mirror of
				https://github.com/jart/cosmopolitan.git
				synced 2025-10-25 10:40:57 +00:00 
			
		
		
		
	Don't preempt WIN32 libraries
This change refactors our POSIX signals emulation for Windows so that it performs some additional safety checks before calling SetThreadContext() which needs to be locked and must never ever interrupt Microsoft's code. Kudos to the the Go developers for figuring out how to do this properly.
This commit is contained in:
		
							parent
							
								
									d1a283a588
								
							
						
					
					
						commit
						aca2261cda
					
				
					 5 changed files with 61 additions and 30 deletions
				
			
		|  | @ -48,8 +48,11 @@ static textwindows int _park_thread(uint32_t msdelay, sigset_t waitmask, | ||||||
|   if ((rc = _check_cancel()) != -1 && (rc = _check_signal(restartable)) != -1) { |   if ((rc = _check_cancel()) != -1 && (rc = _check_signal(restartable)) != -1) { | ||||||
|     unassert((wi = WaitForSingleObject(sem, msdelay)) != -1u); |     unassert((wi = WaitForSingleObject(sem, msdelay)) != -1u); | ||||||
|     if (wi != kNtWaitTimeout) { |     if (wi != kNtWaitTimeout) { | ||||||
|  |       _check_signal(false); | ||||||
|       rc = eintr(); |       rc = eintr(); | ||||||
|       _check_cancel(); |       _check_cancel(); | ||||||
|  |     } else if ((rc = _check_signal(restartable))) { | ||||||
|  |       _check_cancel(); | ||||||
|     } |     } | ||||||
|   } |   } | ||||||
|   __sig_finishwait(om); |   __sig_finishwait(om); | ||||||
|  |  | ||||||
|  | @ -193,8 +193,9 @@ sys_readwrite_nt(int fd, void *data, size_t size, ssize_t offset, | ||||||
|   // check and see if it was pthread_cancel() which committed the deed
 |   // check and see if it was pthread_cancel() which committed the deed
 | ||||||
|   // in which case _check_cancel() can acknowledge the cancelation now
 |   // in which case _check_cancel() can acknowledge the cancelation now
 | ||||||
|   // it's also fine to do nothing here; punt to next cancelation point
 |   // it's also fine to do nothing here; punt to next cancelation point
 | ||||||
|   if (GetLastError() == kNtErrorOperationAborted && _check_cancel() == -1) { |   if (GetLastError() == kNtErrorOperationAborted) { | ||||||
|     return ecanceled(); |     if (_check_cancel() == -1) return ecanceled(); | ||||||
|  |     if (!eintered && _check_signal(false)) return eintr(); | ||||||
|   } |   } | ||||||
| 
 | 
 | ||||||
|   // if we chose to process a pending signal earlier then we preserve
 |   // if we chose to process a pending signal earlier then we preserve
 | ||||||
|  |  | ||||||
|  | @ -128,8 +128,7 @@ static textwindows bool __sig_start(struct PosixThread *pt, int sig, | ||||||
|     return false; |     return false; | ||||||
|   } |   } | ||||||
|   if (pt->tib->tib_sigmask & (1ull << (sig - 1))) { |   if (pt->tib->tib_sigmask & (1ull << (sig - 1))) { | ||||||
|     STRACE("tid %d masked %G delivering to tib_sigpending", _pthread_tid(pt), |     STRACE("enqueing %G on %d", sig, _pthread_tid(pt)); | ||||||
|            sig); |  | ||||||
|     pt->tib->tib_sigpending |= 1ull << (sig - 1); |     pt->tib->tib_sigpending |= 1ull << (sig - 1); | ||||||
|     return false; |     return false; | ||||||
|   } |   } | ||||||
|  | @ -137,10 +136,6 @@ static textwindows bool __sig_start(struct PosixThread *pt, int sig, | ||||||
