| blob | 35e4128955b1b71d8f8d4ad0cd6dd3d21199c3ab |
1 /*
2 * interrupt-handling magic
3 */
5 /*
6 * This software is part of the SBCL system. See the README file for
7 * more information.
8 *
9 * This software is derived from the CMU CL system, which was
10 * written at Carnegie Mellon University and released into the
11 * public domain. The software is in the public domain and is
12 * provided with absolutely no warranty. See the COPYING and CREDITS
13 * files for more information.
14 */
17 /* As far as I can tell, what's going on here is:
18 *
19 * In the case of most signals, when Lisp asks us to handle the
20 * signal, the outermost handler (the one actually passed to UNIX) is
21 * either interrupt_handle_now(..) or maybe_now_maybe_later(..).
22 * In that case, the Lisp-level handler is stored in interrupt_handlers[..]
23 * and interrupt_low_level_handlers[..] is cleared.
24 *
25 * However, some signals need special handling, e.g.
26 *
27 * o the SIGSEGV (for e.g. Linux) or SIGBUS (for e.g. FreeBSD) used by the
28 * garbage collector to detect violations of write protection,
29 * because some cases of such signals (e.g. GC-related violations of
30 * write protection) are handled at C level and never passed on to
31 * Lisp. For such signals, we still store any Lisp-level handler
32 * in interrupt_handlers[..], but for the outermost handle we use
33 * the value from interrupt_low_level_handlers[..], instead of the
34 * ordinary interrupt_handle_now(..) or interrupt_handle_later(..).
35 *
36 * o the SIGTRAP (Linux/Alpha) which Lisp code uses to handle breakpoints,
37 * pseudo-atomic sections, and some classes of error (e.g. "function
38 * not defined"). This never goes anywhere near the Lisp handlers at all.
39 * See runtime/alpha-arch.c and code/signal.lisp
40 *
41 * - WHN 20000728, dan 20010128 */
45 #include <stdio.h>
46 #include <stdlib.h>
47 #include <string.h>
48 #include <signal.h>
49 #include <sys/types.h>
50 #ifndef LISP_FEATURE_WIN32
51 #include <sys/wait.h>
52 #endif
53 #include <errno.h>
71 /*
72 * This is a workaround for some slightly silly Linux/GNU Libc
73 * behaviour: glibc defines sigset_t to support 1024 signals, which is
74 * more than the kernel. This is usually not a problem, but becomes
75 * one when we want to save a signal mask from a ucontext, and restore
76 * it later into another ucontext: the ucontext is allocated on the
77 * stack by the kernel, so copying a libc-sized sigset_t into it will
78 * overflow and cause other data on the stack to be corrupted */
79 /* FIXME: do not rely on NSIG being a multiple of 8 */
81 #ifdef LISP_FEATURE_WIN32
82 # define REAL_SIGSET_SIZE_BYTES (4)
83 #else
84 # define REAL_SIGSET_SIZE_BYTES ((NSIG/8))
85 #endif
89 {
91 }
93 /* When we catch an internal error, should we pass it back to Lisp to
94 * be handled in a high-level way? (Early in cold init, the answer is
95 * 'no', because Lisp is still too brain-dead to handle anything.
96 * After sufficient initialization has been completed, the answer
97 * becomes 'yes'.) */
100 #ifndef LISP_FEATURE_WIN32
101 static
103 #endif
106 /* Under Linux on some architectures, we appear to have to restore the
107 * FPU control word from the context, as after the signal is delivered
108 * we appear to have a null FPU control word. */
109 #if defined(RESTORE_FP_CONTROL_FROM_CONTEXT)
110 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
111 os_context_t *context = arch_os_get_context(&void_context); \
112 os_restore_fp_control(context);
113 #else
114 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
115 os_context_t *context = arch_os_get_context(&void_context);
116 #endif
118 /* Foreign code may want to start some threads on its own.
119 * Non-targetted, truly asynchronous signals can be delivered to
120 * basically any thread, but invoking Lisp handlers in such foregign
121 * threads is really bad, so let's resignal it.
122 *
123 * This should at least bring attention to the problem, but it cannot
124 * work for SIGSEGV and similar. It is good enough for timers, and
125 * maybe all deferrables. */
127 #if defined(LISP_FEATURE_SB_THREAD) && !defined(LISP_FEATURE_WIN32)
128 static void
130 {
136 }
137 }
138 }
141 #endif
143 static boolean
145 {
146 #if defined(LISP_FEATURE_SB_THREAD) && !defined(LISP_FEATURE_WIN32)
149 corruption_warning_and_maybe_lose
151 signal,
153 }
154 {
155 sigset_t sigset;
161 }
164 #endif
166 }
168 /* These are to be used in signal handlers. Currently all handlers are
169 * called from one of:
170 *
171 * interrupt_handle_now_handler
172 * maybe_now_maybe_later
173 * unblock_me_trampoline
174 * low_level_handle_now_handler
175 * low_level_maybe_now_maybe_later
176 * low_level_unblock_me_trampoline
177 *
178 * This gives us a single point of control (or six) over errno, fp
179 * control word, and fixing up signal context on sparc.
