| // Copyright 2018 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "components/gwp_asan/client/guarded_page_allocator.h" |
| |
| #include <array> |
| #include <set> |
| #include <utility> |
| #include <vector> |
| |
| #include "base/bits.h" |
| #include "base/process/process_metrics.h" |
| #include "base/test/gtest_util.h" |
| #include "base/threading/simple_thread.h" |
| #include "build/build_config.h" |
| #include "testing/gtest/include/gtest/gtest.h" |
| |
| namespace gwp_asan { |
| namespace internal { |
| |
| static constexpr size_t kMaxMetadata = AllocatorState::kMaxMetadata; |
| static constexpr size_t kMaxSlots = AllocatorState::kMaxSlots; |
| |
| class GuardedPageAllocatorTest : public testing::Test { |
| protected: |
| explicit GuardedPageAllocatorTest(size_t max_allocated_pages = kMaxMetadata) { |
| gpa_.Init(max_allocated_pages, kMaxMetadata, kMaxSlots); |
| } |
| |
| // Get a left- or right- aligned allocation (or nullptr on error.) |
| char* GetAlignedAllocation(bool left_aligned, size_t sz, size_t align = 0) { |
| for (size_t i = 0; i < 100; i++) { |
| void* alloc = gpa_.Allocate(sz, align); |
| if (!alloc) |
| return nullptr; |
| |
| uintptr_t addr = reinterpret_cast<uintptr_t>(alloc); |
| bool is_left_aligned = |
| (base::bits::Align(addr, base::GetPageSize()) == addr); |
| if (is_left_aligned == left_aligned) |
| return reinterpret_cast<char*>(addr); |
| |
| gpa_.Deallocate(alloc); |
| } |
| |
| return nullptr; |
| } |
| |
| // Helper that returns the offset of a right-aligned allocation in the |
| // allocation's page. |
| uintptr_t GetRightAlignedAllocationOffset(size_t size, size_t align) { |
| const uintptr_t page_mask = base::GetPageSize() - 1; |
| |
| void* buf = GetAlignedAllocation(false, size, align); |
| CHECK(buf); |
| gpa_.Deallocate(buf); |
| |
| return reinterpret_cast<uintptr_t>(buf) & page_mask; |
| } |
| |
| GuardedPageAllocator gpa_; |
| }; |
| |
| TEST_F(GuardedPageAllocatorTest, SingleAllocDealloc) { |
| char* buf = reinterpret_cast<char*>(gpa_.Allocate(base::GetPageSize())); |
| EXPECT_NE(buf, nullptr); |
| EXPECT_TRUE(gpa_.PointerIsMine(buf)); |
| memset(buf, 'A', base::GetPageSize()); |
| EXPECT_DEATH(buf[base::GetPageSize()] = 'A', ""); |
| gpa_.Deallocate(buf); |
| EXPECT_DEATH(buf[0] = 'B', ""); |
| EXPECT_DEATH(gpa_.Deallocate(buf), ""); |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, CrashOnBadDeallocPointer) { |
| EXPECT_DEATH(gpa_.Deallocate(nullptr), ""); |
| char* buf = reinterpret_cast<char*>(gpa_.Allocate(8)); |
| EXPECT_DEATH(gpa_.Deallocate(buf + 1), ""); |
| gpa_.Deallocate(buf); |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, PointerIsMine) { |
| void* buf = gpa_.Allocate(1); |
| auto malloc_ptr = std::make_unique<char>(); |
| EXPECT_TRUE(gpa_.PointerIsMine(buf)); |
| gpa_.Deallocate(buf); |
| EXPECT_TRUE(gpa_.PointerIsMine(buf)); |
| int stack_var; |
| EXPECT_FALSE(gpa_.PointerIsMine(&stack_var)); |
| EXPECT_FALSE(gpa_.PointerIsMine(malloc_ptr.get())); |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, GetRequestedSize) { |
| void* buf = gpa_.Allocate(100); |
| EXPECT_EQ(gpa_.GetRequestedSize(buf), 100U); |
| #if !defined(OS_MACOSX) |
| EXPECT_DEATH({ gpa_.GetRequestedSize((char*)buf + 1); }, ""); |
