| blob | cf61137203a90381e7f60d13436cf89aec8904ea |
2 /*--------------------------------------------------------------------*/
3 /*--- Implementation of POSIX signals. m_signals.c ---*/
4 /*--------------------------------------------------------------------*/
6 /*
7 This file is part of Valgrind, a dynamic binary instrumentation
8 framework.
10 Copyright (C) 2000-2013 Julian Seward
11 jseward@acm.org
13 This program is free software; you can redistribute it and/or
14 modify it under the terms of the GNU General Public License as
15 published by the Free Software Foundation; either version 2 of the
16 License, or (at your option) any later version.
18 This program is distributed in the hope that it will be useful, but
19 WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 General Public License for more details.
23 You should have received a copy of the GNU General Public License
24 along with this program; if not, write to the Free Software
25 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
26 02111-1307, USA.
28 The GNU General Public License is contained in the file COPYING.
29 */
31 /*
32 Signal handling.
34 There are 4 distinct classes of signal:
36 1. Synchronous, instruction-generated (SIGILL, FPE, BUS, SEGV and
37 TRAP): these are signals as a result of an instruction fault. If
38 we get one while running client code, then we just do the
39 appropriate thing. If it happens while running Valgrind code, then
40 it indicates a Valgrind bug. Note that we "manually" implement
41 automatic stack growth, such that if a fault happens near the
42 client process stack, it is extended in the same way the kernel
43 would, and the fault is never reported to the client program.
45 2. Asynchronous variants of the above signals: If the kernel tries
46 to deliver a sync signal while it is blocked, it just kills the
47 process. Therefore, we can't block those signals if we want to be
48 able to report on bugs in Valgrind. This means that we're also
49 open to receiving those signals from other processes, sent with
50 kill. We could get away with just dropping them, since they aren't
51 really signals that processes send to each other.
53 3. Synchronous, general signals. If a thread/process sends itself
54 a signal with kill, its expected to be synchronous: ie, the signal
55 will have been delivered by the time the syscall finishes.
57 4. Asynchronous, general signals. All other signals, sent by
58 another process with kill. These are generally blocked, except for
59 two special cases: we poll for them each time we're about to run a
60 thread for a time quanta, and while running blocking syscalls.
63 In addition, we reserve one signal for internal use: SIGVGKILL.
64 SIGVGKILL is used to terminate threads. When one thread wants
65 another to exit, it will set its exitreason and send it SIGVGKILL
66 if it appears to be blocked in a syscall.
69 We use a kernel thread for each application thread. When the
70 thread allows itself to be open to signals, it sets the thread
71 signal mask to what the client application set it to. This means
72 that we get the kernel to do all signal routing: under Valgrind,
73 signals get delivered in the same way as in the non-Valgrind case
74 (the exception being for the sync signal set, since they're almost
75 always unblocked).
76 */
78 /*
79 Some more details...
81 First off, we take note of the client's requests (via sys_sigaction
82 and sys_sigprocmask) to set the signal state (handlers for each
83 signal, which are process-wide, + a mask for each signal, which is
84 per-thread). This info is duly recorded in the SCSS (static Client
85 signal state) in m_signals.c, and if the client later queries what
86 the state is, we merely fish the relevant info out of SCSS and give
87 it back.
89 However, we set the real signal state in the kernel to something
90 entirely different. This is recorded in SKSS, the static Kernel
91 signal state. What's nice (to the extent that anything is nice w.r.t
92 signals) is that there's a pure function to calculate SKSS from SCSS,
93 calculate_SKSS_from_SCSS. So when the client changes SCSS then we
94 recompute the associated SKSS and apply any changes from the previous
95 SKSS through to the kernel.
97 Now, that said, the general scheme we have now is, that regardless of
98 what the client puts into the SCSS (viz, asks for), what we would
99 like to do is as follows:
101 (1) run code on the virtual CPU with all signals blocked
103 (2) at convenient moments for us (that is, when the VCPU stops, and
104 control is back with the scheduler), ask the kernel "do you have
105 any signals for me?" and if it does, collect up the info, and
106 deliver them to the client (by building sigframes).
108 And that's almost what we do. The signal polling is done by
109 VG_(poll_signals), which calls through to VG_(sigtimedwait_zero) to
110 do the dirty work. (of which more later).
112 By polling signals, rather than catching them, we get to deal with
113 them only at convenient moments, rather than having to recover from
114 taking a signal while generated code is running.
116 Now unfortunately .. the above scheme only works for so-called async
117 signals. An async signal is one which isn't associated with any
118 particular instruction, eg Control-C (SIGINT). For those, it doesn't
119 matter if we don't deliver the signal to the client immediately; it
120 only matters that we deliver it eventually. Hence polling is OK.
122 But the other group -- sync signals -- are all related by the fact
123 that they are various ways for the host CPU to fail to execute an
124 instruction: SIGILL, SIGSEGV, SIGFPU. And they can't be deferred,
125 because obviously if a host instruction can't execute, well then we
126 have to immediately do Plan B, whatever that is.
128 So the next approximation of what happens is:
130 (1) run code on vcpu with all async signals blocked
132 (2) at convenient moments (when NOT running the vcpu), poll for async
133 signals.
135 (1) and (2) together imply that if the host does deliver a signal to
136 async_signalhandler while the VCPU is running, something's
137 seriously wrong.
139 (3) when running code on vcpu, don't block sync signals. Instead
140 register sync_signalhandler and catch any such via that. Of
141 course, that means an ugly recovery path if we do -- the
142 sync_signalhandler has to longjump, exiting out of the generated
143 code, and the assembly-dispatcher thingy that runs it, and gets
144 caught in m_scheduler, which then tells m_signals to deliver the
145 signal.
147 Now naturally (ha ha) even that might be tolerable, but there's
148 something worse: dealing with signals delivered to threads in
149 syscalls.
151 Obviously from the above, SKSS's signal mask (viz, what we really run
152 with) is way different from SCSS's signal mask (viz, what the client
153 thread thought it asked for). (eg) It may well be that the client
154 did not block control-C, so that it just expects to drop dead if it
155 receives ^C whilst blocked in a syscall, but by default we are
156 running with all async signals blocked, and so that signal could be
157 arbitrarily delayed, or perhaps even lost (not sure).
