2024-02-10 08:43:20 +03:00
|
|
|
#include <assert.h>
|
|
|
|
|
#include <errno.h>
|
|
|
|
|
#include <setjmp.h>
|
|
|
|
|
#include <signal.h>
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
#include <string.h>
|
|
|
|
|
#include <sys/mman.h>
|
|
|
|
|
#include <unistd.h>
|
|
|
|
|
|
|
|
|
|
#include "guard.h"
|
|
|
|
|
|
|
|
|
|
#define GD_PAGE_BITS 14ULL
|
|
|
|
|
#define GD_PAGE_SIZE (1ULL << GD_PAGE_BITS) // 16 KB
|
|
|
|
|
#define GD_PAGE_MASK (GD_PAGE_SIZE - 1)
|
|
|
|
|
#define GD_PAGE_ROUND_DOWN(foo) (foo & (~GD_PAGE_MASK))
|
|
|
|
|
|
2024-02-20 03:25:43 +03:00
|
|
|
#ifdef __APPLE__
|
|
|
|
|
#define GD_SIGNAL SIGBUS
|
|
|
|
|
#else
|
|
|
|
|
#define GD_SIGNAL SIGSEGV
|
|
|
|
|
#endif
|
|
|
|
|
|
2024-02-20 02:42:28 +03:00
|
|
|
typedef struct _GD_state GD_state;
|
|
|
|
|
struct _GD_state {
|
2024-02-19 21:26:21 +03:00
|
|
|
uintptr_t guard_p;
|
|
|
|
|
const uintptr_t *stack_pp;
|
|
|
|
|
const uintptr_t *alloc_pp;
|
|
|
|
|
GD_buflistnode *buffer_list;
|
2024-02-10 08:43:20 +03:00
|
|
|
struct sigaction prev_sa;
|
2024-02-19 21:26:21 +03:00
|
|
|
};
|
|
|
|
|
|
2024-02-20 02:42:28 +03:00
|
|
|
static GD_state *_guard_state = NULL;
|
2024-02-10 08:43:20 +03:00
|
|
|
|
|
|
|
|
|
2024-02-20 10:53:14 +03:00
|
|
|
static guard_err
|
2024-02-20 02:47:00 +03:00
|
|
|
_protect_page(void *address, int prot)
|
2024-02-10 08:43:20 +03:00
|
|
|
{
|
|
|
|
|
if (mprotect(address, GD_PAGE_SIZE, prot)) {
|
|
|
|
|
fprintf(stderr, "guard: prot: mprotect error %d\r\n", errno);
|
|
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
2024-02-20 19:17:21 +03:00
|
|
|
return guard_mprotect;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-20 10:53:14 +03:00
|
|
|
return 0;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-14 06:50:37 +03:00
|
|
|
// Center the guard page.
|
2024-02-20 10:53:14 +03:00
|
|
|
static guard_err
|
2024-02-20 02:42:28 +03:00
|
|
|
_focus_guard(GD_state *gs) {
|
2024-02-20 19:17:21 +03:00
|
|
|
uintptr_t stack_p = *(gs->stack_pp);
|
|
|
|
|
uintptr_t alloc_p = *(gs->alloc_pp);
|
|
|
|
|
uintptr_t old_guard_p = _guard_state->guard_p;
|
2024-02-14 06:50:37 +03:00
|
|
|
uintptr_t new_guard_p;
|
2024-02-20 19:17:21 +03:00
|
|
|
guard_err err = 0;
|
2024-02-14 06:50:37 +03:00
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
// Check anomalous arguments.
|
2024-02-10 08:43:20 +03:00
|
|
|
if (stack_p == 0 || alloc_p == 0) {
|
|
|
|
|
fprintf(stderr, "guard: focus: stack or alloc pointer is null\r\n");
|
|
|
|
|
return guard_null;
|
|
|
|
|
} else if (stack_p == alloc_p) {
|
|
|
|
|
return guard_oom;
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Compute new guard page.
|
2024-02-10 08:43:20 +03:00
|
|
|
new_guard_p = GD_PAGE_ROUND_DOWN((stack_p + alloc_p) / 2);
|
|
|
|
|
if (new_guard_p == old_guard_p) {
|
|
|
|
|
return guard_oom;
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Mark new guard page.
|
2024-02-20 02:47:00 +03:00
|
|
|
if ((err = _protect_page((void *)new_guard_p, PROT_NONE))) {
|
2024-02-10 08:43:20 +03:00
|
|
|
fprintf(stderr, "guard: focus: mark error\r\n");
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Update guard page tracker.
|
2024-02-20 19:17:21 +03:00
|
|
|
gs->guard_p = new_guard_p;
|
2024-02-14 06:50:37 +03:00
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Unmark the old guard page if there is one.
