Fix file permissions: set executable bit

[nativeclient.git] / service_runtime / nacl_syscall_hook.c

/*
 * Copyright 2008, Google Inc.
 * All rights reserved.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are
 * met:
 * 
 *     * Redistributions of source code must retain the above copyright
 * notice, this list of conditions and the following disclaimer.
 *     * Redistributions in binary form must reproduce the above
 * copyright notice, this list of conditions and the following disclaimer
 * in the documentation and/or other materials provided with the
 * distribution.
 *     * Neither the name of Google Inc. nor the names of its
 * contributors may be used to endorse or promote products derived from
 * this software without specific prior written permission.
 * 
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

/*
 * NaCl service run-time.
 */

#include "native_client/include/portability.h"
#include "native_client/include/nacl_platform.h"

#include <stdlib.h>
#include <errno.h>
#if NACL_WINDOWS
/* TODO: IS THIS STILL NEEDED FOR WINDOWS ??? */
#include <sys/timeb.h>
#endif
#include <fcntl.h>
#include <time.h>

#include "native_client/service_runtime/nacl_globals.h"
#include "native_client/service_runtime/nacl_config.h"
#include "native_client/service_runtime/nacl_log.h"
#include "native_client/service_runtime/sel_ldr.h"
#include "native_client/service_runtime/nacl_switch_to_app.h"
#include "native_client/service_runtime/nacl_syscall_handlers.h"

#include "native_client/service_runtime/include/sys/errno.h"
#include "native_client/service_runtime/include/bits/nacl_syscalls.h"

/*
 * Simple RPC support.  The default socket file descriptor is invalid.
 */
int NaClSrpcFileDescriptor = -1;



NORETURN void NaClSyscallCSegHook(int32_t ldt_ix)
{
  struct NaClAppThread      *natp = nacl_thread[ldt_ix];
  struct NaClApp            *nap = natp->nap;
  struct NaClThreadContext  *user = &natp->user;
  uintptr_t                 tramp_addr;
  uint32_t                  tramp_ret;
  uint32_t                  aligned_tramp_ret;
  uint32_t                  sysnum;

  /* esp must be okay for control to have gotten here */
#if !BENCHMARK
  NaClLog(4, "Entered NaClSyscallCSegHook\n");
  NaClLog(4, "user esp 0x%08x\n", user->esp);
#endif
  /*
   * on user stack:
   *  esp+0:  retaddr from lcall
   *  esp+4:  code seg from lcall
   *  esp+8:  retaddr from syscall wrapper
   *  esp+c:  ...
   */
  tramp_addr = NaClUserToSys(nap, user->esp);
  tramp_ret = *(uint32_t *) tramp_addr;
  tramp_ret = NaClUserToSys(nap, tramp_ret);
  /*
   * return addr could have been tampered with by another thread, but
   * the only result would be a bad sysnum.
   */
  sysnum = (tramp_ret - (nap->mem_start + NACL_SYSCALL_START_ADDR))
      >> NACL_SYSCALL_BLOCK_SHIFT;

#if !BENCHMARK
  NaClLog(4, "system call %d\n", sysnum);
#endif
  /*
   * keep tramp_ret in user addr; do not bother to ensure tramp_addr +
   * 8 is valid, since even if we loaded two NaClApps next to each
   * other this would just load the trampoline code, or hit the
   * inaccessible page for NULL pointer detection (once we get that
   * implemented).  if it is not a valid address, we would just crash.
   */
  tramp_ret = *(uint32_t *) (tramp_addr + 8);
  if (0 != nap->xlate_base) {
    /*
     * ensure that tramp_ret value is ok.  no need to ensure that this
     * is in the app's address space, since the syscall return will
     * just result in a fault after we reconstitute the sandbox and
     * attempt to pass control to this address.
     */
    aligned_tramp_ret = tramp_ret & ~(nap->align_boundary - 1);
    if (tramp_ret != aligned_tramp_ret) {
      NaClLog(LOG_FATAL, ("NaClSyscallCSegHook: tramp_ret infinite loop:"
                          " %08x != %08x\nMake sure NaCl SDK and sel_ldr"
                          " agree on alignment (ELF header of NaCl app"
                          " claims alignment is %d).\n"),
              tramp_ret, aligned_tramp_ret, nap->align_boundary);
    }
    tramp_ret = aligned_tramp_ret;
  }

  user->esp += 0xc;  /* call, lcall */
  if (sysnum >= NACL_MAX_SYSCALLS) {
    NaClLog(2, "INVALID system call %d\n", sysnum);
    natp->sysret = -NACL_ABI_EINVAL;
  } else {
#if !BENCHMARK
    NaClLog(4, "making system call %d, handler 0x%08x\n",
            sysnum, (uintptr_t) nacl_syscall[sysnum].handler);
#endif

    natp->x_esp = (uint32_t *) (tramp_addr + 0xc);
    natp->sysret = (*nacl_syscall[sysnum].handler)(natp);
  }
#if !BENCHMARK
  NaClLog(4, "returning from system call %d, return value %d (0x%x)\n",
          sysnum, natp->sysret, natp->sysret);

  NaClLog(4, "return target 0x%08x\n", tramp_ret);
  NaClLog(4, "user esp 0x%08x\n", user->esp);
#endif
  NaClSwitchToApp(natp, tramp_ret);
 /* NOTREACHED */

  fprintf(stderr, "NORETURN NaClSwitchToApp returned!?!\n");
  abort();
}