159 So what we have to do, when doing any syscall which SfMayBlock, is to
160 quickly switch in the SCSS-specified signal mask just before the
161 syscall, and switch it back just afterwards, and hope that we don't
162 get caught up in some wierd race condition. This is the primary
163 purpose of the ultra-magical pieces of assembly code in
164 coregrind/m_syswrap/syscall-<plat>.S
166 -----------
168 The ways in which V can come to hear of signals that need to be
169 forwarded to the client as are follows:
171 sync signals: can arrive at any time whatsoever. These are caught
172 by sync_signalhandler
174 async signals:
176 if running generated code
177 then these are blocked, so we don't expect to catch them in
178 async_signalhandler
180 else
181 if thread is blocked in a syscall marked SfMayBlock
182 then signals may be delivered to async_sighandler, since we
183 temporarily unblocked them for the duration of the syscall,
184 by using the real (SCSS) mask for this thread
186 else we're doing misc housekeeping activities (eg, making a translation,
187 washing our hair, etc). As in the normal case, these signals are
188 blocked, but we can and do poll for them using VG_(poll_signals).
190 Now, re VG_(poll_signals), it polls the kernel by doing
191 VG_(sigtimedwait_zero). This is trivial on Linux, since it's just a
192 syscall. But on Darwin and AIX, we have to cobble together the
193 functionality in a tedious, longwinded and probably error-prone way.
195 Finally, if a gdb is debugging the process under valgrind,
196 the signal can be ignored if gdb tells this. So, before resuming the
197 scheduler/delivering the signal, a call to VG_(gdbserver_report_signal)
198 is done. If this returns True, the signal is delivered.
199 */
232 /* ---------------------------------------------------------------------
233 Forwards decls.
234 ------------------------------------------------------------------ */
243 /* Maximum usable signal. */
246 #define N_QUEUED_SIGNALS 8
249 Int next;
253 /* ------ Macros for pulling stuff out of ucontexts ------ */
255 /* Q: what does VG_UCONTEXT_SYSCALL_SYSRES do? A: let's suppose the
256 machine context (uc) reflects the situation that a syscall had just
257 completed, quite literally -- that is, that the program counter was
258 now at the instruction following the syscall. (or we're slightly
259 downstream, but we're sure no relevant register has yet changed
260 value.) Then VG_UCONTEXT_SYSCALL_SYSRES returns a SysRes reflecting
261 the result of the syscall; it does this by fishing relevant bits of
262 the machine state out of the uc. Of course if the program counter
263 was somewhere else entirely then the result is likely to be
264 meaningless, so the caller of VG_UCONTEXT_SYSCALL_SYSRES has to be
265 very careful to pay attention to the results only when it is sure
266 that the said constraint on the program counter is indeed valid. */
268 #if defined(VGP_x86_linux)
269 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_mcontext.eip)
270 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.esp)
271 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
273 VG_(mk_SysRes_x86_linux)( (uc)->uc_mcontext.eax )
274 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
275 { (srP)->r_pc = (ULong)((uc)->uc_mcontext.eip); \
276 (srP)->r_sp = (ULong)((uc)->uc_mcontext.esp); \
277 (srP)->misc.X86.r_ebp = (uc)->uc_mcontext.ebp; \
278 }
280 #elif defined(VGP_amd64_linux)
281 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_mcontext.rip)
282 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.rsp)
283 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
285 VG_(mk_SysRes_amd64_linux)( (uc)->uc_mcontext.rax )
286 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
287 { (srP)->r_pc = (uc)->uc_mcontext.rip; \
288 (srP)->r_sp = (uc)->uc_mcontext.rsp; \
289 (srP)->misc.AMD64.r_rbp = (uc)->uc_mcontext.rbp; \
290 }
292 #elif defined(VGP_ppc32_linux)
293 /* Comments from Paul Mackerras 25 Nov 05:
295 > I'm tracking down a problem where V's signal handling doesn't
296 > work properly on a ppc440gx running 2.4.20. The problem is that
297 > the ucontext being presented to V's sighandler seems completely
298 > bogus.
300 > V's kernel headers and hence ucontext layout are derived from
301 > 2.6.9. I compared include/asm-ppc/ucontext.h from 2.4.20 and
302 > 2.6.13.
304 > Can I just check my interpretation: the 2.4.20 one contains the
305 > uc_mcontext field in line, whereas the 2.6.13 one has a pointer
306 > to said struct? And so if V is using the 2.6.13 struct then a
307 > 2.4.20 one will make no sense to it.
309 Not quite... what is inline in the 2.4.20 version is a
310 sigcontext_struct, not an mcontext. The sigcontext looks like
311 this:
313 struct sigcontext_struct {
314 unsigned long _unused[4];
315 int signal;
316 unsigned long handler;
317 unsigned long oldmask;
318 struct pt_regs *regs;
319 };
321 The regs pointer of that struct ends up at the same offset as the
322 uc_regs of the 2.6 struct ucontext, and a struct pt_regs is the
323 same as the mc_gregs field of the mcontext. In fact the integer
324 regs are followed in memory by the floating point regs on 2.4.20.
326 Thus if you are using the 2.6 definitions, it should work on 2.4.20
327 provided that you go via uc->uc_regs rather than looking in
328 uc->uc_mcontext directly.
