nordic-dev.net/rust
nordic-dev.net/rust
2
0
Fork 0
mirror of https://github.com/rust-lang/rust.git synced 2025-06-06 12:18:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
d3939322e3
rust/src/libstd/sys/unix/stack_overflow.rs

221 lines
7.5 KiB
Rust
Raw Normal View History

Initial version of AArch64 support. Adds AArch64 knowledge to: * configure, * make files, * sources, * tests, and * documentation.
2014-12-12 23:39:27 +00:00
// Copyright 2014-2015 The Rust Project Developers. See the COPYRIGHT
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
// file at the top-level directory of this distribution and at
// http://rust-lang.org/COPYRIGHT.
//
// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
// http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
// option. This file may not be copied, modified, or distributed
// except according to those terms.
Fix warnings during tests The deny(warnings) attribute is now enabled for tests so we need to weed out these warnings as well.
2016-01-23 07:49:57 +00:00
Fix warnings when compiling stdlib with --test
2015-12-18 12:29:49 +00:00
#![cfg_attr(test, allow(dead_code))]
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
use libc;
libs: merge librustrt into libstd This commit merges the `rustrt` crate into `std`, undoing part of the facade. This merger continues the paring down of the runtime system. Code relying on the public API of `rustrt` will break; some of this API is now available through `std::rt`, but is likely to change and/or be removed very soon. [breaking-change]
2014-11-24 03:21:17 +00:00
use self::imp::{make_handler, drop_handler};
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
Fix warnings when compiling stdlib with --test
2015-12-18 12:29:49 +00:00
pub use self::imp::cleanup;
pub use self::imp::init;
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
pub struct Handler {
_data: *mut libc::c_void
}
impl Handler {
pub unsafe fn new() -> Handler {
libs: merge librustrt into libstd This commit merges the `rustrt` crate into `std`, undoing part of the facade. This merger continues the paring down of the runtime system. Code relying on the public API of `rustrt` will break; some of this API is now available through `std::rt`, but is likely to change and/or be removed very soon. [breaking-change]
2014-11-24 03:21:17 +00:00
make_handler()
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
}
impl Drop for Handler {
fn drop(&mut self) {
unsafe {
libs: merge librustrt into libstd This commit merges the `rustrt` crate into `std`, undoing part of the facade. This merger continues the paring down of the runtime system. Code relying on the public API of `rustrt` will break; some of this API is now available through `std::rt`, but is likely to change and/or be removed very soon. [breaking-change]
2014-11-24 03:21:17 +00:00
drop_handler(self);
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
}
}
openbsd support
2015-01-29 07:19:28 +00:00
#[cfg(any(target_os = "linux",
target_os = "macos",
bitrig integration
2015-01-17 07:51:04 +00:00
target_os = "bitrig",
Use guard-pages also on DragonFly/FreeBSD. Only tested on DragonFly.
2015-11-01 21:56:31 +00:00
target_os = "dragonfly",
target_os = "freebsd",
Rename sunos to solaris
2016-01-28 11:02:31 +00:00
target_os = "solaris",
Add support for the rumprun unikernel For most parts, rumprun currently looks like NetBSD, as they share the same libc and drivers. However, being a unikernel, rumprun does not support process management, signals or virtual memory, so related functions might fail at runtime. Stack guards are disabled exactly for this reason. Code for rumprun is always cross-compiled, it uses always static linking and needs a custom linker.
2015-09-21 17:16:24 +00:00
all(target_os = "netbsd", not(target_vendor = "rumprun")),
openbsd support
2015-01-29 07:19:28 +00:00
target_os = "openbsd"))]
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
mod imp {
libs: merge librustrt into libstd This commit merges the `rustrt` crate into `std`, undoing part of the facade. This merger continues the paring down of the runtime system. Code relying on the public API of `rustrt` will break; some of this API is now available through `std::rt`, but is likely to change and/or be removed very soon. [breaking-change]
2014-11-24 03:21:17 +00:00
use super::Handler;
use mem;
use ptr;
Remove alternate stack with sigaltstack before unmapping it. Also reuse existing signal stack if already set, this is especially useful when working with sanitizers that configure alternate stack themselves.
