// Copyright 2017 the V8 project authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. // PLEASE READ BEFORE CHANGING THIS FILE! // // This file implements the support code for the out of bounds trap handler. // Nothing in here actually runs in the trap handler, but the code here // manipulates data structures used by the trap handler so we still need to be // careful. In order to minimize this risk, here are some rules to follow. // // 1. Avoid introducing new external dependencies. The files in src/trap-handler // should be as self-contained as possible to make it easy to audit the code. // // 2. Any changes must be reviewed by someone from the crash reporting // or security team. See OWNERS for suggested reviewers. // // For more information, see https://goo.gl/yMeyUY. // // For the code that runs in the trap handler itself, see handler-inside.cc. #include <stddef.h> #include <stdio.h> #include <stdlib.h> #include <string.h> #include <atomic> #include <limits> #include "src/trap-handler/trap-handler-internal.h" #include "src/trap-handler/trap-handler.h" namespace { size_t gNextCodeObject = …; #ifdef ENABLE_SLOW_DCHECKS constexpr bool kEnableSlowChecks = true; #else constexpr bool kEnableSlowChecks = …; #endif } // namespace namespace v8 { namespace internal { namespace trap_handler { constexpr size_t kInitialCodeObjectSize = …; constexpr size_t kCodeObjectGrowthFactor = …; constexpr size_t HandlerDataSize(size_t num_protected_instructions) { … } namespace { #ifdef DEBUG bool IsDisjoint(const CodeProtectionInfo* a, const CodeProtectionInfo* b) { … } #endif // Verify that the code range does not overlap any that have already been // registered. void VerifyCodeRangeIsDisjoint(const CodeProtectionInfo* code_info) { … } void ValidateCodeObjects() { … } } // namespace CodeProtectionInfo* CreateHandlerData( uintptr_t base, size_t size, size_t num_protected_instructions, const ProtectedInstructionData* protected_instructions) { … } int RegisterHandlerData( uintptr_t base, size_t size, size_t num_protected_instructions, const ProtectedInstructionData* protected_instructions) { … } void ReleaseHandlerData(int index) { … } void SetV8SandboxBaseAndSize(uintptr_t base, size_t size) { … } int* GetThreadInWasmThreadLocalAddress() { … } size_t GetRecoveredTrapCount() { … } #if !V8_TRAP_HANDLER_SUPPORTED // This version is provided for systems that do not support trap handlers. // Otherwise, the correct one should be implemented in the appropriate // platform-specific handler-outside.cc. bool RegisterDefaultTrapHandler() { return false; } void RemoveTrapHandler() {} #endif bool g_is_trap_handler_enabled{ … }; std::atomic<bool> g_can_enable_trap_handler{ … }; bool EnableTrapHandler(bool use_v8_handler) { … } void SetLandingPad(uintptr_t landing_pad) { … } } // namespace trap_handler } // namespace internal } // namespace v8
Codebase Browser
chromium