| blob | f8c593f6271ed103ac0478c68e54881d16a8dc36 |
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
7 /* API for getting a stack trace of the C/C++ stack on the current thread */
12 #ifdef XP_WIN
14 # include <io.h>
15 #else
16 # include <unistd.h>
17 #endif
20 #include <string.h>
22 #if defined(ANDROID) && defined(MOZ_LINKER)
24 # include <android/log.h>
25 #endif
29 // for _Unwind_Backtrace from libcxxrt or libunwind
30 // cxxabi.h from libcxxrt implicitly includes unwind.h first
31 #if defined(HAVE__UNWIND_BACKTRACE) && !defined(_GNU_SOURCE)
32 # define _GNU_SOURCE
33 #endif
35 #if defined(HAVE_DLOPEN) || defined(XP_DARWIN)
36 # include <dlfcn.h>
37 #endif
39 #if (defined(XP_DARWIN) && \
40 (defined(__i386) || defined(__ppc__) || defined(HAVE__UNWIND_BACKTRACE)))
41 # define MOZ_STACKWALK_SUPPORTS_MACOSX 1
42 #else
43 # define MOZ_STACKWALK_SUPPORTS_MACOSX 0
44 #endif
46 #if (defined(linux) && \
47 ((defined(__GNUC__) && (defined(__i386) || defined(PPC))) || \
48 defined(HAVE__UNWIND_BACKTRACE)))
49 # define MOZ_STACKWALK_SUPPORTS_LINUX 1
50 #else
51 # define MOZ_STACKWALK_SUPPORTS_LINUX 0
52 #endif
54 #if __GLIBC__ > 2 || (__GLIBC__ == 2 && __GLIBC_MINOR__ >= 1)
55 # define HAVE___LIBC_STACK_END 1
56 #else
57 # define HAVE___LIBC_STACK_END 0
58 #endif
60 #if HAVE___LIBC_STACK_END
62 #endif
64 #ifdef ANDROID
65 # include <algorithm>
66 # include <unistd.h>
67 # include <pthread.h>
68 #endif
74 // Skip frames until we encounter the one we were initialized with,
75 // and then never skip again.
79 }
81 }
83 }
88 };
90 #ifdef XP_WIN
92 # include <windows.h>
93 # include <process.h>
94 # include <stdio.h>
95 # include <malloc.h>
101 # include <imagehlp.h>
102 // We need a way to know if we are building for WXP (or later), as if we are, we
103 // need to use the newer 64-bit APIs. API_VERSION_NUMBER seems to fit the bill.
104 // A value of 9 indicates we want to use the new APIs.
105 # if API_VERSION_NUMBER < 9
106 # error Too old imagehlp.h
107 # endif
109 CRITICAL_SECTION gDbgHelpCS;
111 # if defined(_M_AMD64) || defined(_M_ARM64)
112 // Because various Win64 APIs acquire function-table locks, we need a way of
113 // preventing stack walking while those APIs are being called. Otherwise, the
114 // stack walker may suspend a thread holding such a lock, and deadlock when the
115 // stack unwind code attempts to wait for that lock.
116 //
117 // We're using an atomic counter rather than a critical section because we
118 // don't require mutual exclusion with the stack walker. If the stack walker
119 // determines that it's safe to start unwinding the suspended thread (i.e.
120 // there are no suppressions when the unwind begins), then it's safe to
121 // continue unwinding that thread even if other threads request suppressions
122 // in the meantime, because we can't deadlock with those other threads.
123 //
124 // XXX: This global variable is a larger-than-necessary hammer. A more scoped
125 // solution would be to maintain a counter per thread, but then it would be
126 // more difficult for WalkStackMain64 to read the suspended thread's counter.
133 // We should never desuppress from 0. See bug 1687510 comment 10 for an
134 // example in which this occured.
136 }
138 MFBT_API
141 MFBT_API
144 }
152 // Currently we can only handle one JIT code region at a time
157 }
160 // Currently we can only handle one JIT code region at a time
166 }
170 // Routine to print an error message to standard error.
172 LPSTR lpMsgBuf;
175 FORMAT_MESSAGE_IGNORE_INSERTS,
183 }
187 // We ensure that the critical section is always initialized only once,
188 // which avoids undefined behavior.
193 }();
195 }
197 // Wrapper around a reference to a CONTEXT, to simplify access to main
198 // platform-specific execution registers.
199 // It also avoids using CONTEXT* nullable pointers.