2016-02-15 14:45:52 +00:00
use libc::{sigaltstack, SIGSTKSZ, SS_DISABLE};
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
use libc::{sigaction, SIGBUS, SIG_DFL,
Fix warnings when compiling stdlib with --test
2015-12-18 12:29:49 +00:00
SA_SIGINFO, SA_ONSTACK, sighandler_t};
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
use libc;
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
use libc::{mmap, munmap};
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
use libc::{SIGSEGV, PROT_READ, PROT_WRITE, MAP_PRIVATE, MAP_ANON};
use libc::MAP_FAILED;
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
Fallout from new thread API
2014-12-07 02:34:37 +00:00
use sys_common::thread_info;
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
#[cfg(any(target_os = "linux", target_os = "android"))]
make siginfo_si_addr() returns a usize `siginfo_si_addr()` function is used once, and the returned value is casted to `usize`. So make the function returns a `usize`. it simplifies OpenBSD case, where the return type wouldn't be a `*mut libc::c_void` but a `*mut libc::c_char`.
2015-12-23 10:32:02 +00:00
unsafe fn siginfo_si_addr(info: *mut libc::siginfo_t) -> usize {
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
#[repr(C)]
struct siginfo_t {
Fix stack overflow detection on FreeBSD src/libstd/sys/unix/thread.rs Implement several stack-related functions on FreeBSD src/libstd/sys/unix/stack_overflow.rs Fix a comment
2016-04-04 14:18:44 +00:00
a: [libc::c_int; 3], // si_signo, si_errno, si_code
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
si_addr: *mut libc::c_void,
}
make siginfo_si_addr() returns a usize `siginfo_si_addr()` function is used once, and the returned value is casted to `usize`. So make the function returns a `usize`. it simplifies OpenBSD case, where the return type wouldn't be a `*mut libc::c_void` but a `*mut libc::c_char`.
2015-12-23 10:32:02 +00:00
(*(info as *const siginfo_t)).si_addr as usize
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
}
#[cfg(not(any(target_os = "linux", target_os = "android")))]
make siginfo_si_addr() returns a usize `siginfo_si_addr()` function is used once, and the returned value is casted to `usize`. So make the function returns a `usize`. it simplifies OpenBSD case, where the return type wouldn't be a `*mut libc::c_void` but a `*mut libc::c_char`.
2015-12-23 10:32:02 +00:00
unsafe fn siginfo_si_addr(info: *mut libc::siginfo_t) -> usize {
(*info).si_addr as usize
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
}
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
// Signal handler for the SIGSEGV and SIGBUS handlers. We've got guard pages
// (unmapped pages) at the end of every thread's stack, so if a thread ends
// up running into the guard page it'll trigger this handler. We want to
// detect these cases and print out a helpful error saying that the stack
// has overflowed. All other signals, however, should go back to what they
// were originally supposed to do.
//
// This handler currently exists purely to print an informative message
Abort on stack overflow instead of re-raising SIGSEGV We use guard pages that cause the process to abort to protect against undefined behavior in the event of stack overflow. We have a handler that catches segfaults, prints out an error message if the segfault was due to a stack overflow, then unregisters itself and returns to allow the signal to be re-raised and kill the process. This caused some confusion, as it was unexpected that safe code would be able to cause a segfault, while it's easy to overflow the stack in safe code. To avoid this confusion, when we detect a segfault in the guard page, abort instead of the previous behavior of re-raising the SIGSEGV. To test this, we need to adapt the tests for segfault to actually check the exit status. Doing so revealed that the existing test for segfault behavior was actually invalid; LLVM optimizes the explicit null pointer reference down to an illegal instruction, so the program aborts with SIGILL instead of SIGSEGV and the test didn't actually trigger the signal handler at all. Use a C helper function to get a null pointer that LLVM can't optimize away, so we get our segfault instead. This is a [breaking-change] if anyone is relying on the exact signal raised to kill a process on stack overflow. Closes #31273
2016-01-31 23:30:32 +00:00
// whenever a thread overflows its stack. We then abort to exit and
// indicate a crash, but to avoid a misleading SIGSEGV that might lead
// users to believe that unsafe code has accessed an invalid pointer; the
// SIGSEGV encountered when overflowing the stack is expected and
// well-defined.