|     STRACE("terminating on %G due to no handler", sig); |     STRACE("terminating on %G due to no handler", sig); | ||||||
|     __sig_terminate(sig); |     __sig_terminate(sig); | ||||||
|   } |   } | ||||||
|   if (*flags & SA_RESETHAND) { |  | ||||||
|     STRACE("resetting %G handler", sig); |  | ||||||
|     __sighandrvas[sig] = (int32_t)(intptr_t)SIG_DFL; |  | ||||||
|   } |  | ||||||
|   return true; |   return true; | ||||||
| } | } | ||||||
| 
 | 
 | ||||||
|  | @ -153,6 +148,10 @@ textwindows int __sig_raise(int sig, int sic) { | ||||||
|   struct PosixThread *pt = _pthread_self(); |   struct PosixThread *pt = _pthread_self(); | ||||||
|   ucontext_t ctx = {.uc_sigmask = pt->tib->tib_sigmask}; |   ucontext_t ctx = {.uc_sigmask = pt->tib->tib_sigmask}; | ||||||
|   if (!__sig_start(pt, sig, &rva, &flags)) return 0; |   if (!__sig_start(pt, sig, &rva, &flags)) return 0; | ||||||
|  |   if (flags & SA_RESETHAND) { | ||||||
|  |     STRACE("resetting %G handler", sig); | ||||||
|  |     __sighandrvas[sig] = (int32_t)(intptr_t)SIG_DFL; | ||||||
|  |   } | ||||||
|   siginfo_t si = {.si_signo = sig, .si_code = sic}; |   siginfo_t si = {.si_signo = sig, .si_code = sic}; | ||||||
|   struct NtContext nc; |   struct NtContext nc; | ||||||
|   nc.ContextFlags = kNtContextFull; |   nc.ContextFlags = kNtContextFull; | ||||||
|  | @ -232,30 +231,53 @@ static textwindows wontreturn void __sig_tramp(struct SignalFrame *sf) { | ||||||
|   __sig_restore(&sf->ctx); |   __sig_restore(&sf->ctx); | ||||||
| } | } | ||||||
| 
 | 
 | ||||||
| static textwindows int __sig_killer(struct PosixThread *pt, int sig, int sic) { | static int __sig_killer(struct PosixThread *pt, int sig, int sic) { | ||||||
|   uintptr_t th; | 
 | ||||||
|  |   // prepare for signal
 | ||||||
|   unsigned rva, flags; |   unsigned rva, flags; | ||||||
|   if (!__sig_start(pt, sig, &rva, &flags)) return 0; |   if (!__sig_start(pt, sig, &rva, &flags)) { | ||||||
|   th = _pthread_syshand(pt); |  | ||||||
|   uint32_t old_suspend_count; |  | ||||||
|   old_suspend_count = SuspendThread(th); |  | ||||||
|   if (old_suspend_count == -1u) { |  | ||||||
|     STRACE("SuspendThread failed w/ %d", GetLastError()); |  | ||||||
|     return ESRCH; |  | ||||||
|   } |  | ||||||
|   if (old_suspend_count) { |  | ||||||
|     STRACE("kill contention of %u on tid %d", old_suspend_count, |  | ||||||
|            _pthread_tid(pt)); |  | ||||||
|     pt->tib->tib_sigpending |= 1ull << (sig - 1); |  | ||||||
|     ResumeThread(th); |  | ||||||
|     return 0; |     return 0; | ||||||
|   } |   } | ||||||
|  | 
 | ||||||
|  |   // take control of thread
 | ||||||
|  |   // suspending the thread happens asynchronously
 | ||||||
|  |   // however getting the context blocks until it's frozen
 | ||||||
|  |   static pthread_spinlock_t killer_lock; | ||||||
|  |   pthread_spin_lock(&killer_lock); | ||||||
|  |   uintptr_t th = _pthread_syshand(pt); | ||||||
|  |   if (SuspendThread(th) == -1u) { | ||||||
|  |     STRACE("SuspendThread failed w/ %d", GetLastError()); | ||||||
|  |     pthread_spin_unlock(&killer_lock); | ||||||
|  |     return ESRCH; | ||||||
|  |   } | ||||||
|   struct NtContext nc; |   struct NtContext nc; | ||||||
|   nc.ContextFlags = kNtContextFull; |   nc.ContextFlags = kNtContextFull; | ||||||