207 # if defined(_M_AMD64)
209 # elif defined(_M_ARM64)
211 # elif defined(_M_IX86)
213 # else
215 # endif
216 }
219 # if defined(_M_AMD64)
221 # elif defined(_M_ARM64)
223 # elif defined(_M_IX86)
225 # else
227 # endif
228 }
231 # if defined(_M_AMD64)
233 # elif defined(_M_ARM64)
235 # elif defined(_M_IX86)
237 # else
239 # endif
240 }
244 };
246 /**
247 * Walk the stack, translating PC's found into strings and recording the
248 * chain in aBuffer. For this to work properly, the DLLs must be rebased
249 * so that the address in the file agrees with the address in memory.
250 * Otherwise StackWalk will return FALSE when it hits a frame in a DLL
251 * whose in memory address doesn't match its in-file address.
252 */
258 # if defined(_M_IX86)
261 }
262 # endif
273 }
275 // If not already provided, get a context for the specified thread.
276 CONTEXT context_buf;
284 }
285 }
288 # if defined(_M_IX86)
289 // Setup initial stack frame to walk from.
290 STACKFRAME64 frame64;
299 # endif
301 # if defined(_M_AMD64) || defined(_M_ARM64)
302 // If there are any active suppressions, then at least one thread (we don't
303 // know which) is holding a lock that can deadlock RtlVirtualUnwind. Since
304 // that thread may be the one that we're trying to unwind, we can't proceed.
305 //
306 // But if there are no suppressions, then our target thread can't be holding
307 // a lock, and it's safe to proceed. By virtue of being suspended, the target
308 // thread can't acquire any new locks during the unwind process, so we only
309 // need to do this check once. After that, sStackWalkSuppressions can be
310 // changed by other threads while we're unwinding, and that's fine because
311 // we can't deadlock with those threads.
314 }
317 # endif
323 // Now walk the stack.
325 DWORD64 addr;
326 DWORD64 spaddr;
328 # if defined(_M_IX86)
329 // 32-bit frame unwinding.
330 // Debug routines are not threadsafe, so grab the lock.
332 BOOL ok =
348 }
349 }
353 }
355 # elif defined(_M_AMD64) || defined(_M_ARM64)
359 // If we reach a frame in JIT code, we don't have enough information to
360 // unwind, so we have to give up.
364 }
366 // We must also avoid msmpeg2vdec.dll's JIT region: they don't generate
367 // unwind data, so their JIT unwind callback just throws up its hands and
368 // terminates the process.
374 }
376 // 64-bit frame unwinding.
377 // Try to look up unwind metadata for the current function.
378 ULONG64 imageBase;
379 PRUNTIME_FUNCTION runtimeFunction =
383 PVOID dummyHandlerData;
384 ULONG64 dummyEstablisherFrame;
389 // Leaf functions can be unwound by hand.
393 // Something went wrong.
395 }
400 # else
402 # endif
406 }
410 }
416 }
418 # if defined(_M_IX86)
421 }
422 # endif
423 }
424 }
429 // We don't pass a aFirstFramePC because we walk the stack for another
430 // thread.
432 aContext);
433 }
440 }
447 /*
448 * You'll want to control this if we are running on an
449 * architecture where the addresses go the other direction.
450 * Not sure this is even a realistic consideration.
451 */
454 /*
455 * If it falls in side the known range, load the symbols.
456 */
464 }
465 }
468 }
470 /*
471 * SymGetModuleInfoEspecial
472 *
473 * Attempt to determine the module information.
474 * Bug 112196 says this DLL may not have been loaded at the time
475 * SymInitialize was called, and thus the module information
476 * and symbol information is not available.
477 * This code rectifies that problem.
478 */
480 // New members were added to IMAGEHLP_MODULE64 (that show up in the
481 // Platform SDK that ships with VC8, but not the Platform SDK that ships
482 // with VC7.1, i.e., between DbgHelp 6.0 and 6.1), but we don't need to
483 // use them, and it's useful to be able to function correctly with the
484 // older library. (Stock Windows XP SP2 seems to ship with dbghelp.dll
485 // version 5.1.) Since Platform SDK version need not correspond to
486 // compiler version, and the version number in debughlp.h was NOT bumped
487 // when these changes were made, ifdef based on a constant that was
488 // added between these versions.
