X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=elogind.git;a=blobdiff_plain;f=src%2Fjournal%2Fmmap-cache.c;h=22f75540b83f948d0d7e3604b4317c22ed809baa;hp=54bf1148e18d572d67db3d980a8609b7325971b7;hb=b6e676ce41508e2aeea22202fc8f234126177f52;hpb=44a6b1b68029833893f6e9cee35aa27a974038f6 diff --git a/src/journal/mmap-cache.c b/src/journal/mmap-cache.c index 54bf1148e..22f75540b 100644 --- a/src/journal/mmap-cache.c +++ b/src/journal/mmap-cache.c @@ -22,13 +22,13 @@ #include #include #include -#include #include "hashmap.h" #include "list.h" #include "log.h" #include "util.h" #include "macro.h" +#include "sigbus.h" #include "mmap-cache.h" typedef struct Window Window; @@ -38,12 +38,13 @@ typedef struct FileDescriptor FileDescriptor; struct Window { MMapCache *cache; + bool invalidated; bool keep_always; bool in_unused; + int prot; void *ptr; uint64_t offset; - int prot; size_t size; FileDescriptor *fd; @@ -65,23 +66,32 @@ struct Context { struct FileDescriptor { MMapCache *cache; int fd; + bool sigbus; LIST_HEAD(Window, windows); }; struct MMapCache { int n_ref; + unsigned n_windows; - Hashmap *fds; - Hashmap *contexts; + unsigned n_hit, n_missed; - unsigned n_windows; + + Hashmap *fds; + Context *contexts[MMAP_CACHE_MAX_CONTEXTS]; LIST_HEAD(Window, unused); Window *last_unused; }; #define WINDOWS_MIN 64 -#define WINDOW_SIZE (8ULL*1024ULL*1024ULL) + +#ifdef ENABLE_DEBUG_MMAP_CACHE +/* Tiny windows increase mmap activity and the chance of exposing unsafe use. */ +# define WINDOW_SIZE (page_size()) +#else +# define WINDOW_SIZE (8ULL*1024ULL*1024ULL) +#endif MMapCache* mmap_cache_new(void) { MMapCache *m; @@ -111,13 +121,13 @@ static void window_unlink(Window *w) { munmap(w->ptr, w->size); if (w->fd) - LIST_REMOVE(Window, by_fd, w->fd->windows, w); + LIST_REMOVE(by_fd, w->fd->windows, w); if (w->in_unused) { if (w->cache->last_unused == w) w->cache->last_unused = w->unused_prev; - LIST_REMOVE(Window, unused, w->cache->unused, w); + LIST_REMOVE(unused, w->cache->unused, w); } LIST_FOREACH(by_window, c, w->contexts) { @@ -126,6 +136,21 @@ static void window_unlink(Window *w) { } } +static void window_invalidate(Window *w) { + assert(w); + + if (w->invalidated) + return; + + /* Replace the window with anonymous pages. This is useful + * when we hit a SIGBUS and want to make sure the file cannot + * trigger any further SIGBUS, possibly overrunning the sigbus + * queue. */ + + assert_se(mmap(w->ptr, w->size, w->prot, MAP_PRIVATE|MAP_ANONYMOUS|MAP_FIXED, -1, 0) == w->ptr); + w->invalidated = true; +} + static void window_free(Window *w) { assert(w); @@ -181,15 +206,21 @@ static void context_detach_window(Context *c) { w = c->window; c->window = NULL; - LIST_REMOVE(Context, by_window, w->contexts, c); + LIST_REMOVE(by_window, w->contexts, c); if (!w->contexts && !w->keep_always) { /* Not used anymore? */ - LIST_PREPEND(Window, unused, c->cache->unused, w); +#ifdef ENABLE_DEBUG_MMAP_CACHE + /* Unmap unused windows immediately to expose use-after-unmap + * by SIGSEGV. */ + window_free(w); +#else + LIST_PREPEND(unused, c->cache->unused, w); if (!c->cache->last_unused) c->cache->last_unused = w; w->in_unused = true; +#endif } } @@ -204,7 +235,7 @@ static void context_attach_window(Context *c, Window *w) { if (w->in_unused) { /* Used again? */ - LIST_REMOVE(Window, unused, c->cache->unused, w); + LIST_REMOVE(unused, c->cache->unused, w); if (c->cache->last_unused == w) c->cache->last_unused = w->unused_prev; @@ -212,23 +243,18 @@ static void context_attach_window(Context *c, Window *w) { } c->window = w; - LIST_PREPEND(Context, by_window, w->contexts, c); + LIST_PREPEND(by_window, w->contexts, c); } static Context *context_add(MMapCache *m, unsigned id) { Context *c; - int r; assert(m); - c = hashmap_get(m->contexts, UINT_TO_PTR(id + 1)); + c = m->contexts[id]; if (c) return c; - r = hashmap_ensure_allocated(&m->contexts, trivial_hash_func, trivial_compare_func); - if (r < 0) - return NULL; - c = new0(Context, 1); if (!c) return NULL; @@ -236,11 +262,8 @@ static Context *context_add(MMapCache *m, unsigned id) { c->cache = m; c->id = id; - r = hashmap_put(m->contexts, UINT_TO_PTR(id + 1), c); - if (r < 0) { - free(c); - return NULL; - } + assert(!m->contexts[id]); + m->contexts[id] = c; return c; } @@ -250,8 +273,10 @@ static void context_free(Context *c) { context_detach_window(c); - if (c->cache) - assert_se(hashmap_remove(c->cache->contexts, UINT_TO_PTR(c->id + 1))); + if (c->cache) { + assert(c->cache->contexts[c->id] == c); + c->cache->contexts[c->id] = NULL; + } free(c); } @@ -279,7 +304,7 @@ static FileDescriptor* fd_add(MMapCache *m, int fd) { if (f) return f; - r = hashmap_ensure_allocated(&m->fds, trivial_hash_func, trivial_compare_func); + r = hashmap_ensure_allocated(&m->fds, NULL); if (r < 0) return NULL; @@ -300,17 +325,20 @@ static FileDescriptor* fd_add(MMapCache *m, int fd) { } static void mmap_cache_free(MMapCache *m) { - Context *c; FileDescriptor *f; + int i; assert(m); - while ((c = hashmap_first(m->contexts))) - context_free(c); + for (i = 0; i < MMAP_CACHE_MAX_CONTEXTS; i++) + if (m->contexts[i]) + context_free(m->contexts[i]); while ((f = hashmap_first(m->fds))) fd_free(f); + hashmap_free(m->fds); + while (m->unused) window_free(m->unused); @@ -356,7 +384,7 @@ static int try_context( assert(size > 0); assert(ret); - c = hashmap_get(m->contexts, UINT_TO_PTR(context+1)); + c = m->contexts[context]; if (!c) return 0; @@ -372,7 +400,10 @@ static int try_context( return 0; } - c->window->keep_always = c->window->keep_always || keep_always; + if (c->window->fd->sigbus) + return -EIO; + + c->window->keep_always |= keep_always; *ret = (uint8_t*) c->window->ptr + (offset - c->window->offset); return 1; @@ -396,7 +427,6 @@ static int find_mmap( assert(m->n_ref > 0); assert(fd >= 0); assert(size > 0); - assert(ret); f = hashmap_get(m->fds, INT_TO_PTR(fd + 1)); if (!f) @@ -404,6 +434,9 @@ static int find_mmap( assert(f->fd == fd); + if (f->sigbus) + return -EIO; + LIST_FOREACH(by_fd, w, f->windows) if (window_matches(w, fd, prot, offset, size)) break; @@ -416,7 +449,7 @@ static int find_mmap( return -ENOMEM; context_attach_window(c, w); - w->keep_always = w->keep_always || keep_always; + w->keep_always += keep_always; *ret = (uint8_t*) w->ptr + (offset - w->offset); return 1; @@ -491,15 +524,15 @@ static int add_mmap( c = context_add(m, context); if (!c) - return -ENOMEM; + goto outofmem; f = fd_add(m, fd); if (!f) - return -ENOMEM; + goto outofmem; w = window_add(m); if (!w) - return -ENOMEM; + goto outofmem; w->keep_always = keep_always; w->ptr = d; @@ -508,14 +541,18 @@ static int add_mmap( w->size = wsize; w->fd = f; - LIST_PREPEND(Window, by_fd, f->windows, w); + LIST_PREPEND(by_fd, f->windows, w); context_detach_window(c); c->window = w; - LIST_PREPEND(Context, by_window, w->contexts, c); + LIST_PREPEND(by_window, w->contexts, c); *ret = (uint8_t*) w->ptr + (offset - w->offset); return 1; + +outofmem: + munmap(d, wsize); + return -ENOMEM; } int mmap_cache_get( @@ -536,42 +573,133 @@ int mmap_cache_get( assert(fd >= 0); assert(size > 0); assert(ret); + assert(context < MMAP_CACHE_MAX_CONTEXTS); /* Check whether the current context is the right one already */ r = try_context(m, fd, prot, context, keep_always, offset, size, ret); - if (r != 0) + if (r != 0) { + m->n_hit ++; return r; + } /* Search for a matching mmap */ r = find_mmap(m, fd, prot, context, keep_always, offset, size, ret); - if (r != 0) + if (r != 0) { + m->n_hit ++; return r; + } + + m->n_missed++; /* Create a new mmap */ return add_mmap(m, fd, prot, context, keep_always, offset, size, st, ret); } -void mmap_cache_close_fd(MMapCache *m, int fd) { +unsigned mmap_cache_get_hit(MMapCache *m) { + assert(m); + + return m->n_hit; +} + +unsigned mmap_cache_get_missed(MMapCache *m) { + assert(m); + + return m->n_missed; +} + +static void mmap_cache_process_sigbus(MMapCache *m) { + bool found = false; + FileDescriptor *f; + Iterator i; + int r; + + assert(m); + + /* Iterate through all triggered pages and mark their files as + * invalidated */ + for (;;) { + bool ours; + void *addr; + + r = sigbus_pop(&addr); + if (_likely_(r == 0)) + break; + if (r < 0) { + log_error_errno(r, "SIGBUS handling failed: %m"); + abort(); + } + + ours = false; + HASHMAP_FOREACH(f, m->fds, i) { + Window *w; + + LIST_FOREACH(by_fd, w, f->windows) { + if ((uint8_t*) addr >= (uint8_t*) w->ptr && + (uint8_t*) addr < (uint8_t*) w->ptr + w->size) { + found = ours = f->sigbus = true; + break; + } + } + + if (ours) + break; + } + + /* Didn't find a matching window, give up */ + if (!ours) { + log_error("Unknown SIGBUS page, aborting."); + abort(); + } + } + + /* The list of triggered pages is now empty. Now, let's remap + * all windows of the triggered file to anonymous maps, so + * that no page of the file in question is triggered again, so + * that we can be sure not to hit the queue size limit. */ + if (_likely_(!found)) + return; + + HASHMAP_FOREACH(f, m->fds, i) { + Window *w; + + if (!f->sigbus) + continue; + + LIST_FOREACH(by_fd, w, f->windows) + window_invalidate(w); + } +} + +bool mmap_cache_got_sigbus(MMapCache *m, int fd) { FileDescriptor *f; assert(m); assert(fd >= 0); + mmap_cache_process_sigbus(m); + f = hashmap_get(m->fds, INT_TO_PTR(fd + 1)); if (!f) - return; + return false; - fd_free(f); + return f->sigbus; } -void mmap_cache_close_context(MMapCache *m, unsigned context) { - Context *c; +void mmap_cache_close_fd(MMapCache *m, int fd) { + FileDescriptor *f; assert(m); + assert(fd >= 0); - c = hashmap_get(m->contexts, UINT_TO_PTR(context + 1)); - if (!c) + /* Make sure that any queued SIGBUS are first dispatched, so + * that we don't end up with a SIGBUS entry we cannot relate + * to any existing memory map */ + + mmap_cache_process_sigbus(m); + + f = hashmap_get(m->fds, INT_TO_PTR(fd + 1)); + if (!f) return; - context_free(c); + fd_free(f); }