| #else |
| EXPECT_EQ(gpa_.GetRequestedSize((char*)buf + 1), 0U); |
| #endif |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, LeftAlignedAllocation) { |
| char* buf = GetAlignedAllocation(true, 16); |
| ASSERT_NE(buf, nullptr); |
| EXPECT_DEATH(buf[-1] = 'A', ""); |
| buf[0] = 'A'; |
| buf[base::GetPageSize() - 1] = 'A'; |
| gpa_.Deallocate(buf); |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, RightAlignedAllocation) { |
| char* buf = |
| GetAlignedAllocation(false, GuardedPageAllocator::kGpaAllocAlignment); |
| ASSERT_NE(buf, nullptr); |
| buf[-1] = 'A'; |
| buf[0] = 'A'; |
| EXPECT_DEATH(buf[GuardedPageAllocator::kGpaAllocAlignment] = 'A', ""); |
| gpa_.Deallocate(buf); |
| } |
| |
| TEST_F(GuardedPageAllocatorTest, AllocationAlignment) { |
| const uintptr_t page_size = base::GetPageSize(); |
| |
| EXPECT_EQ(GetRightAlignedAllocationOffset(9, 1), page_size - 9); |
| EXPECT_EQ(GetRightAlignedAllocationOffset(9, 2), page_size - 10); |
| EXPECT_EQ(GetRightAlignedAllocationOffset(9, 4), page_size - 12); |
| EXPECT_EQ(GetRightAlignedAllocationOffset(9, 8), page_size - 16); |
| |
| EXPECT_EQ(GetRightAlignedAllocationOffset(513, 512), page_size - 1024); |
| |
| // Default alignment aligns up to the next lowest power of two. |
| EXPECT_EQ(GetRightAlignedAllocationOffset(5, 0), page_size - 8); |
| EXPECT_EQ(GetRightAlignedAllocationOffset(9, 0), page_size - 16); |
| // But only up to 16 bytes. |
| EXPECT_EQ(GetRightAlignedAllocationOffset(513, 0), page_size - (512 + 16)); |
| |
| // We don't support aligning by more than a page. |
| EXPECT_EQ(GetAlignedAllocation(false, 5, page_size * 2), nullptr); |
| } |
| |
| class GuardedPageAllocatorParamTest |
| : public GuardedPageAllocatorTest, |
| public testing::WithParamInterface<size_t> { |
| protected: |
| GuardedPageAllocatorParamTest() : GuardedPageAllocatorTest(GetParam()) {} |
| }; |
| |
| TEST_P(GuardedPageAllocatorParamTest, AllocDeallocAllPages) { |
| size_t num_allocations = GetParam(); |
| char* bufs[kMaxMetadata]; |
| for (size_t i = 0; i < num_allocations; i++) { |
| bufs[i] = reinterpret_cast<char*>(gpa_.Allocate(1)); |
| EXPECT_NE(bufs[i], nullptr); |
| EXPECT_TRUE(gpa_.PointerIsMine(bufs[i])); |
| } |
| EXPECT_EQ(gpa_.Allocate(1), nullptr); |
| gpa_.Deallocate(bufs[0]); |
| bufs[0] = reinterpret_cast<char*>(gpa_.Allocate(1)); |
| EXPECT_NE(bufs[0], nullptr); |
| EXPECT_TRUE(gpa_.PointerIsMine(bufs[0])); |
| |
| // Ensure that no allocation is returned twice. |
| std::set<char*> ptr_set; |
| for (size_t i = 0; i < num_allocations; i++) |
| ptr_set.insert(bufs[i]); |
| EXPECT_EQ(ptr_set.size(), num_allocations); |
| |
| for (size_t i = 0; i < num_allocations; i++) { |
| SCOPED_TRACE(i); |
| // Ensure all allocations are valid and writable. |
| bufs[i][0] = 'A'; |
| gpa_.Deallocate(bufs[i]); |
| // Performing death tests post-allocation times out on Windows. |
| } |
| } |
| INSTANTIATE_TEST_SUITE_P(VaryNumPages, |
| GuardedPageAllocatorParamTest, |
| testing::Values(1, kMaxMetadata / 2, kMaxMetadata)); |
| |
| class ThreadedAllocCountDelegate : public base::DelegateSimpleThread::Delegate { |
| public: |
| explicit ThreadedAllocCountDelegate( |
| GuardedPageAllocator* gpa, |
| std::array<void*, kMaxMetadata>* allocations) |
