Changeset 172 for trunk/src

Timestamp:

Aug 7, 2008, 9:13:24 PM (16 years ago)

Author:

katerina

Message:

Documentation update, more dnmalloc fixes.

Location:

trunk/src

Files:

• dnmalloc.c (modified) (58 diffs)
• make-tests.sh (modified) (1 diff)
• samhain.c (modified) (1 diff)
• sh_unix.c (modified) (2 diffs)

trunk/src/dnmalloc.c

@@ -1 +1 @@
 /* DistriNet malloc (dnmalloc): a more secure memory allocator. 
-   Copyright (C) 2005, Yves Younan, Wouter Joosen, Frank Piessens and Rainer Wichmann
+   Copyright (C) 2005, Yves Younan, Wouter Joosen, Frank Piessens 
+   and Rainer Wichmann
+
    The authors can be contacted by:
       Email: dnmalloc@fort-knox.org
@@ -25 +27 @@
 */
 
-/* Current version: dnmalloc 1.0  */
+/* Current version: dnmalloc 1.0 */
 /* Includes arc4random from OpenBSD, which is under the BDS license     */
 
@@ -93 +95 @@
                works on OpenBSD.
    
+   further to 1.0:
+   Valgrind client requests inserted (#define USE_VALGRIND)
+   Fix malloc_consolidate (nextchunk->fd, nextchunk->bck may be NULL)
+   Portability: minsize = 32 bit on 64bit architecture
+   Minor cleanups
+
    There may be some bugs left in this version. please use with caution.
 */
@@ -176 +184 @@
 #endif
 
+#ifdef USE_VALGRIND
+#include <valgrind/memcheck.h>
+#else
+#define VALGRIND_FREELIKE_BLOCK(a,b)       ((void)0)
+#define VALGRIND_MALLOCLIKE_BLOCK(a,b,c,d) ((void)0)
+#define VALGRIND_CREATE_MEMPOOL(a,b,c)     ((void)0)
+#define VALGRIND_MEMPOOL_ALLOC(a,b,c)      ((void)0)
+#define VALGRIND_MEMPOOL_FREE(a,b)         ((void)0)
+#define VALGRIND_DESTROY_MEMPOOL(a)        ((void)0)
+#define VALGRIND_MAKE_MEM_DEFINED(a,b)     ((void)0)
+#define VALGRIND_MAKE_MEM_UNDEFINED(a,b)   ((void)0)
+#define VALGRIND_MAKE_MEM_NOACCESS(a,b)    ((void)0)
+#endif
+
 #if defined (__GNUC__) && __GNUC__ > 2
 # define LIKELY(expression) (__builtin_expect(!!(expression), 1))
@@ -277 +299 @@
 #endif
 
-#if !defined(SAMHAIN) 
 static void default_assert_handler(const char *error, 
                                    const char *file, int line)
@@ -300 +321 @@
   fputc('\n', stderr);
 #endif
+  (void) line;
   abort();
 }
 static assert_handler_tp *assert_handler = default_assert_handler;
-#else
-extern void safe_fatal(const char *error, 
-                       const char *file, int line);
-static assert_handler_tp *assert_handler = safe_fatal;
-#endif
+
 
 #define assert(x)                               \
@@ -337 +355 @@
   /* #define DNMALLOC_DEBUG */ 
 
-  /* Do some extra checks? */
+  /* Do some extra checks? if not, covered by assrt()s */
   /* #define DNMALLOC_CHECKS */
 
@@ -668 +686 @@
 
 #ifndef HAVE_MMAP
-#  ifdef SAMHAIN
-#    error mmap not available, use --disable-dnmalloc
-#  else
-#    error HAVE_MMAP not defined, has your operating system mmap?
-#  endif
+#  error HAVE_MMAP not defined, has your operating system mmap?
 #endif
 
@@ -1898 +1912 @@
   guard_set_p = (char*)(chunk(P));                                \
   guard_set_p += request;                                         \
+  VALGRIND_MAKE_MEM_UNDEFINED(guard_set_p,GUARD_SIZE);            \
   guard_set_q = (char*)(guard);                                   \
   *guard_set_p = *guard_set_q; ++guard_set_p; ++guard_set_q;      \
@@ -1903 +1918 @@
   *guard_set_p = *guard_set_q; ++guard_set_p; ++guard_set_q;      \
   *guard_set_p = *guard_set_q;                                    \
+  VALGRIND_MAKE_MEM_NOACCESS((((char*)chunk(P))+request),GUARD_SIZE);   \
   (P)->req = request
  