180 *
181 * The SPARC/Linux platform doesn't quite do signals the way we want
182 * them done. The third argument in the handler isn't filled in by the
183 * kernel properly, so we fix it up ourselves in the
184 * arch_os_get_context(..) function. -- CSR, 2002-07-23
185 */
186 #define SAVE_ERRNO(signal,context,void_context) \
187 { \
188 int _saved_errno = errno; \
189 RESTORE_FP_CONTROL_WORD(context,void_context); \
190 if (!maybe_resignal_to_lisp_thread(signal, context)) \
191 {
193 #define RESTORE_ERRNO \
194 } \
195 errno = _saved_errno; \
196 }
200 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
205 \f
207 /* Generic signal related utilities. */
209 void
211 {
212 /* Get the current sigmask, by blocking the empty set. */
214 }
216 void
218 {
226 }
229 }
230 }
232 void
234 {
242 }
245 }
246 }
248 static void
250 {
255 }
256 }
258 /* Return 1 is all signals is sigset2 are masked in sigset, return 0
259 * if all re unmasked else die. Passing NULL for sigset is a shorthand
260 * for the current sigmask. */
261 boolean
264 {
265 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
268 sigset_t current;
272 }
277 else
279 }
280 }
284 }
287 else
289 #endif
290 }
291 \f
293 /* Deferrables, blockables, gc signals. */
295 void
297 {
308 #ifndef LISP_FEATURE_HPUX
311 #endif
315 }
317 void
319 {
322 }
324 void
326 {
327 #ifdef THREADS_USING_GCSIGNAL
329 #endif
330 }
332 /* initialized in interrupt_init */
333 sigset_t deferrable_sigset;
334 sigset_t blockable_sigset;
335 sigset_t gc_sigset;
337 #endif
339 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
340 boolean
342 {
344 }
345 #endif
347 void
349 {
350 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
353 #endif
354 }
356 void
358 {
359 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
362 #endif
363 }
365 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
366 boolean
368 {
370 }
371 #endif
373 void
375 {
376 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
379 #endif
380 }
382 void
384 {
385 #if !defined(LISP_FEATURE_WIN32)
386 /* On Windows, there are no actual signals, but since the win32 port
387 * tracks the sigmask and checks it explicitly, some functions are
388 * still required to keep the mask set up properly. (After all, the
389 * goal of the sigmask emulation is to not have to change all the
390 * call sites in the first place.)
391 *
392 * However, this does not hold for all signals equally: While
393 * deferrables matter ("is interrupt-thread okay?"), it is not worth
394 * having to set up blockables properly (which include the
395 * non-existing GC signals).
396 *
397 * Yet, as the original comment explains it:
398 * Adjusting FREE-INTERRUPT-CONTEXT-INDEX* and other aspecs of
399 * fake_foreign_function_call machinery are sometimes useful here[...].
400 *
401 * So we merely skip this assertion.
402 * -- DFL, trying to expand on a comment by AK.
403 */
406 #endif
407 }
409 #ifndef LISP_FEATURE_SB_SAFEPOINT
410 #if !defined(LISP_FEATURE_WIN32)
411 boolean
413 {
415 }
416 #endif
418 void
420 {
421 #if !defined(LISP_FEATURE_WIN32)
424 #endif
425 }
427 void
429 {
430 #if !defined(LISP_FEATURE_WIN32)
433 #endif
434 }
435 #endif
437 void
439 {
440 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
442 #endif
443 }
445 void
447 {
448 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
450 #endif
451 }
453 #ifndef LISP_FEATURE_SB_SAFEPOINT
454 void
456 {
457 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
459 #endif
460 }
461 #endif
463 void
465 {
466 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
469 #ifndef LISP_FEATURE_SB_SAFEPOINT
471 #endif
473 #endif
474 }
476 void
478 {
479 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
481 #endif
482 }
484 #ifndef LISP_FEATURE_SB_SAFEPOINT
485 void
487 {
488 #ifndef LISP_FEATURE_WIN32
490 #endif
491 }
492 #endif
494 void
496 {
497 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
499 #ifndef LISP_FEATURE_SB_SAFEPOINT
506 }
507 #endif
510 }
511 #endif
512 }
513 \f
517 {
523 }
525 /* Save sigset (or the current sigmask if 0) if there is no pending
526 * handler, because that means that deferabbles are already blocked.
