| blob | d379e67f8f40b4472c2e089ced8219ec6f2519dd |
1 /*
2 * interrupt-handling magic
3 */
5 /*
6 * This software is part of the SBCL system. See the README file for
7 * more information.
8 *
9 * This software is derived from the CMU CL system, which was
10 * written at Carnegie Mellon University and released into the
11 * public domain. The software is in the public domain and is
12 * provided with absolutely no warranty. See the COPYING and CREDITS
13 * files for more information.
14 */
17 /* As far as I can tell, what's going on here is:
18 *
19 * In the case of most signals, when Lisp asks us to handle the
20 * signal, the outermost handler (the one actually passed to UNIX) is
21 * either interrupt_handle_now(..) or maybe_now_maybe_later(..).
22 * In that case, the Lisp-level handler is stored in interrupt_handlers[..]
23 * and interrupt_low_level_handlers[..] is cleared.
24 *
25 * However, some signals need special handling, e.g.
26 *
27 * o the SIGSEGV (for e.g. Linux) or SIGBUS (for e.g. FreeBSD) used by the
28 * garbage collector to detect violations of write protection,
29 * because some cases of such signals (e.g. GC-related violations of
30 * write protection) are handled at C level and never passed on to
31 * Lisp. For such signals, we still store any Lisp-level handler
32 * in interrupt_handlers[..], but for the outermost handle we use
33 * the value from interrupt_low_level_handlers[..], instead of the
34 * ordinary interrupt_handle_now(..) or interrupt_handle_later(..).
35 *
36 * o the SIGTRAP (Linux/Alpha) which Lisp code uses to handle breakpoints,
37 * pseudo-atomic sections, and some classes of error (e.g. "function
38 * not defined"). This never goes anywhere near the Lisp handlers at all.
39 * See runtime/alpha-arch.c and code/signal.lisp
40 *
41 * - WHN 20000728, dan 20010128 */
45 #include <stdio.h>
46 #include <stdlib.h>
47 #include <string.h>
48 #include <signal.h>
49 #include <sys/types.h>
50 #ifndef LISP_FEATURE_WIN32
51 #include <sys/wait.h>
52 #endif
53 #include <errno.h>
71 /*
72 * This is a workaround for some slightly silly Linux/GNU Libc
73 * behaviour: glibc defines sigset_t to support 1024 signals, which is
74 * more than the kernel. This is usually not a problem, but becomes
75 * one when we want to save a signal mask from a ucontext, and restore
76 * it later into another ucontext: the ucontext is allocated on the
77 * stack by the kernel, so copying a libc-sized sigset_t into it will
78 * overflow and cause other data on the stack to be corrupted */
79 /* FIXME: do not rely on NSIG being a multiple of 8 */
81 #ifdef LISP_FEATURE_WIN32
82 # define REAL_SIGSET_SIZE_BYTES (4)
83 #else
84 # define REAL_SIGSET_SIZE_BYTES ((NSIG/8))
85 #endif
89 {
91 }
93 /* When we catch an internal error, should we pass it back to Lisp to
94 * be handled in a high-level way? (Early in cold init, the answer is
95 * 'no', because Lisp is still too brain-dead to handle anything.
96 * After sufficient initialization has been completed, the answer
97 * becomes 'yes'.) */
100 #ifndef LISP_FEATURE_WIN32
101 static
103 #endif
106 /* Under Linux on some architectures, we appear to have to restore the
107 * FPU control word from the context, as after the signal is delivered
108 * we appear to have a null FPU control word. */
109 #if defined(RESTORE_FP_CONTROL_FROM_CONTEXT)
110 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
111 os_context_t *context = arch_os_get_context(&void_context); \
112 os_restore_fp_control(context);
113 #else
114 #define RESTORE_FP_CONTROL_WORD(context,void_context) \
115 os_context_t *context = arch_os_get_context(&void_context);
116 #endif
118 /* Foreign code may want to start some threads on its own.
119 * Non-targetted, truly asynchronous signals can be delivered to
120 * basically any thread, but invoking Lisp handlers in such foregign
121 * threads is really bad, so let's resignal it.
122 *
123 * This should at least bring attention to the problem, but it cannot
124 * work for SIGSEGV and similar. It is good enough for timers, and
125 * maybe all deferrables. */
127 #ifndef LISP_FEATURE_WIN32
128 static void
130 {
136 }
137 }
138 }
141 #endif
143 static boolean
145 {
146 #ifndef LISP_FEATURE_WIN32
149 corruption_warning_and_maybe_lose
150 #ifdef LISP_FEATURE_SB_THREAD
153 #else
155 signal);
156 #endif
157 }
158 {
159 sigset_t sigset;
165 }
168 #endif
170 }
172 /* These are to be used in signal handlers. Currently all handlers are
173 * called from one of:
174 *
175 * interrupt_handle_now_handler
176 * maybe_now_maybe_later
177 * unblock_me_trampoline
178 * low_level_handle_now_handler
179 * low_level_maybe_now_maybe_later
180 * low_level_unblock_me_trampoline
181 *
182 * This gives us a single point of control (or six) over errno, fp
183 * control word, and fixing up signal context on sparc.