330 There is another subtlety: 2.4.20 doesn't save the vector regs when
331 delivering a signal, and 2.6.x only saves the vector regs if the
332 process has ever used an altivec instructions. If 2.6.x does save
333 the vector regs, it sets the MSR_VEC bit in
334 uc->uc_regs->mc_gregs[PT_MSR], otherwise it clears it. That bit
335 will always be clear under 2.4.20. So you can use that bit to tell
336 whether uc->uc_regs->mc_vregs is valid. */
337 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_regs->mc_gregs[VKI_PT_NIP])
338 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_regs->mc_gregs[VKI_PT_R1])
339 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
341 VG_(mk_SysRes_ppc32_linux)( \
342 (uc)->uc_regs->mc_gregs[VKI_PT_R3], \
343 (((uc)->uc_regs->mc_gregs[VKI_PT_CCR] >> 28) & 1) \
344 )
345 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
346 { (srP)->r_pc = (ULong)((uc)->uc_regs->mc_gregs[VKI_PT_NIP]); \
347 (srP)->r_sp = (ULong)((uc)->uc_regs->mc_gregs[VKI_PT_R1]); \
348 (srP)->misc.PPC32.r_lr = (uc)->uc_regs->mc_gregs[VKI_PT_LNK]; \
349 }
351 #elif defined(VGP_ppc64be_linux) || defined(VGP_ppc64le_linux)
352 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_mcontext.gp_regs[VKI_PT_NIP])
353 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.gp_regs[VKI_PT_R1])
354 /* Dubious hack: if there is an error, only consider the lowest 8
355 bits of r3. memcheck/tests/post-syscall shows a case where an
356 interrupted syscall should have produced a ucontext with 0x4
357 (VKI_EINTR) in r3 but is in fact producing 0x204. */
358 /* Awaiting clarification from PaulM. Evidently 0x204 is
359 ERESTART_RESTARTBLOCK, which shouldn't have made it into user
360 space. */
362 {
367 }
368 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
369 { (srP)->r_pc = (uc)->uc_mcontext.gp_regs[VKI_PT_NIP]; \
370 (srP)->r_sp = (uc)->uc_mcontext.gp_regs[VKI_PT_R1]; \
371 (srP)->misc.PPC64.r_lr = (uc)->uc_mcontext.gp_regs[VKI_PT_LNK]; \
372 }
374 #elif defined(VGP_arm_linux)
375 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_mcontext.arm_pc)
376 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.arm_sp)
377 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
379 VG_(mk_SysRes_arm_linux)( (uc)->uc_mcontext.arm_r0 )
380 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
381 { (srP)->r_pc = (uc)->uc_mcontext.arm_pc; \
382 (srP)->r_sp = (uc)->uc_mcontext.arm_sp; \
383 (srP)->misc.ARM.r14 = (uc)->uc_mcontext.arm_lr; \
384 (srP)->misc.ARM.r12 = (uc)->uc_mcontext.arm_ip; \
385 (srP)->misc.ARM.r11 = (uc)->uc_mcontext.arm_fp; \
386 (srP)->misc.ARM.r7 = (uc)->uc_mcontext.arm_r7; \
387 }
389 #elif defined(VGP_arm64_linux)
390 # define VG_UCONTEXT_INSTR_PTR(uc) ((UWord)((uc)->uc_mcontext.pc))
391 # define VG_UCONTEXT_STACK_PTR(uc) ((UWord)((uc)->uc_mcontext.sp))
392 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
394 VG_(mk_SysRes_arm64_linux)( (uc)->uc_mcontext.regs[0] )
395 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
396 { (srP)->r_pc = (uc)->uc_mcontext.pc; \
397 (srP)->r_sp = (uc)->uc_mcontext.sp; \
398 (srP)->misc.ARM64.x29 = (uc)->uc_mcontext.regs[29]; \
399 (srP)->misc.ARM64.x30 = (uc)->uc_mcontext.regs[30]; \
400 }
402 #elif defined(VGP_x86_darwin)
409 }
415 }
417 UWord scclass ) {
418 /* this is complicated by the problem that there are 3 different
419 kinds of syscalls, each with its own return convention.
420 NB: scclass is a host word, hence UWord is good for both
421 amd64-darwin and x86-darwin */
425 /* duplicates logic in m_syswrap.getSyscallStatusFromGuestState */
445 }
448 }
458 }
460 #elif defined(VGP_amd64_darwin)
467 }
473 }
475 UWord scclass ) {
476 /* This is copied from the x86-darwin case. I'm not sure if it
477 is correct. */
481 /* duplicates logic in m_syswrap.getSyscallStatusFromGuestState */
501 }
504 }
514 }
516 #elif defined(VGP_s390x_linux)
518 # define VG_UCONTEXT_INSTR_PTR(uc) ((uc)->uc_mcontext.regs.psw.addr)
519 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.regs.gprs[15])
520 # define VG_UCONTEXT_FRAME_PTR(uc) ((uc)->uc_mcontext.regs.gprs[11])
521 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
522 VG_(mk_SysRes_s390x_linux)((uc)->uc_mcontext.regs.gprs[2])
523 # define VG_UCONTEXT_LINK_REG(uc) ((uc)->uc_mcontext.regs.gprs[14])
525 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
526 { (srP)->r_pc = (ULong)((uc)->uc_mcontext.regs.psw.addr); \
527 (srP)->r_sp = (ULong)((uc)->uc_mcontext.regs.gprs[15]); \
528 (srP)->misc.S390X.r_fp = (uc)->uc_mcontext.regs.gprs[11]; \
529 (srP)->misc.S390X.r_lr = (uc)->uc_mcontext.regs.gprs[14]; \
530 }
532 #elif defined(VGP_mips32_linux)
533 # define VG_UCONTEXT_INSTR_PTR(uc) ((UWord)(((uc)->uc_mcontext.sc_pc)))
534 # define VG_UCONTEXT_STACK_PTR(uc) ((UWord)((uc)->uc_mcontext.sc_regs[29]))
535 # define VG_UCONTEXT_FRAME_PTR(uc) ((uc)->uc_mcontext.sc_regs[30])
536 # define VG_UCONTEXT_SYSCALL_NUM(uc) ((uc)->uc_mcontext.sc_regs[2])
537 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
539 VG_(mk_SysRes_mips32_linux)( (uc)->uc_mcontext.sc_regs[2], \
540 (uc)->uc_mcontext.sc_regs[3], \
541 (uc)->uc_mcontext.sc_regs[7])
543 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
544 { (srP)->r_pc = (uc)->uc_mcontext.sc_pc; \
545 (srP)->r_sp = (uc)->uc_mcontext.sc_regs[29]; \
546 (srP)->misc.MIPS32.r30 = (uc)->uc_mcontext.sc_regs[30]; \
547 (srP)->misc.MIPS32.r31 = (uc)->uc_mcontext.sc_regs[31]; \
548 (srP)->misc.MIPS32.r28 = (uc)->uc_mcontext.sc_regs[28]; \
549 }
551 #elif defined(VGP_mips64_linux)
552 # define VG_UCONTEXT_INSTR_PTR(uc) (((uc)->uc_mcontext.sc_pc))
553 # define VG_UCONTEXT_STACK_PTR(uc) ((uc)->uc_mcontext.sc_regs[29])
554 # define VG_UCONTEXT_FRAME_PTR(uc) ((uc)->uc_mcontext.sc_regs[30])
555 # define VG_UCONTEXT_SYSCALL_NUM(uc) ((uc)->uc_mcontext.sc_regs[2])
556 # define VG_UCONTEXT_SYSCALL_SYSRES(uc) \
558 VG_(mk_SysRes_mips64_linux)((uc)->uc_mcontext.sc_regs[2], \
559 (uc)->uc_mcontext.sc_regs[3], \
560 (uc)->uc_mcontext.sc_regs[7])
562 # define VG_UCONTEXT_TO_UnwindStartRegs(srP, uc) \
563 { (srP)->r_pc = (uc)->uc_mcontext.sc_pc; \
564 (srP)->r_sp = (uc)->uc_mcontext.sc_regs[29]; \
565 (srP)->misc.MIPS64.r30 = (uc)->uc_mcontext.sc_regs[30]; \
566 (srP)->misc.MIPS64.r31 = (uc)->uc_mcontext.sc_regs[31]; \
567 (srP)->misc.MIPS64.r28 = (uc)->uc_mcontext.sc_regs[28]; \
568 }
570 #else
571 # error Unknown platform
572 #endif
575 /* ------ Macros for pulling stuff out of siginfos ------ */
577 /* These macros allow use of uniform names when working with
578 both the Linux and AIX vki definitions. */
579 #if defined(VGO_linux)
580 # define VKI_SIGINFO_si_addr _sifields._sigfault._addr
581 # define VKI_SIGINFO_si_pid _sifields._kill._pid
582 #elif defined(VGO_darwin)
583 # define VKI_SIGINFO_si_addr si_addr
584 # define VKI_SIGINFO_si_pid si_pid
585 #else
586 # error Unknown OS
587 #endif
590 /* ---------------------------------------------------------------------
591 HIGH LEVEL STUFF TO DO WITH SIGNALS: POLICY (MOSTLY)
592 ------------------------------------------------------------------ */
594 /* ---------------------------------------------------------------------
595 Signal state for this process.
596 ------------------------------------------------------------------ */
599 /* Base-ment of these arrays[_VKI_NSIG].