527 * The purpose is to avoid losing the pending gc signal if a
528 * deferrable interrupt async unwinds between clearing the pseudo
529 * atomic and trapping to GC.*/
530 #ifndef LISP_FEATURE_SB_SAFEPOINT
531 void
533 {
534 #ifndef LISP_FEATURE_WIN32
537 sigset_t oldset;
538 /* Obviously, this function is called when signals may not be
539 * blocked. Let's make sure we are not interrupted. */
541 #ifndef LISP_FEATURE_SB_THREAD
542 /* With threads a SIG_STOP_FOR_GC and a normal GC may also want to
543 * block. */
546 #endif
552 /* This is the sigmask of some context. */
558 /* Operating on the current sigmask. Save oldset and
559 * unblock gc signals. In the end, this is equivalent to
560 * blocking the deferrables. */
564 }
565 }
567 #endif
568 }
569 #endif
571 /* Are we leaving WITH-GCING and already running with interrupts
572 * enabled, without the protection of *GC-INHIBIT* T and there is gc
573 * (or stop for gc) pending, but we haven't trapped yet? */
574 int
576 {
581 #if defined(LISP_FEATURE_SB_THREAD)
583 #endif
584 ));
585 }
587 /* Check our baroque invariants. */
588 void
590 {
591 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
597 /* On PPC pseudo_atomic_interrupted is cleared when coming out of
598 * handle_allocation_trap. */
599 #if defined(LISP_FEATURE_GENCGC) && !defined(GENCGC_IS_PRECISE)
605 /* In the time window between leaving the *INTERRUPTS-ENABLED* NIL
606 * section and trapping, a SIG_STOP_FOR_GC would see the next
607 * check fail, for this reason sig_stop_for_gc handler does not
608 * call this function. */
612 }
616 #if defined(LISP_FEATURE_SB_THREAD)
617 {
626 }
627 #else
631 #endif
632 #endif
644 #ifndef LISP_FEATURE_SB_SAFEPOINT
645 /* If deferrables are unblocked then we are open to signals
646 * that run lisp code. */
648 #endif
649 }
650 #endif
651 }
652 \f
653 /*
654 * utility routines used by various signal handlers
655 */
657 static void
659 {
660 #ifndef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
662 lispobj oldcont;
664 /* Build a fake stack frame or frames */
666 #if !defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_ARM64)
673 /* There is a small window during call where the callee's
674 * frame isn't built yet. */
677 /* We have called, but not built the new frame, so
678 * build it for them. */
684 /* Build our frame on top of it. */
686 }
688 /* We haven't yet called, build our frame as if the
689 * partial frame wasn't there. */
691 }
693 #elif defined (LISP_FEATURE_ARM)
696 #elif defined (LISP_FEATURE_ARM64)
699 #endif
700 /* We can't tell whether we are still in the caller if it had to
701 * allocate a stack frame due to stack arguments. */
702 /* This observation provoked some past CMUCL maintainer to ask
703 * "Can anything strange happen during return?" */
704 {
705 /* normal case */
707 }
715 #endif
716 }
718 /* Stores the context for gc to scavange and builds fake stack
719 * frames. */
720 void
722 {
726 /* context_index incrementing must not be interrupted */
729 /* Get current Lisp state from context. */
730 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
732 #endif
733 #ifdef reg_ALLOC
734 #ifdef LISP_FEATURE_SB_THREAD
736 #else
737 dynamic_space_free_pointer =
739 #endif
741 /* fprintf(stderr,"dynamic_space_free_pointer: %p\n", */
742 /* dynamic_space_free_pointer); */
743 #if defined(LISP_FEATURE_ALPHA) || defined(LISP_FEATURE_MIPS)
746 }
747 #endif
748 /* why doesnt PPC and SPARC do something like this: */
749 #if defined(LISP_FEATURE_HPPA)
751 lose("dead in fake_foreign_function_call, context = %x, d_s_f_p = %x\n", context, dynamic_space_free_pointer);
752 }
753 #endif
754 #endif
755 #ifdef reg_BSP
758 #endif
760 #if defined(LISP_FEATURE_ARM)
761 /* Stash our control stack pointer */
764 thread);
765 #endif
769 /* Do dynamic binding of the active interrupt context index
770 * and save the context in the context array. */
771 context_index =
776 }
783 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
784 /* x86oid targets don't maintain the foreign function call flag at
785 * all, so leave them to believe that they are never in foreign
786 * code. */
788 #endif
789 }
791 /* blocks all blockable signals. If you are calling from a signal handler,
792 * the usual signal mask will be restored from the context when the handler
793 * finishes. Otherwise, be careful */
794 void
796 {
798 /* Block all blockable signals. */
803 /* Undo dynamic binding of FREE_INTERRUPT_CONTEXT_INDEX */
806 #if defined(LISP_FEATURE_ARM)
807 /* Restore our saved control stack pointer */
810 thread),
811 thread);
813 #endif
