| blob | b5b69abd9e6fd675e9f388b75b6b31c96b654bb8 |
1 /*
2 * interrupt-handling magic
3 */
5 /*
6 * This software is part of the SBCL system. See the README file for
7 * more information.
8 *
9 * This software is derived from the CMU CL system, which was
10 * written at Carnegie Mellon University and released into the
11 * public domain. The software is in the public domain and is
12 * provided with absolutely no warranty. See the COPYING and CREDITS
13 * files for more information.
14 */
17 /* As far as I can tell, what's going on here is:
18 *
19 * In the case of most signals, when Lisp asks us to handle the
20 * signal, the outermost handler (the one actually passed to UNIX) is
21 * either interrupt_handle_now(..) or maybe_now_maybe_later(..).
22 * In that case, the Lisp-level handler is stored in interrupt_handlers[..]
23 * and interrupt_low_level_handlers[..] is cleared.
24 *
25 * However, some signals need special handling, e.g.
26 *
27 * o the SIGSEGV (for e.g. Linux) or SIGBUS (for e.g. FreeBSD) used by the
28 * garbage collector to detect violations of write protection,
29 * because some cases of such signals (e.g. GC-related violations of
30 * write protection) are handled at C level and never passed on to
31 * Lisp. For such signals, we still store any Lisp-level handler
32 * in interrupt_handlers[..], but for the outermost handle we use
33 * the value from interrupt_low_level_handlers[..], instead of the
34 * ordinary interrupt_handle_now(..) or interrupt_handle_later(..).
35 *
36 * o the SIGTRAP (Linux/Alpha) which Lisp code uses to handle breakpoints,
37 * pseudo-atomic sections, and some classes of error (e.g. "function
38 * not defined"). This never goes anywhere near the Lisp handlers at all.
39 * See runtime/alpha-arch.c and code/signal.lisp
40 *
41 * - WHN 20000728, dan 20010128 */
45 #include <stdio.h>
46 #include <stdlib.h>
47 #include <string.h>
48 #include <signal.h>
49 #include <sys/types.h>
50 #ifndef LISP_FEATURE_WIN32
51 #include <sys/wait.h>
52 #endif
53 #include <errno.h>
71 /* When we catch an internal error, should we pass it back to Lisp to
72 * be handled in a high-level way? (Early in cold init, the answer is
73 * 'no', because Lisp is still too brain-dead to handle anything.
74 * After sufficient initialization has been completed, the answer
75 * becomes 'yes'.) */
78 #ifndef LISP_FEATURE_WIN32
79 static
81 #endif
84 /* Under Linux on some architectures, we appear to have to restore the
85 * FPU control word from the context, as after the signal is delivered
86 * we appear to have a null FPU control word. */
87 #if defined(RESTORE_FP_CONTROL_FROM_CONTEXT)
88 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
89 os_context_t *context = arch_os_get_context(&void_context); \
90 os_restore_fp_control(context);
91 #else
92 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
93 os_context_t *context = arch_os_get_context(&void_context);
94 #endif
96 /* Foreign code may want to start some threads on its own.
97 * Non-targetted, truly asynchronous signals can be delivered to
98 * basically any thread, but invoking Lisp handlers in such foregign
99 * threads is really bad, so let's resignal it.
100 *
101 * This should at least bring attention to the problem, but it cannot
102 * work for SIGSEGV and similar. It is good enough for timers, and
103 * maybe all deferrables. */
105 #if defined(LISP_FEATURE_SB_THREAD) && !defined(LISP_FEATURE_WIN32)
106 static void
108 {
114 }
115 }
116 }
119 #endif
121 static boolean
123 {
124 #if defined(LISP_FEATURE_SB_THREAD) && !defined(LISP_FEATURE_WIN32)
127 corruption_warning_and_maybe_lose
129 signal,
131 }
132 {
133 sigset_t sigset;
139 }
142 #endif
144 }
146 /* These are to be used in signal handlers. Currently all handlers are
147 * called from one of:
148 *
149 * interrupt_handle_now_handler
150 * maybe_now_maybe_later
151 * unblock_me_trampoline
152 * low_level_handle_now_handler
153 * low_level_maybe_now_maybe_later
154 * low_level_unblock_me_trampoline
155 *
156 * This gives us a single point of control (or six) over errno, fp
157 * control word, and fixing up signal context on sparc.
