forked from OSchip/llvm-project
148 lines
5.5 KiB
C++
148 lines
5.5 KiB
C++
//===-- scudo_allocator.h ---------------------------------------*- C++ -*-===//
|
|
//
|
|
// The LLVM Compiler Infrastructure
|
|
//
|
|
// This file is distributed under the University of Illinois Open Source
|
|
// License. See LICENSE.TXT for details.
|
|
//
|
|
//===----------------------------------------------------------------------===//
|
|
///
|
|
/// Header for scudo_allocator.cpp.
|
|
///
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
#ifndef SCUDO_ALLOCATOR_H_
|
|
#define SCUDO_ALLOCATOR_H_
|
|
|
|
#include "sanitizer_common/sanitizer_allocator.h"
|
|
|
|
#if !SANITIZER_LINUX
|
|
# error "The Scudo hardened allocator is currently only supported on Linux."
|
|
#endif
|
|
|
|
namespace __scudo {
|
|
|
|
enum AllocType : u8 {
|
|
FromMalloc = 0, // Memory block came from malloc, realloc, calloc, etc.
|
|
FromNew = 1, // Memory block came from operator new.
|
|
FromNewArray = 2, // Memory block came from operator new [].
|
|
FromMemalign = 3, // Memory block came from memalign, posix_memalign, etc.
|
|
};
|
|
|
|
enum ChunkState : u8 {
|
|
ChunkAvailable = 0,
|
|
ChunkAllocated = 1,
|
|
ChunkQuarantine = 2
|
|
};
|
|
|
|
// Our header requires 64 bits of storage. Having the offset saves us from
|
|
// using functions such as GetBlockBegin, that is fairly costly. Our first
|
|
// implementation used the MetaData as well, which offers the advantage of
|
|
// being stored away from the chunk itself, but accessing it was costly as
|
|
// well. The header will be atomically loaded and stored.
|
|
typedef u64 PackedHeader;
|
|
struct UnpackedHeader {
|
|
u64 Checksum : 16;
|
|
u64 SizeOrUnusedBytes : 19; // Size for Primary backed allocations, amount of
|
|
// unused bytes in the chunk for Secondary ones.
|
|
u64 FromPrimary : 1;
|
|
u64 State : 2; // available, allocated, or quarantined
|
|
u64 AllocType : 2; // malloc, new, new[], or memalign
|
|
u64 Offset : 16; // Offset from the beginning of the backend
|
|
// allocation to the beginning of the chunk
|
|
// itself, in multiples of MinAlignment. See
|
|
// comment about its maximum value and in init().
|
|
u64 Salt : 8;
|
|
};
|
|
|
|
typedef atomic_uint64_t AtomicPackedHeader;
|
|
COMPILER_CHECK(sizeof(UnpackedHeader) == sizeof(PackedHeader));
|
|
|
|
// Minimum alignment of 8 bytes for 32-bit, 16 for 64-bit
|
|
const uptr MinAlignmentLog = FIRST_32_SECOND_64(3, 4);
|
|
const uptr MaxAlignmentLog = 24; // 16 MB
|
|
const uptr MinAlignment = 1 << MinAlignmentLog;
|
|
const uptr MaxAlignment = 1 << MaxAlignmentLog;
|
|
|
|
const uptr ChunkHeaderSize = sizeof(PackedHeader);
|
|
const uptr AlignedChunkHeaderSize =
|
|
(ChunkHeaderSize + MinAlignment - 1) & ~(MinAlignment - 1);
|
|
|
|
#if SANITIZER_CAN_USE_ALLOCATOR64
|
|
const uptr AllocatorSpace = ~0ULL;
|
|
# if defined(__aarch64__) && SANITIZER_ANDROID
|
|
const uptr AllocatorSize = 0x4000000000ULL; // 256G.
|
|
# elif defined(__aarch64__)
|
|
const uptr AllocatorSize = 0x10000000000ULL; // 1T.
|
|
# else
|
|
const uptr AllocatorSize = 0x40000000000ULL; // 4T.