184 *
185 * The SPARC/Linux platform doesn't quite do signals the way we want
186 * them done. The third argument in the handler isn't filled in by the
187 * kernel properly, so we fix it up ourselves in the
188 * arch_os_get_context(..) function. -- CSR, 2002-07-23
189 */
190 #define SAVE_ERRNO(signal,context,void_context) \
191 { \
192 int _saved_errno = errno; \
193 RESTORE_FP_CONTROL_WORD(context,void_context); \
194 if (!maybe_resignal_to_lisp_thread(signal, context)) \
195 {
197 #define RESTORE_ERRNO \
198 } \
199 errno = _saved_errno; \
200 }
204 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
209 \f
211 /* Generic signal related utilities. */
213 void
215 {
216 /* Get the current sigmask, by blocking the empty set. */
218 }
220 void
222 {
230 }
233 }
234 }
236 void
238 {
246 }
249 }
250 }
252 static void
254 {
259 }
260 }
262 /* Return 1 is all signals is sigset2 are masked in sigset, return 0
263 * if all re unmasked else die. Passing NULL for sigset is a shorthand
264 * for the current sigmask. */
265 boolean
268 {
269 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
272 sigset_t current;
276 }
281 else
283 }
284 }
288 }
291 else
293 #endif
294 }
295 \f
297 /* Deferrables, blockables, gc signals. */
299 void
301 {
312 #ifndef LISP_FEATURE_HPUX
315 #endif
319 }
321 void
323 {
326 }
328 void
330 {
331 #ifdef THREADS_USING_GCSIGNAL
333 #endif
334 }
336 /* initialized in interrupt_init */
337 sigset_t deferrable_sigset;
338 sigset_t blockable_sigset;
339 sigset_t gc_sigset;
341 #endif
343 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
344 boolean
346 {
348 }
349 #endif
351 void
353 {
354 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
357 #endif
358 }
360 void
362 {
363 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
366 #endif
367 }
369 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
370 boolean
372 {
374 }
375 #endif
377 void
379 {
380 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
383 #endif
384 }
386 void
388 {
389 #if !defined(LISP_FEATURE_WIN32)
390 /* On Windows, there are no actual signals, but since the win32 port
391 * tracks the sigmask and checks it explicitly, some functions are
392 * still required to keep the mask set up properly. (After all, the
393 * goal of the sigmask emulation is to not have to change all the
394 * call sites in the first place.)
395 *
396 * However, this does not hold for all signals equally: While
397 * deferrables matter ("is interrupt-thread okay?"), it is not worth
398 * having to set up blockables properly (which include the
399 * non-existing GC signals).
400 *
401 * Yet, as the original comment explains it:
402 * Adjusting FREE-INTERRUPT-CONTEXT-INDEX* and other aspecs of
403 * fake_foreign_function_call machinery are sometimes useful here[...].
404 *
405 * So we merely skip this assertion.
406 * -- DFL, trying to expand on a comment by AK.
407 */
410 #endif
411 }
413 #ifndef LISP_FEATURE_SB_SAFEPOINT
414 #if !defined(LISP_FEATURE_WIN32)
415 boolean
417 {
419 }
420 #endif
422 void
424 {
425 #if !defined(LISP_FEATURE_WIN32)
428 #endif
429 }
431 void
433 {
434 #if !defined(LISP_FEATURE_WIN32)
437 #endif
438 }
439 #endif
441 void
443 {
444 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
446 #endif
447 }
449 void
451 {
452 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
454 #endif
455 }
457 void
459 {
460 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
463 #ifndef LISP_FEATURE_SB_SAFEPOINT
465 #endif
467 #endif
468 }
470 #ifndef LISP_FEATURE_SB_SAFEPOINT
471 void
473 {
474 #ifndef LISP_FEATURE_WIN32
476 #endif
477 }
478 #endif
480 void
482 {
483 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
485 #ifndef LISP_FEATURE_SB_SAFEPOINT
492 }
493 #endif
496 }
497 #endif
498 }
499 \f
503 {
509 }
511 /* Save sigset (or the current sigmask if 0) if there is no pending
512 * handler, because that means that deferabbles are already blocked.