158 *
159 * The SPARC/Linux platform doesn't quite do signals the way we want
160 * them done. The third argument in the handler isn't filled in by the
161 * kernel properly, so we fix it up ourselves in the
162 * arch_os_get_context(..) function. -- CSR, 2002-07-23
163 */
164 #define SAVE_ERRNO(signal,context,void_context) \
165 { \
166 int _saved_errno = errno; \
167 RESTORE_FP_CONTROL_WORD(context,void_context); \
168 if (!maybe_resignal_to_lisp_thread(signal, context)) \
169 {
171 #define RESTORE_ERRNO \
172 } \
173 errno = _saved_errno; \
174 }
178 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
183 \f
185 /* Generic signal related utilities. */
187 void
189 {
190 /* Get the current sigmask, by blocking the empty set. */
192 }
194 void
196 {
204 }
207 }
208 }
210 void
212 {
220 }
223 }
224 }
226 static void
228 {
233 }
234 }
236 /* Return 1 is all signals is sigset2 are masked in sigset, return 0
237 * if all re unmasked else die. Passing NULL for sigset is a shorthand
238 * for the current sigmask. */
239 boolean
242 {
243 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
246 sigset_t current;
250 }
255 else
257 }
258 }
262 }
265 else
267 #endif
268 }
269 \f
271 /* Deferrables, blockables, gc signals. */
273 void
275 {
286 #ifndef LISP_FEATURE_HPUX
289 #endif
293 }
295 void
297 {
300 }
302 void
304 {
305 #ifdef THREADS_USING_GCSIGNAL
307 #endif
308 }
310 /* initialized in interrupt_init */
311 sigset_t deferrable_sigset;
312 sigset_t blockable_sigset;
313 sigset_t gc_sigset;
315 #endif
317 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
318 boolean
320 {
322 }
323 #endif
325 void
327 {
328 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
331 #endif
332 }
334 void
336 {
337 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
340 #endif
341 }
343 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
344 boolean
346 {
348 }
349 #endif
351 void
353 {
354 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
357 #endif
358 }
360 void
362 {
363 #if !defined(LISP_FEATURE_WIN32)
364 /* On Windows, there are no actual signals, but since the win32 port
365 * tracks the sigmask and checks it explicitly, some functions are
366 * still required to keep the mask set up properly. (After all, the
367 * goal of the sigmask emulation is to not have to change all the
368 * call sites in the first place.)
369 *
370 * However, this does not hold for all signals equally: While
371 * deferrables matter ("is interrupt-thread okay?"), it is not worth
372 * having to set up blockables properly (which include the
373 * non-existing GC signals).
374 *
375 * Yet, as the original comment explains it:
376 * Adjusting FREE-INTERRUPT-CONTEXT-INDEX* and other aspecs of
377 * fake_foreign_function_call machinery are sometimes useful here[...].
378 *
379 * So we merely skip this assertion.
380 * -- DFL, trying to expand on a comment by AK.
381 */
384 #endif
385 }
387 #ifndef LISP_FEATURE_SB_SAFEPOINT
388 #if !defined(LISP_FEATURE_WIN32)
389 boolean
391 {
393 }
394 #endif
396 void
398 {
399 #if !defined(LISP_FEATURE_WIN32)
402 #endif
403 }
405 void
407 {
408 #if !defined(LISP_FEATURE_WIN32)
411 #endif
412 }
413 #endif
415 void
417 {
418 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
420 #endif
421 }
423 void
425 {
426 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
428 #endif
429 }
431 #ifndef LISP_FEATURE_SB_SAFEPOINT
432 void
434 {
435 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
437 #endif
438 }
439 #endif
441 void
443 {
444 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
447 #ifndef LISP_FEATURE_SB_SAFEPOINT
449 #endif
451 #endif
452 }
454 void
456 {
457 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
459 #endif
460 }
462 #ifndef LISP_FEATURE_SB_SAFEPOINT
463 void
465 {
466 #ifndef LISP_FEATURE_WIN32
468 #endif
469 }
470 #endif
472 void
474 {
475 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
477 #ifndef LISP_FEATURE_SB_SAFEPOINT
484 }
485 #endif
488 }
489 #endif
490 }
491 \f
495 {
501 }
503 /* Save sigset (or the current sigmask if 0) if there is no pending
504 * handler, because that means that deferabbles are already blocked.