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
//
Abort on stack overflow instead of re-raising SIGSEGV We use guard pages that cause the process to abort to protect against undefined behavior in the event of stack overflow. We have a handler that catches segfaults, prints out an error message if the segfault was due to a stack overflow, then unregisters itself and returns to allow the signal to be re-raised and kill the process. This caused some confusion, as it was unexpected that safe code would be able to cause a segfault, while it's easy to overflow the stack in safe code. To avoid this confusion, when we detect a segfault in the guard page, abort instead of the previous behavior of re-raising the SIGSEGV. To test this, we need to adapt the tests for segfault to actually check the exit status. Doing so revealed that the existing test for segfault behavior was actually invalid; LLVM optimizes the explicit null pointer reference down to an illegal instruction, so the program aborts with SIGILL instead of SIGSEGV and the test didn't actually trigger the signal handler at all. Use a C helper function to get a null pointer that LLVM can't optimize away, so we get our segfault instead. This is a [breaking-change] if anyone is relying on the exact signal raised to kill a process on stack overflow. Closes #31273
2016-01-31 23:30:32 +00:00
// If this is not a stack overflow, the handler un-registers itself and
// then returns (to allow the original signal to be delivered again).
// Returning from this kind of signal handler is technically not defined
// to work when reading the POSIX spec strictly, but in practice it turns
// out many large systems and all implementations allow returning from a
// signal handler to work. For a more detailed explanation see the
// comments on #26458.
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
unsafe extern fn signal_handler(signum: libc::c_int,
std: Migrate to the new libc * Delete `sys::unix::{c, sync}` as these are now all folded into libc itself * Update all references to use `libc` as a result. * Update all references to the new flat namespace. * Moves all windows bindings into sys::c
2015-11-03 00:23:22 +00:00
info: *mut libc::siginfo_t,
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
_data: *mut libc::c_void) {
Fix warnings when compiling stdlib with --test
2015-12-18 12:29:49 +00:00
use sys_common::util::report_overflow;
Use a range to identify SIGSEGV in stack guards Previously, the `guard::init()` and `guard::current()` functions were returning a `usize` address representing the top of the stack guard, respectively for the main thread and for spawned threads. The `SIGSEGV` handler on `unix` targets checked if a fault was within one page below that address, if so reporting it as a stack overflow. Now `unix` targets report a `Range<usize>` representing the guard memory, so it can cover arbitrary guard sizes. Non-`unix` targets which always return `None` for guards now do so with `Option<!>`, so they don't pay any overhead. For `linux-gnu` in particular, the previous guard upper-bound was `stackaddr + guardsize`, as the protected memory was *inside* the stack. This was a glibc bug, and starting from 2.27 they are moving the guard *past* the end of the stack. However, there's no simple way for us to know where the guard page actually lies, so now we declare it as the whole range of `stackaddr ± guardsize`, and any fault therein will be called a stack overflow. This fixes #47863.
2018-01-31 19:41:29 +00:00
let guard = thread_info::stack_guard().unwrap_or(0..0);
make siginfo_si_addr() returns a usize `siginfo_si_addr()` function is used once, and the returned value is casted to `usize`. So make the function returns a `usize`. it simplifies OpenBSD case, where the return type wouldn't be a `*mut libc::c_void` but a `*mut libc::c_char`.