601 Valid signal numbers are 1 .. _VKI_NSIG inclusive.
602 Rather than subtracting 1 for indexing these arrays, which
603 is tedious and error-prone, they are simply dimensioned 1 larger,
604 and entry [0] is not used.
605 */
608 /* -----------------------------------------------------
609 Static client signal state (SCSS). This is the state
610 that the client thinks it has the kernel in.
611 SCSS records verbatim the client's settings. These
612 are mashed around only when SKSS is calculated from it.
613 -------------------------------------------------- */
615 typedef
618 client's handler */
619 UInt scss_flags;
620 vki_sigset_t scss_mask;
623 /* re _restorer and _sa_tramp, we merely record the values
624 supplied when the client does 'sigaction' and give them back
625 when requested. Otherwise they are simply ignored. */
626 }
627 SCSS_Per_Signal;
629 typedef
631 /* per-signal info */
634 /* Additional elements to SCSS not stored here:
635 - for each thread, the thread's blocking mask
636 - for each thread in WaitSIG, the set of waited-on sigs
637 */
638 }
639 SCSS;
644 /* -----------------------------------------------------
645 Static kernel signal state (SKSS). This is the state
646 that we have the kernel in. It is computed from SCSS.
647 -------------------------------------------------- */
649 /* Let's do:
650 sigprocmask assigns to all thread masks
651 so that at least everything is always consistent
652 Flags:
653 SA_SIGINFO -- we always set it, and honour it for the client
654 SA_NOCLDSTOP -- passed to kernel
655 SA_ONESHOT or SA_RESETHAND -- pass through
656 SA_RESTART -- we observe this but set our handlers to always restart
657 SA_NOMASK or SA_NODEFER -- we observe this, but our handlers block everything
658 SA_ONSTACK -- pass through
659 SA_NOCLDWAIT -- pass through
660 */
663 typedef
666 or ptr to our handler */
667 UInt skss_flags;
668 /* There is no skss_mask, since we know that we will always ask
669 for all signals to be blocked in our sighandlers. */
670 /* Also there is no skss_restorer. */
671 }
672 SKSS_Per_Signal;
674 typedef
677 }
678 SKSS;
682 /* returns True if signal is to be ignored.
683 To check this, possibly call gdbserver with tid. */
685 {
690 }
692 /* ---------------------------------------------------------------------
693 Compute the SKSS required by the current SCSS.
694 ------------------------------------------------------------------ */
696 static
698 {
699 Int sig;
706 }
707 }
709 /* This is the core, clever bit. Computation is as follows:
711 For each signal
712 handler = if client has a handler, then our handler
713 else if client is DFL, then our handler as well
714 else (client must be IGN)
715 then hander is IGN
716 */
717 static
719 {
720 Int sig;
721 UInt scss_flags;
722 UInt skss_flags;
737 /* For these, we always want to catch them and report, even
738 if the client code doesn't. */
743 /* Let the kernel handle SIGCONT unless the client is actually
744 catching it. */
748 /* For signals which are have a default action of Ignore,
749 only set a handler if the client has set a signal handler.
750 Otherwise the kernel will interrupt a syscall which
751 wouldn't have otherwise been interrupted. */
756 else
761 // VKI_SIGVG* are runtime variables, so we can't make them
762 // cases in the switch, so we handle them in the 'default' case.
768 else
770 }
772 }
774 /* Flags */
778 /* SA_NOCLDSTOP, SA_NOCLDWAIT: pass to kernel */
781 /* SA_ONESHOT: ignore client setting */
783 /* SA_RESTART: ignore client setting and always set it for us.
784 Though we never rely on the kernel to restart a
785 syscall, we observe whether it wanted to restart the syscall
786 or not, which is needed by
787 VG_(fixup_guest_state_after_syscall_interrupted) */
790 /* SA_NOMASK: ignore it */
792 /* SA_ONSTACK: client setting is irrelevant here */
793 /* We don't set a signal stack, so ignore */
795 /* always ask for SA_SIGINFO */
798 /* use our own restorer */
801 /* Create SKSS entry for this signal. */
804 else
808 }
810 /* Sanity checks. */
816 }
819 /* ---------------------------------------------------------------------
820 After a possible SCSS change, update SKSS and the kernel itself.
821 ------------------------------------------------------------------ */
823 // We need two levels of macro-expansion here to convert __NR_rt_sigreturn
824 // to a number before converting it to a string... sigh.
827 #if defined(VGP_x86_linux)
828 # define _MY_SIGRETURN(name) \
836 #elif defined(VGP_amd64_linux)
837 # define _MY_SIGRETURN(name) \
845 #elif defined(VGP_ppc32_linux)
846 # define _MY_SIGRETURN(name) \
854 #elif defined(VGP_ppc64be_linux)
855 # define _MY_SIGRETURN(name) \
869 #elif defined(VGP_ppc64le_linux)
870 /* Little Endian supports ELF version 2. In the future, it may
871 * support other versions.
872 */
873 # define _MY_SIGRETURN(name) \
886 #elif defined(VGP_arm_linux)
887 # define _MY_SIGRETURN(name) \
895 #elif defined(VGP_arm64_linux)
896 # define _MY_SIGRETURN(name) \
904 #elif defined(VGP_x86_darwin)
905 # define _MY_SIGRETURN(name) \
910 "int $0x80"
912 #elif defined(VGP_amd64_darwin)
913 // DDD: todo
914 # define _MY_SIGRETURN(name) \
920 #elif defined(VGP_s390x_linux)
921 # define _MY_SIGRETURN(name) \
928 #elif defined(VGP_mips32_linux)
929 # define _MY_SIGRETURN(name) \
936 #elif defined(VGP_mips64_linux)
937 # define _MY_SIGRETURN(name) \
944 #else
945 # error Unknown platform
946 #endif
948 #define MY_SIGRETURN(name) _MY_SIGRETURN(name)
951 );
955 {
957 SKSS skss_old;
958 vki_sigaction_toK_t ksa;
959 vki_sigaction_fromK_t ksa_old;
961 /* Remember old SKSS and calculate new one. */
965 /* Compare the new SKSS entries vs the old ones, and update kernel
966 where they differ. */
969 /* Trying to do anything with SIGKILL is pointless; just ignore
970 it. */
979 /* no difference */
981 }
985 # if !defined(VGP_ppc32_linux) && \
986 !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin) && \
987 !defined(VGP_mips32_linux)
989 # endif
990 /* Re above ifdef (also the assertion below), PaulM says:
991 The sa_restorer field is not used at all on ppc. Glibc
992 converts the sigaction you give it into a kernel sigaction,
993 but it doesn't put anything in the sa_restorer field.
