urbit/ares
1
1
Fork 0
mirror of https://github.com/urbit/ares.git synced 2024-11-26 09:57:56 +03:00
Code Issues Packages Projects Releases Wiki Activity

stack: do not modify pointers unless a valid allocation is possible

Browse Source
This commit is contained in:
Alex Shelkovnykov 2023-12-14 16:38:18 -03:00
parent 30ccf384e0
commit 190e926903
1 changed files with 60 additions and 34 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

94
rust/ares/src/mem.rs
View File

@ -279,11 +279,12 @@ impl NockStack {
panic!("Allocation during cleanup phase is prohibited."); panic!("Allocation during cleanup phase is prohibited.");
} }
self.alloc_pointer = self.alloc_pointer.sub(words); let alloc = self.alloc_pointer.sub(words);
if self.alloc_pointer > self.stack_pointer { if alloc < self.stack_pointer {
self.alloc_pointer
} else {
ptr::null_mut() ptr::null_mut()
} else {
self.alloc_pointer = alloc;
alloc
} }
} }
@ -294,11 +295,12 @@ impl NockStack {
} }
let alloc = self.alloc_pointer; let alloc = self.alloc_pointer;
self.alloc_pointer = self.alloc_pointer.add(words); let new_ap = self.alloc_pointer.add(words);
if self.alloc_pointer < self.stack_pointer { if new_ap > self.stack_pointer {
alloc
} else {
ptr::null_mut() ptr::null_mut()
} else {
self.alloc_pointer = new_ap;
alloc
} }
} }
@ -343,21 +345,23 @@ impl NockStack {
unsafe fn raw_alloc_in_previous_frame_west(&mut self, words: usize) -> *mut u64 { unsafe fn raw_alloc_in_previous_frame_west(&mut self, words: usize) -> *mut u64 {
// note that the allocation is on the east frame, and thus resembles raw_alloc_east // note that the allocation is on the east frame, and thus resembles raw_alloc_east
let alloc = *self.prev_alloc_pointer_pointer(); let alloc = *self.prev_alloc_pointer_pointer();
*(self.prev_alloc_pointer_pointer()) = (*(self.prev_alloc_pointer_pointer())).add(words); let new_prev_ap = (*(self.prev_alloc_pointer_pointer())).add(words);
if *self.prev_alloc_pointer_pointer() < self.stack_pointer { if new_prev_ap > self.stack_pointer {
alloc
} else {
ptr::null_mut() ptr::null_mut()
} else {
*(self.prev_alloc_pointer_pointer()) = new_prev_ap;
alloc
} }
} }
unsafe fn raw_alloc_in_previous_frame_east(&mut self, words: usize) -> *mut u64 { unsafe fn raw_alloc_in_previous_frame_east(&mut self, words: usize) -> *mut u64 {
// note that the allocation is on the west frame, and thus resembles raw_alloc_west // note that the allocation is on the west frame, and thus resembles raw_alloc_west
*(self.prev_alloc_pointer_pointer()) = (*(self.prev_alloc_pointer_pointer())).sub(words); let alloc = (*(self.prev_alloc_pointer_pointer())).sub(words);
if *self.prev_alloc_pointer_pointer() > self.stack_pointer { if alloc < self.stack_pointer {
*self.prev_alloc_pointer_pointer()
} else {
ptr::null_mut() ptr::null_mut()
} else {
*(self.prev_alloc_pointer_pointer()) = alloc;
alloc
} }
} }
@ -423,17 +427,27 @@ impl NockStack {
* or not pre_copy() has been called.*/ * or not pre_copy() has been called.*/
unsafe fn pre_copy(&mut self) { unsafe fn pre_copy(&mut self) {
if !self.pc { if !self.pc {
*(self.free_slot(FRAME)) = *(self.slot_pointer(FRAME)); let old_stack_pointer = self.stack_pointer;
*(self.free_slot(STACK)) = *(self.slot_pointer(STACK));
*(self.free_slot(ALLOC)) = *(self.slot_pointer(ALLOC));
self.pc = true;
// Change polarity of lightweight stack. // Change polarity of lightweight stack.