815 #if defined(reg_ALLOC) && !defined(LISP_FEATURE_SB_THREAD)
816 /* Put the dynamic space free pointer back into the context. */
821 /*
822 ((uword_t)(*os_context_register_addr(context, reg_ALLOC))
823 & ~LOWTAG_MASK)
824 | ((uword_t) dynamic_space_free_pointer & LOWTAG_MASK);
825 */
826 #endif
827 #if defined(reg_ALLOC) && defined(LISP_FEATURE_SB_THREAD)
828 /* Put the pseudo-atomic bits and dynamic space free pointer back
829 * into the context (p-a-bits for p-a, and dynamic space free
830 * pointer for ROOM). */
834 /* And clear them so we don't get bit later by call-in/call-out
835 * not updating them. */
837 #endif
838 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
840 #endif
841 }
843 /* a handler for the signal caused by execution of a trap opcode
844 * signalling an internal error */
845 void
847 {
854 /* There's no good way to recover from an internal error
855 * before the Lisp error handling mechanism is set up. */
857 }
859 #ifndef LISP_FEATURE_SB_SAFEPOINT
861 #endif
863 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
865 #endif
867 #if defined(LISP_FEATURE_LINUX) && defined(LISP_FEATURE_MIPS)
868 /* Workaround for blocked SIGTRAP. */
869 {
870 sigset_t newset;
874 }
875 #endif
878 #if QSHOW == 2
879 /* Display some rudimentary debugging information about the
880 * error, so that even if the Lisp error handler gets badly
881 * confused, we have a chance to determine what's going on. */
883 #endif
890 }
892 boolean
894 {
898 }
900 void
902 {
903 /* There are three ways we can get here. First, if an interrupt
904 * occurs within pseudo-atomic, it will be deferred, and we'll
905 * trap to here at the end of the pseudo-atomic block. Second, if
906 * the GC (in alloc()) decides that a GC is required, it will set
907 * *GC-PENDING* and pseudo-atomic-interrupted if not *GC-INHIBIT*,
908 * and alloc() is always called from within pseudo-atomic, and
909 * thus we end up here again. Third, when calling GC-ON or at the
910 * end of a WITHOUT-GCING, MAYBE-HANDLE-PENDING-GC will trap to
911 * here if there is a pending GC. Fourth, ahem, at the end of
912 * WITHOUT-INTERRUPTS (bar complications with nesting).
913 *
914 * A fourth way happens with safepoints: In addition to a stop for
915 * GC that is pending, there are thruptions. Both mechanisms are
916 * mostly signal-free, yet also of an asynchronous nature, so it makes
917 * sense to let interrupt_handle_pending take care of running them:
918 * It gets run precisely at those places where it is safe to process
919 * pending asynchronous tasks. */
926 }
931 #ifndef LISP_FEATURE_SB_SAFEPOINT
932 /*
933 * (On safepoint builds, there is no gc_blocked_deferrables nor
934 * SIG_STOP_FOR_GC.)
935 */
936 /* If GC/SIG_STOP_FOR_GC struck during PA and there was no pending
937 * handler, then the pending mask was saved and
938 * gc_blocked_deferrables set. Hence, there can be no pending
939 * handler and it's safe to restore the pending mask.
940 *
941 * Note, that if gc_blocked_deferrables is false we may still have
942 * to GC. In this case, we are coming out of a WITHOUT-GCING or a
943 * pseudo atomic was interrupt be a deferrable first. */
949 /* Restore the saved signal mask from the original signal (the
950 * one that interrupted us during the critical section) into
951 * the os_context for the signal we're currently in the
952 * handler for. This should ensure that when we return from
953 * the handler the blocked signals are unblocked. */
954 #ifndef LISP_FEATURE_WIN32
956 #endif
958 }
959 #endif
964 #ifdef LISP_FEATURE_SB_SAFEPOINT
965 /* handles the STOP_FOR_GC_PENDING case, plus THRUPTIONS */
967 # ifdef LISP_FEATURE_SB_THRUPTION
970 # endif
971 )
972 /* We ought to take this chance to do a pitstop now. */
974 #elif defined(LISP_FEATURE_SB_THREAD)
976 /* STOP_FOR_GC_PENDING and GC_PENDING are cleared by
977 * the signal handler if it actually stops us. */
981 #endif
982 /* Test for T and not for != NIL since the value :IN-PROGRESS
983 * is used in SUB-GC as part of the mechanism to supress
984 * recursive gcs.*/
987 /* Two reasons for doing this. First, if there is a
988 * pending handler we don't want to run. Second, we are
989 * going to clear pseudo atomic interrupted to avoid
990 * spurious trapping on every allocation in SUB_GC and
991 * having a pending handler with interrupts enabled and
992 * without pseudo atomic interrupted breaks an
993 * invariant. */
997 }
1001 /* GC_PENDING is cleared in SUB-GC, or if another thread
1002 * is doing a gc already we will get a SIG_STOP_FOR_GC and
1003 * that will clear it.