505 * The purpose is to avoid losing the pending gc signal if a
506 * deferrable interrupt async unwinds between clearing the pseudo
507 * atomic and trapping to GC.*/
508 #ifndef LISP_FEATURE_SB_SAFEPOINT
509 void
511 {
512 #ifndef LISP_FEATURE_WIN32
515 sigset_t oldset;
516 /* Obviously, this function is called when signals may not be
517 * blocked. Let's make sure we are not interrupted. */
519 #ifndef LISP_FEATURE_SB_THREAD
520 /* With threads a SIG_STOP_FOR_GC and a normal GC may also want to
521 * block. */
524 #endif
530 /* This is the sigmask of some context. */
536 /* Operating on the current sigmask. Save oldset and
537 * unblock gc signals. In the end, this is equivalent to
538 * blocking the deferrables. */
542 }
543 }
545 #endif
546 }
547 #endif
549 /* Are we leaving WITH-GCING and already running with interrupts
550 * enabled, without the protection of *GC-INHIBIT* T and there is gc
551 * (or stop for gc) pending, but we haven't trapped yet? */
552 int
554 {
559 #if defined(LISP_FEATURE_SB_THREAD)
561 #endif
562 ));
563 }
565 /* Check our baroque invariants. */
566 void
568 {
569 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
575 /* On PPC pseudo_atomic_interrupted is cleared when coming out of
576 * handle_allocation_trap. */
577 #if defined(LISP_FEATURE_GENCGC) && !defined(GENCGC_IS_PRECISE)
583 /* In the time window between leaving the *INTERRUPTS-ENABLED* NIL
584 * section and trapping, a SIG_STOP_FOR_GC would see the next
585 * check fail, for this reason sig_stop_for_gc handler does not
586 * call this function. */
590 }
594 #if defined(LISP_FEATURE_SB_THREAD)
595 {
604 }
605 #else
609 #endif
610 #endif
622 #ifndef LISP_FEATURE_SB_SAFEPOINT
623 /* If deferrables are unblocked then we are open to signals
624 * that run lisp code. */
626 #endif
627 }
628 #endif
629 }
630 \f
631 /*
632 * utility routines used by various signal handlers
633 */
635 static void
637 {
638 #ifndef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
640 lispobj oldcont;
642 /* Build a fake stack frame or frames */
644 #if !defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_ARM64)
651 /* There is a small window during call where the callee's
652 * frame isn't built yet. */
655 /* We have called, but not built the new frame, so
656 * build it for them. */
662 /* Build our frame on top of it. */
664 }
666 /* We haven't yet called, build our frame as if the
667 * partial frame wasn't there. */
669 }
671 #elif defined (LISP_FEATURE_ARM)
674 #elif defined (LISP_FEATURE_ARM64)
677 #endif
678 /* We can't tell whether we are still in the caller if it had to
679 * allocate a stack frame due to stack arguments. */
680 /* This observation provoked some past CMUCL maintainer to ask
681 * "Can anything strange happen during return?" */
682 {
683 /* normal case */
685 }
693 #endif
694 }
696 /* Stores the context for gc to scavange and builds fake stack
697 * frames. */
698 void
700 {
704 /* context_index incrementing must not be interrupted */
707 /* Get current Lisp state from context. */
708 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
710 #endif
711 #ifdef reg_ALLOC
712 #ifdef LISP_FEATURE_SB_THREAD
714 #else
715 dynamic_space_free_pointer =
717 #endif
719 /* fprintf(stderr,"dynamic_space_free_pointer: %p\n", */
720 /* dynamic_space_free_pointer); */
721 #if defined(LISP_FEATURE_ALPHA) || defined(LISP_FEATURE_MIPS)
724 }
725 #endif
726 /* why doesnt PPC and SPARC do something like this: */
727 #if defined(LISP_FEATURE_HPPA)
729 lose("dead in fake_foreign_function_call, context = %x, d_s_f_p = %x\n", context, dynamic_space_free_pointer);
730 }
731 #endif
732 #endif
733 #ifdef reg_BSP
736 #endif
738 #if defined(LISP_FEATURE_ARM)
739 /* Stash our control stack pointer */
742 thread);
743 #endif
747 /* Do dynamic binding of the active interrupt context index
748 * and save the context in the context array. */
749 context_index =
754 }
761 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
762 /* x86oid targets don't maintain the foreign function call flag at
763 * all, so leave them to believe that they are never in foreign
764 * code. */
766 #endif
767 }
769 /* blocks all blockable signals. If you are calling from a signal handler,
770 * the usual signal mask will be restored from the context when the handler
771 * finishes. Otherwise, be careful */
772 void
774 {
776 /* Block all blockable signals. */
781 /* Undo dynamic binding of FREE_INTERRUPT_CONTEXT_INDEX */
784 #if defined(LISP_FEATURE_ARM)
785 /* Restore our saved control stack pointer */
788 thread),
789 thread);
791 #endif