489 # ifdef SSRVOPT_SETCONTEXT
490 # define NS_IMAGEHLP_MODULE64_SIZE \
491 (((offsetof(IMAGEHLP_MODULE64, LoadedPdbName) + sizeof(DWORD64) - 1) / \
492 sizeof(DWORD64)) * \
493 sizeof(DWORD64))
494 # else
495 # define NS_IMAGEHLP_MODULE64_SIZE sizeof(IMAGEHLP_MODULE64)
496 # endif
499 PIMAGEHLP_MODULE64 aModuleInfo,
500 PIMAGEHLP_LINE64 aLineInfo) {
503 /*
504 * Init the vars if we have em.
505 */
509 }
511 /*
512 * Give it a go.
513 * It may already be loaded.
514 */
517 /*
518 * Not loaded, here's the magic.
519 * Go through all the modules.
520 */
521 // Need to cast to PENUMLOADED_MODULES_CALLBACK64 because the
522 // constness of the first parameter of
523 // PENUMLOADED_MODULES_CALLBACK64 varies over SDK versions (from
524 // non-const to const over time). See bug 391848 and bug
525 // 415426.
530 /*
531 * One final go.
532 * If it fails, then well, we have other problems.
533 */
535 }
536 }
538 /*
539 * If we got module info, we may attempt line info as well.
540 * We will not report failure if this does not work.
541 */
547 // Clear out aLineInfo to indicate that it's not valid
549 }
550 }
553 }
559 }
564 /* XXX At some point we need to arrange to call SymCleanup */
569 }
573 }();
575 }
588 }
591 BOOL ok;
593 // debug routines are not threadsafe, so grab the lock.
596 //
597 // Attempt to load module info before we attempt to resolve the symbol.
598 // This just makes sure we get good info if available.
599 //
602 IMAGEHLP_MODULE64 modInfo;
603 IMAGEHLP_LINE64 lineInfo;
604 BOOL modInfoRes;
618 }
619 }
628 DWORD64 displacement;
635 }
639 }
641 // i386 or PPC Linux stackwalking code
642 //
643 // Changes to to OS/Architecture support here should be reflected in
644 // build/moz.configure/memory.configure
645 #elif HAVE_DLADDR && \
646 (HAVE__UNWIND_BACKTRACE || MOZ_STACKWALK_SUPPORTS_LINUX || \
647 MOZ_STACKWALK_SUPPORTS_MACOSX)
649 # include <stdlib.h>
650 # include <stdio.h>
652 // On glibc 2.1, the Dl_info api defined in <dlfcn.h> is only exposed
653 // if __USE_GNU is defined. I suppose its some kind of standards
654 // adherence thing.
655 //
656 # if (__GLIBC_MINOR__ >= 1) && !defined(__USE_GNU)
657 # define __USE_GNU
658 # endif
660 // This thing is exported by libstdc++
661 // Yes, this is a gcc only hack
662 # if defined(MOZ_DEMANGLE_SYMBOLS)
663 # include <cxxabi.h>
671 # if defined(MOZ_DEMANGLE_SYMBOLS)
672 /* See demangle.h in the gcc source for the voodoo */
679 }
681 }
685 // {x86, ppc} x {Linux, Mac} stackwalking code.
686 //
687 // Changes to to OS/Architecture support here should be reflected in
688 // build/moz.configure/memory.configure
689 # if ((defined(__i386) || defined(PPC) || defined(__ppc__)) && \
690 (MOZ_STACKWALK_SUPPORTS_MACOSX || MOZ_STACKWALK_SUPPORTS_LINUX))
700 // Get the frame pointer
704 # if HAVE___LIBC_STACK_END
706 # elif defined(XP_DARWIN)
708 # elif defined(ANDROID)
709 pthread_attr_t sattr;
715 // bionic's pthread_attr_getstack doesn't tell the truth for the main
716 // thread (see bug 846670). So don't use it for the main thread.
721 }
722 }
724 // So consider the current frame pointer + an arbitrary size of 8MB
725 // (modulo overflow ; not really arbitrary as it's the default stack
726 // size for the main thread) if pthread_attr_getstack failed for
727 // some reason (or was skipped).
732 }
733 # else
734 # error Unsupported configuration
735 # endif
737 stackEnd);
738 }
740 # elif defined(HAVE__UNWIND_BACKTRACE)
742 // libgcc_s.so symbols _Unwind_Backtrace@@GCC_3.3 and _Unwind_GetIP@@GCC_3.0
743 # include <unwind.h>
746 MozWalkStackCallback callback;
747 FrameSkipper skipper;
751 };
757 // TODO Use something like '_Unwind_GetGR()' to get the stack pointer.