513 * The purpose is to avoid losing the pending gc signal if a
514 * deferrable interrupt async unwinds between clearing the pseudo
515 * atomic and trapping to GC.*/
516 #ifndef LISP_FEATURE_SB_SAFEPOINT
517 void
519 {
520 #ifndef LISP_FEATURE_WIN32
523 sigset_t oldset;
524 /* Obviously, this function is called when signals may not be
525 * blocked. Let's make sure we are not interrupted. */
527 #ifndef LISP_FEATURE_SB_THREAD
528 /* With threads a SIG_STOP_FOR_GC and a normal GC may also want to
529 * block. */
532 #endif
538 /* This is the sigmask of some context. */
544 /* Operating on the current sigmask. Save oldset and
545 * unblock gc signals. In the end, this is equivalent to
546 * blocking the deferrables. */
550 }
551 }
553 #endif
554 }
555 #endif
557 /* Are we leaving WITH-GCING and already running with interrupts
558 * enabled, without the protection of *GC-INHIBIT* T and there is gc
559 * (or stop for gc) pending, but we haven't trapped yet? */
560 int
562 {
567 #if defined(LISP_FEATURE_SB_THREAD)
569 #endif
570 ));
571 }
573 /* Check our baroque invariants. */
574 void
576 {
577 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
583 /* On PPC pseudo_atomic_interrupted is cleared when coming out of
584 * handle_allocation_trap. */
585 #if defined(LISP_FEATURE_GENCGC) && !defined(GENCGC_IS_PRECISE)
591 /* In the time window between leaving the *INTERRUPTS-ENABLED* NIL
592 * section and trapping, a SIG_STOP_FOR_GC would see the next
593 * check fail, for this reason sig_stop_for_gc handler does not
594 * call this function. */
598 }
602 #if defined(LISP_FEATURE_SB_THREAD)
603 {
612 }
613 #else
617 #endif
618 #endif
630 #ifndef LISP_FEATURE_SB_SAFEPOINT
631 /* If deferrables are unblocked then we are open to signals
632 * that run lisp code. */
634 #endif
635 }
636 #endif
637 }
638 \f
639 /*
640 * utility routines used by various signal handlers
641 */
643 static void
645 {
646 #ifndef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
648 lispobj oldcont;
650 /* Build a fake stack frame or frames */
652 #if !defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_ARM64)
659 /* There is a small window during call where the callee's
660 * frame isn't built yet. */
663 /* We have called, but not built the new frame, so
664 * build it for them. */
670 /* Build our frame on top of it. */
672 }
674 /* We haven't yet called, build our frame as if the
675 * partial frame wasn't there. */
677 }
679 #elif defined (LISP_FEATURE_ARM)
682 #elif defined (LISP_FEATURE_ARM64)
685 #endif
686 /* We can't tell whether we are still in the caller if it had to
687 * allocate a stack frame due to stack arguments. */
688 /* This observation provoked some past CMUCL maintainer to ask
689 * "Can anything strange happen during return?" */
690 {
691 /* normal case */
693 }
701 #endif
702 }
704 /* Stores the context for gc to scavange and builds fake stack
705 * frames. */
706 void
708 {
712 /* context_index incrementing must not be interrupted */
715 /* Get current Lisp state from context. */
716 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
718 #endif
719 #ifdef reg_ALLOC
720 #ifdef LISP_FEATURE_SB_THREAD
722 #else
723 dynamic_space_free_pointer =
725 #endif
727 /* fprintf(stderr,"dynamic_space_free_pointer: %p\n", */
728 /* dynamic_space_free_pointer); */
729 #if defined(LISP_FEATURE_ALPHA) || defined(LISP_FEATURE_MIPS)
732 }
733 #endif
734 /* why doesnt PPC and SPARC do something like this: */
735 #if defined(LISP_FEATURE_HPPA)
737 lose("dead in fake_foreign_function_call, context = %x, d_s_f_p = %x\n", context, dynamic_space_free_pointer);
738 }
739 #endif
740 #endif
741 #ifdef reg_BSP
744 #endif
746 #if defined(LISP_FEATURE_ARM)
747 /* Stash our control stack pointer */
750 thread);
751 #endif
755 /* Do dynamic binding of the active interrupt context index
756 * and save the context in the context array. */
757 context_index =
762 }
769 #if !defined(LISP_FEATURE_X86) && !defined(LISP_FEATURE_X86_64)
770 /* x86oid targets don't maintain the foreign function call flag at
771 * all, so leave them to believe that they are never in foreign
772 * code. */
774 #endif
775 }
777 /* blocks all blockable signals. If you are calling from a signal handler,
778 * the usual signal mask will be restored from the context when the handler
779 * finishes. Otherwise, be careful */
780 void
782 {
784 /* Block all blockable signals. */
789 /* Undo dynamic binding of FREE_INTERRUPT_CONTEXT_INDEX */
792 #if defined(LISP_FEATURE_ARM)
793 /* Restore our saved control stack pointer */
796 thread),
797 thread);
799 #endif