 #define guard_check(guard, P)                                     \
-  assert(0 == memcmp((((char *)chunk(P))+(P)->req),(void*)(guard),GUARD_SIZE));
+  VALGRIND_MAKE_MEM_DEFINED((((char *)chunk(P))+(P)->req), GUARD_SIZE); \
+  assert(0 == memcmp((((char *)chunk(P))+(P)->req),(void*)(guard),GUARD_SIZE));\
+  VALGRIND_MAKE_MEM_NOACCESS((((char *)chunk(P))+(P)->req), GUARD_SIZE);
 
 #else
@@ -2164 +2182 @@
 /* #define FIRST_SORTED_BIN_SIZE 65536 */
 
-/*          12288 1m59 1m58 1m58
- *           2560 1m56 1m59 1m57
- * MIN_LARGE_SIZE 2m01 1m56 1m57
- */
-#ifdef SAMHAIN
-#define FIRST_SORTED_BIN_SIZE 2560
-#else
 #define FIRST_SORTED_BIN_SIZE MIN_LARGE_SIZE
-#endif
+
 
 /*
@@ -2372 +2383 @@
 
 /* Minimum size of a chunk */
-#define MINCHUNKSIZE 16
+
+#if (SIZEOF_UNSIGNED_LONG == 8) || defined(__arch64__) || defined(__ia64__) || defined(__x86_64__) || defined(__LP64__) || defined(__64BIT__) || defined(_LP64) || defined(_M_IA64) || (defined(_MIPS_SZLONG) && (_MIPS_SZLONG == 64))
+#  define MINCHUNKSIZE 32
+#else
+#  define MINCHUNKSIZE 16
+#endif
+
 
 /* The amount of hashtable entries for each page:
@@ -2542 +2559 @@
            firstciinfo = currciinfo;
    totalcictr++;
+   VALGRIND_CREATE_MEMPOOL(newcireg, 0, 0);
 }
 
@@ -2567 +2585 @@
    if (freelst)
    {
-      freeci = freelst;
-      newciinfo->freelist = freelst->fd;
-      newciinfo->freecounter--;
-      /* memset(freeci, 0, sizeof(struct chunkinfo)); */
-      freeci->prev_size = 0;
-      freeci->size      = 0;
-      freeci->req       = 0;
-      freeci->hash_next = NULL;
-      freeci->fd        = NULL;
-      freeci->bk        = NULL;
-      freeci->chunk     = NULL;
-      return (freeci);
+     freeci = freelst;
+     newciinfo->freecounter--;
+     newciinfo->freelist = freelst->fd;
+     
+     VALGRIND_MEMPOOL_ALLOC((char*)currciinfo, (char*)freeci, 
+                            sizeof(struct chunkinfo));
+     
+     freeci->prev_size = 0;
+     freeci->size      = 0;
+     freeci->req       = 0;
+     freeci->hash_next = NULL;
+     freeci->fd        = NULL;
+     freeci->bk        = NULL;
+     freeci->chunk     = NULL;
+     return (freeci);
    }
    else
@@ -2591 +2612 @@
      currciinfo->freecounter--;
      currciinfo->position++;
+
+     VALGRIND_MEMPOOL_ALLOC((char*)currciinfo, (char*)freeci, 
+                            sizeof(struct chunkinfo));
+
      return (freeci);
    }
@@ -2600 +2625 @@
   struct cireginfo *prevciinfo = firstciinfo;
   void *unmapme;
+
   while (newciinfo && newciinfo != freeme) {
     prevciinfo = newciinfo;
@@ -2609 +2635 @@
     prevciinfo->next = newciinfo->next;
   unmapme = (void *) ((char*)freeme - PGSIZE);
+  VALGRIND_DESTROY_MEMPOOL((char*)freeme);
 #if PARANOIA > 1
   munmap(unmapme, CIREGSIZE+(2*PGSIZE));
@@ -2620 +2647 @@
 