|
2024-02-14 06:50:37 +03:00
|
|
|
if (old_guard_p) {
|
2024-02-20 02:47:00 +03:00
|
|
|
if ((err = _protect_page((void *)old_guard_p, PROT_READ | PROT_WRITE))) {
|
2024-02-14 06:50:37 +03:00
|
|
|
fprintf(stderr, "guard: focus: unmark error\r\n");
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-20 10:53:14 +03:00
|
|
|
return 0;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-14 06:50:37 +03:00
|
|
|
static void
|
2024-02-10 08:43:20 +03:00
|
|
|
_signal_handler(int sig, siginfo_t *si, void *unused)
|
|
|
|
|
{
|
|
|
|
|
uintptr_t sig_addr;
|
2024-02-20 10:53:14 +03:00
|
|
|
guard_err err = 0;
|
2024-02-10 08:43:20 +03:00
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
assert(_guard_state->guard_p);
|
2024-02-14 06:50:37 +03:00
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
if (sig != GD_SIGNAL) {
|
2024-02-18 04:27:13 +03:00
|
|
|
fprintf(stderr, "guard: handler: invalid signal: %d\r\n", sig);
|
2024-02-16 21:23:17 +03:00
|
|
|
assert(0);
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
2024-02-20 03:25:43 +03:00
|
|
|
assert(sig == GD_SIGNAL);
|
2024-02-10 08:43:20 +03:00
|
|
|
|
|
|
|
|
sig_addr = (uintptr_t)si->si_addr;
|
|
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
if (sig_addr >= _guard_state->guard_p &&
|
|
|
|
|
sig_addr < _guard_state->guard_p + GD_PAGE_SIZE)
|
2024-02-10 08:43:20 +03:00
|
|
|
{
|
2024-02-17 15:51:46 +03:00
|
|
|
err = _focus_guard(_guard_state);
|
2024-02-10 08:43:20 +03:00
|
|
|
if (err) {
|
2024-02-20 19:17:21 +03:00
|
|
|
siglongjmp(_guard_state->buffer_list->buffer, err);
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
2024-02-14 06:50:37 +03:00
|
|
|
}
|
|
|
|
|
else {
|
2024-02-20 19:17:21 +03:00
|
|
|
if (_guard_state->prev_sa.sa_sigaction != NULL) {
|
|
|
|
|
_guard_state->prev_sa.sa_sigaction(sig, si, unused);
|
|
|
|
|
} else if (_guard_state->prev_sa.sa_handler != NULL) {
|
|
|
|
|
_guard_state->prev_sa.sa_handler(sig);
|
2024-02-10 08:43:20 +03:00
|
|
|
} else {
|
|
|
|
|
assert(0);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
// Registers the handler function for GD_SIGNAL.
|
2024-02-20 10:53:14 +03:00
|
|
|
static guard_err
|
2024-02-20 02:42:28 +03:00
|
|
|
_register_handler(GD_state *gs)
|
2024-02-10 08:43:20 +03:00
|
|
|
{
|
|
|
|
|
struct sigaction sa;
|
|
|
|
|
sa.sa_flags = SA_SIGINFO;
|
|
|
|
|
sa.sa_sigaction = _signal_handler;
|
2024-02-18 04:27:13 +03:00
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
// Set the new handler and save the old if it exists.
|
2024-02-20 05:02:20 +03:00
|
|
|
if (sigaction(GD_SIGNAL, &sa, &(gs->prev_sa))) {
|
2024-02-10 08:43:20 +03:00
|
|
|
fprintf(stderr, "guard: register: sigaction error\r\n");
|
|
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
2024-02-20 19:17:21 +03:00
|
|
|
return guard_sigaction;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-20 10:53:14 +03:00
|
|
|
return 0;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-20 10:53:14 +03:00
|
|
|
guard_err
|
2024-02-14 06:50:37 +03:00
|
|
|
guard(
|
2024-02-16 21:23:17 +03:00
|
|
|
void *(*f)(void *),
|
2024-02-14 06:50:37 +03:00
|
|
|
void *closure,
|
2024-02-15 22:32:17 +03:00
|
|
|
const uintptr_t *const s_pp,
|
|
|
|
|
const uintptr_t *const a_pp,
|
2024-02-19 20:54:43 +03:00
|
|
|
void **ret
|
2024-02-10 08:43:20 +03:00
|
|
|
) {
|
2024-02-16 21:23:17 +03:00
|
|
|
GD_buflistnode *new_buffer;
|
2024-02-20 10:53:14 +03:00
|
|
|
guard_err err = 0;
|
|
|
|
|
guard_err td_err = 0;
|
2024-02-10 08:43:20 +03:00
|
|
|
|
2024-02-20 19:17:21 +03:00
|
|
|
// Setup guard state.