762 // Again, any error code that stops the walk will do.
764 }
765 }
767 }
772 unwind_info info;
779 // We ignore the return value from _Unwind_Backtrace. There are three main
780 // reasons for this.
781 // - On ARM/Android bionic's _Unwind_Backtrace usually (always?) returns
782 // _URC_FAILURE. See
783 // https://bugzilla.mozilla.org/show_bug.cgi?id=717853#c110.
784 // - If aMaxFrames != 0, we want to stop early, and the only way to do that
785 // is to make unwind_callback return something other than _URC_NO_REASON,
786 // which causes _Unwind_Backtrace to return a non-success code.
787 // - MozStackWalk doesn't have a return value anyway.
789 }
791 # endif
802 Dl_info info;
804 # if defined(ANDROID) && defined(MOZ_LINKER)
806 # else
808 # endif
812 }
818 # if !defined(XP_FREEBSD)
819 // On FreeBSD, dli_sname is unusably bad, it often returns things like
820 // 'gtk_xtbin_new' or 'XRE_GetBootstrap' instead of long C++ symbols. Just let
821 // GetFunction do the lookup directly in the ELF image.
826 }
831 // Just use the mangled symbol if demangling failed.
834 }
837 # endif
840 }
857 }
859 #endif
861 #if defined(XP_WIN) || defined(XP_MACOSX) || defined(XP_LINUX)
863 # if defined(XP_MACOSX) && defined(__aarch64__)
864 // On macOS arm64, system libraries are arm64e binaries, and arm64e can do
865 // pointer authentication: The low bits of the pointer are the actual pointer
866 // value, and the high bits are an encrypted hash. During stackwalking, we need
867 // to strip off this hash. In theory, ptrauth_strip would be the right function
868 // to call for this. However, that function is a no-op unless it's called from
869 // code which also builds as arm64e - which we do not. So we cannot use it. So
870 // for now, we hardcode a mask that seems to work today: 40 bits for the pointer
871 // and 24 bits for the hash seems to do the trick. We can worry about
872 // dynamically computing the correct mask if this ever stops working.
875 # else
877 # endif
879 MOZ_ASAN_IGNORE
884 // Stack walking code courtesy Kipp's "leaky".
889 // Sanitize the given aBp. Assume that something reasonably close to
890 // but before the stack end is going be a valid frame pointer. Also
891 // check that it is an aligned address. This increases the chances
892 // that if the pointer is not valid (which might happen if the caller
893 // called __builtin_frame_address(1) and its frame is busted for some
894 // reason), we won't read it, leading to a crash. Because the calling
895 // code is not using frame pointers when returning, it might actually
896 // recover just fine.
902 }
906 // aBp may not be a frame pointer on i386 if code was compiled with
907 // -fomit-frame-pointer, so do some sanity checks.
908 // (aBp should be a frame pointer on ppc(64) but checking anyway may help
909 // a little if the stack has been corrupted.)
910 // We don't need to check against the begining of the stack because
911 // we can assume that aBp > sp
914 }
915 # if (defined(__ppc__) && defined(XP_MACOSX)) || defined(__powerpc64__)
916 // ppc mac or powerpc64 linux
922 # endif
924 // Strip off pointer authentication hash, if present. For now, it looks
925 // like only return addresses require stripping, and stack pointers do
926 // not. This might change in the future.
930 // Assume that the SP points to the BP of the function
931 // it called. We can't know the exact location of the SP
932 // but this should be sufficient for our use the SP
933 // to order elements on the stack.
934 numFrames++;
938 }
939 }
941 }
942 }
949 // We don't pass a aFirstFramePC because we start walking the stack from the
950 // frame at aBp.
952 aStackEnd);
953 }
957 #else
965 #endif
974 }
983 // We have a filename and (presumably) a line number. Use them.
987 // We have no filename, but we do have a library name. Use it and the
988 // library offset, and print them in a way that `fix_stacks.py` can
989 // post-process.
994 // We have nothing useful to go on. (The format string is split because
995 // '??)' is a trigraph and causes a warning, sigh.)
997 "#%02u: ??? (???:???"
999 aFrameNumber);
1000 }
1001 }
1004 #ifdef XP_WIN
1006 #else
1008 #endif
1010 #ifdef XP_WIN
1012 #else
1014 #endif
1017 }
1020 }
1021 }
1026 MozCodeAddressDetails details;
1034 }
1043 }
1049 }();
1051 }
1058 }
1059 }
1067 }
1075 }
1076 }