793 #if defined(reg_ALLOC) && !defined(LISP_FEATURE_SB_THREAD)
794 /* Put the dynamic space free pointer back into the context. */
799 /*
800 ((uword_t)(*os_context_register_addr(context, reg_ALLOC))
801 & ~LOWTAG_MASK)
802 | ((uword_t) dynamic_space_free_pointer & LOWTAG_MASK);
803 */
804 #endif
805 #if defined(reg_ALLOC) && defined(LISP_FEATURE_SB_THREAD)
806 /* Put the pseudo-atomic bits and dynamic space free pointer back
807 * into the context (p-a-bits for p-a, and dynamic space free
808 * pointer for ROOM). */
812 /* And clear them so we don't get bit later by call-in/call-out
813 * not updating them. */
815 #endif
816 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
818 #endif
819 }
821 /* a handler for the signal caused by execution of a trap opcode
822 * signalling an internal error */
823 void
825 {
832 /* There's no good way to recover from an internal error
833 * before the Lisp error handling mechanism is set up. */
835 }
837 #ifndef LISP_FEATURE_SB_SAFEPOINT
839 #endif
841 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
843 #endif
845 #if defined(LISP_FEATURE_LINUX) && defined(LISP_FEATURE_MIPS)
846 /* Workaround for blocked SIGTRAP. */
847 {
848 sigset_t newset;
852 }
853 #endif
856 #if QSHOW == 2
857 /* Display some rudimentary debugging information about the
858 * error, so that even if the Lisp error handler gets badly
859 * confused, we have a chance to determine what's going on. */
861 #endif
868 }
870 boolean
872 {
876 }
878 void
880 {
881 /* There are three ways we can get here. First, if an interrupt
882 * occurs within pseudo-atomic, it will be deferred, and we'll
883 * trap to here at the end of the pseudo-atomic block. Second, if
884 * the GC (in alloc()) decides that a GC is required, it will set
885 * *GC-PENDING* and pseudo-atomic-interrupted if not *GC-INHIBIT*,
886 * and alloc() is always called from within pseudo-atomic, and
887 * thus we end up here again. Third, when calling GC-ON or at the
888 * end of a WITHOUT-GCING, MAYBE-HANDLE-PENDING-GC will trap to
889 * here if there is a pending GC. Fourth, ahem, at the end of
890 * WITHOUT-INTERRUPTS (bar complications with nesting).
891 *
892 * A fourth way happens with safepoints: In addition to a stop for
893 * GC that is pending, there are thruptions. Both mechanisms are
894 * mostly signal-free, yet also of an asynchronous nature, so it makes
895 * sense to let interrupt_handle_pending take care of running them:
896 * It gets run precisely at those places where it is safe to process
897 * pending asynchronous tasks. */
904 }
909 #ifndef LISP_FEATURE_SB_SAFEPOINT
910 /*
911 * (On safepoint builds, there is no gc_blocked_deferrables nor
912 * SIG_STOP_FOR_GC.)
913 */
914 /* If GC/SIG_STOP_FOR_GC struck during PA and there was no pending
915 * handler, then the pending mask was saved and
916 * gc_blocked_deferrables set. Hence, there can be no pending
917 * handler and it's safe to restore the pending mask.
918 *
919 * Note, that if gc_blocked_deferrables is false we may still have
920 * to GC. In this case, we are coming out of a WITHOUT-GCING or a
921 * pseudo atomic was interrupt be a deferrable first. */
927 /* Restore the saved signal mask from the original signal (the
928 * one that interrupted us during the critical section) into
929 * the os_context for the signal we're currently in the
930 * handler for. This should ensure that when we return from
931 * the handler the blocked signals are unblocked. */
932 #ifndef LISP_FEATURE_WIN32
934 #endif
936 }
937 #endif
942 #ifdef LISP_FEATURE_SB_SAFEPOINT
943 /* handles the STOP_FOR_GC_PENDING case, plus THRUPTIONS */
945 # ifdef LISP_FEATURE_SB_THRUPTION
948 # endif
949 )
950 /* We ought to take this chance to do a pitstop now. */
952 #elif defined(LISP_FEATURE_SB_THREAD)
954 /* STOP_FOR_GC_PENDING and GC_PENDING are cleared by
955 * the signal handler if it actually stops us. */
959 #endif
960 /* Test for T and not for != NIL since the value :IN-PROGRESS
961 * is used in SUB-GC as part of the mechanism to supress
962 * recursive gcs.*/
965 /* Two reasons for doing this. First, if there is a
966 * pending handler we don't want to run. Second, we are
967 * going to clear pseudo atomic interrupted to avoid
968 * spurious trapping on every allocation in SUB_GC and
969 * having a pending handler with interrupts enabled and
970 * without pseudo atomic interrupted breaks an
971 * invariant. */
975 }
979 /* GC_PENDING is cleared in SUB-GC, or if another thread
980 * is doing a gc already we will get a SIG_STOP_FOR_GC and
981 * that will clear it.
