| OLD | NEW |
|---|
| 1 // Copyright 2014 The Chromium Authors. All rights reserved. | 1 // Copyright 2014 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "sandbox/linux/services/thread_helpers.h" | 5 #include "sandbox/linux/services/thread_helpers.h" |
| 6 | 6 |
| 7 #include <errno.h> | 7 #include <errno.h> |
| 8 #include <fcntl.h> | 8 #include <fcntl.h> |
| 9 #include <signal.h> | 9 #include <signal.h> |
| 10 #include <sys/types.h> | 10 #include <sys/types.h> |
| 11 #include <sys/stat.h> | 11 #include <sys/stat.h> |
| 12 #include <unistd.h> | 12 #include <unistd.h> |
| 13 | 13 |
| 14 #include <string> | 14 #include <string> |
| 15 | 15 |
| 16 #include "base/basictypes.h" | 16 #include "base/basictypes.h" |
| 17 #include "base/bind.h" |
| 18 #include "base/callback.h" |
| 19 #include "base/files/scoped_file.h" |
| 17 #include "base/logging.h" | 20 #include "base/logging.h" |
| 18 #include "base/posix/eintr_wrapper.h" | 21 #include "base/posix/eintr_wrapper.h" |
| 19 #include "base/strings/string_number_conversions.h" | 22 #include "base/strings/string_number_conversions.h" |
| 20 #include "base/threading/platform_thread.h" | 23 #include "base/threading/platform_thread.h" |
| 21 #include "base/threading/thread.h" | 24 #include "base/threading/thread.h" |
| 22 | 25 |
| 23 namespace sandbox { | 26 namespace sandbox { |
| 24 | 27 |
| 25 namespace { | 28 namespace { |
| 26 | 29 |
| 30 const char kAssertSingleThreadedError[] = |
| 31 "Current process is not mono-threaded!"; |
| 32 |
| 27 bool IsSingleThreadedImpl(int proc_self_task) { | 33 bool IsSingleThreadedImpl(int proc_self_task) { |
| 28 CHECK_LE(0, proc_self_task); | 34 CHECK_LE(0, proc_self_task); |
| 29 struct stat task_stat; | 35 struct stat task_stat; |
| 30 int fstat_ret = fstat(proc_self_task, &task_stat); | 36 int fstat_ret = fstat(proc_self_task, &task_stat); |
| 31 PCHECK(0 == fstat_ret); | 37 PCHECK(0 == fstat_ret); |
| 32 | 38 |
| 33 // At least "..", "." and the current thread should be present. | 39 // At least "..", "." and the current thread should be present. |
| 34 CHECK_LE(3UL, task_stat.st_nlink); | 40 CHECK_LE(3UL, task_stat.st_nlink); |
| 35 // Counting threads via /proc/self/task could be racy. For the purpose of | 41 // Counting threads via /proc/self/task could be racy. For the purpose of |
| 36 // determining if the current proces is monothreaded it works: if at any | 42 // determining if the current proces is monothreaded it works: if at any |
| 37 // time it becomes monothreaded, it'll stay so. | 43 // time it becomes monothreaded, it'll stay so. |
| 38 return task_stat.st_nlink == 3; | 44 return task_stat.st_nlink == 3; |
| 39 } | 45 } |
| 40 | 46 |
| 47 bool IsThreadPresentInProcFS(int proc_self_task, |
| 48 const std::string& thread_id_dir_str) { |
| 49 struct stat task_stat; |
| 50 const int fstat_ret = |
| 51 fstatat(proc_self_task, thread_id_dir_str.c_str(), &task_stat, 0); |
| 52 if (fstat_ret < 0) { |
| 53 PCHECK(ENOENT == errno); |
| 54 return false; |
| 55 } |
| 56 return true; |
| 57 } |
| 58 |
| 59 // Run |cb| in a loop until it returns false. Every time |cb| runs, sleep |
| 60 // for an exponentially increasing amount of time. |cb| is expected to return |