801 #if defined(reg_ALLOC) && !defined(LISP_FEATURE_SB_THREAD)
802 /* Put the dynamic space free pointer back into the context. */
807 /*
808 ((uword_t)(*os_context_register_addr(context, reg_ALLOC))
809 & ~LOWTAG_MASK)
810 | ((uword_t) dynamic_space_free_pointer & LOWTAG_MASK);
811 */
812 #endif
813 #if defined(reg_ALLOC) && defined(LISP_FEATURE_SB_THREAD)
814 /* Put the pseudo-atomic bits and dynamic space free pointer back
815 * into the context (p-a-bits for p-a, and dynamic space free
816 * pointer for ROOM). */
820 /* And clear them so we don't get bit later by call-in/call-out
821 * not updating them. */
823 #endif
824 #if defined(LISP_FEATURE_ARM) && !defined(LISP_FEATURE_GENCGC)
826 #endif
827 }
829 /* a handler for the signal caused by execution of a trap opcode
830 * signalling an internal error */
831 void
833 {
840 /* There's no good way to recover from an internal error
841 * before the Lisp error handling mechanism is set up. */
843 }
845 #ifndef LISP_FEATURE_SB_SAFEPOINT
847 #endif
849 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
851 #endif
853 #if defined(LISP_FEATURE_LINUX) && defined(LISP_FEATURE_MIPS)
854 /* Workaround for blocked SIGTRAP. */
855 {
856 sigset_t newset;
860 }
861 #endif
864 #if QSHOW == 2
865 /* Display some rudimentary debugging information about the
866 * error, so that even if the Lisp error handler gets badly
867 * confused, we have a chance to determine what's going on. */
869 #endif
876 }
878 boolean
880 {
884 }
886 void
888 {
889 /* There are three ways we can get here. First, if an interrupt
890 * occurs within pseudo-atomic, it will be deferred, and we'll
891 * trap to here at the end of the pseudo-atomic block. Second, if
892 * the GC (in alloc()) decides that a GC is required, it will set
893 * *GC-PENDING* and pseudo-atomic-interrupted if not *GC-INHIBIT*,
894 * and alloc() is always called from within pseudo-atomic, and
895 * thus we end up here again. Third, when calling GC-ON or at the
896 * end of a WITHOUT-GCING, MAYBE-HANDLE-PENDING-GC will trap to
897 * here if there is a pending GC. Fourth, ahem, at the end of
898 * WITHOUT-INTERRUPTS (bar complications with nesting).
899 *
900 * A fourth way happens with safepoints: In addition to a stop for
901 * GC that is pending, there are thruptions. Both mechanisms are
902 * mostly signal-free, yet also of an asynchronous nature, so it makes
903 * sense to let interrupt_handle_pending take care of running them:
904 * It gets run precisely at those places where it is safe to process
905 * pending asynchronous tasks. */
912 }
917 #ifndef LISP_FEATURE_SB_SAFEPOINT
918 /*
919 * (On safepoint builds, there is no gc_blocked_deferrables nor
920 * SIG_STOP_FOR_GC.)
921 */
922 /* If GC/SIG_STOP_FOR_GC struck during PA and there was no pending
923 * handler, then the pending mask was saved and
924 * gc_blocked_deferrables set. Hence, there can be no pending
925 * handler and it's safe to restore the pending mask.
926 *
927 * Note, that if gc_blocked_deferrables is false we may still have
928 * to GC. In this case, we are coming out of a WITHOUT-GCING or a
929 * pseudo atomic was interrupt be a deferrable first. */
935 /* Restore the saved signal mask from the original signal (the
936 * one that interrupted us during the critical section) into
937 * the os_context for the signal we're currently in the
938 * handler for. This should ensure that when we return from
939 * the handler the blocked signals are unblocked. */
940 #ifndef LISP_FEATURE_WIN32
942 #endif
944 }
945 #endif
950 #ifdef LISP_FEATURE_SB_SAFEPOINT
951 /* handles the STOP_FOR_GC_PENDING case, plus THRUPTIONS */
953 # ifdef LISP_FEATURE_SB_THRUPTION
956 # endif
957 )
958 /* We ought to take this chance to do a pitstop now. */
960 #elif defined(LISP_FEATURE_SB_THREAD)
962 /* STOP_FOR_GC_PENDING and GC_PENDING are cleared by
963 * the signal handler if it actually stops us. */
967 #endif
968 /* Test for T and not for != NIL since the value :IN-PROGRESS
969 * is used in SUB-GC as part of the mechanism to supress
970 * recursive gcs.*/
973 /* Two reasons for doing this. First, if there is a
974 * pending handler we don't want to run. Second, we are
975 * going to clear pseudo atomic interrupted to avoid
976 * spurious trapping on every allocation in SUB_GC and
977 * having a pending handler with interrupts enabled and
978 * without pseudo atomic interrupted breaks an
979 * invariant. */
983 }
987 /* GC_PENDING is cleared in SUB-GC, or if another thread
988 * is doing a gc already we will get a SIG_STOP_FOR_GC and
989 * that will clear it.