   struct cireginfo *newciinfo;
+
   newciinfo = currciinfo;
   if (((chunkinfoptr) newciinfo < p) && (p  <  (chunkinfoptr) (newciinfo+NUMBER_FREE_CHUNKS))) {
@@ -2625 +2653 @@
     newciinfo->freelist = p;
     newciinfo->freecounter++;
+    VALGRIND_MEMPOOL_FREE((char*)newciinfo, (char*)p);
+    VALGRIND_MAKE_MEM_DEFINED(p,sizeof(struct chunkinfo));
+    VALGRIND_MAKE_MEM_NOACCESS(p->size,     sizeof(INTERNAL_SIZE_T));
+    VALGRIND_MAKE_MEM_NOACCESS(p->req,      sizeof(INTERNAL_SIZE_T));
+    VALGRIND_MAKE_MEM_NOACCESS(p->bk,       sizeof(struct chunkinfo*));
+    VALGRIND_MAKE_MEM_NOACCESS(p->chunk,    sizeof(mchunkptr));
   } else {
     newciinfo = firstciinfo;
@@ -2633 +2667 @@
           newciinfo->freelist = p;
           newciinfo->freecounter++;
+          VALGRIND_MEMPOOL_FREE((char*)newciinfo, (char*)p);
+          VALGRIND_MAKE_MEM_DEFINED(p,sizeof(struct chunkinfo));
+          VALGRIND_MAKE_MEM_NOACCESS(p->size,     sizeof(INTERNAL_SIZE_T));
+          VALGRIND_MAKE_MEM_NOACCESS(p->req,      sizeof(INTERNAL_SIZE_T));
+          VALGRIND_MAKE_MEM_NOACCESS(p->bk,       sizeof(struct chunkinfo*));
+          VALGRIND_MAKE_MEM_NOACCESS(p->chunk,    sizeof(mchunkptr));
           if (UNLIKELY(newciinfo->freecounter == NUMBER_FREE_CHUNKS))
             freeciregion(newciinfo);
@@ -2738 +2778 @@
    }
    else {
+
       ci_insert->hash_next = ci_orig->hash_next;
       ci_orig->hash_next = ci_insert;
@@ -2797 +2838 @@
 }
 
-/* mmapped chunks are multiples of pagesize, no hash_nexts, just remove from the hashtable */
+/* mmapped chunks are multiples of pagesize, no hash_nexts, 
+ * just remove from the hashtable 
+ */
 #define hashtable_remove_mmapped(p) hashtable[hash(p)] = 0;
 
@@ -2807 +2850 @@
    
 #ifdef DNMALLOC_DEBUG
-   fprintf(stderr, "hashtable_ski: %p, %lu\n", chunk(ci_todelete), hash(chunk(ci_todelete)));
+   fprintf(stderr, "hashtable_skiprm: %p, %lu\n", chunk(ci_todelete), hash(chunk(ci_todelete)));
 #endif
 
@@ -3260 +3303 @@
 
   if (have_fastchunks(av)) {
+    Void_t * retval;
     assert(in_smallbin_range(nb));
     malloc_consolidate(av);
@@ -3265 +3309 @@
     fprintf(stderr, "Return sysmalloc have_fastchunks\n");
 #endif
-    return mALLOc(nb - MALLOC_ALIGN_MASK);
+    retval = mALLOc(nb - MALLOC_ALIGN_MASK);
+    VALGRIND_FREELIKE_BLOCK(retval, 0);
+    return retval;
   }
 
@@ -3296 +3342 @@
       if (mm != (char*)(MORECORE_FAILURE)) {
         
+        VALGRIND_MAKE_MEM_NOACCESS(mm,size);
+
         /*
           The offset to the start of the mmapped region is stored
@@ -3404 +3452 @@
   if (brk != (char*)(MORECORE_FAILURE)) {
     av->sbrked_mem += size;
+    VALGRIND_MAKE_MEM_NOACCESS(brk,size);
   }
 
@@ -3430 +3479 @@
       if (brk != (char*)(MORECORE_FAILURE)) {
         
+        VALGRIND_MAKE_MEM_NOACCESS(brk,size);
+
         av->mmapped_mem += size;
 #ifdef DNMALLOC_DEBUG
@@ -3574 +3625 @@
           set_noncontiguous(av);
         }
+        else {
+          VALGRIND_MAKE_MEM_NOACCESS(snd_brk,correction);
+        }
 