|
2024-02-17 15:47:14 +03:00
|
|
|
if (_guard_state == NULL) {
|
2024-02-20 19:17:21 +03:00
|
|
|
_guard_state = (GD_state *)malloc(sizeof(GD_state));
|
|
|
|
|
if (_guard_state == NULL) {
|
|
|
|
|
fprintf(stderr, "guard: malloc error\r\n");
|
|
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
|
|
|
|
err = guard_malloc;
|
|
|
|
|
goto skip;
|
|
|
|
|
}
|
|
|
|
|
_guard_state->guard_p = 0;
|
|
|
|
|
_guard_state->stack_pp = s_pp;
|
|
|
|
|
_guard_state->alloc_pp = a_pp;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
2024-02-20 19:17:21 +03:00
|
|
|
|
|
|
|
|
if (_guard_state->guard_p == 0) {
|
|
|
|
|
assert(_guard_state->buffer_list == NULL);
|
2024-02-14 13:06:04 +03:00
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Initialize the guard page.
|
2024-02-20 19:17:21 +03:00
|
|
|
if ((err = _focus_guard(_guard_state))) {
|
2024-02-16 21:32:11 +03:00
|
|
|
fprintf(stderr, "guard: initial focus error\r\n");
|
2024-02-14 13:06:04 +03:00
|
|
|
goto exit;
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Register guard page signal handler.
|
2024-02-20 19:17:21 +03:00
|
|
|
if ((err = _register_handler(_guard_state))) {
|
2024-02-16 21:32:11 +03:00
|
|
|
fprintf(stderr, "guard: registration error\r\n");
|
2024-02-14 13:06:04 +03:00
|
|
|
goto clean;
|
|
|
|
|
}
|
2024-02-15 22:32:17 +03:00
|
|
|
} else {
|
2024-02-20 19:17:21 +03:00
|
|
|
assert(_guard_state->buffer_list != NULL);
|
2024-02-15 22:32:17 +03:00
|
|
|
}
|
|
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Setup new longjmp buffer.
|
2024-02-16 21:23:17 +03:00
|
|
|
new_buffer = (GD_buflistnode *)malloc(sizeof(GD_buflistnode));
|
2024-02-15 22:32:17 +03:00
|
|
|
if (new_buffer == NULL) {
|
|
|
|
|
fprintf(stderr, "guard: malloc error\r\n");
|
|
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
2024-02-20 19:17:21 +03:00
|
|
|
err = guard_malloc;
|
2024-02-15 22:32:17 +03:00
|
|
|
goto skip;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
2024-02-20 19:17:21 +03:00
|
|
|
new_buffer->next = _guard_state->buffer_list;
|
|
|
|
|
_guard_state->buffer_list = new_buffer;
|
2024-02-10 08:43:20 +03:00
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Run given closure.
|
2024-02-20 19:17:21 +03:00
|
|
|
if (!(err = sigsetjmp(_guard_state->buffer_list->buffer, 1))) {
|
2024-02-10 08:43:20 +03:00
|
|
|
*ret = f(closure);
|
2024-02-14 06:50:37 +03:00
|
|
|
}
|
2024-02-10 08:43:20 +03:00
|
|
|
|
2024-02-19 20:54:43 +03:00
|
|
|
// Restore previous longjmp buffer.
|
2024-02-20 19:17:21 +03:00
|
|
|
_guard_state->buffer_list = _guard_state->buffer_list->next;
|
2024-02-15 22:32:17 +03:00
|
|
|
free((void *)new_buffer);
|
|
|
|
|
|
|
|
|
|
skip:
|
2024-02-20 19:17:21 +03:00
|
|
|
if (_guard_state->buffer_list == NULL) {
|
|
|
|
|
if (sigaction(GD_SIGNAL, &_guard_state->prev_sa, NULL)) {
|
|
|
|
|
fprintf(stderr, "guard: error replacing previous handler\r\n");
|
2024-02-15 22:32:17 +03:00
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
2024-02-20 19:17:21 +03:00
|
|
|
td_err = guard_sigaction;
|
2024-02-15 22:32:17 +03:00
|
|
|
|
|
|
|
|
if (!err) {
|
|
|
|
|
err = td_err;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-14 13:06:04 +03:00
|
|
|
clean:
|
2024-02-19 20:54:43 +03:00
|
|
|
// Unmark guard page.
|
2024-02-20 19:17:21 +03:00
|
|
|
assert(_guard_state->guard_p != 0);
|
|
|
|
|
td_err = _protect_page((void *)_guard_state->guard_p, PROT_READ | PROT_WRITE);
|
2024-02-15 22:32:17 +03:00
|
|
|
if (td_err) {
|
|
|
|
|
fprintf(stderr, "guard: unmark error\r\n");
|
|
|
|
|
fprintf(stderr, "%s\r\n", strerror(errno));
|
|
|
|
|
if (!err) {
|
|
|
|
|
err = td_err;
|
|
|
|
|
}
|
2024-02-14 13:06:04 +03:00
|
|
|
}
|
2024-02-20 19:17:21 +03:00
|
|
|
_guard_state->guard_p = 0;
|
|
|
|
|
// free(_guard_state);
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
2024-02-14 06:50:37 +03:00
|
|
|
|
2024-02-14 13:06:04 +03:00
|
|
|
exit:
|
2024-02-14 06:50:37 +03:00
|
|
|
return err;
|
2024-02-10 08:43:20 +03:00
|
|
|
}
|