994 */
996 /* block all signals in handler */
1012 /* Since we got the old sigaction more or less for free, might
1013 as well extract the maximum sanity-check value from it. */
1019 # if !defined(VGP_ppc32_linux) && \
1020 !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin) && \
1021 !defined(VGP_mips32_linux) && !defined(VGP_mips64_linux)
1023 # endif
1027 }
1028 }
1029 }
1032 /* ---------------------------------------------------------------------
1033 Update/query SCSS in accordance with client requests.
1034 ------------------------------------------------------------------ */
1036 /* Logic for this alt-stack stuff copied directly from do_sigaltstack
1037 in kernel/signal.[ch] */
1039 /* True if we are on the alternate signal stack. */
1041 {
1045 }
1048 {
1052 ? VKI_SS_DISABLE
1054 }
1058 {
1059 Addr m_SP;
1078 }
1083 }
1088 }
1094 }
1099 }
1100 }
1102 }
1108 {
1115 /* Rule out various error conditions. The aim is to ensure that if
1116 when the call is passed to the kernel it will definitely
1117 succeed. */
1119 /* Reject out-of-range signal numbers. */
1122 /* don't let them use our signals */
1124 && new_act
1129 /* Reject attempts to set a handler (or set ignore) for SIGKILL. */
1131 && new_act
1135 /* If the client supplied non-NULL old_act, copy the relevant SCSS
1136 entry into it. */
1141 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
1143 # endif
1144 }
1146 /* And now copy new SCSS entry from new_act. */
1153 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
1155 # endif
1158 # if defined(VGP_x86_darwin) || defined(VGP_amd64_darwin)
1160 # endif
1164 }
1166 /* All happy bunnies ... */
1169 }
1172 bad_signo:
1175 }
1178 bad_signo_reserved:
1184 }
1187 bad_sigkill_or_sigstop:
1193 }
1195 }
1198 static
1202 {
1216 }
1217 }
1219 static
1221 {
1228 {
1229 # if _VKI_NSIG_BPW == 32
1232 # elif _VKI_NSIG_BPW == 64
1235 # else
1237 # endif
1238 }
1241 }
1243 /*
1244 This updates the thread's signal mask. There's no such thing as a
1245 process-wide signal mask.
1247 Note that the thread signal masks are an implicit part of SCSS,
1248 which is why this routine is allowed to mess with them.
1249 */
1250 static
1252 Int how,
1255 {
1264 /* Just do this thread. */
1270 }
1276 }
1277 }
1281 Int how,
1284 {
1296 }
1297 }
1300 /* ---------------------------------------------------------------------
1301 LOW LEVEL STUFF TO DO WITH SIGNALS: IMPLEMENTATION
1302 ------------------------------------------------------------------ */
1304 /* ---------------------------------------------------------------------
1305 Handy utilities to block/restore all host signals.
1306 ------------------------------------------------------------------ */
1308 /* Block all host signals, dumping the old mask in *saved_mask. */
1310 {
1311 Int ret;
1312 vki_sigset_t block_procmask;
1317 }
1319 /* Restore the blocking mask using the supplied saved one. */
1321 {
1322 Int ret;
1325 }
1328 {
1333 }
1335 }
1337 /* ---------------------------------------------------------------------
1338 The signal simulation proper. A simplified version of what the
1339 Linux kernel does.
1340 ------------------------------------------------------------------ */
1342 /* Set up a stack frame (VgSigContext) for the client's signal
1343 handler. */
1344 static
1347 {
1348 Addr esp_top_of_frame;
1359 }
1364 already using. Logic from get_sigframe in
1365 arch/i386/kernel/signal.c. */
1367 ) {
1368 esp_top_of_frame
1377 /* Signal delivery to tools */
1383 /* Signal delivery to tools */
1385 }
1390 /* This may fail if the client stack is busted; if that happens,
1391 the whole process will exit rather than simply calling the
1392 signal handler. */
1398 }
1402 {
1421 # if defined(VKI_SIGSTKFLT)
1423 # endif
1437 # if defined(VKI_SIGPWR)
1439 # endif
1440 # if defined(VKI_SIGUNUSED)
1442 # endif
1444 # if defined(VKI_SIGRTMIN) && defined(VKI_SIGRTMAX)
1448 # endif
1453 }
1454 }
1456 /* Hit ourselves with a signal using the default handler */
1458 {
1459 Int r;
1462 vki_sigaction_fromK_t origsa;
1466 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
1468 # endif
1478 # if defined(VGO_linux)
1479 /* This sometimes fails with EPERM on Darwin. I don't know why. */
1481 # endif
1486 }
1488 // The si_code describes where the signal came from. Some come from the
1489 // kernel, eg.: seg faults, illegal opcodes. Some come from the user, eg.:
1490 // from kill() (SI_USER), or timer_settime() (SI_TIMER), or an async I/O
1491 // request (SI_ASYNCIO). There's lots of implementation-defined leeway in
1492 // POSIX, but the user vs. kernal distinction is what we want here. We also
1493 // pass in some other details that can help when si_code is unreliable.
1495 {
1496 # if defined(VGO_linux)
1497 // On Linux, SI_USER is zero, negative values are from the user, positive
1498 // values are from the kernel. There are SI_FROMUSER and SI_FROMKERNEL
1499 // macros but we don't use them here because other platforms don't have
1500 // them.
1503 # elif defined(VGO_darwin)
1504 // On Darwin 9.6.0, the si_code is completely unreliable. It should be the
1505 // case that 0 means "user", and >0 means "kernel". But:
1506 // - For SIGSEGV, it seems quite reliable.
1507 // - For SIGBUS, it's always 2.
1508 // - For SIGFPE, it's often 0, even for kernel ones (eg.
1509 // div-by-integer-zero always gives zero).
1510 // - For SIGILL, it's unclear.
1511 // - For SIGTRAP, it's always 1.
1512 // You can see the "NOTIMP" (not implemented) status of a number of the
1513 // sub-cases in sys/signal.h. Hopefully future versions of Darwin will
1514 // get this right.