1004 *
1005 * If there is a pending handler or gc was triggerred in a
1006 * signal handler then maybe_gc won't run POST_GC and will
1007 * return normally. */
1014 }
1016 /* It's not NIL or T so GC_PENDING is :IN-PROGRESS. If
1017 * GC-PENDING is not NIL then we cannot trap on pseudo
1018 * atomic due to GC (see if(GC_PENDING) logic in
1019 * cheneygc.c an gengcgc.c), plus there is a outer
1020 * WITHOUT-INTERRUPTS SUB_GC, so how did we end up
1021 * here? */
1023 }
1027 /* No GC shall be lost. If SUB_GC triggers another GC then
1028 * that should be handled on the spot. */
1031 #ifdef THREADS_USING_GCSIGNAL
1034 #endif
1035 /* Check two things. First, that gc does not clobber a handler
1036 * that's already pending. Second, that there is no interrupt
1037 * lossage: if original_pending_handler was NULL then even if
1038 * an interrupt arrived during GC (POST-GC, really) it was
1039 * handled. */
1043 }
1045 #ifndef LISP_FEATURE_WIN32
1046 /* There may be no pending handler, because it was only a gc that
1047 * had to be executed or because Lisp is a bit too eager to call
1048 * DO-PENDING-INTERRUPT. */
1051 /* No matter how we ended up here, clear both
1052 * INTERRUPT_PENDING and pseudo atomic interrupted. It's safe
1053 * because we checked above that there is no GC pending. */
1056 /* Restore the sigmask in the context. */
1059 }
1060 #ifdef LISP_FEATURE_SB_THRUPTION
1062 /* Special case for the following situation: There is a
1063 * thruption pending, but a signal had been deferred. The
1064 * pitstop at the top of this function could only take care
1065 * of GC, and skipped the thruption, so we need to try again
1066 * now that INTERRUPT_PENDING and the sigmask have been
1067 * reset. */
1069 ;
1070 #endif
1071 #endif
1072 #ifdef LISP_FEATURE_GENCGC
1075 #endif
1076 /* It is possible that the end of this function was reached
1077 * without never actually doing anything, the tests in Lisp for
1078 * when to call receive-pending-interrupt are not exact. */
1080 }
1081 \f
1083 void
1085 {
1086 boolean were_in_lisp;
1091 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1094 #endif
1100 }
1104 {
1106 }
1110 signal));
1114 /* This can happen if someone tries to ignore or default one
1115 * of the signals we need for runtime support, and the runtime
1116 * support decides to pass on it. */
1120 /* Once we've decided what to do about contexts in a
1121 * return-elsewhere world (the original context will no longer
1122 * be available; should we copy it or was nobody using it anyway?)
1123 * then we should convert this to return-elsewhere */
1125 /* CMUCL comment said "Allocate the SAPs while the interrupts
1126 * are still disabled.". I (dan, 2003.08.21) assume this is
1127 * because we're not in pseudoatomic and allocation shouldn't
1128 * be interrupted. In which case it's no longer an issue as
1129 * all our allocation from C now goes through a PA wrapper,
1130 * but still, doesn't hurt.
1131 *
1132 * Yeah, but non-gencgc platforms don't really wrap allocation
1133 * in PA. MG - 2005-08-29 */
1136 #ifndef LISP_FEATURE_SB_SAFEPOINT
1137 /* Leave deferrable signals blocked, the handler itself will
1138 * allow signals again when it sees fit. */
1140 #else
1142 #endif
1151 info_sap,
1152 context_sap);
1153 }
1155 /* This cannot happen in sane circumstances. */
1159 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1160 /* Allow signals again. */
1163 #endif
1164 }
1167 {
1169 }
1173 signal));
1174 }
1176 /* This is called at the end of a critical section if the indications
1177 * are that some signal was deferred during the section. Note that as
1178 * far as C or the kernel is concerned we dealt with the signal
1179 * already; we're just doing the Lisp-level processing now that we
1180 * put off then */
1181 static void
1183 {
1184 /* The pending_handler may enable interrupts and then another
1185 * interrupt may hit, overwrite interrupt_data, so reset the
1186 * pending handler before calling it. Trust the handler to finish
1187 * with the siginfo before enabling interrupts. */
1194 }
1196 #ifndef LISP_FEATURE_WIN32
1197 boolean
1200 {
1212 /* If interrupts are disabled then INTERRUPT_PENDING is set and
1213 * not PSEDUO_ATOMIC_INTERRUPTED. This is important for a pseudo
1214 * atomic section inside a WITHOUT-INTERRUPTS.
1215 *
1216 * Also, if in_leaving_without_gcing_race_p then
1217 * interrupt_handle_pending is going to be called soon, so
1218 * stashing the signal away is safe.