982 *
983 * If there is a pending handler or gc was triggerred in a
984 * signal handler then maybe_gc won't run POST_GC and will
985 * return normally. */
992 }
994 /* It's not NIL or T so GC_PENDING is :IN-PROGRESS. If
995 * GC-PENDING is not NIL then we cannot trap on pseudo
996 * atomic due to GC (see if(GC_PENDING) logic in
997 * cheneygc.c an gengcgc.c), plus there is a outer
998 * WITHOUT-INTERRUPTS SUB_GC, so how did we end up
999 * here? */
1001 }
1005 /* No GC shall be lost. If SUB_GC triggers another GC then
1006 * that should be handled on the spot. */
1009 #ifdef THREADS_USING_GCSIGNAL
1012 #endif
1013 /* Check two things. First, that gc does not clobber a handler
1014 * that's already pending. Second, that there is no interrupt
1015 * lossage: if original_pending_handler was NULL then even if
1016 * an interrupt arrived during GC (POST-GC, really) it was
1017 * handled. */
1021 }
1023 #ifndef LISP_FEATURE_WIN32
1024 /* There may be no pending handler, because it was only a gc that
1025 * had to be executed or because Lisp is a bit too eager to call
1026 * DO-PENDING-INTERRUPT. */
1029 /* No matter how we ended up here, clear both
1030 * INTERRUPT_PENDING and pseudo atomic interrupted. It's safe
1031 * because we checked above that there is no GC pending. */
1034 /* Restore the sigmask in the context. */
1037 }
1038 #ifdef LISP_FEATURE_SB_THRUPTION
1040 /* Special case for the following situation: There is a
1041 * thruption pending, but a signal had been deferred. The
1042 * pitstop at the top of this function could only take care
1043 * of GC, and skipped the thruption, so we need to try again
1044 * now that INTERRUPT_PENDING and the sigmask have been
1045 * reset. */
1047 ;
1048 #endif
1049 #endif
1050 #ifdef LISP_FEATURE_GENCGC
1053 #endif
1054 /* It is possible that the end of this function was reached
1055 * without never actually doing anything, the tests in Lisp for
1056 * when to call receive-pending-interrupt are not exact. */
1058 }
1059 \f
1061 void
1063 {
1064 boolean were_in_lisp;
1069 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1072 #endif
1078 }
1082 {
1084 }
1088 signal));
1092 /* This can happen if someone tries to ignore or default one
1093 * of the signals we need for runtime support, and the runtime
1094 * support decides to pass on it. */
1098 /* Once we've decided what to do about contexts in a
1099 * return-elsewhere world (the original context will no longer
1100 * be available; should we copy it or was nobody using it anyway?)
1101 * then we should convert this to return-elsewhere */
1103 /* CMUCL comment said "Allocate the SAPs while the interrupts
1104 * are still disabled.". I (dan, 2003.08.21) assume this is
1105 * because we're not in pseudoatomic and allocation shouldn't
1106 * be interrupted. In which case it's no longer an issue as
1107 * all our allocation from C now goes through a PA wrapper,
1108 * but still, doesn't hurt.
1109 *
1110 * Yeah, but non-gencgc platforms don't really wrap allocation
1111 * in PA. MG - 2005-08-29 */
1114 #ifndef LISP_FEATURE_SB_SAFEPOINT
1115 /* Leave deferrable signals blocked, the handler itself will
1116 * allow signals again when it sees fit. */
1118 #else
1120 #endif
1129 info_sap,
1130 context_sap);
1131 }
1133 /* This cannot happen in sane circumstances. */
1137 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1138 /* Allow signals again. */
1141 #endif
1142 }
1145 {
1147 }
1151 signal));
1152 }
1154 /* This is called at the end of a critical section if the indications
1155 * are that some signal was deferred during the section. Note that as
1156 * far as C or the kernel is concerned we dealt with the signal
1157 * already; we're just doing the Lisp-level processing now that we
1158 * put off then */
1159 static void
1161 {
1162 /* The pending_handler may enable interrupts and then another
1163 * interrupt may hit, overwrite interrupt_data, so reset the
1164 * pending handler before calling it. Trust the handler to finish
1165 * with the siginfo before enabling interrupts. */
1172 }
1174 #ifndef LISP_FEATURE_WIN32
1175 boolean
1178 {
1190 /* If interrupts are disabled then INTERRUPT_PENDING is set and
1191 * not PSEDUO_ATOMIC_INTERRUPTED. This is important for a pseudo
1192 * atomic section inside a WITHOUT-INTERRUPTS.
1193 *
1194 * Also, if in_leaving_without_gcing_race_p then
1195 * interrupt_handle_pending is going to be called soon, so
1196 * stashing the signal away is safe.
