| blob | cd557e03328c500cccd99408625ab7d776dc24c3 |
1 /*
2 * the Win32 incarnation of OS-dependent routines. See also
3 * $(sbcl_arch)-win32-os.c
4 *
5 * This file (along with os.h) exports an OS-independent interface to
6 * the operating system VM facilities. Surprise surprise, this
7 * interface looks a lot like the Mach interface (but simpler in some
8 * places). For some operating systems, a subset of these functions
9 * will have to be emulated.
10 */
12 /*
13 * This software is part of the SBCL system. See the README file for
14 * more information.
15 *
16 * This software is derived from the CMU CL system, which was
17 * written at Carnegie Mellon University and released into the
18 * public domain. The software is in the public domain and is
19 * provided with absolutely no warranty. See the COPYING and CREDITS
20 * files for more information.
21 */
23 /*
24 * This file was copied from the Linux version of the same, and
25 * likely still has some linuxisms in it have haven't been elimiated
26 * yet.
27 */
29 #include <malloc.h>
30 #include <stdio.h>
31 #include <stdlib.h>
32 #include <sys/param.h>
33 #include <sys/file.h>
34 #include <io.h>
48 #include <sys/types.h>
49 #include <sys/time.h>
50 #include <sys/stat.h>
51 #include <unistd.h>
53 #include <math.h>
54 #include <float.h>
56 #include <excpt.h>
57 #include <errno.h>
63 #ifndef LISP_FEATURE_SB_THREAD
64 /* dummy definition to reduce ifdef clutter */
65 #define WITH_GC_AT_SAFEPOINTS_ONLY() if (0) ; else
66 #endif
68 os_vm_size_t os_vm_page_size;
72 #include <wincrypt.h>
74 #if 0
77 #endif
79 #include <stdarg.h>
80 #include <string.h>
82 /* missing definitions for modern mingws */
83 #ifndef EH_UNWINDING
84 #define EH_UNWINDING 0x02
85 #endif
86 #ifndef EH_EXIT_UNWIND
87 #define EH_EXIT_UNWIND 0x04
88 #endif
90 /* Tired of writing arch_os_get_current_thread each time. */
91 #define this_thread (arch_os_get_current_thread())
93 /* Documented limit for ReadConsole/WriteConsole is 64K bytes.
94 Real limit observed on W2K-SP3 is somewhere in between 32KiB and 64Kib...
95 */
96 #define MAX_CONSOLE_TCHARS 16384
98 #ifdef LISP_FEATURE_SB_UNICODE
100 #else
102 #endif
104 /* wrappers for winapi calls that must be successful (like SBCL's
105 * (aver ...) form). */
107 /* win_aver function: basic building block for miscellaneous
108 * ..AVER.. macrology (below) */
110 /* To do: These routines used to be "customizable" with dyndebug_init()
111 * and variables like dyndebug_survive_aver, dyndebug_skip_averlax based
112 * on environment variables. Those features got lost on the way, but
113 * ought to be reintroduced. */
118 {
128 " (in thread %p)"
134 allocated =
136 FORMAT_MESSAGE_FROM_SYSTEM,
137 NULL,
138 errorCode,
142 NULL);
148 this_thread,
155 this_thread,
158 }
161 }
163 }
165 /* sys_aver function: really tiny adaptor of win_aver for
166 * "POSIX-parody" CRT results ("lowio" and similar stuff):
167 * negative number means something... negative. */
171 {
174 }
176 /* Check for (call) result being boolean true. (call) may be arbitrary
177 * expression now; massive attack of gccisms ensures transparent type
178 * conversion back and forth, so the type of AVER(expression) is the
179 * type of expression. Value is the same _if_ it can be losslessly
180 * converted to (void*) and back.
181 *
182 * Failed AVER() is normally fatal. Well, unless dyndebug_survive_aver
183 * flag is set. */
185 #define AVER(call) \
186 ({ __typeof__(call) __attribute__((unused)) me = \
187 (__typeof__(call)) \
188 win_aver((intptr_t)(call), #call, __FILE__, __LINE__, 0); \
189 me;})
191 /* AVERLAX(call): do the same check as AVER did, but be mild on
192 * failure: print an annoying unrequested message to stderr, and
193 * continue. With dyndebug_skip_averlax flag, AVERLAX stop even to
194 * check and complain. */
196 #define AVERLAX(call) \
197 ({ __typeof__(call) __attribute__((unused)) me = \
198 (__typeof__(call)) \
199 win_aver((intptr_t)(call), #call, __FILE__, __LINE__, 1); \
200 me;})
202 /* Now, when failed AVER... prints both errno and GetLastError(), two
203 * variants of "POSIX/lowio" style checks below are almost useless
204 * (they build on sys_aver like the two above do on win_aver). */
206 #define CRT_AVER_NONNEGATIVE(call) \
207 ({ __typeof__(call) __attribute__((unused)) me = \
208 (__typeof__(call)) \
209 sys_aver((call), #call, __FILE__, __LINE__, 0); \
210 me;})
212 #define CRT_AVERLAX_NONNEGATIVE(call) \
213 ({ __typeof__(call) __attribute__((unused)) me = \
214 (__typeof__(call)) \
215 sys_aver((call), #call, __FILE__, __LINE__, 1); \
216 me;})
218 /* to be removed */
219 #define CRT_AVER(booly) \
220 ({ __typeof__(booly) __attribute__((unused)) me = (booly); \
221 sys_aver((booly)?0:-1, #booly, __FILE__, __LINE__, 0); \
222 me;})
226 /*
227 * The following signal-mask-related alien routines are called from Lisp:
228 */
230 /* As of win32, deferrables _do_ matter. gc_signal doesn't. */
232 {
233 sigset_t sset;
236 }
238 #if defined(LISP_FEATURE_SB_THREAD)
240 {
243 }
244 #endif
246 /* The exception handling function looks like this: */
249 CONTEXT *,
251 /* handle_exception is defined further in this file, but since SBCL
252 * 1.0.1.24, it doesn't get registered as SEH handler directly anymore,
253 * not even by wos_install_interrupt_handlers. Instead, x86-assem.S
254 * provides exception_handler_wrapper; we install it here, and each
255 * exception frame on nested funcall()s also points to it.