if self.is_west() { if self.is_west() {
self.stack_pointer = self.alloc_pointer.sub(RESERVED + 1); self.stack_pointer = self.alloc_pointer.sub(RESERVED + 1);
if self.stack_pointer < old_stack_pointer {
// OOM
std::ptr::null::<usize>().read_volatile();
}
} else { } else {
self.stack_pointer = self.alloc_pointer.add(RESERVED); self.stack_pointer = self.alloc_pointer.add(RESERVED);
if self.stack_pointer > old_stack_pointer {
// OOM
std::ptr::null::<usize>().read_volatile();
}
} }
self.pc = true;
*(self.free_slot(FRAME)) = *(self.slot_pointer(FRAME));
*(self.free_slot(STACK)) = *(self.slot_pointer(STACK));
*(self.free_slot(ALLOC)) = *(self.slot_pointer(ALLOC));
} }
} }
@ -630,15 +644,27 @@ impl NockStack {
/** Push a frame onto the stack with 0 or more local variable slots. */ /** Push a frame onto the stack with 0 or more local variable slots. */
pub fn frame_push(&mut self, num_locals: usize) { pub fn frame_push(&mut self, num_locals: usize) {
if self.pc {
panic!("frame_push during cleanup phase is prohibited.");
}
let current_frame_pointer = self.frame_pointer; let current_frame_pointer = self.frame_pointer;
let current_stack_pointer = self.stack_pointer; let current_stack_pointer = self.stack_pointer;
let current_alloc_pointer = self.alloc_pointer; let current_alloc_pointer = self.alloc_pointer;
unsafe { unsafe {
self.frame_pointer = if self.is_west() { if self.is_west() {
current_alloc_pointer.sub(num_locals + RESERVED) self.frame_pointer = current_alloc_pointer.sub(num_locals + RESERVED);
if self.frame_pointer <= current_stack_pointer {
// OOM
std::ptr::null::<usize>().read_volatile();
}
} else { } else {
current_alloc_pointer.add(num_locals + RESERVED) self.frame_pointer = current_alloc_pointer.add(num_locals + RESERVED);
}; if self.frame_pointer >= current_stack_pointer {
// OOM
std::ptr::null::<usize>().read_volatile();
}
}
self.alloc_pointer = current_stack_pointer; self.alloc_pointer = current_stack_pointer;
self.stack_pointer = self.frame_pointer; self.stack_pointer = self.frame_pointer;
@ -646,8 +672,6 @@ impl NockStack {
*(self.slot_pointer(STACK)) = current_stack_pointer as u64; *(self.slot_pointer(STACK)) = current_stack_pointer as u64;
*(self.slot_pointer(ALLOC)) = current_alloc_pointer as u64; *(self.slot_pointer(ALLOC)) = current_alloc_pointer as u64;
} }
self.pc = false;
} }
/** Run a closure inside a frame, popping regardless of the value returned by the closure. /** Run a closure inside a frame, popping regardless of the value returned by the closure.
@ -707,11 +731,12 @@ impl NockStack {
self.alloc_pointer self.alloc_pointer
}; };
let alloc = self.stack_pointer; let alloc = self.stack_pointer;
self.stack_pointer = self.stack_pointer.add(word_size_of::<T>()); let new_sp = self.stack_pointer.add(word_size_of::<T>());
if self.stack_pointer < ap { if new_sp > ap {
alloc as *mut T
} else {
ptr::null_mut() ptr::null_mut()
} else {
self.stack_pointer = new_sp;
alloc as *mut T
} }
} }
@ -722,11 +747,12 @@ impl NockStack {
} else { } else {
self.alloc_pointer self.alloc_pointer
}; };
self.stack_pointer = self.stack_pointer.sub(word_size_of::<T>()); let alloc = self.stack_pointer.sub(word_size_of::<T>());
if self.stack_pointer > ap { if alloc < ap {
self.stack_pointer as *mut T
} else {
ptr::null_mut() ptr::null_mut()
} else {
self.stack_pointer = alloc;
alloc as *mut T
} }
} }