1516 // If we're blocked waiting on a syscall, it must be a user signal, because
1517 // the kernel won't generate sync signals within syscalls.
1521 // If it's a SIGSEGV, use the proper condition, since it's fairly reliable.
1525 // If it's anything else, assume it's kernel-generated. Reason being that
1526 // kernel-generated sync signals are more common, and it's probable that
1527 // misdiagnosing a user signal as a kernel signal is better than the
1528 // opposite.
1531 }
1532 # else
1533 # error Unknown OS
1534 # endif
1535 }
1537 // This is an arbitrary si_code that we only use internally. It corresponds
1538 // to the value SI_KERNEL on Linux, but that's not really of any significance
1539 // as far as I can determine.
1540 #define VKI_SEGV_MADE_UP_GPF 0x80
1542 /*
1543 Perform the default action of a signal. If the signal is fatal, it
1544 marks all threads as needing to exit, but it doesn't actually kill
1545 the process or thread.
1547 If we're not being quiet, then print out some more detail about
1548 fatal signals (esp. core dumping signals).
1549 */
1551 {
1556 Bool could_core;
1583 # if defined(VKI_SIGPWR)
1585 # endif
1589 # if defined(VKI_SIGRTMIN) && defined(VKI_SIGRTMAX)
1591 # endif
1594 }
1609 /* If they set the core-size limit to zero, don't generate a
1610 core file */
1616 }
1620 ) &&
1627 /* Be helpful - decode some more details about this fault */
1640 /* General Protection Fault: The CPU/kernel
1641 isn't telling us anything useful, but this
1642 is commonly the result of exceeding a
1643 segment limit. */
1647 }
1648 #if 0
1649 {
1654 }
1655 #endif
1668 }
1681 }
1689 }
1697 else
1699 }
1700 }
1701 /* Print a stack trace. Be cautious if the thread's SP is in an
1702 obviously stupid place (not mapped readable) that would
1703 likely cause a segfault. */
1706 #if defined(VGO_linux)
1707 /* Make sure that the address stored in the stack pointer is
1708 located in a mapped page. That is not necessarily so. E.g.
1709 consider the scenario where the stack pointer was decreased
1710 and now has a value that is just below the end of a page that has
1711 not been mapped yet. In that case VG_(am_is_valid_for_client)
1712 will consider the address of the stack pointer invalid and that
1713 would cause a back-trace of depth 1 to be printed, instead of a
1714 full back-trace. */
1722 }
1723 }
1724 #endif
1725 #if defined(VGA_s390x)
1727 /* The guest instruction address has been adjusted earlier to
1728 point to the insn following the one that could not be decoded.
1729 When printing the back-trace here we need to undo that
1730 adjustment so the first line in the back-trace reports the
1731 correct address. */
1737 }
1738 #endif
1743 first_ip_delta );
1746 }
1754 // FIXME: assumes main ThreadId == 1
1759 }
1760 }
1761 }
1765 /* Note: we add + 1 to n_errs_shown as the fatal signal was not
1766 reported through error msg, and so was not counted. */
1768 }
1772 }
1779 /* Make sure we don't get a confusing kernel-generated
1780 coredump when we finally exit */
1782 }
1784 /* stash fatal signal in main thread */
1785 // what's this for?
1786 //VG_(threads)[VG_(master_tid)].os_state.fatalsig = sigNo;
1788 /* everyone dies */
1792 }
1794 /*
1795 This does the business of delivering a signal to a thread. It may
1796 be called from either a real signal handler, or from normal code to
1797 cause the thread to enter the signal handler.
1799 This updates the thread state, but it does not set it to be
1800 Runnable.
1801 */
1804 {
1815 /* If this is a SIGVGKILL, we're expecting it to interrupt any
1816 blocked syscall. It doesn't matter whether the VCPU state is
1817 set to restart or not, because we don't expect it will
1818 execute any more client instructions. */
1821 }
1823 /* If the client specifies SIG_IGN, treat it as SIG_DFL.
1825 If deliver_signal() is being called on a thread, we want
1826 the signal to get through no matter what; if they're ignoring
1827 it, then we do this override (this is so we can send it SIGSEGV,
1828 etc). */
1838 /* Create a signal delivery frame, and set the client's %ESP and
1839 %EIP so that when execution continues, we will enter the
1840 signal handler with the frame on top of the client's stack,
1841 as it expects.
1843 Signal delivery can fail if the client stack is too small or
1844 missing, and we can't push the frame. If that happens,
1845 push_signal_frame will cause the whole process to exit when
1846 we next hit the scheduler.
1847 */
1853 /* Do the ONESHOT thing. */
1857 }
1859 /* At this point:
1860 tst->sig_mask is the current signal mask
1861 tst->tmp_sig_mask is the same as sig_mask, unless we're in sigsuspend
1862 handler->scss_mask is the mask set by the handler
1864 Handler gets a mask of tmp_sig_mask|handler_mask|signo
1865 */
1871 }
1872 }
1874 /* Thread state is ready to go - just add Runnable */
1875 }
1878 {
1884 /* Can't continue; must longjmp back to the scheduler and thus
1885 enter the sighandler immediately. */
1887 }
1888 }
1891 {
1892 vki_siginfo_t info;
1901 /* Even if gdbserver indicates to ignore the signal, we must deliver it.
1902 So ignore the return value of VG_(gdbserver_report_signal). */
1905 /* If they're trying to block the signal, force it to be delivered */
1910 }
1912 // Synthesize a fault where the address is OK, but the page
1913 // permissions are bad.
1915 {
1917 }
1919 // Synthesize a fault where the address there's nothing mapped at the address.
1921 {
1923 }
1925 // Synthesize a misc memory fault.
1927 {
1929 }
1931 // Synthesise a SIGILL.
1933 {
1934 vki_siginfo_t info;
1946 }
1947 else
1949 }
1951 // Synthesise a SIGBUS.
1953 {
1954 vki_siginfo_t info;
1960 /* There are several meanings to SIGBUS (as per POSIX, presumably),
1961 but the most widely understood is "invalid address alignment",
1962 so let's use that. */
1964 /* If we knew the invalid address in question, we could put it
1965 in .si_addr. Oh well. */
1966 /* info.VKI_SIGINFO_si_addr = (void*)addr; */
1971 }
1972 else
1974 }
1976 // Synthesise a SIGTRAP.
1978 {
1979 vki_siginfo_t info;
1981 # if defined(VGP_x86_darwin)
1983 # elif defined(VGP_amd64_darwin)
1985 # endif
1994 # if defined(VGP_x86_linux) || defined(VGP_amd64_linux)
1996 for a breakpoint trap... */
1998 breakpoint trap... */
1999 # elif defined(VGP_x86_darwin) || defined(VGP_amd64_darwin)
2000 /* the same thing, but using Darwin field/struct names */
2005 # endif
2007 /* fixs390: do we need to do anything here for s390 ? */
2011 }
2012 else
2014 }
2016 // Synthesise a SIGFPE.