1219 */
1230 }
1231 /* a slightly confusing test. arch_pseudo_atomic_atomic() doesn't
1232 * actually use its argument for anything on x86, so this branch
1233 * may succeed even when context is null (gencgc alloc()) */
1242 }
1247 }
1249 static void
1253 {
1265 signal));
1270 /* the signal mask in the context (from before we were
1271 * interrupted) is copied to be restored when run_deferred_handler
1272 * happens. Then the usually-blocked signals are added to the mask
1273 * in the context so that we are running with blocked signals when
1274 * the handler returns */
1277 }
1279 static void
1281 {
1287 RESTORE_ERRNO;
1288 }
1290 static void
1293 {
1294 /* No FP control fixage needed, caller has done that. */
1298 /* No Darwin context fixage needed, caller does that. */
1299 }
1301 static void
1303 {
1311 RESTORE_ERRNO;
1312 }
1313 #endif
1315 #ifdef THREADS_USING_GCSIGNAL
1317 /* This function must not cons, because that may trigger a GC. */
1318 void
1320 {
1322 boolean was_in_lisp;
1324 /* Test for GC_INHIBIT _first_, else we'd trap on every single
1325 * pseudo atomic until gc is finally allowed. */
1334 maybe_save_gc_mask_and_block_deferrables
1337 }
1341 /* Not PA and GC not inhibited -- we can stop now. */
1346 /* need the context stored so it can have registers scavenged */
1348 }
1350 /* Not pending anymore. */
1354 /* Consider this: in a PA section GC is requested: GC_PENDING,
1355 * pseudo_atomic_interrupted and gc_blocked_deferrables are set,
1356 * deferrables are blocked then pseudo_atomic_atomic is cleared,
1357 * but a SIG_STOP_FOR_GC arrives before trapping to
1358 * interrupt_handle_pending. Here, GC_PENDING is cleared but
1359 * pseudo_atomic_interrupted is not and we go on running with
1360 * pseudo_atomic_interrupted but without a pending interrupt or
1361 * GC. GC_BLOCKED_DEFERRABLES is also left at 1. So let's tidy it
1362 * up. */
1369 }
1374 }
1379 /* While waiting for gc to finish occupy ourselves with zeroing
1380 * the unused portion of the control stack to reduce conservatism.
1381 * On hypothetic platforms with threads and exact gc it is
1382 * actually a must. */
1391 }
1395 }
1396 }
1398 #endif
1400 void
1402 {
1404 #ifndef LISP_FEATURE_WIN32
1406 #if !(defined(LISP_FEATURE_LINUX) || defined(LISP_FEATURE_ANDROID))
1408 #endif
1409 )
1412 #endif
1414 RESTORE_ERRNO;
1415 }
1417 /* manipulate the signal context and stack such that when the handler
1418 * returns, it will call function instead of whatever it was doing
1419 * previously
1420 */
1422 #if (defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1424 #endif
1430 void
1432 call_into_lisp_lookalike funptr,
1433 lispobj function)
1434 {
1435 #if !(defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_SAFEPOINT))
1436 check_gc_signals_unblocked_or_lose
1438 #endif
1439 #if !(defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1442 #endif
1444 /* Build a stack frame showing `interrupted' so that the
1445 * user's backtrace makes (as much) sense (as usual) */
1447 /* fp state is saved and restored by call_into_lisp */
1448 /* FIXME: errno is not restored, but since current uses of this
1449 * function only call Lisp code that signals an error, it's not
1450 * much of a problem. In other words, running out of the control
1451 * stack between a syscall and (GET-ERRNO) may clobber errno if
1452 * something fails during signalling or in the handler. But I
1453 * can't see what can go wrong as long as there is no CONTINUE
1454 * like restart on them. */
1455 #ifdef LISP_FEATURE_X86
1456 /* Suppose the existence of some function that saved all
1457 * registers, called call_into_lisp, then restored GP registers and
1458 * returned. It would look something like this:
1460 push ebp
1461 mov ebp esp
1462 pushfl
1463 pushal
1464 push $0
1465 push $0
1466 pushl {address of function to call}
1467 call 0x8058db0 <call_into_lisp>
1468 addl $12,%esp
1469 popal
1470 popfl
1471 leave
1472 ret
1474 * What we do here is set up the stack that call_into_lisp would
1475 * expect to see if it had been called by this code, and frob the
1476 * signal context so that signal return goes directly to call_into_lisp,