|
|
# endif
|
|
typedef DefaultSizeClassMap SizeClassMap;
|
|
struct AP64 {
|
|
static const uptr kSpaceBeg = AllocatorSpace;
|
|
static const uptr kSpaceSize = AllocatorSize;
|
|
static const uptr kMetadataSize = 0;
|
|
typedef __scudo::SizeClassMap SizeClassMap;
|
|
typedef NoOpMapUnmapCallback MapUnmapCallback;
|
|
static const uptr kFlags =
|
|
SizeClassAllocator64FlagMasks::kRandomShuffleChunks;
|
|
};
|
|
typedef SizeClassAllocator64<AP64> PrimaryAllocator;
|
|
#else
|
|
// Currently, the 32-bit Sanitizer allocator has not yet benefited from all the
|
|
// security improvements brought to the 64-bit one. This makes the 32-bit
|
|
// version of Scudo slightly less toughened.
|
|
static const uptr RegionSizeLog = 20;
|
|
static const uptr NumRegions = SANITIZER_MMAP_RANGE_SIZE >> RegionSizeLog;
|
|
# if SANITIZER_WORDSIZE == 32
|
|
typedef FlatByteMap<NumRegions> ByteMap;
|
|
# elif SANITIZER_WORDSIZE == 64
|
|
typedef TwoLevelByteMap<(NumRegions >> 12), 1 << 12> ByteMap;
|
|
# endif // SANITIZER_WORDSIZE
|
|
typedef DefaultSizeClassMap SizeClassMap;
|
|
struct AP32 {
|
|
static const uptr kSpaceBeg = 0;
|
|
static const u64 kSpaceSize = SANITIZER_MMAP_RANGE_SIZE;
|
|
static const uptr kMetadataSize = 0;
|
|
typedef __scudo::SizeClassMap SizeClassMap;
|
|
static const uptr kRegionSizeLog = RegionSizeLog;
|
|
typedef __scudo::ByteMap ByteMap;
|
|
typedef NoOpMapUnmapCallback MapUnmapCallback;
|
|
static const uptr kFlags =
|
|
SizeClassAllocator32FlagMasks::kRandomShuffleChunks |
|
|
SizeClassAllocator32FlagMasks::kUseSeparateSizeClassForBatch;
|
|
};
|
|
typedef SizeClassAllocator32<AP32> PrimaryAllocator;
|
|
#endif // SANITIZER_CAN_USE_ALLOCATOR64
|
|
|
|
// __sanitizer::RoundUp has a CHECK that is extraneous for us. Use our own.
|
|
INLINE uptr RoundUpTo(uptr Size, uptr Boundary) {
|
|
return (Size + Boundary - 1) & ~(Boundary - 1);
|
|
}
|
|
|
|
#include "scudo_allocator_secondary.h"
|
|
#include "scudo_allocator_combined.h"
|
|
|
|
typedef SizeClassAllocatorLocalCache<PrimaryAllocator> AllocatorCache;
|
|
typedef ScudoLargeMmapAllocator SecondaryAllocator;
|
|
typedef ScudoCombinedAllocator<PrimaryAllocator, AllocatorCache,
|
|
SecondaryAllocator> ScudoBackendAllocator;
|
|
|
|
void initScudo();
|
|
|
|
void *scudoMalloc(uptr Size, AllocType Type);
|
|
void scudoFree(void *Ptr, AllocType Type);
|
|
void scudoSizedFree(void *Ptr, uptr Size, AllocType Type);
|
|
void *scudoRealloc(void *Ptr, uptr Size);
|
|
void *scudoCalloc(uptr NMemB, uptr Size);
|
|
void *scudoMemalign(uptr Alignment, uptr Size);
|
|
void *scudoValloc(uptr Size);
|
|
void *scudoPvalloc(uptr Size);
|
|
int scudoPosixMemalign(void **MemPtr, uptr Alignment, uptr Size);
|
|
void *scudoAlignedAlloc(uptr Alignment, uptr Size);
|
|
uptr scudoMallocUsableSize(void *Ptr);
|
|
|
|
} // namespace __scudo
|
|
|
|
#endif // SCUDO_ALLOCATOR_H_
|