| : gpa_(gpa), allocations_(allocations) {} |
| |
| void Run() override { |
| for (size_t i = 0; i < kMaxMetadata; i++) { |
| (*allocations_)[i] = gpa_->Allocate(1); |
| } |
| } |
| |
| private: |
| GuardedPageAllocator* gpa_; |
| std::array<void*, kMaxMetadata>* allocations_; |
| |
| DISALLOW_COPY_AND_ASSIGN(ThreadedAllocCountDelegate); |
| }; |
| |
| // Test that no pages are double-allocated or left unallocated, and that no |
| // extra pages are allocated when there's concurrent calls to Allocate(). |
| TEST_F(GuardedPageAllocatorTest, ThreadedAllocCount) { |
| constexpr size_t num_threads = 2; |
| std::array<void*, kMaxMetadata> allocations[num_threads]; |
| { |
| base::DelegateSimpleThreadPool threads("alloc_threads", num_threads); |
| threads.Start(); |
| |
| std::vector<std::unique_ptr<ThreadedAllocCountDelegate>> delegates; |
| for (size_t i = 0; i < num_threads; i++) { |
| auto delegate = |
| std::make_unique<ThreadedAllocCountDelegate>(&gpa_, &allocations[i]); |
| threads.AddWork(delegate.get()); |
| delegates.push_back(std::move(delegate)); |
| } |
| |
| threads.JoinAll(); |
| } |
| std::set<void*> allocations_set; |
| for (size_t i = 0; i < num_threads; i++) { |
| for (size_t j = 0; j < kMaxMetadata; j++) { |
| allocations_set.insert(allocations[i][j]); |
| } |
| } |
| allocations_set.erase(nullptr); |
| EXPECT_EQ(allocations_set.size(), kMaxMetadata); |
| } |
| |
| class ThreadedHighContentionDelegate |
| : public base::DelegateSimpleThread::Delegate { |
| public: |
| explicit ThreadedHighContentionDelegate(GuardedPageAllocator* gpa) |
| : gpa_(gpa) {} |
| |
| void Run() override { |
| char* buf; |
| while ((buf = reinterpret_cast<char*>(gpa_->Allocate(1))) == nullptr) { |
| base::PlatformThread::Sleep(base::TimeDelta::FromNanoseconds(5000)); |
| } |
| |
| // Verify that no other thread has access to this page. |
| EXPECT_EQ(buf[0], 0); |
| |
| // Mark this page and allow some time for another thread to potentially |
| // gain access to this page. |
| buf[0] = 'A'; |
| base::PlatformThread::Sleep(base::TimeDelta::FromNanoseconds(10000)); |
| EXPECT_EQ(buf[0], 'A'); |
| |
| // Unmark this page and deallocate. |
| buf[0] = 0; |
| gpa_->Deallocate(buf); |
| } |
| |
| private: |
| GuardedPageAllocator* gpa_; |
| |
| DISALLOW_COPY_AND_ASSIGN(ThreadedHighContentionDelegate); |
| }; |
| |
| // Test that allocator remains in consistent state under high contention and |
| // doesn't double-allocate pages or fail to deallocate pages. |
| TEST_F(GuardedPageAllocatorTest, ThreadedHighContention) { |
| constexpr size_t num_threads = 1000; |
| { |
| base::DelegateSimpleThreadPool threads("page_writers", num_threads); |
| threads.Start(); |
| |
| std::vector<std::unique_ptr<ThreadedHighContentionDelegate>> delegates; |
| for (size_t i = 0; i < num_threads; i++) { |
| auto delegate = std::make_unique<ThreadedHighContentionDelegate>(&gpa_); |
| threads.AddWork(delegate.get()); |
| delegates.push_back(std::move(delegate)); |
| } |
| |
| threads.JoinAll(); |
| } |
| |
| // Verify all pages have been deallocated now that all threads are done. |
| for (size_t i = 0; i < kMaxMetadata; i++) |
| EXPECT_NE(gpa_.Allocate(1), nullptr); |
| } |
| |
| } // namespace internal |
| } // namespace gwp_asan |