1477 * and when that function (and the lisp function it invoked) returns,
1478 * it returns to the second half of this imaginary function which
1479 * restores all registers and returns to C
1481 * For this to work, the latter part of the imaginary function
1482 * must obviously exist in reality. That would be post_signal_tramp
1483 */
1485 #ifndef LISP_FEATURE_DARWIN
1487 #endif
1489 #if defined(LISP_FEATURE_DARWIN)
1492 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: preparing to go to function %x, sp: %x\n", function, sp));
1493 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: context: %x, &context %x\n", context, &context));
1495 /* 1. os_validate (malloc/mmap) register_save_block
1496 * 2. copy register state into register_save_block
1497 * 3. put a pointer to register_save_block in a register in the context
1498 * 4. set the context's EIP to point to a trampoline which:
1499 * a. builds the fake stack frame from the block
1500 * b. frees the block
1501 * c. calls the function
1502 */
1518 #else
1520 /* return address for call_into_lisp: */
1525 /* this order matches that used in POPAD */
1530 /* POPAD ignores the value of ESP: */
1541 #endif
1543 #elif defined(LISP_FEATURE_X86_64)
1546 /* return address for call_into_lisp: */
1559 /* skip RBP and RSP */
1572 #else
1575 #endif
1577 #ifdef LISP_FEATURE_X86
1579 #if !defined(LISP_FEATURE_DARWIN)
1583 #ifdef __NetBSD__
1586 #else
1591 #elif defined(LISP_FEATURE_X86_64)
1596 #else
1597 /* this much of the calling convention is common to all
1598 non-x86 ports */
1601 #ifdef reg_LIP
1604 #endif
1607 #endif
1608 #ifdef ARCH_HAS_NPC_REGISTER
1611 #endif
1612 #if defined(LISP_FEATURE_SPARC) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64)
1615 #endif
1618 }
1620 void
1622 {
1623 #if defined(LISP_FEATURE_DARWIN) && defined(LISP_FEATURE_X86)
1626 function);
1627 #else
1629 #endif
1630 }
1632 // These have undefined_alien_function tramp in x-assem.S
1633 #if !(defined(LISP_FEATURE_X86_64) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64))
1634 /* KLUDGE: Theoretically the approach we use for undefined alien
1635 * variables should work for functions as well, but on PPC/Darwin
1636 * we get bus error at bogus addresses instead, hence this workaround,
1637 * that has the added benefit of automatically discriminating between
1638 * functions and variables.
1639 */
1640 void
1642 {
1644 }
1645 #endif
1648 {
1653 }
1656 {
1662 }
1664 /* Called from the REPL, too. */
1666 {
1670 }
1671 }
1674 {
1676 }
1678 boolean
1680 {
1687 }
1690 /* We hit the end of the control stack: disable guard page
1691 * protection so the error handler has some headroom, protect the
1692 * previous page so that we can catch returns from the guard page
1693 * and restore it. */
1697 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
1698 /* For the unfortunate case, when the control stack is
1699 * exhausted in a signal handler. */
1701 #endif
1702 arrange_return_to_lisp_function
1705 }
1708 /* We're returning from the guard page: reprotect it, and
1709 * unprotect this one. This works even if we somehow missed
1710 * the return-guard-page, and hit it on our way to new
1711 * exhaustion instead. */
1716 }
1720 }
1727 /* For the unfortunate case, when the binding stack is
1728 * exhausted in a signal handler. */
1730 arrange_return_to_lisp_function
1733 }
1740 }
1744 }
1751 /* For the unfortunate case, when the alien stack is
1752 * exhausted in a signal handler. */
1754 arrange_return_to_lisp_function
1757 }
1764 }
1767 arrange_return_to_lisp_function
1770 }
1772 }
1773 \f
1774 /*
1775 * noise to install handlers
1776 */
1778 #ifndef LISP_FEATURE_WIN32
1779 /* In Linux 2.4 synchronous signals (sigtrap & co) can be delivered if
1780 * they are blocked, in Linux 2.6 the default handler is invoked
1781 * instead that usually coredumps. One might hastily think that adding
1782 * SA_NODEFER helps, but until ~2.6.13 if SA_NODEFER is specified then
1783 * the whole sa_mask is ignored and instead of not adding the signal
1784 * in question to the mask. That means if it's not blockable the
1785 * signal must be unblocked at the beginning of signal handlers.