990 *
991 * If there is a pending handler or gc was triggerred in a
992 * signal handler then maybe_gc won't run POST_GC and will
993 * return normally. */
1000 }
1002 /* It's not NIL or T so GC_PENDING is :IN-PROGRESS. If
1003 * GC-PENDING is not NIL then we cannot trap on pseudo
1004 * atomic due to GC (see if(GC_PENDING) logic in
1005 * cheneygc.c an gengcgc.c), plus there is a outer
1006 * WITHOUT-INTERRUPTS SUB_GC, so how did we end up
1007 * here? */
1009 }
1013 /* No GC shall be lost. If SUB_GC triggers another GC then
1014 * that should be handled on the spot. */
1017 #ifdef THREADS_USING_GCSIGNAL
1020 #endif
1021 /* Check two things. First, that gc does not clobber a handler
1022 * that's already pending. Second, that there is no interrupt
1023 * lossage: if original_pending_handler was NULL then even if
1024 * an interrupt arrived during GC (POST-GC, really) it was
1025 * handled. */
1029 }
1031 #ifndef LISP_FEATURE_WIN32
1032 /* There may be no pending handler, because it was only a gc that
1033 * had to be executed or because Lisp is a bit too eager to call
1034 * DO-PENDING-INTERRUPT. */
1037 /* No matter how we ended up here, clear both
1038 * INTERRUPT_PENDING and pseudo atomic interrupted. It's safe
1039 * because we checked above that there is no GC pending. */
1042 /* Restore the sigmask in the context. */
1045 }
1046 #ifdef LISP_FEATURE_SB_THRUPTION
1048 /* Special case for the following situation: There is a
1049 * thruption pending, but a signal had been deferred. The
1050 * pitstop at the top of this function could only take care
1051 * of GC, and skipped the thruption, so we need to try again
1052 * now that INTERRUPT_PENDING and the sigmask have been
1053 * reset. */
1055 ;
1056 #endif
1057 #endif
1058 #ifdef LISP_FEATURE_GENCGC
1061 #endif
1062 /* It is possible that the end of this function was reached
1063 * without never actually doing anything, the tests in Lisp for
1064 * when to call receive-pending-interrupt are not exact. */
1066 }
1067 \f
1069 void
1071 {
1072 boolean were_in_lisp;
1077 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1080 #endif
1086 }
1090 {
1092 }
1096 signal));
1100 /* This can happen if someone tries to ignore or default one
1101 * of the signals we need for runtime support, and the runtime
1102 * support decides to pass on it. */
1106 /* Once we've decided what to do about contexts in a
1107 * return-elsewhere world (the original context will no longer
1108 * be available; should we copy it or was nobody using it anyway?)
1109 * then we should convert this to return-elsewhere */
1111 /* CMUCL comment said "Allocate the SAPs while the interrupts
1112 * are still disabled.". I (dan, 2003.08.21) assume this is
1113 * because we're not in pseudoatomic and allocation shouldn't
1114 * be interrupted. In which case it's no longer an issue as
1115 * all our allocation from C now goes through a PA wrapper,
1116 * but still, doesn't hurt.
1117 *
1118 * Yeah, but non-gencgc platforms don't really wrap allocation
1119 * in PA. MG - 2005-08-29 */
1122 #ifndef LISP_FEATURE_SB_SAFEPOINT
1123 /* Leave deferrable signals blocked, the handler itself will
1124 * allow signals again when it sees fit. */
1126 #else
1128 #endif
1137 info_sap,
1138 context_sap);
1139 }
1141 /* This cannot happen in sane circumstances. */
1145 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
1146 /* Allow signals again. */
1149 #endif
1150 }
1153 {
1155 }
1159 signal));
1160 }
1162 /* This is called at the end of a critical section if the indications
1163 * are that some signal was deferred during the section. Note that as
1164 * far as C or the kernel is concerned we dealt with the signal
1165 * already; we're just doing the Lisp-level processing now that we
1166 * put off then */
1167 static void
1169 {
1170 /* The pending_handler may enable interrupts and then another
1171 * interrupt may hit, overwrite interrupt_data, so reset the
1172 * pending handler before calling it. Trust the handler to finish
1173 * with the siginfo before enabling interrupts. */
1180 }
1182 #ifndef LISP_FEATURE_WIN32
1183 boolean
1186 {
1198 /* If interrupts are disabled then INTERRUPT_PENDING is set and
1199 * not PSEDUO_ATOMIC_INTERRUPTED. This is important for a pseudo
1200 * atomic section inside a WITHOUT-INTERRUPTS.
1201 *
1202 * Also, if in_leaving_without_gcing_race_p then
1203 * interrupt_handle_pending is going to be called soon, so
1204 * stashing the signal away is safe.