1197 */
1208 }
1209 /* a slightly confusing test. arch_pseudo_atomic_atomic() doesn't
1210 * actually use its argument for anything on x86, so this branch
1211 * may succeed even when context is null (gencgc alloc()) */
1220 }
1225 }
1227 static void
1231 {
1243 signal));
1248 /* the signal mask in the context (from before we were
1249 * interrupted) is copied to be restored when run_deferred_handler
1250 * happens. Then the usually-blocked signals are added to the mask
1251 * in the context so that we are running with blocked signals when
1252 * the handler returns */
1255 }
1257 static void
1259 {
1265 RESTORE_ERRNO;
1266 }
1268 static void
1271 {
1272 /* No FP control fixage needed, caller has done that. */
1276 /* No Darwin context fixage needed, caller does that. */
1277 }
1279 static void
1281 {
1289 RESTORE_ERRNO;
1290 }
1291 #endif
1293 #ifdef THREADS_USING_GCSIGNAL
1295 /* This function must not cons, because that may trigger a GC. */
1296 void
1298 {
1300 boolean was_in_lisp;
1302 /* Test for GC_INHIBIT _first_, else we'd trap on every single
1303 * pseudo atomic until gc is finally allowed. */
1312 maybe_save_gc_mask_and_block_deferrables
1315 }
1319 /* Not PA and GC not inhibited -- we can stop now. */
1324 /* need the context stored so it can have registers scavenged */
1326 }
1328 /* Not pending anymore. */
1332 /* Consider this: in a PA section GC is requested: GC_PENDING,
1333 * pseudo_atomic_interrupted and gc_blocked_deferrables are set,
1334 * deferrables are blocked then pseudo_atomic_atomic is cleared,
1335 * but a SIG_STOP_FOR_GC arrives before trapping to
1336 * interrupt_handle_pending. Here, GC_PENDING is cleared but
1337 * pseudo_atomic_interrupted is not and we go on running with
1338 * pseudo_atomic_interrupted but without a pending interrupt or
1339 * GC. GC_BLOCKED_DEFERRABLES is also left at 1. So let's tidy it
1340 * up. */
1347 }
1352 }
1357 /* While waiting for gc to finish occupy ourselves with zeroing
1358 * the unused portion of the control stack to reduce conservatism.
1359 * On hypothetic platforms with threads and exact gc it is
1360 * actually a must. */
1369 }
1373 }
1374 }
1376 #endif
1378 void
1380 {
1382 #ifndef LISP_FEATURE_WIN32
1384 #if !(defined(LISP_FEATURE_LINUX) || defined(LISP_FEATURE_ANDROID))
1386 #endif
1387 )
1390 #endif
1392 RESTORE_ERRNO;
1393 }
1395 /* manipulate the signal context and stack such that when the handler
1396 * returns, it will call function instead of whatever it was doing
1397 * previously
1398 */
1400 #if (defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1402 #endif
1408 void
1410 call_into_lisp_lookalike funptr,
1411 lispobj function)
1412 {
1413 #if !(defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_SAFEPOINT))
1414 check_gc_signals_unblocked_or_lose
1416 #endif
1417 #if !(defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1420 #endif
1422 /* Build a stack frame showing `interrupted' so that the
1423 * user's backtrace makes (as much) sense (as usual) */
1425 /* fp state is saved and restored by call_into_lisp */
1426 /* FIXME: errno is not restored, but since current uses of this
1427 * function only call Lisp code that signals an error, it's not
1428 * much of a problem. In other words, running out of the control
1429 * stack between a syscall and (GET-ERRNO) may clobber errno if
1430 * something fails during signalling or in the handler. But I
1431 * can't see what can go wrong as long as there is no CONTINUE
1432 * like restart on them. */
1433 #ifdef LISP_FEATURE_X86
1434 /* Suppose the existence of some function that saved all
1435 * registers, called call_into_lisp, then restored GP registers and
1436 * returned. It would look something like this:
1438 push ebp
1439 mov ebp esp
1440 pushfl
1441 pushal
1442 push $0
1443 push $0
1444 pushl {address of function to call}
1445 call 0x8058db0 <call_into_lisp>
1446 addl $12,%esp
1447 popal
1448 popfl
1449 leave
1450 ret
1452 * What we do here is set up the stack that call_into_lisp would
1453 * expect to see if it had been called by this code, and frob the
1454 * signal context so that signal return goes directly to call_into_lisp,