|   if (!GetThreadContext(th, &nc)) { |   if (!GetThreadContext(th, &nc)) { | ||||||
|     STRACE("GetThreadContext failed w/ %d", GetLastError()); |     STRACE("GetThreadContext failed w/ %d", GetLastError()); | ||||||
|  |     ResumeThread(th); | ||||||
|  |     pthread_spin_unlock(&killer_lock); | ||||||
|     return ESRCH; |     return ESRCH; | ||||||
|   } |   } | ||||||
|  |   pthread_spin_unlock(&killer_lock); | ||||||
|  | 
 | ||||||
|  |   // we can't preempt threads that are running in win32 code
 | ||||||
|  |   if ((pt->tib->tib_sigmask & (1ull << (sig - 1))) || | ||||||
|  |       !((uintptr_t)__executable_start <= nc.Rip && | ||||||
|  |         nc.Rip < (uintptr_t)__privileged_start)) { | ||||||
|  |     STRACE("enqueing %G on %d", sig, _pthread_tid(pt)); | ||||||
|  |     pt->tib->tib_sigpending |= 1ull << (sig - 1); | ||||||
|  |     ResumeThread(th); | ||||||
|  |     __sig_cancel(pt, sig, flags); | ||||||
|  |     return 0; | ||||||
|  |   } | ||||||
|  | 
 | ||||||
|  |   // we're committed to delivering this signal now
 | ||||||
|  |   if (flags & SA_RESETHAND) { | ||||||
|  |     STRACE("resetting %G handler", sig); | ||||||
|  |     __sighandrvas[sig] = (int32_t)(intptr_t)SIG_DFL; | ||||||
|  |   } | ||||||
|  | 
 | ||||||
|  |   // inject trampoline function call into thread
 | ||||||
|   uintptr_t sp; |   uintptr_t sp; | ||||||
|   if (__sig_should_use_altstack(flags, pt->tib)) { |   if (__sig_should_use_altstack(flags, pt->tib)) { | ||||||
|     sp = (uintptr_t)pt->tib->tib_sigstack_addr + pt->tib->tib_sigstack_size; |     sp = (uintptr_t)pt->tib->tib_sigstack_addr + pt->tib->tib_sigstack_size; | ||||||
|  | @ -307,7 +329,8 @@ textwindows void __sig_generate(int sig, int sic) { | ||||||
|   _pthread_lock(); |   _pthread_lock(); | ||||||
|   for (e = dll_first(_pthread_list); e; e = dll_next(_pthread_list, e)) { |   for (e = dll_first(_pthread_list); e; e = dll_next(_pthread_list, e)) { | ||||||
|     pt = POSIXTHREAD_CONTAINER(e); |     pt = POSIXTHREAD_CONTAINER(e); | ||||||
|     if (atomic_load_explicit(&pt->pt_status, memory_order_acquire) < |     if (pt != _pthread_self() && | ||||||
|  |         atomic_load_explicit(&pt->pt_status, memory_order_acquire) < | ||||||
|             kPosixThreadTerminated && |             kPosixThreadTerminated && | ||||||
|         !(pt->tib->tib_sigmask & (1ull << (sig - 1)))) { |         !(pt->tib->tib_sigmask & (1ull << (sig - 1)))) { | ||||||
|       mark = pt; |       mark = pt; | ||||||
|  | @ -315,14 +338,14 @@ textwindows void __sig_generate(int sig, int sic) { | ||||||
|     } |     } | ||||||
|   } |   } | ||||||
|   _pthread_unlock(); |   _pthread_unlock(); | ||||||
|   ALLOW_SIGNALS; |  | ||||||
|   if (mark) { |   if (mark) { | ||||||
|     STRACE("generating %G by killing %d", sig, _pthread_tid(mark)); |     STRACE("generating %G by killing %d", sig, _pthread_tid(mark)); | ||||||
|     __sig_kill(mark, sig, sic); |     __sig_killer(mark, sig, sic); | ||||||
|   } else { |   } else { | ||||||
|     STRACE("all threads block %G so adding to pending signals of process", sig); |     STRACE("all threads block %G so adding to pending signals of process", sig); | ||||||
|     __sig.pending |= 1ull << (sig - 1); |     __sig.pending |= 1ull << (sig - 1); | ||||||
|   } |   } | ||||||
|  |   ALLOW_SIGNALS; | ||||||
| } | } | ||||||