256 */
264 {
266 #ifdef LISP_FEATURE_X86
268 #else
270 #endif
272 }
275 {
276 #ifdef LISP_FEATURE_X86
278 #else
280 #endif
281 }
283 #if defined(LISP_FEATURE_SB_THREAD)
286 {
289 }
291 /* Permit loads from GC_SAFEPOINT_PAGE_ADDR (NB page state change is
292 * "synchronized" with the memory region content/availability --
293 * e.g. you won't see other CPU flushing buffered writes after WP --
294 * but there is some window when other thread _seem_ to trap AFTER
295 * access is granted. You may think of it something like "OS enters
296 * SEH handler too slowly" -- what's important is there's no implicit
297 * synchronization between VirtualProtect caller and other thread's
298 * SEH handler, hence no ordering of events. VirtualProtect is
299 * implicitly synchronized with protected memory contents (only).
300 *
301 * The last fact may be potentially used with many benefits e.g. for
302 * foreign call speed, but we don't use it for now: almost the only
303 * fact relevant to the current signalling protocol is "sooner or
304 * later everyone will trap [everyone will stop trapping]".
305 *
306 * An interesting source on page-protection-based inter-thread
307 * communication is a well-known paper by Dave Dice, Hui Huang,
308 * Mingyao Yang: ``Asymmetric Dekker Synchronization''. Last time
309 * I checked it was available at
310 * http://home.comcast.net/~pjbishop/Dave/Asymmetric-Dekker-Synchronization.txt
311 */
313 {
314 DWORD oldProt;
317 }
320 {
321 DWORD oldProt;
324 }
326 #endif
328 #if defined(LISP_FEATURE_SB_DYNAMIC_CORE)
329 /* This feature has already saved me more development time than it
330 * took to implement. In its current state, ``dynamic RT<->core
331 * linking'' is a protocol of initialization of C runtime and Lisp
332 * core, populating SBCL linkage table with entries for runtime
333 * "foreign" symbols that were referenced in cross-compiled code.
334 *
335 * How it works: a sketch
336 *
337 * Last Genesis (resulting in cold-sbcl.core) binds foreign fixups in
338 * x-compiled lisp-objs to sequential addresses from the beginning of
339 * linkage-table space; that's how it ``resolves'' foreign references.
340 * Obviously, this process doesn't require pre-built runtime presence.
341 *
342 * When the runtime loads the core (cold-sbcl.core initially,
343 * sbcl.core later), runtime should do its part of the protocol by (1)
344 * traversing a list of ``runtime symbols'' prepared by Genesis and
345 * dumped as a static symbol value, (2) resolving each name from this
346 * list to an address (stubbing unresolved ones with
347 * undefined_alien_address or undefined_alien_function), (3) adding an
348 * entry for each symbol somewhere near the beginning of linkage table
349 * space (location is provided by the core).
350 *
351 * The implementation of the part described in the last paragraph
352 * follows. C side is currently more ``hackish'' and less clear than
353 * the Lisp code; OTOH, related Lisp changes are scattered, and some
354 * of them play part in complex interrelations -- beautiful but taking
355 * much time to understand --- but my subset of PE-i386 parser below
356 * is in one place (here) and doesn't have _any_ non-trivial coupling
357 * with the rest of the Runtime.
358 *
359 * What do we gain with this feature, after all?
360 *
361 * One things that I have to do rather frequently: recompile and
362 * replace runtime without rebuilding the core. Doubtlessly, slam.sh
363 * was a great time-saver here, but relinking ``cold'' core and bake a
364 * ``warm'' one takes, as it seems, more than 10x times of bare
365 * SBCL.EXE build time -- even if everything is recompiled, which is
366 * now unnecessary. Today, if I have a new idea for the runtime,
367 * getting from C-x C-s M-x ``compile'' to fully loaded SBCL
368 * installation takes 5-15 seconds.
369 *
370 * Another thing (that I'm not currently using, but obviously
371 * possible) is delivering software patches to remote system on
372 * customer site. As you are doing minor additions or corrections in
373 * Lisp code, it doesn't take much effort to prepare a tiny ``FASL
374 * bundle'' that rolls up your patch, redumps and -- presto -- 100MiB
375 * program is fixed by sending and loading a 50KiB thingie.
376 *
377 * However, until LISP_FEATURE_SB_DYNAMIC_CORE, if your bug were fixed
378 * by modifying two lines of _C_ sources, a customer described above
379 * had to be ready to receive and reinstall a new 100MiB
380 * executable. With the aid of code below, deploying such a fix
381 * requires only sending ~300KiB (when stripped) of SBCL.EXE.
382 *
383 * But there is more to it: as the common linkage-table is used for
384 * DLLs and core, its entries may be overridden almost without a look
385 * into SBCL internals. Therefore, ``patching'' C runtime _without_
386 * restarting target systems is also possible in many situations
387 * (it's not as trivial as loading FASLs into a running daemon, but
388 * easy enough to be a viable alternative if any downtime is highly
389 * undesirable).
390 *
391 * During my (rather limited) commercial Lisp development experience
392 * I've already been through a couple of situations where such
393 * ``deployment'' issues were important; from my _total_ programming
394 * experience I know -- _sometimes_ they are a two orders of magnitude
395 * more important than those I observed.
396 *
397 * The possibility of entire runtime ``hot-swapping'' in running
398 * process is not purely theoretical, as it could seem. There are 2-3
399 * problems whose solution is not obvious (call stack patching, for
400 * instance), but it's literally _nothing_ if compared with
401 * e.g. LISP_FEATURE_SB_AUTO_FPU_SWITCH. By the way, one of the
402 * problems with ``hot-swapping'', that could become a major one in
403 * many other environments, is nonexistent in SBCL: we already have a
404 * ``global quiesce point'' that is generally required for this kind
405 * of worldwide revolution -- around collect_garbage.
406 *
407 * What's almost unnoticeable from the C side (where you are now, dear
408 * reader): using the same style for all linking is beautiful. I tried
409 * to leave old-style linking code in place for the sake of
410 * _non-linkage-table_ platforms (they probably don't have -ldl or its
411 * equivalent, like LL/GPA, at all) -- but i did it usually by moving
412 * the entire `old style' code under #!-sb-dynamic-core and
413 * refactoring the `new style' branch, instead of cutting the tail
414 * piecemeal and increasing #!+-ifdeffery amount & the world enthropy.
415 *
416 * If we look at the majority of the ``new style'' code units, it's a
417 * common thing to observe how #!+-ifdeffery _vanishes_ instead of
418 * multiplying: #!-sb-xc, #!+sb-xc-host and #!-sb-xc-host end up
419 * needing the same code. Runtime checks of static v. dynamic symbol
420 * disappear even faster. STDCALL mangling and leading underscores go
421 * out of scope (and GCed, hopefully) instead of surfacing here and
422 * there as a ``special case for core static symbols''. What I like
423 * the most about CL development in general is a frequency of solving
424 * problems and fixing bugs by simplifying code and dropping special
425 * cases.
426 *
427 * Last important thing about the following code: besides resolving
428 * symbols provided by the core itself, it detects runtime's own
429 * build-time prerequisite DLLs. Any symbol that is unresolved against
430 * the core is looked up in those DLLs (normally kernel32, msvcrt,
431 * ws2_32... I could forget something). This action (1) resembles
432 * implementation of foreign symbol lookup in SBCL itself, (2)
433 * emulates shared library d.l. facilities of OSes that use flat
434 * dynamic symbol namespace (or default to it). Anyone concerned with
435 * portability problems of this PE-i386 stuff below will be glad to
436 * hear that it could be ported to most modern Unices _by deletion_:
437 * raw dlsym() with null handle usually does the same thing that i'm
438 * trying to squeeze out of MS Windows by the brute force.
439 *
440 * My reason for _desiring_ flat symbol namespace, populated from
441 * link-time dependencies, is avoiding any kind of ``requested-by-Lisp
442 * symbol lists to be linked statically'', providing core v. runtime
443 * independence in both directions. Minimizing future maintenance
444 * effort is very important; I had gone for it consistently, starting
445 * by turning "CloseHandle@4" into a simple "CloseHandle", continuing
446 * by adding intermediate Genesis resulting in autogenerated symbol
447 * list (farewell, void scratch(); good riddance), going to take
448 * another great step for core/runtime independence... and _without_
449 * flat namespace emulation, the ghosts and spirits exiled at the
450 * first steps would come and take revenge: well, here are the symbols
451 * that are really in msvcrt.dll.. hmm, let's link statically against
452 * them, so the entry is pulled from the import library.. and those
453 * entry has mangled names that we have to map.. ENOUGH, I though
454 * here: fed up with stuff like that.
455 *
456 * Now here we are, without import libraries, without mangled symbols,
457 * and without nm-generated symbol tables. Every symbol exported by
458 * the runtime is added to SBCL.EXE export directory; every symbol
459 * requested by the core is looked up by GetProcAddress for SBCL.EXE,
460 * falling back to GetProcAddress for MSVCRT.dll, etc etc.. All ties
461 * between SBCL's foreign symbols with object file symbol tables,
462 * import libraries and other pre-linking symbol-resolving entities
463 * _having no representation in SBCL.EXE_ were teared.
464 *
465 * This simplistic approach proved to work well; there is only one
466 * problem introduced by it, and rather minor: in real MSVCRT.dll,
467 * what's used to be available as open() is now called _open();
468 * similar thing happened to many other `lowio' functions, though not
469 * every one, so it's not a kind of name mangling but rather someone's
470 * evil creative mind in action.
471 *
472 * When we look up any of those poor `uglified' functions in CRT
473 * reference on MSDN, we can see a notice resembling this one:
474 *
475 * `unixishname()' is obsolete and provided for backward
476 * compatibility; new standard-compliant function, `_unixishname()',
477 * should be used instead. Sentences of that kind were there for
478 * several years, probably even for a decade or more (a propos,
479 * MSVCRT.dll, as the name to link against, predates year 2000, so
480 * it's actually possible). Reasoning behing it (what MS people had in
481 * mind) always seemed strange to me: if everyone uses open() and that
482 * `everyone' is important to you, why rename the function? If no one
483 * uses open(), why provide or retain _open() at all? <kidding>After
484 * all, names like _open() are entirely non-informative and just plain
485 * ugly; compare that with CreateFileW() or InitCommonControlsEx(),
486 * the real examples of beauty and clarity.</kidding>
487 *
488 * Anyway, if the /standard/ name on Windows is _open() (I start to
489 * recall, vaguely, that it's because of _underscore names being
490 * `reserved to system' and all other ones `available for user', per
491 * ANSI/ISO C89) -- well, if the /standard/ name is _open, SBCL should
492 * use it when it uses MSVCRT and not some ``backward-compatible''
493 * stuff. Deciding this way, I added a hack to SBCL's syscall macros,
494 * so "[_]open" as a syscall name is interpreted as a request to link
495 * agains "_open" on win32 and "open" on every other system.
496 *
497 * Of course, this name-parsing trick lacks conceptual clarity; we're
498 * going to get rid of it eventually. */
504 {
506 /* base defaults to 0x400000 with GCC/mingw32. If you dereference
507 * that location, you'll see 'MZ' bytes */
511 /* dos header provided the offset from `base' to
512 * IMAGE_FILE_HEADER where PE-i386 really starts */
517 /* We don't need this DLL thingie _that_ much. If the world
518 * has changed to a degree where PE magic isn't found, let's
519 * silently return `no libraries detected'. */
522 /* We traverse PE-i386 structures of SBCL.EXE in memory (not
523 * in the file). File and memory layout _surely_ differ in
524 * some places and _may_ differ in some other places, but
525 * fortunately, those places are irrelevant to the task at
526 * hand. */
540 {
541 HMODULE hmodule;
544 /* Code using image thunk data to get its handle was here, with a
545 * number of platform-specific tricks (like using VirtualQuery for
546 * old OSes lacking GetModuleHandleEx).
547 *
548 * It's now replaced with requesting handle by name, which is
549 * theoretically unreliable (with SxS, multiple modules with same
550 * name are quite possible), but good enough to find the
551 * link-time dependencies of our executable or DLL. */
557 {
558 /* We may encouncer some module more than once while
559 traversing import descriptors (it's usually a
560 result of non-trivial linking process, like doing
561 ld -r on some groups of files before linking
562 everything together.
564 Anyway: using a module handle more than once will
565 do no harm, but it slows down the startup (even
566 now, our startup time is not a pleasant topic to
567 discuss when it comes to :sb-dynamic-core; there is
568 an obvious direction to go for speed, though --
569 instead of resolving symbols one-by-one, locate PE
570 export directories -- they are sorted by symbol
571 name -- and merge them, at one pass, with sorted
572 list of required symbols (the best time to sort the
573 latter list is during Genesis -- that's why I don't
574 proceed with memory copying, qsort() and merge
575 right here)). */
578 {
581 }
583 * outer loop */
588 }
592 }
597 }
598 }
600 }
601 }
606 /* Resolve symbols against the executable and its build-time dependencies */
608 {
612 buildTimeImageCount =
615 }
618 }
620 }
624 #if defined(LISP_FEATURE_SB_THREAD)
625 /* We want to get a slot in TIB that (1) is available at constant
626 offset, (2) is our private property, so libraries wouldn't legally
627 override it, (3) contains something predefined for threads created
628 out of our sight.
630 Low 64 TLS slots are adressable directly, starting with
631 FS:[#xE10]. When SBCL runtime is initialized, some of the low slots
632 may be already in use by its prerequisite DLLs, as DllMain()s and
633 TLS callbacks have been called already. But slot 63 is unlikely to
634 be reached at this point: one slot per DLL that needs it is the
635 common practice, and many system DLLs use predefined TIB-based
636 areas outside conventional TLS storage and don't need TLS slots.
637 With our current dependencies, even slot 2 is observed to be free
638 (as of WinXP and wine).
640 Now we'll call TlsAlloc() repeatedly until slot 63 is officially
641 assigned to us, then TlsFree() all other slots for normal use. TLS
642 slot 63, alias FS:[#.(+ #xE10 (* 4 63))], now belongs to us.
644 To summarize, let's list the assumptions we make:
646 - TIB, which is FS segment base, contains first 64 TLS slots at the
647 offset #xE10 (i.e. TIB layout compatibility);
648 - TLS slots are allocated from lower to higher ones;
649 - All libraries together with CRT startup have not requested 64
650 slots yet.
652 All these assumptions together don't seem to be less warranted than
653 the availability of TIB arbitrary data slot for our use. There are
654 some more reasons to prefer slot 63 over TIB arbitrary data: (1) if
655 our assumptions for slot 63 are violated, it will be detected at
656 startup instead of causing some system-specific unreproducible
657 problems afterwards, depending on OS and loaded foreign libraries;
658 (2) if getting slot 63 reliably with our current approach will
659 become impossible for some future Windows version, we can add TLS
660 callback directory to SBCL binary; main image TLS callback is
661 started before _any_ TLS slot is allocated by libraries, and
662 some C compiler vendors rely on this fact. */
665 {
666 #ifdef LISP_FEATURE_X86
668 DWORD key;
680 }
682 }
685 }
689 }
690 #endif
691 }
695 #ifdef LISP_FEATURE_X86_64
696 /* Windows has 32-bit 'longs', so printf...%lX (and other %l patterns) doesn't
697 * work well with address-sized values, like it's done all over the place in
698 * SBCL. And msvcrt uses I64, not LL, for printing long longs.
699 *
700 * I've already had enough search/replace with longs/words/intptr_t for today,
701 * so I prefer to solve this problem with a format string translator. */
703 /* There is (will be) defines for printf and friends. */
706 {
721 }
722 }
725 }
728 {
732 }
734 {
738 }
740 #endif
749 #define RESOLVE(hmodule,fn) \
750 do { \
751 ptr_##fn = (typeof(ptr_##fn)) \
752 GetProcAddress(hmodule,#fn); \
753 } while (0)
756 {
761 }
762 }
764 #undef RESOLVE
767 {
769 /* So apparently we could use VirtualQuery instead of
770 * GetModuleHandleEx if we wanted to support pre-XP, pre-2003
771 * versions of Windows (i.e. Windows 2000). I've opted against such
772 * special-casing. :-). --DFL */
774 GET_MODULE_HANDLE_EX_FLAG_FROM_ADDRESS |
775 GET_MODULE_HANDLE_EX_FLAG_UNCHANGED_REFCOUNT,
778 }
782 {
783 SYSTEM_INFO system_info;
787 #if defined(LISP_FEATURE_X86)
789 #endif
796 }
799 {
805 }
807 /*
808 * So we have three fun scenarios here.
809 *
810 * First, we could be being called to reserve the memory areas
811 * during initialization (prior to loading the core file).
812 *
813 * Second, we could be being called by the GC to commit a page
814 * that has just been decommitted (for easy zero-fill).
815 *
816 * Third, we could be being called by create_thread_struct()
817 * in order to create the sundry and various stacks.
818 *
819 * The third case is easy to pick out because it passes an
820 * addr of 0.
821 *
822 * The second case is easy to pick out because it will be for
823 * a range of memory that is MEM_RESERVE rather than MEM_FREE.
824 *
825 * The second case is also an easy implement, because we leave
826 * the memory as reserved (since we do lazy commits).
827 */
829 os_vm_address_t
831 {
832 MEMORY_BASIC_INFORMATION mem_info;
835 /* the simple case first */
836 return
838 }
844 /* It would be correct to return here. However, support for Wine
845 * is beneficial, and Wine has a strange behavior in this
846 * department. It reports all memory below KERNEL32.DLL as
847 * reserved, but disallows MEM_COMMIT.
848 *
849 * Let's work around it: reserve the region we need for a second
850 * time. The second reservation is documented to fail on normal NT
851 * family, but it will succeed on Wine if this region is
852 * actually free.
853 */
855 /* If it is wine, the second call has succeded, and now the region
856 * is really reserved. */
858 }
863 /* Oddly, we do not treat this assertion as fatal; hence also the
864 * provision for MEM_RESERVE in the following code, I suppose: */
865 }
872 }
874 /*
875 * For os_invalidate(), we merely decommit the memory rather than
876 * freeing the address space. This loses when freeing per-thread
877 * data and related memory since it leaks address space.
878 *
879 * So far the original comment (author unknown). It used to continue as
880 * follows:
881 *
882 * It's not too lossy, however, since the two scenarios I'm aware of
883 * are fd-stream buffers, which are pooled rather than torched, and
884 * thread information, which I hope to pool (since windows creates
885 * threads at its own whim, and we probably want to be able to have
886 * them callback without funky magic on the part of the user, and
887 * full-on thread allocation is fairly heavyweight).
888 *
889 * But: As it turns out, we are no longer content with decommitting
890 * without freeing, and have now grown a second function
891 * os_invalidate_free(), sort of a really_os_invalidate().
892 *
893 * As discussed on #lisp, this is not a satisfactory solution, and probably
894 * ought to be rectified in the following way:
895 *
896 * - Any cases currently going through the non-freeing version of
897 * os_invalidate() are ultimately meant for zero-filling applications.
898 * Replace those use cases with an os_revalidate_bzero() or similarly
899 * named function, which explicitly takes care of that aspect of
900 * the semantics.
901 *
902 * - The remaining uses of os_invalidate should actually free, and once
903 * the above is implemented, we can rename os_invalidate_free back to
904 * just os_invalidate().
905 *
906 * So far the new plan, as yet unimplemented. -- DFL
907 */
909 void
911 {
913 }
915 void
918 {
920 }
922 void
925 {
926 MEMORY_BASIC_INFORMATION minfo;
930 }
932 /* os_validate doesn't commit, i.e. doesn't actually "validate" in the
933 * sense that we could start using the space afterwards. Usually it's
934 * os_map or Lisp code that will run into that, in which case we recommit
935 * elsewhere in this file. For cases where C wants to write into newly
936 * os_validate()d memory, it needs to commit it explicitly first:
937 */
938 os_vm_address_t
940 {
941 return
943 }
945 /*
946 * os_map() is called to map a chunk of the core file into memory.
947 *
948 * Unfortunately, Windows semantics completely screws this up, so
949 * we just add backing store from the swapfile to where the chunk
950 * goes and read it up like a normal file. We could consider using
951 * a lazy read (demand page) setup, but that would mean keeping an
952 * open file pointer for the core indefinately (and be one more
953 * thing to maintain).