1455 * and when that function (and the lisp function it invoked) returns,
1456 * it returns to the second half of this imaginary function which
1457 * restores all registers and returns to C
1459 * For this to work, the latter part of the imaginary function
1460 * must obviously exist in reality. That would be post_signal_tramp
1461 */
1465 #if defined(LISP_FEATURE_DARWIN)
1468 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: preparing to go to function %x, sp: %x\n", function, sp));
1469 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: context: %x, &context %x\n", context, &context));
1471 /* 1. os_validate (malloc/mmap) register_save_block
1472 * 2. copy register state into register_save_block
1473 * 3. put a pointer to register_save_block in a register in the context
1474 * 4. set the context's EIP to point to a trampoline which:
1475 * a. builds the fake stack frame from the block
1476 * b. frees the block
1477 * c. calls the function
1478 */
1494 #else
1496 /* return address for call_into_lisp: */
1501 /* this order matches that used in POPAD */
1506 /* POPAD ignores the value of ESP: */
1517 #endif
1519 #elif defined(LISP_FEATURE_X86_64)
1522 /* return address for call_into_lisp: */
1535 /* skip RBP and RSP */
1548 #else
1551 #endif
1553 #ifdef LISP_FEATURE_X86
1555 #if !defined(LISP_FEATURE_DARWIN)
1559 #ifdef __NetBSD__
1562 #else
1567 #elif defined(LISP_FEATURE_X86_64)
1572 #else
1573 /* this much of the calling convention is common to all
1574 non-x86 ports */
1577 #ifdef reg_LIP
1580 #endif
1583 #endif
1584 #ifdef ARCH_HAS_NPC_REGISTER
1587 #endif
1588 #if defined(LISP_FEATURE_SPARC) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64)
1591 #endif
1594 }
1596 void
1598 {
1599 #if defined(LISP_FEATURE_DARWIN) && defined(LISP_FEATURE_X86)
1601 #else
1603 #endif
1604 }
1606 // These have undefined_alien_function tramp in x-assem.S
1607 #if !(defined(LISP_FEATURE_X86_64) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64))
1608 /* KLUDGE: Theoretically the approach we use for undefined alien
1609 * variables should work for functions as well, but on PPC/Darwin
1610 * we get bus error at bogus addresses instead, hence this workaround,
1611 * that has the added benefit of automatically discriminating between
1612 * functions and variables.
1613 */
1614 void
1616 {
1618 }
1619 #endif
1622 {
1627 }
1630 {
1636 }
1638 /* Called from the REPL, too. */
1640 {
1644 }
1645 }
1648 {
1650 }
1652 boolean
1654 {
1661 }
1664 /* We hit the end of the control stack: disable guard page
1665 * protection so the error handler has some headroom, protect the
1666 * previous page so that we can catch returns from the guard page
1667 * and restore it. */
1671 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
1672 /* For the unfortunate case, when the control stack is
1673 * exhausted in a signal handler. */
1675 #endif
1676 arrange_return_to_lisp_function
1679 }
1682 /* We're returning from the guard page: reprotect it, and
1683 * unprotect this one. This works even if we somehow missed
1684 * the return-guard-page, and hit it on our way to new
1685 * exhaustion instead. */
1690 }
1694 }
1701 /* For the unfortunate case, when the binding stack is
1702 * exhausted in a signal handler. */
1704 arrange_return_to_lisp_function
1707 }
1714 }
1718 }
1725 /* For the unfortunate case, when the alien stack is
1726 * exhausted in a signal handler. */
1728 arrange_return_to_lisp_function
1731 }
1738 }
1741 arrange_return_to_lisp_function
1744 }
1746 }
1747 \f
1748 /*
1749 * noise to install handlers
1750 */
1752 #ifndef LISP_FEATURE_WIN32
1753 /* In Linux 2.4 synchronous signals (sigtrap & co) can be delivered if
1754 * they are blocked, in Linux 2.6 the default handler is invoked
1755 * instead that usually coredumps. One might hastily think that adding
1756 * SA_NODEFER helps, but until ~2.6.13 if SA_NODEFER is specified then
1757 * the whole sa_mask is ignored and instead of not adding the signal
1758 * in question to the mask. That means if it's not blockable the
1759 * signal must be unblocked at the beginning of signal handlers.