2018 {
2019 // Only tested on mips32 and mips64
2020 #if !defined(VGA_mips32) && !defined(VGA_mips64)
2022 #else
2023 vki_siginfo_t info;
2036 }
2037 else
2039 #endif
2040 }
2042 /* Make a signal pending for a thread, for later delivery.
2043 VG_(poll_signals) will arrange for it to be delivered at the right
2044 time.
2046 tid==0 means add it to the process-wide queue, and not sent it to a
2047 specific thread.
2048 */
2049 static
2051 {
2054 vki_sigset_t savedmask;
2058 /* Protect the signal queue against async deliveries */
2064 }
2071 /* Add signal to the queue. If the queue gets overrun, then old
2072 queued signals may get lost.
2074 XXX We should also keep a sigset of pending signals, so that at
2075 least a non-siginfo signal gets deliviered.
2076 */
2085 }
2087 /*
2088 Returns the next queued signal for thread tid which is in "set".
2089 tid==0 means process-wide signal. Set si_signo to 0 when the
2090 signal has been delivered.
2092 Must be called with all signals blocked, to protect against async
2093 deliveries.
2094 */
2096 {
2099 Int idx;
2120 }
2124 out:
2126 }
2129 {
2130 #if defined(VGO_linux)
2131 /* The linux kernel uses the top 16 bits of si_code for it's own
2132 use and only exports the bottom 16 bits to user space - at least
2133 that is the theory, but it turns out that there are some kernels
2134 around that forget to mask out the top 16 bits so we do it here.
2136 The kernel treats the bottom 16 bits as signed and (when it does
2137 mask them off) sign extends them when exporting to user space so
2138 we do the same thing here. */
2140 #elif defined(VGO_darwin)
2142 #else
2143 # error Unknown OS
2144 #endif
2145 }
2147 /*
2148 Receive an async signal from the kernel.
2150 This should only happen when the thread is blocked in a syscall,
2151 since that's the only time this set of signals is unblocked.
2152 */
2153 static
2156 {
2159 SysRes sres;
2161 /* The thread isn't currently running, make it so before going on */
2171 /* Update thread state properly. The signal can only have been
2172 delivered whilst we were in
2173 coregrind/m_syswrap/syscall-<PLAT>.S, and only then in the
2174 window between the two sigprocmask calls, since at all other
2175 times, we run with async signals on the host blocked. Hence
2176 make enquiries on the basis that we were in or very close to a
2177 syscall, and attempt to fix up the guest state accordingly.
2179 (normal async signals occurring during computation are blocked,
2180 but periodically polled for using VG_(sigtimedwait_zero), and
2181 delivered at a point convenient for us. Hence this routine only
2182 deals with signals that are delivered to a thread during a
2183 syscall.) */
2185 /* First, extract a SysRes from the ucontext_t* given to this
2186 handler. If it is subsequently established by
2187 VG_(fixup_guest_state_after_syscall_interrupted) that the
2188 syscall was complete but the results had not been committed yet
2189 to the guest state, then it'll have to commit the results itself
2190 "by hand", and so we need to extract the SysRes. Of course if
2191 the thread was not in that particular window then the
2192 SysRes will be meaningless, but that's OK too because
2193 VG_(fixup_guest_state_after_syscall_interrupted) will detect
2194 that the thread was not in said window and ignore the SysRes. */
2196 /* To make matters more complex still, on Darwin we need to know
2197 the "class" of the syscall under consideration in order to be
2198 able to extract the a correct SysRes. The class will have been
2199 saved just before the syscall, by VG_(client_syscall), into this
2200 thread's tst->arch.vex.guest_SC_CLASS. Hence: */
2201 # if defined(VGO_darwin)
2203 # else
2205 # endif
2207 /* (1) */
2209 tid,
2211 sres,
2213 );
2215 /* (2) */
2216 /* Set up the thread's state to deliver a signal */
2220 /* It's crucial that (1) and (2) happen in the order (1) then (2)
2221 and not the other way around. (1) fixes up the guest thread
2222 state to reflect the fact that the syscall was interrupted --
2223 either to restart the syscall or to return EINTR. (2) then sets
2224 up the thread state to deliver the signal. Then we resume
2225 execution. First, the signal handler is run, since that's the
2226 second adjustment we made to the thread state. If that returns,
2227 then we resume at the guest state created by (1), viz, either
2228 the syscall returns EINTR or is restarted.
2230 If (2) was done before (1) the outcome would be completely
2231 different, and wrong. */
2233 /* longjmp back to the thread's main loop to start executing the
2234 handler. */
2239 }
2241 /* Extend the stack to cover addr. maxsize is the limit the stack can grow to.
2243 Returns True on success, False on failure.
2245 Succeeds without doing anything if addr is already within a segment.
2247 Failure could be caused by:
2248 - addr not below a growable segment
2249 - new stack size would exceed maxsize
2250 - mmap failed for some other reason
2251 */
2253 {
2254 SizeT udelta;
2256 /* Find the next Segment above addr */
2264 /* addr is already mapped. Nothing to do. */
2267 /* Check that the requested new base is in a shrink-down
2268 reservation section which abuts an anonymous mapping that
2269 belongs to the client. */
2273 && seg_next
2286 }
2288 /* When we change the main stack, we have to let the stack handling
2289 code know about it. */
2296 }
2301 {
2308 }
2310 static
2313 {
2314 ThreadId qtid;
2316 /* If some user-process sent us a sync signal (ie. it's not the result
2317 of a faulting instruction), then how we treat it depends on when it
2318 arrives... */
2321 /* Signal arrived while we're blocked in a syscall. This means that
2322 the client's signal mask was applied. In other words, so we can't
2323 get here unless the client wants this signal right now. This means
2324 we can simply use the async_signalhandler. */
2327 sigNo);
2333 /* Signal arrived while in generated client code, or while running
2334 Valgrind core code. That means that every thread has these signals
2335 unblocked, so we can't rely on the kernel to route them properly, so
2336 we need to queue them manually. */
2340 # if defined(VGO_linux)
2341 /* On Linux, first we have to do a sanity check of the siginfo. */
2343 /* There's a per-user limit of pending siginfo signals. If
2344 you exceed this, by having more than that number of
2345 pending signals with siginfo, then new signals are
2346 delivered without siginfo. This condition can be caused
2347 by any unrelated program you're running at the same time
2348 as Valgrind, if it has a large number of pending siginfo
2349 signals which it isn't taking delivery of.