2015-12-23 10:32:02 +00:00
let addr = siginfo_si_addr(info);
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
// If the faulting address is within the guard page, then we print a
Abort on stack overflow instead of re-raising SIGSEGV We use guard pages that cause the process to abort to protect against undefined behavior in the event of stack overflow. We have a handler that catches segfaults, prints out an error message if the segfault was due to a stack overflow, then unregisters itself and returns to allow the signal to be re-raised and kill the process. This caused some confusion, as it was unexpected that safe code would be able to cause a segfault, while it's easy to overflow the stack in safe code. To avoid this confusion, when we detect a segfault in the guard page, abort instead of the previous behavior of re-raising the SIGSEGV. To test this, we need to adapt the tests for segfault to actually check the exit status. Doing so revealed that the existing test for segfault behavior was actually invalid; LLVM optimizes the explicit null pointer reference down to an illegal instruction, so the program aborts with SIGILL instead of SIGSEGV and the test didn't actually trigger the signal handler at all. Use a C helper function to get a null pointer that LLVM can't optimize away, so we get our segfault instead. This is a [breaking-change] if anyone is relying on the exact signal raised to kill a process on stack overflow. Closes #31273
2016-01-31 23:30:32 +00:00
// message saying so and abort.
Use a range to identify SIGSEGV in stack guards Previously, the `guard::init()` and `guard::current()` functions were returning a `usize` address representing the top of the stack guard, respectively for the main thread and for spawned threads. The `SIGSEGV` handler on `unix` targets checked if a fault was within one page below that address, if so reporting it as a stack overflow. Now `unix` targets report a `Range<usize>` representing the guard memory, so it can cover arbitrary guard sizes. Non-`unix` targets which always return `None` for guards now do so with `Option<!>`, so they don't pay any overhead. For `linux-gnu` in particular, the previous guard upper-bound was `stackaddr + guardsize`, as the protected memory was *inside* the stack. This was a glibc bug, and starting from 2.27 they are moving the guard *past* the end of the stack. However, there's no simple way for us to know where the guard page actually lies, so now we declare it as the whole range of `stackaddr ± guardsize`, and any fault therein will be called a stack overflow. This fixes #47863.
2018-01-31 19:41:29 +00:00
if guard.start <= addr && addr < guard.end {
Remove morestack support This commit removes all morestack support from the compiler which entails: * Segmented stacks are no longer emitted in codegen. * We no longer build or distribute libmorestack.a * The `stack_exhausted` lang item is no longer required The only current use of the segmented stack support in LLVM is to detect stack overflow. This is no longer really required, however, because we already have guard pages for all threads and registered signal handlers watching for a segfault on those pages (to print out a stack overflow message). Additionally, major platforms (aka Windows) already don't use morestack. This means that Rust is by default less likely to catch stack overflows because if a function takes up more than one page of stack space it won't hit the guard page. This is what the purpose of morestack was (to catch this case), but it's better served with stack probes which have more cross platform support and no runtime support necessary. Until LLVM supports this for all platform it looks like morestack isn't really buying us much. cc #16012 (still need stack probes) Closes #26458 (a drive-by fix to help diagnostics on stack overflow)
2015-07-27 20:41:35 +00:00
report_overflow();
Abort on stack overflow instead of re-raising SIGSEGV We use guard pages that cause the process to abort to protect against undefined behavior in the event of stack overflow. We have a handler that catches segfaults, prints out an error message if the segfault was due to a stack overflow, then unregisters itself and returns to allow the signal to be re-raised and kill the process. This caused some confusion, as it was unexpected that safe code would be able to cause a segfault, while it's easy to overflow the stack in safe code. To avoid this confusion, when we detect a segfault in the guard page, abort instead of the previous behavior of re-raising the SIGSEGV. To test this, we need to adapt the tests for segfault to actually check the exit status. Doing so revealed that the existing test for segfault behavior was actually invalid; LLVM optimizes the explicit null pointer reference down to an illegal instruction, so the program aborts with SIGILL instead of SIGSEGV and the test didn't actually trigger the signal handler at all. Use a C helper function to get a null pointer that LLVM can't optimize away, so we get our segfault instead. This is a [breaking-change] if anyone is relying on the exact signal raised to kill a process on stack overflow. Closes #31273
2016-01-31 23:30:32 +00:00
rtabort!("stack overflow");
} else {
// Unregister ourselves by reverting back to the default behavior.