1760 *
1761 * It turns out that NetBSD's SA_NODEFER doesn't DTRT in a different
1762 * way: if SA_NODEFER is set and the signal is in sa_mask, the signal
1763 * will be unblocked in the sigmask during the signal handler. -- RMK
1764 * X-mas day, 2005
1765 */
1768 #define SA_NODEFER_TEST_BLOCK_SIGNAL SIGABRT
1769 #define SA_NODEFER_TEST_KILL_SIGNAL SIGUSR1
1771 static void
1773 {
1774 sigset_t current;
1777 /* There should be exactly two blocked signals: the two we added
1778 * to sa_mask when setting up the handler. NetBSD doesn't block
1779 * the signal we're handling when SA_NODEFER is set; Linux before
1780 * 2.6.13 or so also doesn't block the other signal when
1781 * SA_NODEFER is set. */
1787 }
1790 }
1792 static void
1794 {
1803 /* Make sure no signals are blocked. */
1804 {
1805 sigset_t empty;
1808 }
1812 }
1814 #undef SA_NODEFER_TEST_BLOCK_SIGNAL
1815 #undef SA_NODEFER_TEST_KILL_SIGNAL
1817 #if defined(LISP_FEATURE_SB_SAFEPOINT_STRICTLY) && !defined(LISP_FEATURE_WIN32)
1821 {
1823 os_context_t fake_context;
1824 siginfo_t fake_info;
1825 #ifdef LISP_FEATURE_PPC
1826 mcontext_t uc_regs;
1827 #endif
1831 #ifdef LISP_FEATURE_PPC
1834 #endif
1839 #endif
1844 }
1846 static void
1848 {
1852 /* alloc() is not re-entrant and still uses pseudo atomic (even though
1853 * inline allocation does not). In this case, give up. */
1863 /* And we're back. We know that the SIGPROF handler never unwinds
1864 * non-locally, and can simply swap things back: */
1870 cleanup:
1872 RESTORE_ERRNO;
1873 }
1875 static void
1877 {
1880 pthread_attr_t attr;
1881 pthread_t th;
1892 RESTORE_ERRNO;
1895 lost:
1897 }
1898 #endif
1900 static void
1902 {
1904 sigset_t unblock;
1910 RESTORE_ERRNO;
1911 }
1913 static void
1915 {
1917 sigset_t unblock;
1923 RESTORE_ERRNO;
1924 }
1926 static void
1928 {
1931 RESTORE_ERRNO;
1932 }
1934 void
1936 interrupt_handler_t handler)
1937 {
1942 }
1951 else
1954 #ifdef LISP_FEATURE_SB_THRUPTION
1955 /* It's in `deferrable_sigset' so that we block&unblock it properly,
1956 * but we don't actually want to defer it. And if we put it only
1957 * into blockable_sigset, we'd have to special-case it around thread
1958 * creation at least. */
1961 #endif
1966 #if defined(LISP_FEATURE_C_STACK_IS_CONTROL_STACK)
1969 # ifdef LISP_FEATURE_SB_SAFEPOINT
1972 # endif
1973 }
1974 #endif
1979 }
1980 #endif
1982 /* This is called from Lisp. */
1983 uword_t
1986 {
1987 #ifndef LISP_FEATURE_WIN32
1989 sigset_t old;
2002 #ifdef LISP_FEATURE_SB_SAFEPOINT_STRICTLY
2007 #endif
2013 else
2020 }
2030 #else
2031 /* Probably-wrong Win32 hack */
2033 #endif
2034 }
2036 /* This must not go through lisp as it's allowed anytime, even when on
2037 * the altstack. */
2038 void
2040 {
2041 /* Save the interrupt context. No need to undo it, since lose()
2042 * shouldn't return. */
2045 }
2047 void
2049 {
2050 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2053 #ifndef LISP_FEATURE_WIN32
2055 #endif
2062 #endif
2064 #ifndef LISP_FEATURE_WIN32
2065 /* Set up high level handler information. */
2068 /* (The cast here blasts away the distinction between
2069 * SA_SIGACTION-style three-argument handlers and
2070 * signal(..)-style one-argument handlers, which is OK
2071 * because it works to call the 1-argument form where the
2072 * 3-argument form is expected.) */
2074 }
2076 #endif
2078 }
2080 #ifndef LISP_FEATURE_WIN32
2081 int
2083 {
2085 }
2086 os_vm_address_t current_memory_fault_address;
2088 void
2090 {
2091 /* FIXME: This is lossy: if we get another memory fault (eg. from
2092 * another thread) before lisp has read this, we lose the information.
2093 * However, since this is mostly informative, we'll live with that for
2094 * now -- some address is better then no address in this case.
2095 */
2098 /* If we lose on corruption, provide LDB with debugging information. */
2101 /* To allow debugging memory faults in signal handlers and such. */
2103 addr,
2105 #ifdef ARCH_HAS_STACK_POINTER
2107 #else
2108 0
2109 #endif
2110 );
2111 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
2116 #else
2120 #endif
2121 }
2122 #endif
2124 static void
2126 {
2129 #ifndef LISP_FEATURE_SB_SAFEPOINT
2131 #endif
2133 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2135 #endif
2138 }
2140 /* Common logic for trapping instructions. How we actually handle each
2141 * case is highly architecture dependent, but the overall shape is
2142 * this. */
2143 void
2145 {
2147 #if !(defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD))
2153 #endif
2156 #ifdef trap_InvalidArgCount
2158 #endif
2168 #ifdef trap_AfterBreakpoint
2172 #endif
2173 #ifdef trap_SingleStepAround
2178 #endif
2179 #ifdef trap_GlobalSafepoint
2192 #endif
2193 #if defined(LISP_FEATURE_SPARC) && defined(LISP_FEATURE_GENCGC)
2198 #endif
2204 }
2205 }