1205 */
1216 }
1217 /* a slightly confusing test. arch_pseudo_atomic_atomic() doesn't
1218 * actually use its argument for anything on x86, so this branch
1219 * may succeed even when context is null (gencgc alloc()) */
1228 }
1233 }
1235 static void
1239 {
1251 signal));
1256 /* the signal mask in the context (from before we were
1257 * interrupted) is copied to be restored when run_deferred_handler
1258 * happens. Then the usually-blocked signals are added to the mask
1259 * in the context so that we are running with blocked signals when
1260 * the handler returns */
1263 }
1265 static void
1267 {
1273 RESTORE_ERRNO;
1274 }
1276 static void
1279 {
1280 /* No FP control fixage needed, caller has done that. */
1284 /* No Darwin context fixage needed, caller does that. */
1285 }
1287 static void
1289 {
1297 RESTORE_ERRNO;
1298 }
1299 #endif
1301 #ifdef THREADS_USING_GCSIGNAL
1303 /* This function must not cons, because that may trigger a GC. */
1304 void
1306 {
1308 boolean was_in_lisp;
1310 /* Test for GC_INHIBIT _first_, else we'd trap on every single
1311 * pseudo atomic until gc is finally allowed. */
1320 maybe_save_gc_mask_and_block_deferrables
1323 }
1327 /* Not PA and GC not inhibited -- we can stop now. */
1332 /* need the context stored so it can have registers scavenged */
1334 }
1336 /* Not pending anymore. */
1340 /* Consider this: in a PA section GC is requested: GC_PENDING,
1341 * pseudo_atomic_interrupted and gc_blocked_deferrables are set,
1342 * deferrables are blocked then pseudo_atomic_atomic is cleared,
1343 * but a SIG_STOP_FOR_GC arrives before trapping to
1344 * interrupt_handle_pending. Here, GC_PENDING is cleared but
1345 * pseudo_atomic_interrupted is not and we go on running with
1346 * pseudo_atomic_interrupted but without a pending interrupt or
1347 * GC. GC_BLOCKED_DEFERRABLES is also left at 1. So let's tidy it
1348 * up. */
1355 }
1360 }
1365 /* While waiting for gc to finish occupy ourselves with zeroing
1366 * the unused portion of the control stack to reduce conservatism.
1367 * On hypothetic platforms with threads and exact gc it is
1368 * actually a must. */
1377 }
1381 }
1382 }
1384 #endif
1386 void
1388 {
1390 #ifndef LISP_FEATURE_WIN32
1392 #if !(defined(LISP_FEATURE_LINUX) || defined(LISP_FEATURE_ANDROID))
1394 #endif
1395 )
1398 #endif
1400 RESTORE_ERRNO;
1401 }
1403 /* manipulate the signal context and stack such that when the handler
1404 * returns, it will call function instead of whatever it was doing
1405 * previously
1406 */
1408 #if (defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1410 #endif
1416 void
1418 call_into_lisp_lookalike funptr,
1419 lispobj function)
1420 {
1421 #if !(defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_SAFEPOINT))
1422 check_gc_signals_unblocked_or_lose
1424 #endif
1425 #if !(defined(LISP_FEATURE_X86) || defined(LISP_FEATURE_X86_64))
1428 #endif
1430 /* Build a stack frame showing `interrupted' so that the
1431 * user's backtrace makes (as much) sense (as usual) */
1433 /* fp state is saved and restored by call_into_lisp */
1434 /* FIXME: errno is not restored, but since current uses of this
1435 * function only call Lisp code that signals an error, it's not
1436 * much of a problem. In other words, running out of the control
1437 * stack between a syscall and (GET-ERRNO) may clobber errno if
1438 * something fails during signalling or in the handler. But I
1439 * can't see what can go wrong as long as there is no CONTINUE
1440 * like restart on them. */
1441 #ifdef LISP_FEATURE_X86
1442 /* Suppose the existence of some function that saved all
1443 * registers, called call_into_lisp, then restored GP registers and
1444 * returned. It would look something like this:
1446 push ebp
1447 mov ebp esp
1448 pushfl
1449 pushal
1450 push $0
1451 push $0
1452 pushl {address of function to call}
1453 call 0x8058db0 <call_into_lisp>
1454 addl $12,%esp
1455 popal
1456 popfl
1457 leave
1458 ret
1460 * What we do here is set up the stack that call_into_lisp would
1461 * expect to see if it had been called by this code, and frob the
1462 * signal context so that signal return goes directly to call_into_lisp,