let mut action: sigaction = mem::zeroed();
action.sa_sigaction = SIG_DFL;
sigaction(signum, &action, ptr::null_mut());
// See comment above for why this function returns.
Fallout from new thread API
2014-12-07 02:34:37 +00:00
}
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
Use `null()`/`null_mut()` instead of `0 as *const T`/`0 as *mut T`
2015-09-03 06:49:50 +00:00
static mut MAIN_ALTSTACK: *mut libc::c_void = ptr::null_mut();
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
pub unsafe fn init() {
let mut action: sigaction = mem::zeroed();
action.sa_flags = SA_SIGINFO | SA_ONSTACK;
action.sa_sigaction = signal_handler as sighandler_t;
sigaction(SIGSEGV, &action, ptr::null_mut());
sigaction(SIGBUS, &action, ptr::null_mut());
let handler = make_handler();
MAIN_ALTSTACK = handler._data;
mem::forget(handler);
}
pub unsafe fn cleanup() {
Handler { _data: MAIN_ALTSTACK };
}
trying again at fixing stackp initialization
2016-02-03 02:21:39 +00:00
unsafe fn get_stackp() -> *mut libc::c_void {
refactoring get_stack to be cleaner
2016-01-28 00:46:45 +00:00
let stackp = mmap(ptr::null_mut(),
SIGSTKSZ,
PROT_READ | PROT_WRITE,
MAP_PRIVATE | MAP_ANON,
-1,
0);
if stackp == MAP_FAILED {
Rename fail! to panic! https://github.com/rust-lang/rfcs/pull/221 The current terminology of "task failure" often causes problems when writing or speaking about code. You often want to talk about the possibility of an operation that returns a Result "failing", but cannot because of the ambiguity with task failure. Instead, you have to speak of "the failing case" or "when the operation does not succeed" or other circumlocutions. Likewise, we use a "Failure" header in rustdoc to describe when operations may fail the task, but it would often be helpful to separate out a section describing the "Err-producing" case. We have been steadily moving away from task failure and toward Result as an error-handling mechanism, so we should optimize our terminology accordingly: Result-producing functions should be easy to describe. To update your code, rename any call to `fail!` to `panic!` instead. Assuming you have not created your own macro named `panic!`, this will work on UNIX based systems: grep -lZR 'fail!' . | xargs -0 -l sed -i -e 's/fail!/panic!/g' You can of course also do this by hand. [breaking-change]
2014-10-09 19:17:22 +00:00
panic!("failed to allocate an alternative stack");
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
trying again at fixing stackp initialization
2016-02-03 02:21:39 +00:00
stackp
}
#[cfg(any(target_os = "linux",
target_os = "macos",
target_os = "bitrig",
target_os = "netbsd",
Fix broken Solaris build
2016-02-21 22:57:24 +00:00
target_os = "openbsd",
target_os = "solaris"))]
trying again at fixing stackp initialization
2016-02-03 02:21:39 +00:00
unsafe fn get_stack() -> libc::stack_t {
libc::stack_t { ss_sp: get_stackp(), ss_flags: 0, ss_size: SIGSTKSZ }
}
#[cfg(any(target_os = "freebsd",
target_os = "dragonfly"))]
unsafe fn get_stack() -> libc::stack_t {
libc::stack_t { ss_sp: get_stackp() as *mut i8, ss_flags: 0, ss_size: SIGSTKSZ }
Fixes #31229
2016-01-27 01:37:18 +00:00
}
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
Fixes #31229
2016-01-27 01:37:18 +00:00
pub unsafe fn make_handler() -> Handler {
Remove alternate stack with sigaltstack before unmapping it. Also reuse existing signal stack if already set, this is especially useful when working with sanitizers that configure alternate stack themselves.