       }
@@ -3673 +3727 @@
             set_head(old_top, old_size | PREV_INUSE | INUSE);
             guard_set(av->guard_stored, old_top, 0, old_size);
+            VALGRIND_MALLOCLIKE_BLOCK(chunk(old_top), old_size, 0, 0);
             fREe(chunk(old_top));
             av->trim_threshold = tt;
@@ -3885 +3940 @@
       check_remalloced_chunk(victim, nb);
       guard_set(av->guard_stored, victim, bytes, nb);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
       return chunk(victim);
     }
@@ -3910 +3966 @@
       check_malloced_chunk(victim, nb);
       guard_set(av->guard_stored, victim, bytes, nb);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
       return chunk(victim);
     }
@@ -3970 +4027 @@
       check_malloced_chunk(victim, nb);
       guard_set(av->guard_stored, victim, bytes, nb);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
       return chunk(victim);
     }
@@ -3983 +4041 @@
       check_malloced_chunk(victim, nb);
       guard_set(av->guard_stored, victim, bytes, nb);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
       return chunk(victim);
     }
@@ -4058 +4117 @@
             check_malloced_chunk(victim, nb);
             guard_set(av->guard_stored, victim, bytes, nb);
+            VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
             return chunk(victim);
           } 
@@ -4065 +4125 @@
             check_malloced_chunk(victim, nb);
             guard_set(av->guard_stored, victim, bytes, nb);
+            VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
             return chunk(victim);
           }
@@ -4140 +4201 @@
         remainder->bk = remainder->fd = unsorted_chunks(av);
         /* advertise as last remainder */
-        if (in_smallbin_range(nb)) 
-          av->last_remainder = remainder; 
+        if (in_smallbin_range(nb))
+          av->last_remainder = remainder;
         
         set_head(victim, nb | PREV_INUSE | INUSE);
@@ -4148 +4209 @@
         check_malloced_chunk(victim, nb);
         guard_set(av->guard_stored, victim, bytes, nb);
+        VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
         return chunk(victim);
       }
@@ -4155 +4217 @@
         check_malloced_chunk(victim, nb);
         guard_set(av->guard_stored, victim, bytes, nb);
+        VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
         return chunk(victim);
       }
@@ -4183 +4246 @@
   
   if ((CHUNK_SIZE_T)(size) >= (CHUNK_SIZE_T)(nb + MINSIZE)) {
-     remainder = cireg_getfree();
+    remainder = cireg_getfree();
     remainder_size = size - nb;
     remainder->chunk = chunk_at_offset(chunk(victim), nb);
@@ -4192 +4255 @@
     check_malloced_chunk(victim, nb);
     guard_set(av->guard_stored, victim, bytes, nb);
+    VALGRIND_MALLOCLIKE_BLOCK(chunk(victim), bytes, 0, 0);
     return chunk(victim);
   }
@@ -4203 +4267 @@
     guard_set(av->guard_stored, victim, bytes, nb);
   }
+  VALGRIND_MALLOCLIKE_BLOCK(retval, bytes, 0, 0);
   return retval;
 }
@@ -4254 +4319 @@
       }
 
+    VALGRIND_FREELIKE_BLOCK(mem, 0);
+ 
     guard_check(av->guard_stored, p);
-
+    
     size = chunksize(p);
 
@@ -4471 +4538 @@
   */
   if (av && av->max_fast != 0) {
+
     clear_fastchunks(av);
 
@@ -4529 +4597 @@
               clear_previnuse(nextchunk);
             
+              /* if mmap is used instead of sbrk, we may have a
+               * chunk with !nextchunk->fd && !nextchunk->bk
+               */
               if (!inuse(nextchunk)) {
-                size += nextsize;
-                unlink(nextchunk, bck, fwd);
-                set_head(p, size | PREV_INUSE);
-                hashtable_skiprm(p,nextchunk);
-                freecilst_add(nextchunk);
+                if( nextchunk->fd && nextchunk->bk) {
+                  size += nextsize;
+                  unlink(nextchunk, bck, fwd);
+                  set_head(p, size | PREV_INUSE);
+                  hashtable_skiprm(p,nextchunk);
+                  freecilst_add(nextchunk);
+                }
               }
               
@@ -4551 +4624 @@
             }
           
-            else {
+            else if (nextchunk == av->top) {
               size += nextsize;
               set_head(p, size | PREV_INUSE);
@@ -4558 +4631 @@
               av->top = p;
             }
-          }
+          } /* if (nextchunk) */
           
         } while ( (p = nextp) != 0);
@@ -4646 +4719 @@
   }
 
+  VALGRIND_FREELIKE_BLOCK(oldmem, 0);
   guard_check(av->guard_stored, oldp);
 