1786 *
1787 * It turns out that NetBSD's SA_NODEFER doesn't DTRT in a different
1788 * way: if SA_NODEFER is set and the signal is in sa_mask, the signal
1789 * will be unblocked in the sigmask during the signal handler. -- RMK
1790 * X-mas day, 2005
1791 */
1794 #define SA_NODEFER_TEST_BLOCK_SIGNAL SIGABRT
1795 #define SA_NODEFER_TEST_KILL_SIGNAL SIGUSR1
1797 static void
1799 {
1800 sigset_t current;
1803 /* There should be exactly two blocked signals: the two we added
1804 * to sa_mask when setting up the handler. NetBSD doesn't block
1805 * the signal we're handling when SA_NODEFER is set; Linux before
1806 * 2.6.13 or so also doesn't block the other signal when
1807 * SA_NODEFER is set. */
1813 }
1816 }
1818 static void
1820 {
1829 /* Make sure no signals are blocked. */
1830 {
1831 sigset_t empty;
1834 }
1838 }
1840 #undef SA_NODEFER_TEST_BLOCK_SIGNAL
1841 #undef SA_NODEFER_TEST_KILL_SIGNAL
1843 #if defined(LISP_FEATURE_SB_SAFEPOINT_STRICTLY) && !defined(LISP_FEATURE_WIN32)
1847 {
1849 os_context_t fake_context;
1850 siginfo_t fake_info;
1851 #ifdef LISP_FEATURE_PPC
1852 mcontext_t uc_regs;
1853 #endif
1857 #ifdef LISP_FEATURE_PPC
1860 #endif
1865 #endif
1870 }
1872 static void
1874 {
1878 /* alloc() is not re-entrant and still uses pseudo atomic (even though
1879 * inline allocation does not). In this case, give up. */
1889 /* And we're back. We know that the SIGPROF handler never unwinds
1890 * non-locally, and can simply swap things back: */
1896 cleanup:
1898 RESTORE_ERRNO;
1899 }
1901 static void
1903 {
1906 pthread_attr_t attr;
1907 pthread_t th;
1918 RESTORE_ERRNO;
1921 lost:
1923 }
1924 #endif
1926 static void
1928 {
1930 sigset_t unblock;
1936 RESTORE_ERRNO;
1937 }
1939 static void
1941 {
1943 sigset_t unblock;
1949 RESTORE_ERRNO;
1950 }
1952 static void
1954 {
1957 RESTORE_ERRNO;
1958 }
1960 void
1962 interrupt_handler_t handler)
1963 {
1968 }
1977 else
1980 #ifdef LISP_FEATURE_SB_THRUPTION
1981 /* It's in `deferrable_sigset' so that we block&unblock it properly,
1982 * but we don't actually want to defer it. And if we put it only
1983 * into blockable_sigset, we'd have to special-case it around thread
1984 * creation at least. */
1987 #endif
1992 #if defined(LISP_FEATURE_C_STACK_IS_CONTROL_STACK)
1995 # ifdef LISP_FEATURE_SB_SAFEPOINT
1998 # endif
1999 }
2000 #endif
2005 }
2006 #endif
2008 /* This is called from Lisp. */
2009 uword_t
2012 {
2013 #ifndef LISP_FEATURE_WIN32
2015 sigset_t old;
2028 #ifdef LISP_FEATURE_SB_SAFEPOINT_STRICTLY
2033 #endif
2039 else
2046 }
2056 #else
2057 /* Probably-wrong Win32 hack */
2059 #endif
2060 }
2062 /* This must not go through lisp as it's allowed anytime, even when on
2063 * the altstack. */
2064 void
2066 {
2067 /* Save the interrupt context. No need to undo it, since lose()
2068 * shouldn't return. */
2071 }
2073 void
2075 {
2076 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2079 #ifndef LISP_FEATURE_WIN32
2081 #endif
2088 #endif
2090 #ifndef LISP_FEATURE_WIN32
2091 /* Set up high level handler information. */
2094 /* (The cast here blasts away the distinction between
2095 * SA_SIGACTION-style three-argument handlers and
2096 * signal(..)-style one-argument handlers, which is OK
2097 * because it works to call the 1-argument form where the
2098 * 3-argument form is expected.) */
2100 }
2102 #endif
2104 }
2106 #ifndef LISP_FEATURE_WIN32
2107 int
2109 {
2111 }
2112 os_vm_address_t current_memory_fault_address;
2114 void
2116 {
2117 /* FIXME: This is lossy: if we get another memory fault (eg. from
2118 * another thread) before lisp has read this, we lose the information.
2119 * However, since this is mostly informative, we'll live with that for
2120 * now -- some address is better then no address in this case.
2121 */
2124 /* If we lose on corruption, provide LDB with debugging information. */
2127 /* To allow debugging memory faults in signal handlers and such. */
2129 addr,
2131 #ifdef ARCH_HAS_STACK_POINTER
2133 #else
2134 0
2135 #endif
2136 );
2137 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
2142 #else
2146 #endif
2147 }
2148 #endif
2150 static void
2152 {
2155 #ifndef LISP_FEATURE_SB_SAFEPOINT
2157 #endif
2159 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2161 #endif
2164 }
2166 /* Common logic for trapping instructions. How we actually handle each
2167 * case is highly architecture dependent, but the overall shape is
2168 * this. */
2169 void
2171 {
2173 #if !(defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD))
2179 #endif
2182 #ifdef trap_InvalidArgCount
2184 #endif
2194 #ifdef trap_AfterBreakpoint
2198 #endif
2199 #ifdef trap_SingleStepAround
2204 #endif
2205 #ifdef trap_GlobalSafepoint
2218 #endif
2219 #if defined(LISP_FEATURE_SPARC) && defined(LISP_FEATURE_GENCGC)
2224 #endif
2230 }
2231 }