| 61 // false very quickly and this will crash if it doesn't happen within ~64ms on |
| 62 // Debug builds (2s on Release builds). |
| 63 // This is guaranteed to not sleep more than twice as much as the bare minimum |
| 64 // amount of time. |
| 65 void RunWhileTrue(const base::Callback<bool(void)>& cb) { |
| 66 #if defined(NDEBUG) |
| 67 // In Release mode, crash after 30 iterations, which means having spent |
| 68 // roughly 2s in |
| 69 // nanosleep(2) cumulatively. |
| 70 const unsigned int kMaxIterations = 30U; |
| 71 #else |
| 72 // In practice, this never goes through more than a couple iterations. In |
| 73 // debug mode, crash after 64ms (+ eventually 25 times the granularity of |
| 74 // the clock) in nanosleep(2). This ensures that this is not becoming too |
| 75 // slow. |
| 76 const unsigned int kMaxIterations = 25U; |
| 77 #endif |
| 78 |
| 79 // Run |cb| with an exponential back-off, sleeping 2^iterations nanoseconds |
| 80 // in nanosleep(2). |
| 81 // Note: the clock may not allow for nanosecond granularity, in this case the |
| 82 // first iterations would sleep a tiny bit more instead, which would not |
| 83 // change the calculations significantly. |
| 84 for (unsigned int i = 0; i < kMaxIterations; ++i) { |
| 85 if (!cb.Run()) { |
| 86 return; |
| 87 } |
| 88 |
| 89 // Increase the waiting time exponentially. |
| 90 struct timespec ts = {0, 1L << i /* nanoseconds */}; |
| 91 PCHECK(0 == HANDLE_EINTR(nanosleep(&ts, &ts))); |
| 92 } |
| 93 |
| 94 LOG(FATAL) << kAssertSingleThreadedError << " (iterations: " << kMaxIterations |
| 95 << ")"; |
| 96 |
| 97 NOTREACHED(); |
| 98 } |
| 99 |
| 100 // Return a ScopedFD to /proc/self/task/. If |proc_self_task| is -1, try to |
| 101 // open it directly, otherwise duplicate it. |
| 102 base::ScopedFD OpenProcSelfTask(int proc_self_task) { |
| 103 DCHECK_LE(-1, proc_self_task); |
| 104 if (-1 == proc_self_task) { |
| 105 return base::ScopedFD(HANDLE_EINTR( |
| 106 open("/proc/self/task/", O_RDONLY | O_DIRECTORY | O_CLOEXEC))); |
| 107 } |
| 108 |
| 109 return base::ScopedFD(HANDLE_EINTR( |
| 110 openat(proc_self_task, "./", O_RDONLY | O_DIRECTORY | O_CLOEXEC))); |
| 111 } |
| 112 |
| 113 bool IsMultiThreaded(int proc_self_task) { |
| 114 return !ThreadHelpers::IsSingleThreaded(proc_self_task); |
| 115 } |
| 116 |
| 41 } // namespace | 117 } // namespace |
| 42 | 118 |
| 119 // static |
| 43 bool ThreadHelpers::IsSingleThreaded(int proc_self_task) { | 120 bool ThreadHelpers::IsSingleThreaded(int proc_self_task) { |
| 44 DCHECK_LE(-1, proc_self_task); | 121 DCHECK_LE(-1, proc_self_task); |
| 45 if (-1 == proc_self_task) { | 122 base::ScopedFD task_fd(OpenProcSelfTask(proc_self_task)); |
| 46 const int task_fd = | 123 CHECK(task_fd.is_valid()); |
| 47 open("/proc/self/task/", O_RDONLY | O_DIRECTORY | O_CLOEXEC); | 124 return IsSingleThreadedImpl(task_fd.get()); |
| 48 PCHECK(0 <= task_fd); | |
| 49 const bool result = IsSingleThreadedImpl(task_fd); | |
| 50 PCHECK(0 == IGNORE_EINTR(close(task_fd))); | |
| 51 return result; | |
| 52 } else { | |
| 53 return IsSingleThreadedImpl(proc_self_task); | |
| 54 } | |
| 55 } | 125 } |
| 56 | 126 |
| 127 // static |
| 128 void ThreadHelpers::AssertSingleThreaded(int proc_self_task) { |
| 129 const base::Callback<bool(void)> cb = |