@@ -4675 +4749 @@
          hashtable_insert(oldp, av->top);
          guard_set(av->guard_stored, oldp, bytes, nb);
+         VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), bytes, 0, 0); 
          return chunk(oldp);
       }
@@ -4696 +4771 @@
 
         newmem = mALLOc(nb - MALLOC_ALIGN_MASK);
-        if (newmem == 0)
+         if (newmem == 0)
           return 0; /* propagate failure */
 
@@ -4702 +4777 @@
         newsize = chunksize(newp);
         
+ 
         /* next = next_chunkinfo(oldp); *//* 'next' never used rw 19.05.2008 */
         /*
@@ -4720 +4796 @@
           */
           
+          VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), chunksize(oldp), 0, 0);
+
           copysize = oldsize;
           s = (INTERNAL_SIZE_T*)(oldmem);
@@ -4774 +4852 @@
       set_all_inuse(remainder);
       guard_set(av->guard_stored, remainder, 0, remainder_size);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(remainder), remainder_size, 0, 0);
       fREe(chunk(remainder)); 
     }
@@ -4783 +4862 @@
     check_inuse_chunk(newp);
     guard_set(av->guard_stored, newp, bytes, nb);
+    VALGRIND_MALLOCLIKE_BLOCK(chunk(newp), bytes, 0, 0);
     return chunk(newp);
   }
@@ -4798 +4878 @@
     CHUNK_SIZE_T  sum;
     
+
     /* Note the extra SIZE_SZ overhead */
     //newsize = (nb + offset + SIZE_SZ + pagemask) & ~pagemask;
@@ -4806 +4887 @@
       {
         guard_set(av->guard_stored, oldp, bytes, nb);
+        VALGRIND_FREELIKE_BLOCK(oldmem, 0);
+        VALGRIND_MALLOCLIKE_BLOCK(oldmem, bytes, 0, 0);
         return oldmem;
       }
@@ -4832 +4915 @@
       
       guard_set(av->guard_stored, oldp, bytes, nb);
+      VALGRIND_FREELIKE_BLOCK(oldmem, 0);
+      VALGRIND_MALLOCLIKE_BLOCK(chunk(oldp), bytes, 0, 0);
       return chunk(oldp);
     }
@@ -4847 +4932 @@
       }
     }
+    VALGRIND_MALLOCLIKE_BLOCK(newmem, bytes, 0, 0);
     guard_set(av->guard_stored, mem2chunk(newmem), bytes, nb);
     return newmem;

trunk/src/make-tests.sh

@@ -57 +57 @@
 int main(void)
 {
+#if !defined(USE_SYSTEM_MALLOC)
+    typedef void assert_handler_tp(const char * error, const char *file, int line);
+    extern assert_handler_tp *dnmalloc_set_handler(assert_handler_tp *new);
+    extern void safe_fatal  (const char * details, const char *f, int l);
+#endif
 #if !defined(USE_SYSTEM_MALLOC) && defined(USE_MALLOC_LOCK)
     extern int dnmalloc_pthread_init(void);
     dnmalloc_pthread_init();
+#endif
+#if !defined(USE_SYSTEM_MALLOC)
+    (void) dnmalloc_set_handler(safe_fatal);
 #endif
     int retval;

trunk/src/samhain.c

@@ -1220 +1220 @@
   int     my_argc = 0;
   char  * my_argv[32];
+#endif
+
+#if !defined(USE_SYSTEM_MALLOC)
+  typedef void assert_handler_tp(const char * error, const char *file, int line);
+  extern assert_handler_tp *dnmalloc_set_handler(assert_handler_tp *new);
+  (void) dnmalloc_set_handler(safe_fatal);
 #endif
 

trunk/src/sh_unix.c

@@ -557 +557 @@
 #endif
 {
-#if defined(SL_DEBUG)
+#if defined(SL_DEBUG) && (defined(USE_SYSTEM_MALLOC) || !defined(USE_MALLOC_LOCK))
   int retval;
 #endif
@@ -576 +576 @@
   /* Check whether the heap is ok; otherwise _exit 
    */
-#if !defined(SL_DEBUG)
+#if !defined(SL_DEBUG) || (!defined(USE_SYSTEM_MALLOC) && defined(USE_MALLOC_LOCK))
   ++immediate_exit_fast;
   if (skey != NULL && immediate_exit_fast < 2)