
1736 "mov r0, r15"
1738 "str r0, [%0, #0]"
1740 "str r14, [%0, #4]"
1742 "str r13, [%0, #8]"
1744 "str r12, [%0, #12]"
1746 "str r11, [%0, #16]"
1748 "str r7, [%0, #20]"
1750 :
1761 #elif defined(GP_ARCH_arm64)
1771 :
1780 #elif defined(GP_ARCH_mips64)
1786 :
1795 #else
1797 #endif
1799 // Get hold of the innermost LUL_UNIT_TEST_STACK_SIZE bytes of the
1800 // stack.
1808 }
1816 }
1818 // Unwind it.
1830 // if (0) {
1831 // // Show what we have.
1832 // fprintf(stderr, "Got %d frames:\n", (int)framesUsed);
1833 // for (size_t i = 0; i < framesUsed; i++) {
1834 // fprintf(stderr, " [%2d] SP %p PC %p\n",
1835 // (int)i, (void*)frameSPs[i], (void*)framePCs[i]);
1836 // }
1837 // fprintf(stderr, "\n");
1838 //}
1840 // Check to see if there's a consistent binding between digits in
1841 // the director string ('1' .. '8') and the PC values acquired by
1842 // the unwind. If there isn't, the unwinding has failed somehow.
1846 // The general plan is to work backwards along the director string
1847 // and forwards along the framePCs array. Doing so corresponds to
1848 // working outwards from the innermost frame of the recursive test set.
1851 // Find the end. This leaves |cursor| two bytes past the first
1852 // character we want to look at -- see comment below.
1855 // Counts the number of consistent frames.
1858 // Iterate back to the start of the director string. The starting
1859 // points are a bit complex. We can't use framePCs[0] because that
1860 // contains the PC in this frame (above). We can't use framePCs[1]
1861 // because that will contain the PC at return point in the recursive
1862 // test group (TestFn[1-8]) for their call "out" to this function,
1863 // GetAndCheckStackTrace. Although LUL will compute a correct
1864 // return address, that will not be the same return address as for a
1865 // recursive call out of the the function to another function in the
1866 // group. Hence we can only start consistency checking at
1867 // framePCs[2].
1868 //
1869 // To be consistent, then, we must ignore the last element in the
1870 // director string as that corresponds to framePCs[1]. Hence the
1871 // start points are: framePCs[2] and the director string 2 bytes
1872 // before the terminating zero.
1873 //
1874 // Also as a result of this, the number of consistent frames counted
1875 // will always be one less than the length of the director string
1876 // (not including its terminating zero).
1882 // If this doesn't hold, the director string is ill-formed.
1886 // There's no binding for |c| yet, so install |pc| and carry on.
1888 nConsistent++;
1890 }
1891 // There's a pre-existing binding for |c|. Check it's consistent.
1893 // Not consistent. Give up now.
1895 }
1896 // Consistent. Keep going.
1897 nConsistent++;
1898 }
1900 // So, did we succeed?
1903 // Show the results.
1915 }
1917 // Macro magic to create a set of 8 mutually recursive functions with
1918 // varying frame sizes. These will recurse amongst themselves as
1919 // specified by |strP|, the directory string, and call
1920 // GetAndCheckStackTrace when the string becomes empty, passing it the
1921 // original value of the string. This checks the result, printing
1922 // results on |aLUL|'s logging sink, and also returns a boolean
1923 // indicating whether or not the results are acceptable (correct).
1925 #define DECL_TEST_FN(NAME) \
1926 bool NAME(LUL* aLUL, const char* strPorig, const char* strP);
1928 #define GEN_TEST_FN(NAME, FRAMESIZE) \
1929 bool NAME(LUL* aLUL, const char* strPorig, const char* strP) { \
1937 char space[FRAMESIZE]; \
1939 \
1944 return !GetAndCheckStackTrace(aLUL, strPorig); \
1945 } else { \
1957 bool (*nextFn)(LUL*, const char*, const char*) = NULL; \
1958 switch (*strP) { \
1960 nextFn = TestFn1; \
1961 break; \
1963 nextFn = TestFn2; \
1964 break; \
1966 nextFn = TestFn3; \
1967 break; \
1969 nextFn = TestFn4; \
1970 break; \
1972 nextFn = TestFn5; \
1973 break; \
1975 nextFn = TestFn6; \
1976 break; \
1978 nextFn = TestFn7; \
1979 break; \
1981 nextFn = TestFn8; \
1982 break; \
1983 default: \
1984 nextFn = TestFn8; \
1985 break; \
1986 } \
1991 bool passed = nextFn(aLUL, strPorig, strP + 1); \
1992 Unused << write(1, space, 0); \
1994 return passed; \
1995 } \
1996 }
1998 // The test functions are mutually recursive, so it is necessary to
1999 // declare them before defining them.
2018 // This starts the test sequence going. Call here to generate a
2019 // sequence of calls as directed by the string |dstring|. The call
2020 // sequence will, from its innermost frame, finish by calling
2021 // GetAndCheckStackTrace() and passing it |dstring|.
2022 // GetAndCheckStackTrace() will unwind the stack, check consistency
2023 // of those results against |dstring|, and print a pass/fail message
2024 // to aLUL's logging sink. It also updates the counters in *aNTests
2025 // and aNTestsPassed.
2029 // Ensure that the stack has at least this much space on it. This
2030 // makes it safe to saw off the top LUL_UNIT_TEST_STACK_SIZE bytes
2031 // and hand it to LUL. Safe in the sense that no segfault can
2032 // happen because the stack is at least this big. This is all
2033 // somewhat dubious in the sense that a sufficiently clever compiler
2034 // (clang, for one) can figure out that space[] is unused and delete
2035 // it from the frame. Hence the somewhat elaborate hoop jumping to
2036 // fill it up before the call and to at least appear to use the
2037 // value afterwards.
2042 }
2044 // Really run the test.
2047 // Appear to use space[], by visiting the value to compute some kind
2048 // of checksum, and then (apparently) using the checksum.
2051 // If this doesn't fool LLVM, I don't know what will.
2053 }
2056 // Update the counters.
2060 }
2061 }
2077 }