| 130 base::Bind(&IsMultiThreaded, proc_self_task); |
| 131 RunWhileTrue(cb); |
| 132 } |
| 133 |
| 134 // static |
| 57 bool ThreadHelpers::StopThreadAndWatchProcFS(int proc_self_task, | 135 bool ThreadHelpers::StopThreadAndWatchProcFS(int proc_self_task, |
| 58 base::Thread* thread) { | 136 base::Thread* thread) { |
| 59 DCHECK_LE(0, proc_self_task); | 137 DCHECK_LE(0, proc_self_task); |
| 60 DCHECK(thread); | 138 DCHECK(thread); |
| 61 const base::PlatformThreadId thread_id = thread->thread_id(); | 139 const base::PlatformThreadId thread_id = thread->thread_id(); |
| 62 const std::string thread_id_dir_str = base::IntToString(thread_id) + "/"; | 140 const std::string thread_id_dir_str = base::IntToString(thread_id) + "/"; |
| 63 | 141 |
| 64 // The kernel is at liberty to wake the thread id futex before updating | 142 // The kernel is at liberty to wake the thread id futex before updating |
| 65 // /proc. Following Stop(), the thread is joined, but entries in /proc may | 143 // /proc. Following Stop(), the thread is joined, but entries in /proc may |
| 66 // not have been updated. | 144 // not have been updated. |
| 67 thread->Stop(); | 145 thread->Stop(); |
| 68 | 146 |
| 69 unsigned int iterations = 0; | 147 const base::Callback<bool(void)> cb = |
| 70 bool thread_present_in_procfs = true; | 148 base::Bind(&IsThreadPresentInProcFS, proc_self_task, thread_id_dir_str); |
| 71 // Poll /proc with an exponential back-off, sleeping 2^iterations nanoseconds | |
| 72 // in nanosleep(2). | |
| 73 // Note: the clock may not allow for nanosecond granularity, in this case the | |
| 74 // first iterations would sleep a tiny bit more instead, which would not | |
| 75 // change the calculations significantly. | |
| 76 while (thread_present_in_procfs) { | |
| 77 struct stat task_stat; | |
| 78 const int fstat_ret = | |
| 79 fstatat(proc_self_task, thread_id_dir_str.c_str(), &task_stat, 0); | |
| 80 if (fstat_ret < 0) { | |
| 81 PCHECK(ENOENT == errno); | |
| 82 // The thread disappeared from /proc, we're done. | |
| 83 thread_present_in_procfs = false; | |
| 84 break; | |
| 85 } | |
| 86 // Increase the waiting time exponentially. | |
| 87 struct timespec ts = {0, 1L << iterations /* nanoseconds */}; | |
| 88 PCHECK(0 == HANDLE_EINTR(nanosleep(&ts, &ts))); | |
| 89 ++iterations; | |
| 90 | 149 |
| 91 // Crash after 30 iterations, which means having spent roughly 2s in | 150 RunWhileTrue(cb); |
| 92 // nanosleep(2) cumulatively. | |
| 93 CHECK_GT(30U, iterations); | |
| 94 // In practice, this never goes through more than a couple iterations. In | |
| 95 // debug mode, crash after 64ms (+ eventually 25 times the granularity of | |
| 96 // the clock) in nanosleep(2). | |
| 97 DCHECK_GT(25U, iterations); | |
| 98 } | |
| 99 | 151 |
| 100 return true; | 152 return true; |
| 101 } | 153 } |
| 102 | 154 |
| 155 // static |
| 156 const char* ThreadHelpers::GetAssertSingleThreadedErrorMessageForTests() { |
| 157 return kAssertSingleThreadedError; |
| 158 } |
| 159 |
| 103 } // namespace sandbox | 160 } // namespace sandbox |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 893993004:
Linux sandbox: Provide AssertSingleThreaded() helper (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master