2016-02-15 14:45:52 +00:00
let mut stack = mem::zeroed();
sigaltstack(ptr::null(), &mut stack);
// Configure alternate signal stack, if one is not already set.
if stack.ss_flags & SS_DISABLE != 0 {
stack = get_stack();
sigaltstack(&stack, ptr::null_mut());
Handler { _data: stack.ss_sp as *mut libc::c_void }
} else {
Handler { _data: ptr::null_mut() }
}
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
pub unsafe fn drop_handler(handler: &mut Handler) {
Remove alternate stack with sigaltstack before unmapping it. Also reuse existing signal stack if already set, this is especially useful when working with sanitizers that configure alternate stack themselves.
2016-02-15 14:45:52 +00:00
if !handler._data.is_null() {
let stack = libc::stack_t {
ss_sp: ptr::null_mut(),
ss_flags: SS_DISABLE,
Update usages of 'OSX' (and other old names) to 'macOS'. As of last year with version 'Sierra', the Mac operating system is now called 'macOS'.
2017-03-12 18:13:35 +00:00
// Workaround for bug in macOS implementation of sigaltstack
Remove alternate stack with sigaltstack before unmapping it. Also reuse existing signal stack if already set, this is especially useful when working with sanitizers that configure alternate stack themselves.
2016-02-15 14:45:52 +00:00
// UNIX2003 which returns ENOMEM when disabling a stack while
// passing ss_size smaller than MINSIGSTKSZ. According to POSIX
// both ss_sp and ss_size should be ignored in this case.
ss_size: SIGSTKSZ,
};
sigaltstack(&stack, ptr::null_mut());
munmap(handler._data, SIGSTKSZ);
}
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
}
#[cfg(not(any(target_os = "linux",
openbsd support
2015-01-29 07:19:28 +00:00
target_os = "macos",
bitrig integration
2015-01-17 07:51:04 +00:00
target_os = "bitrig",
Use guard-pages also on DragonFly/FreeBSD. Only tested on DragonFly.
2015-11-01 21:56:31 +00:00
target_os = "dragonfly",
target_os = "freebsd",
Rename sunos to solaris
2016-01-28 11:02:31 +00:00
target_os = "solaris",
Add support for the rumprun unikernel For most parts, rumprun currently looks like NetBSD, as they share the same libc and drivers. However, being a unikernel, rumprun does not support process management, signals or virtual memory, so related functions might fail at runtime. Stack guards are disabled exactly for this reason. Code for rumprun is always cross-compiled, it uses always static linking and needs a custom linker.
2015-09-21 17:16:24 +00:00
all(target_os = "netbsd", not(target_vendor = "rumprun")),
openbsd support
2015-01-29 07:19:28 +00:00
target_os = "openbsd")))]
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
mod imp {
Add ptr import (fixup #28187)
2015-09-03 18:33:38 +00:00
use ptr;
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
pub unsafe fn init() {
}
pub unsafe fn cleanup() {
}
pub unsafe fn make_handler() -> super::Handler {
Use `null()`/`null_mut()` instead of `0 as *const T`/`0 as *mut T`
2015-09-03 06:49:50 +00:00
super::Handler { _data: ptr::null_mut() }
Print stack overflow messages for Windows, Linux and OS X Fixes #17562
2014-10-23 05:29:41 +00:00
}
pub unsafe fn drop_handler(_handler: &mut super::Handler) {
}
}
Reference in New Issue Copy Permalink