1463 * and when that function (and the lisp function it invoked) returns,
1464 * it returns to the second half of this imaginary function which
1465 * restores all registers and returns to C
1467 * For this to work, the latter part of the imaginary function
1468 * must obviously exist in reality. That would be post_signal_tramp
1469 */
1471 #ifndef LISP_FEATURE_DARWIN
1473 #endif
1475 #if defined(LISP_FEATURE_DARWIN)
1478 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: preparing to go to function %x, sp: %x\n", function,
1480 FSHOW_SIGNAL((stderr, "/arrange_return_to_lisp_function: context: %x, &context %x\n", context, &context));
1482 /* 1. os_validate (malloc/mmap) register_save_block
1483 * 2. copy register state into register_save_block
1484 * 3. put a pointer to register_save_block in a register in the context
1485 * 4. set the context's EIP to point to a trampoline which:
1486 * a. builds the fake stack frame from the block
1487 * b. frees the block
1488 * c. calls the function
1489 */
1505 #else
1507 /* return address for call_into_lisp: */
1512 /* this order matches that used in POPAD */
1517 /* POPAD ignores the value of ESP: */
1528 #endif
1530 #elif defined(LISP_FEATURE_X86_64)
1533 /* return address for call_into_lisp: */
1546 /* skip RBP and RSP */
1559 #else
1562 #endif
1564 #ifdef LISP_FEATURE_X86
1566 #if !defined(LISP_FEATURE_DARWIN)
1570 #ifdef __NetBSD__
1573 #else
1578 #elif defined(LISP_FEATURE_X86_64)
1583 #else
1584 /* this much of the calling convention is common to all
1585 non-x86 ports */
1588 #ifdef reg_LIP
1591 #endif
1594 #endif
1595 #ifdef ARCH_HAS_NPC_REGISTER
1598 #endif
1599 #if defined(LISP_FEATURE_SPARC) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64)
1602 #endif
1605 }
1607 void
1609 {
1610 #if defined(LISP_FEATURE_DARWIN) && defined(LISP_FEATURE_X86)
1613 function);
1614 #else
1616 #endif
1617 }
1619 // These have undefined_alien_function tramp in x-assem.S
1620 #if !(defined(LISP_FEATURE_X86_64) || defined(LISP_FEATURE_ARM) || defined(LISP_FEATURE_ARM64))
1621 /* KLUDGE: Theoretically the approach we use for undefined alien
1622 * variables should work for functions as well, but on PPC/Darwin
1623 * we get bus error at bogus addresses instead, hence this workaround,
1624 * that has the added benefit of automatically discriminating between
1625 * functions and variables.
1626 */
1627 void
1629 {
1631 }
1632 #endif
1635 {
1640 }
1643 {
1649 }
1651 /* Called from the REPL, too. */
1653 {
1657 }
1658 }
1661 {
1663 }
1665 boolean
1667 {
1674 }
1677 /* We hit the end of the control stack: disable guard page
1678 * protection so the error handler has some headroom, protect the
1679 * previous page so that we can catch returns from the guard page
1680 * and restore it. */
1684 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
1685 /* For the unfortunate case, when the control stack is
1686 * exhausted in a signal handler. */
1688 #endif
1689 arrange_return_to_lisp_function
1692 }
1695 /* We're returning from the guard page: reprotect it, and
1696 * unprotect this one. This works even if we somehow missed
1697 * the return-guard-page, and hit it on our way to new
1698 * exhaustion instead. */
1703 }
1707 }
1714 /* For the unfortunate case, when the binding stack is
1715 * exhausted in a signal handler. */
1717 arrange_return_to_lisp_function
1720 }
1727 }
1731 }
1738 /* For the unfortunate case, when the alien stack is
1739 * exhausted in a signal handler. */
1741 arrange_return_to_lisp_function
1744 }
1751 }
1754 arrange_return_to_lisp_function
1757 }
1759 }
1760 \f
1761 /*
1762 * noise to install handlers
1763 */
1765 #ifndef LISP_FEATURE_WIN32
1766 /* In Linux 2.4 synchronous signals (sigtrap & co) can be delivered if
1767 * they are blocked, in Linux 2.6 the default handler is invoked
1768 * instead that usually coredumps. One might hastily think that adding
1769 * SA_NODEFER helps, but until ~2.6.13 if SA_NODEFER is specified then
1770 * the whole sa_mask is ignored and instead of not adding the signal
1771 * in question to the mask. That means if it's not blockable the
1772 * signal must be unblocked at the beginning of signal handlers.