954 */
957 {
958 os_vm_size_t count;
962 PAGE_EXECUTE_READWRITE));
968 }
970 PAGE_NOACCESS,
971 PAGE_READONLY,
972 PAGE_READWRITE,
973 PAGE_READWRITE,
974 PAGE_EXECUTE,
975 PAGE_EXECUTE_READ,
976 PAGE_EXECUTE_READWRITE,
977 PAGE_EXECUTE_READWRITE,
978 };
980 void
982 {
983 DWORD old_prot;
992 }
994 /* FIXME: Now that FOO_END, rather than FOO_SIZE, is the fundamental
995 * description of a space, we could probably punt this and just do
996 * (FOO_START <= x && x < FOO_END) everywhere it's called. */
997 static boolean
999 {
1004 }
1006 boolean
1008 {
1010 }
1014 boolean
1016 {
1023 }
1025 /* test if an address is within thread-local space */
1026 static boolean
1028 {
1029 /* Assuming that this is correct, it would warrant further comment,
1030 * I think. Based on what our call site is doing, we have been
1031 * tasked to check for the address of a lisp object; not merely any
1032 * foreign address within the thread's area. Indeed, this used to
1033 * be a check for control and binding stack only, rather than the
1034 * full thread "struct". So shouldn't the THREAD_STRUCT_SIZE rather
1035 * be (thread_control_stack_size+BINDING_STACK_SIZE) instead? That
1036 * would also do away with the LISP_FEATURE_SB_THREAD case. Or does
1037 * it simply not matter? --DFL */
1040 #ifdef LISP_FEATURE_SB_THREAD
1042 #endif
1043 ;
1044 }
1046 static boolean
1048 {
1050 #ifdef LISP_FEATURE_SB_THREAD
1057 }
1058 }
1060 #endif
1062 }
1065 /* A tiny bit of interrupt.c state we want our paws on. */
1070 void
1072 {
1082 {
1087 }
1088 }
1090 #ifdef LISP_FEATURE_X86
1091 #define voidreg(ctxptr,name) ((void*)((ctxptr)->E##name))
1092 #else
1093 #define voidreg(ctxptr,name) ((void*)((ctxptr)->R##name))
1094 #endif
1097 static int
1099 {
1103 /* We are doing a displaced instruction. At least function
1104 * end breakpoints use this. */
1108 }
1110 #ifdef LISP_FEATURE_UD2_BREAKPOINTS
1111 #define SBCL_EXCEPTION_BREAKPOINT EXCEPTION_ILLEGAL_INSTRUCTION
1112 #define TRAP_CODE_WIDTH 2
1113 #else
1114 #define SBCL_EXCEPTION_BREAKPOINT EXCEPTION_BREAKPOINT
1115 #define TRAP_CODE_WIDTH 1
1116 #endif
1118 static int
1120 {
1121 #ifdef LISP_FEATURE_UD2_BREAKPOINTS
1124 #endif
1126 /* Unlike some other operating systems, Win32 leaves EIP
1127 * pointing to the breakpoint instruction. */
1130 /* Now EIP points just after the INT3 byte and aims at the
1131 * 'kind' value (eg trap_Cerror). */
1134 #ifdef LISP_FEATURE_SB_THREAD
1135 /* Before any other trap handler: gc_safepoint ensures that
1136 inner alloc_sap for passing the context won't trap on
1137 pseudo-atomic. */
1138 /* Now that there is no alloc_sap, I don't know what happens here. */
1140 /* Done everything needed for this trap, except EIP
1141 adjustment */
1145 }
1146 #endif
1148 /* This is just for info in case the monitor wants to print an
1149 * approximation. */
1154 #if defined(LISP_FEATURE_SB_THREAD)
1156 #endif
1158 #if defined(LISP_FEATURE_SB_THREAD)
1160 #endif
1161 }
1163 /* Done, we're good to go! */
1165 }
1167 static int
1172 {
1175 #if defined(LISP_FEATURE_X86)
1177 "SEGV. ThSap %p, Eip %p, Esp %p, Esi %p, Edi %p, "
1179 self,
1184 fault_address,
1186 #else
1188 "SEGV. ThSap %p, Eip %p, Esp %p, Esi %p, Edi %p, "
1190 self,
1195 fault_address,
1197 #endif
1199 /* Stack: This case takes care of our various stack exhaustion
1200 * protect pages (with the notable exception of the control stack!). */
1205 }
1207 /* Safepoint pages */
1208 #ifdef LISP_FEATURE_SB_THREAD
1212 }
1217 }
1218 #endif
1220 /* dynamic space */
1223 /*
1224 * Now, if the page is supposedly write-protected and this
1225 * is a write, tell the gc that it's been hit.
1226 */
1231 os_vm_page_size,
1233 }
1235 }
1240 /* linkage table or a "valid_lisp_addr" outside of dynamic space (?) */
1247 try_recommit:
1248 /* First use of a new page, lets get some memory for it. */
1250 #if defined(LISP_FEATURE_X86)
1252 os_vm_page_size,
1260 #else
1262 os_vm_page_size,
1270 #endif
1273 }
1275 static void
1279 {
1280 /*
1281 * If we fall through to here then we need to either forward
1282 * the exception to the lisp-side exception handler if it's
1283 * set up, or drop to LDB.