2351 Since we depend on siginfo to work out why we were sent a
2352 signal and what we should do about it, we really can't
2353 continue unless we get it. */
2368 /* It's a fatal signal, so we force the default handler. */
2373 }
2374 # endif
2377 # if defined(VGO_linux)
2380 # endif
2382 }
2383 }
2385 /* Returns the reported fault address for an exact address */
2387 {
2388 /* We have to use VG_PGROUNDDN because faults on s390x only deliver
2389 the page address but not the address within a page.
2390 */
2391 # if defined(VGA_s390x)
2393 # else
2395 #endif
2396 }
2398 /* Returns True if the sync signal was due to the stack requiring extension
2399 and the extension was successful.
2400 */
2402 {
2403 Addr fault;
2404 Addr esp;
2422 else
2426 }
2429 && seg
2432 && seg_next
2436 /* If the fault address is above esp but below the current known
2437 stack segment base, and it was a fault because there was
2438 nothing mapped there (as opposed to a permissions fault),
2439 then extend the stack segment.
2440 */
2451 }
2454 }
2455 }
2457 static
2460 {
2461 /* Check to see if some part of Valgrind itself is interested in faults.
2462 The fault catcher should never be set whilst we're in generated code, so
2463 check for that. AFAIK the only use of the catcher right now is
2464 memcheck's leak detector. */
2469 /* If the catcher returns, then it didn't handle the fault,
2470 so carry on panicking. */
2471 }
2474 /* Stack extension occurred, so we don't need to do anything else; upon
2475 returning from this function, we'll restart the host (hence guest)
2476 instruction. */
2478 /* OK, this is a signal we really have to deal with. If it came
2479 from the client's code, then we can jump back into the scheduler
2480 and have it delivered. Otherwise it's a Valgrind bug. */
2484 /* signal is blocked, but they're not allowed to block faults */
2486 }
2491 /* Can't continue; must longjmp back to the scheduler and thus
2492 enter the sighandler immediately. */
2495 }
2496 else
2498 }
2500 /* If resume_scheduler returns or its our fault, it means we
2501 don't have longjmp set up, implying that we weren't running
2502 client code, and therefore it was actually generated by
2503 Valgrind internally.
2504 */
2516 //if (tid == 0) /* could happen after everyone has exited */
2517 // tid = VG_(master_tid);
2520 UnwindStartRegs startRegs;
2525 }
2526 }
2528 /*
2529 Receive a sync signal from the host.
2530 */
2531 static
2534 {
2536 Bool from_user;
2559 }
2562 /* // debug code:
2563 if (0) {
2564 VG_(printf)("info->si_signo %d\n", info->si_signo);
2565 VG_(printf)("info->si_errno %d\n", info->si_errno);
2566 VG_(printf)("info->si_code %d\n", info->si_code);
2567 VG_(printf)("info->si_pid %d\n", info->si_pid);
2568 VG_(printf)("info->si_uid %d\n", info->si_uid);
2569 VG_(printf)("info->si_status %d\n", info->si_status);
2570 VG_(printf)("info->si_addr %p\n", info->si_addr);
2571 }
2572 */
2574 /* Figure out if the signal is being sent from outside the process.
2575 (Why do we care?) If the signal is from the user rather than the
2576 kernel, then treat it more like an async signal than a sync signal --
2577 that is, merely queue it for later delivery. */
2582 }
2583 }
2586 /*
2587 Kill this thread. Makes it leave any syscall it might be currently
2588 blocked in, and return to the scheduler. This doesn't mark the thread
2589 as exiting; that's the caller's job.
2590 */
2593 {
2605 /* jrs 2006 August 3: the following assertion seems incorrect to
2606 me, and fails on AIX. sigvgkill could be sent to a thread which
2607 is runnable - see VG_(nuke_all_threads_except) in the scheduler.
2608 Hence comment these out ..
2610 vg_assert(VG_(threads)[tid].status == VgTs_WaitSys);
2611 VG_(post_syscall)(tid);
2613 and instead do:
2614 */
2617 /* jrs 2006 August 3 ends */
2622 }
2626 {
2627 Int i;
2631 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
2632 sa->sa_restorer
2633 # else
2635 # endif
2636 );
2642 }
2644 /*
2645 Force signal handler to default
2646 */
2648 {
2649 vki_sigaction_toK_t sa;
2653 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
2655 # endif
2659 }
2661 /*
2662 Poll for pending signals, and set the next one up for delivery.
2663 */
2665 {
2667 vki_sigset_t pollset;
2669 vki_sigset_t saved_mask;
2671 /* look for all the signals this thread isn't blocking */
2672 /* pollset = ~tst->sig_mask */
2677 /* First look for any queued pending signals */
2683 /* If there was nothing queued, ask the kernel for a pending signal */
2689 }
2692 /* OK, something to do; deliver it */
2701 where it came from */
2702 }
2705 }
2707 /* At startup, copy the process' real signal state to the SCSS.
2708 Whilst doing this, block all real signals. Then calculate SKSS and
2709 set the kernel to that. Also initialise DCSS.
2710 */
2712 {
2714 vki_sigset_t saved_procmask;
2715 vki_sigaction_fromK_t sa;
2720 # if defined(VKI_SIGRTMIN)
2722 # else
2724 # endif
2726 /* VG_(printf)("SIGSTARTUP\n"); */
2727 /* Block all signals. saved_procmask remembers the previous mask,
2728 which the first thread inherits.
2729 */
2732 /* Copy per-signal settings to SCSS. */
2734 /* Get the old host action */
2737 # if defined(VGP_x86_darwin) || defined(VGP_amd64_darwin)
2738 /* apparently we may not even ask about the disposition of these
2739 signals, let alone change them */
2742 # endif
2747 /* Try setting it back to see if this signal is really
2748 available */
2755 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
2757 # endif
2760 /* try setting it to some arbitrary handler */
2762 /* failed - not really usable */
2764 }
2769 }
2782 # if !defined(VGP_x86_darwin) && !defined(VGP_amd64_darwin)
2784 # endif
2787 # if defined(VGP_x86_darwin) || defined(VGP_amd64_darwin)
2789 /*sa.sa_tramp;*/
2790 /* We can't know what it was, because Darwin's sys_sigaction
2791 doesn't tell us. */
2792 # endif
2793 }
2798 /* Our private internal signals are treated as ignored */
2803 /* Copy the process' signal mask into the root thread. */
2811 /* Calculate SKSS and apply it. This also sets the initial kernel
2812 mask we need to run with. */
2815 /* Leave with all signals still blocked; the thread scheduler loop
2816 will set the appropriate mask at the appropriate time. */
2817 }
2819 /*--------------------------------------------------------------------*/
2820 /*--- end ---*/
2821 /*--------------------------------------------------------------------*/