1773 *
1774 * It turns out that NetBSD's SA_NODEFER doesn't DTRT in a different
1775 * way: if SA_NODEFER is set and the signal is in sa_mask, the signal
1776 * will be unblocked in the sigmask during the signal handler. -- RMK
1777 * X-mas day, 2005
1778 */
1781 #define SA_NODEFER_TEST_BLOCK_SIGNAL SIGABRT
1782 #define SA_NODEFER_TEST_KILL_SIGNAL SIGUSR1
1784 static void
1786 {
1787 sigset_t current;
1790 /* There should be exactly two blocked signals: the two we added
1791 * to sa_mask when setting up the handler. NetBSD doesn't block
1792 * the signal we're handling when SA_NODEFER is set; Linux before
1793 * 2.6.13 or so also doesn't block the other signal when
1794 * SA_NODEFER is set. */
1800 }
1803 }
1805 static void
1807 {
1816 /* Make sure no signals are blocked. */
1817 {
1818 sigset_t empty;
1821 }
1825 }
1827 #undef SA_NODEFER_TEST_BLOCK_SIGNAL
1828 #undef SA_NODEFER_TEST_KILL_SIGNAL
1830 #if defined(LISP_FEATURE_SB_SAFEPOINT_STRICTLY) && !defined(LISP_FEATURE_WIN32)
1834 {
1836 os_context_t fake_context;
1837 siginfo_t fake_info;
1838 #ifdef LISP_FEATURE_PPC
1839 mcontext_t uc_regs;
1840 #endif
1844 #ifdef LISP_FEATURE_PPC
1847 #endif
1852 #endif
1857 }
1859 static void
1861 {
1865 /* alloc() is not re-entrant and still uses pseudo atomic (even though
1866 * inline allocation does not). In this case, give up. */
1876 /* And we're back. We know that the SIGPROF handler never unwinds
1877 * non-locally, and can simply swap things back: */
1883 cleanup:
1885 RESTORE_ERRNO;
1886 }
1888 static void
1890 {
1893 pthread_attr_t attr;
1894 pthread_t th;
1905 RESTORE_ERRNO;
1908 lost:
1910 }
1911 #endif
1913 static void
1915 {
1917 sigset_t unblock;
1923 RESTORE_ERRNO;
1924 }
1926 static void
1928 {
1930 sigset_t unblock;
1936 RESTORE_ERRNO;
1937 }
1939 static void
1941 {
1944 RESTORE_ERRNO;
1945 }
1947 void
1949 interrupt_handler_t handler)
1950 {
1955 }
1964 else
1967 #ifdef LISP_FEATURE_SB_THRUPTION
1968 /* It's in `deferrable_sigset' so that we block&unblock it properly,
1969 * but we don't actually want to defer it. And if we put it only
1970 * into blockable_sigset, we'd have to special-case it around thread
1971 * creation at least. */
1974 #endif
1979 #if defined(LISP_FEATURE_C_STACK_IS_CONTROL_STACK)
1982 # ifdef LISP_FEATURE_SB_SAFEPOINT
1985 # endif
1986 }
1987 #endif
1992 }
1993 #endif
1995 /* This is called from Lisp. */
1996 uword_t
1999 {
2000 #ifndef LISP_FEATURE_WIN32
2002 sigset_t old;
2015 #ifdef LISP_FEATURE_SB_SAFEPOINT_STRICTLY
2020 #endif
2026 else
2033 }
2043 #else
2044 /* Probably-wrong Win32 hack */
2046 #endif
2047 }
2049 /* This must not go through lisp as it's allowed anytime, even when on
2050 * the altstack. */
2051 void
2053 {
2054 /* Save the interrupt context. No need to undo it, since lose()
2055 * shouldn't return. */
2058 }
2060 void
2062 {
2063 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2066 #ifndef LISP_FEATURE_WIN32
2068 #endif
2075 #endif
2077 #ifndef LISP_FEATURE_WIN32
2078 /* Set up high level handler information. */
2081 /* (The cast here blasts away the distinction between
2082 * SA_SIGACTION-style three-argument handlers and
2083 * signal(..)-style one-argument handlers, which is OK
2084 * because it works to call the 1-argument form where the
2085 * 3-argument form is expected.) */
2087 }
2089 #endif
2091 }
2093 #ifndef LISP_FEATURE_WIN32
2094 int
2096 {
2098 }
2099 os_vm_address_t current_memory_fault_address;
2101 void
2103 {
2104 /* FIXME: This is lossy: if we get another memory fault (eg. from
2105 * another thread) before lisp has read this, we lose the information.
2106 * However, since this is mostly informative, we'll live with that for
2107 * now -- some address is better then no address in this case.
2108 */
2111 /* If we lose on corruption, provide LDB with debugging information. */
2114 /* To allow debugging memory faults in signal handlers and such. */
2116 addr,
2118 #ifdef ARCH_HAS_STACK_POINTER
2120 #else
2121 0
2122 #endif
2123 );
2124 #ifdef LISP_FEATURE_C_STACK_IS_CONTROL_STACK
2129 #else
2133 #endif
2134 }
2135 #endif
2137 static void
2139 {
2142 #ifndef LISP_FEATURE_SB_SAFEPOINT
2144 #endif
2146 #if !defined(LISP_FEATURE_WIN32) || defined(LISP_FEATURE_SB_THREAD)
2148 #endif
2151 }
2153 /* Common logic for trapping instructions. How we actually handle each
2154 * case is highly architecture dependent, but the overall shape is
2155 * this. */
2156 void
2158 {
2160 #if !(defined(LISP_FEATURE_WIN32) && defined(LISP_FEATURE_SB_THREAD))
2166 #endif
2169 #ifdef trap_InvalidArgCount
2171 #endif
2181 #ifdef trap_AfterBreakpoint
2185 #endif
2186 #ifdef trap_SingleStepAround
2191 #endif
2192 #ifdef trap_GlobalSafepoint
2205 #endif
2206 #if defined(LISP_FEATURE_SPARC) && defined(LISP_FEATURE_GENCGC)
2211 #endif
2217 }
2218 }