1284 */
1289 /* We're making the somewhat arbitrary decision that having
1290 * internal errors enabled means that lisp has sufficient
1291 * marbles to be able to handle exceptions, but exceptions
1292 * aren't supposed to happen during cold init or reinit
1293 * anyway. */
1295 #if defined(LISP_FEATURE_SB_THREAD)
1297 #endif
1304 #if defined(LISP_FEATURE_SB_THREAD)
1306 #endif
1308 /* The exception system doesn't automatically clear pending
1309 * exceptions, so we lose as soon as we execute any FP
1310 * instruction unless we do this first. */
1311 /* Call into lisp to handle things. */
1313 context_sap,
1314 exception_record_sap);
1315 }
1316 /* If Lisp doesn't nlx, we need to put things back. */
1318 #if defined(LISP_FEATURE_SB_THREAD)
1320 #endif
1321 /* FIXME: HANDLE-WIN32-EXCEPTION should be allowed to decline */
1323 }
1330 MEMORY_BASIC_INFORMATION mem_info;
1334 }
1338 fault_address);
1339 }
1345 }
1347 /*
1348 * A good explanation of the exception handling semantics is
1349 * http://win32assembly.online.fr/Exceptionhandling.html (possibly defunct)
1350 * or:
1351 * http://www.microsoft.com/msj/0197/exception/exception.aspx
1352 */
1354 EXCEPTION_DISPOSITION
1359 {
1361 /* Not certain why this should be possible, but let's be safe... */
1365 /* If we're being unwound, be graceful about it. */
1367 /* Undo any dynamic bindings. */
1371 }
1380 #if defined(LISP_FEATURE_SB_THREAD)
1382 #endif
1387 self->carried_base_pointer
1389 }
1391 /* For EXCEPTION_ACCESS_VIOLATION only. */
1397 exception_record,
1398 win32_context,
1400 fault_address,
1405 /* This function had become unwieldy. Let's cut it down into
1406 * pieces based on the different exception codes. Each exception
1407 * code handler gets the chance to decline by returning non-zero if it
1408 * isn't happy: */
1427 }
1430 /* All else failed, drop through to the lisp-side exception handler. */
1439 }
1441 #ifdef LISP_FEATURE_X86_64
1443 #define RESTORING_ERRNO() \
1444 int sbcl__lastErrno = errno; \
1445 RUN_BODY_ONCE(restoring_errno, errno = sbcl__lastErrno)
1447 LONG
1449 {
1450 EXCEPTION_DISPOSITION disp;
1455 }
1460 {
1468 }
1469 }
1470 #endif
1472 os_context_register_t
1474 {
1478 }
1480 void
1481 wos_install_interrupt_handlers
1483 {
1484 #ifdef LISP_FEATURE_X86
1488 #else
1492 #endif
1493 }
1495 /*
1496 * The stubs below are replacements for the windows versions,
1497 * which can -fail- when used in our memory spaces because they
1498 * validate the memory spaces they are passed in a way that
1499 * denies our exception handler a chance to run.
1500 */
1503 {
1509 }
1511 }
1514 {
1517 }
1520 {
1528 }
1535 }
1536 }
1539 }
1541 // 0 - not a socket or other error, 1 - has input, 2 - has no input
1542 int
1544 {
1558 }
1560 #ifdef LISP_FEATURE_SB_THREAD
1561 /* Atomically mark current thread as (probably) doing synchronous I/O
1562 * on handle, if no cancellation is requested yet (and return TRUE),
1563 * otherwise clear thread's I/O cancellation flag and return false.
1564 */
1565 static
1567 {
1568 /* No point in doing it unless OS supports cancellation from other
1569 * threads */
1578 }
1580 }
1584 /* Unmark current thread as (probably) doing synchronous I/O; if an
1585 * I/O cancellation was requested, postpone it until next
1586 * io_begin_interruptible */
1587 static void
1589 {
1596 }
1597 #define WITH_INTERRUPTIBLE_IO(handle) \
1598 if (!io_begin_interruptible(handle)) { \
1599 errno = EINTR; \
1600 return -1; \
1601 } \
1602 RUN_BODY_ONCE(xx, io_end_interruptible(handle))
1603 #else
1604 #define WITH_INTERRUPTIBLE_IO(handle)
1605 #endif
1608 {
1609 DWORD mode;
1612 }
1613 #ifdef LISP_FEATURE_SB_THREAD
1614 /*
1615 * (AK writes:)
1616 *
1617 * It may be unobvious, but (probably) the most straightforward way of
1618 * providing some sane CL:LISTEN semantics for line-mode console
1619 * channel requires _dedicated input thread_.
1620 *
1621 * LISTEN should return true iff the next (READ-CHAR) won't have to
1622 * wait. As our console may be shared with another process, entirely
1623 * out of our control, looking at the events in PeekConsoleEvent
1624 * result (and searching for #\Return) doesn't cut it.
1625 *
1626 * We decided that console input thread must do something smarter than
1627 * a bare loop of continuous ReadConsoleW(). On Unix, user experience
1628 * with the terminal is entirely unaffected by the fact that some
1629 * process does (or doesn't) call read(); the situation on MS Windows
1630 * is different.
1631 *
1632 * Echo output and line editing present on MS Windows while some
1633 * process is waiting in ReadConsole(); otherwise all input events are
1634 * buffered. If our thread were calling ReadConsole() all the time, it
1635 * would feel like Unix cooked mode.
1636 *
1637 * But we don't write a Unix emulator here, even if it sometimes feels
1638 * like that; therefore preserving this aspect of console I/O seems a
1639 * good thing to us.
1640 *
1641 * LISTEN itself becomes trivial with dedicated input thread, but the
1642 * goal stated above -- provide `native' user experience with blocked
1643 * console -- don't play well with this trivial implementation.
1644 *
1645 * What's currently implemented is a compromise, looking as something
1646 * in between Unix cooked mode and Win32 line mode.
1647 *
1648 * 1. As long as no console I/O function is called (incl. CL:LISTEN),
1649 * console looks `blocked': no echo, no line editing.
1650 *
1651 * 2. (READ-CHAR), (READ-SEQUENCE) and other functions doing real
1652 * input result in the ReadConsole request (in a dedicated thread);
1653 *
1654 * 3. Once ReadConsole is called, it is not cancelled in the
1655 * middle. In line mode, it returns when <Enter> key is hit (or
1656 * something like that happens). Therefore, if line editing and echo
1657 * output had a chance to happen, console won't look `blocked' until
1658 * the line is entered (even if line input was triggered by
1659 * (READ-CHAR)).
1660 *
1661 * 4. LISTEN may request ReadConsole too (if no other thread is
1662 * reading the console and no data are queued). It's the only case
1663 * when the console becomes `unblocked' without any actual input
1664 * requested by Lisp code. LISTEN check if there is at least one
1665 * input event in PeekConsole queue; unless there is such an event,
1666 * ReadConsole is not triggered by LISTEN.
1667 *
1668 * 5. Console-reading Lisp thread now may be interrupted immediately;
1669 * ReadConsole call itself, however, continues until the line is
1670 * entered.
1671 */
1676 pthread_mutex_t lock;
1677 pthread_cond_t cond_has_data;
1678 pthread_cond_t cond_has_client;
1679 pthread_t thread;
1680 boolean initialized;
1681 HANDLE handle;
1682 boolean in_progress;
1687 {
1690 DWORD nchars;
1691 BOOL ok;
1697 #ifdef LISP_FEATURE_SB_UNICODE
1702 #else
1707 #endif
1714 }
1716 }
1719 }
1721 static boolean
1723 {
1729 }
1734 }
1736 }
1738 boolean
1740 {
1742 INPUT_RECORD ir;
1743 DWORD nevents;
1757 }
1758 }
1759 }
1762 }
1765 {
1782 }
1793 /* We are to wait */
1795 /* wake console reader */
1797 }
1800 }
1801 }
1805 }
1821 }
1822 }
1825 }
1830 }
1831 }
1832 unlock:
1835 }
1837 boolean
1839 {
1857 }
1862 }
1864 }
1865 unlock:
1867 }
1869 }
1870 #endif
1874 int
1876 {
1879 BOOL result;
1884 #ifdef LISP_FEATURE_SB_UNICODE
1886 #else
1888 #endif
1889 }
1898 }
1904 }
1905 }
1907 int
1909 {
1910 DWORD written_bytes;
1911 OVERLAPPED overlapped;
1913 BOOL waitInGOR;
1914 LARGE_INTEGER file_position;
1915 BOOL seekable;
1916 BOOL ok;
1920 }
1924 zero_large_offset,
1926 FILE_CURRENT);
1933 }
1937 }
1947 }
1958 }
1964 }
1968 }
1969 }
1970 }
1971 done_something:
1975 }
1977 }
1980 int
1982 {
1989 LARGE_INTEGER file_position;
1990 BOOL seekable;
1994 }
1997 /* If it has a position, we won't try overlapped */
1999 zero_large_offset,
2001 FILE_CURRENT);
2008 }
2012 }
2015 /* immediately */
2025 }
2030 }
2032 /* is it some _real_ error? */
2041 /* Waiting for IO only */
2044 }
2056 else
2059 }
2062 }
2063 }
2064 done_something:
2068 }
2070 }
2072 /* We used to have a scratch() function listing all symbols needed by
2073 * Lisp. Much rejoicing commenced upon its removal. However, I would
2074 * like cold init to fail aggressively when encountering unused symbols.
2075 * That poses a problem, however, since our C code no longer includes
2076 * any references to symbols in ws2_32.dll, and hence the linker
2077 * completely ignores our request to reference it (--no-as-needed does
2078 * not work). Warm init would later load the DLLs explicitly, but then
2079 * it's too late for an early sanity check. In the unfortunate spirit
2080 * of scratch(), continue to reference some required DLLs explicitly by
2081 * means of one scratch symbol per DLL.
2082 */
2084 {
2085 /* a function from ws2_32.dll */
2088 /* a function from shell32.dll */
2091 /* from advapi32.dll */
2093 }
2097 {
2100 DWORD size;
2108 }
2111 DWORD
2113 {
2114 #ifdef LISP_FEATURE_SB_THREAD
2117 return
2119 #else
2121 #endif
2122 }
2124 DWORD
2126 {
2127 #ifdef LISP_FEATURE_SB_THREAD
2130 return
2132 #else
2133 return
2135 #endif
2136 }
2138 #ifdef LISP_FEATURE_SB_THREAD
2139 /*
2140 * Portability glue for win32 waitable timers.
2141 *
2142 * One may ask: Why is there a wrapper in C when the calls are so
2143 * obvious that Lisp could do them directly (as it did on Windows)?
2144 *
2145 * But the answer is that on POSIX platforms, we now emulate the win32
2146 * calls and hide that emulation behind this os_* abstraction.
2147 */
2148 HANDLE
2150 {
2152 }
2154 int
2156 {
2158 }
2160 void
2162 {
2164 }
2166 void
2168 {
2169 /* in units of 100ns, i.e. 0.1us. Negative for relative semantics. */
2170 long long dueTime
2174 }
2176 void
2178 {
2180 }
2181 #endif
2183 /* EOF */