| 
 | 
 | ||||||
| static int __sig_crash_sig(struct NtExceptionPointers *ep, int *code) { | static int __sig_crash_sig(struct NtExceptionPointers *ep, int *code) { | ||||||
|  |  | ||||||
|  | @ -140,8 +140,9 @@ __winsock_block(int64_t handle, uint32_t flags, bool nonblock, | ||||||
|   if (eagained) { |   if (eagained) { | ||||||
|     return eagain(); |     return eagain(); | ||||||
|   } |   } | ||||||
|   if (WSAGetLastError() == kNtErrorOperationAborted && _check_cancel()) { |   if (GetLastError() == kNtErrorOperationAborted) { | ||||||
|     return ecanceled(); |     if (_check_cancel() == -1) return ecanceled(); | ||||||
|  |     if (!eintered && _check_signal(false)) return eintr(); | ||||||
|   } |   } | ||||||
|   if (eintered) { |   if (eintered) { | ||||||
|     return eintr(); |     return eintr(); | ||||||
|  |  | ||||||
|  | @ -19,6 +19,7 @@ | ||||||
| #include "libc/sysv/consts/sig.h" | #include "libc/sysv/consts/sig.h" | ||||||
| #include "libc/atomic.h" | #include "libc/atomic.h" | ||||||
| #include "libc/calls/calls.h" | #include "libc/calls/calls.h" | ||||||
|  | #include "libc/calls/internal.h" | ||||||
| #include "libc/calls/struct/sigaction.h" | #include "libc/calls/struct/sigaction.h" | ||||||
| #include "libc/dce.h" | #include "libc/dce.h" | ||||||
| #include "libc/errno.h" | #include "libc/errno.h" | ||||||
|  | @ -26,6 +27,7 @@ | ||||||
| #include "libc/nt/enum/context.h" | #include "libc/nt/enum/context.h" | ||||||
| #include "libc/nt/struct/context.h" | #include "libc/nt/struct/context.h" | ||||||
| #include "libc/nt/thread.h" | #include "libc/nt/thread.h" | ||||||
|  | #include "libc/runtime/clktck.h" | ||||||
| #include "libc/sock/struct/pollfd.h" | #include "libc/sock/struct/pollfd.h" | ||||||
| #include "libc/sysv/consts/poll.h" | #include "libc/sysv/consts/poll.h" | ||||||
| #include "libc/testlib/testlib.h" | #include "libc/testlib/testlib.h" | ||||||
|  | @ -64,6 +66,7 @@ TEST(SetThreadContext, test) { | ||||||
|   if (!IsWindows()) return; |   if (!IsWindows()) return; | ||||||
|   ASSERT_EQ(0, pthread_create(&th, 0, Worker, 0)); |   ASSERT_EQ(0, pthread_create(&th, 0, Worker, 0)); | ||||||
|   while (!ready) donothing; |   while (!ready) donothing; | ||||||
|  |   usleep(1000); | ||||||
|   int64_t hand = _pthread_syshand((struct PosixThread *)th); |   int64_t hand = _pthread_syshand((struct PosixThread *)th); | ||||||
|   ASSERT_EQ(0, SuspendThread(hand)); |   ASSERT_EQ(0, SuspendThread(hand)); | ||||||
|   struct NtContext nc; |   struct NtContext nc; | ||||||
|  | @ -101,9 +104,9 @@ TEST(poll, interrupt) { | ||||||
|   signal(SIGUSR1, OnSig); |   signal(SIGUSR1, OnSig); | ||||||
|   ASSERT_SYS(0, 0, pipe(pfds)); |   ASSERT_SYS(0, 0, pipe(pfds)); | ||||||
|   ASSERT_EQ(0, pthread_create(&th, 0, Worker2, 0)); |   ASSERT_EQ(0, pthread_create(&th, 0, Worker2, 0)); | ||||||
|   for (int i = 0; i < 100; ++i) { |   for (int i = 0; i < 20; ++i) { | ||||||
|     ASSERT_EQ(0, pthread_kill(th, SIGUSR1)); |     ASSERT_EQ(0, pthread_kill(th, SIGUSR1)); | ||||||
|     usleep(1000); |     usleep(1e6 / CLK_TCK * 2); | ||||||
|   } |   } | ||||||
|   isdone = true; |   isdone = true; | ||||||
|   ASSERT_EQ(0, pthread_kill(th, SIGUSR1)); |   ASSERT_EQ(0, pthread_kill(th, SIGUSR1)); | ||||||
|  |  | ||||||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue