mirror/zig
1
0
Fork 0
mirror of https://github.com/ziglang/zig.git synced 2025-12-06 06:13:07 +00:00
Code Issues Packages Projects Releases Wiki Activity

std: make the use of pthread_join POSIX-compliant

Browse Source 
Applications supplying their own custom stack to pthread_create are not
allowed to free the allocated memory after pthread_join returns as,
according to the specification, the thread is not guaranteed to be dead
after the join call returns.

Avoid this class of problems by avoiding the use of a custom stack
altogether, let pthread handle its own resources.

Allocations made on the child stack are now done on the C heap.

Thanks @semarie for noticing the problem on OpenBSD and suggesting a
fix.

Closes #7275
This commit is contained in:
LemonBoy 2020-12-02 10:59:35 +01:00 committed by Andrew Kelley
parent 7add370371
commit 7c13bec7cb
2 changed files with 79 additions and 95 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lib/std/c.zig
View File

@ -271,6 +271,7 @@ pub extern "c" fn futimens(fd: fd_t, times: *const [2]timespec) c_int;
pub extern "c" fn pthread_create(noalias newthread: *pthread_t, noalias attr: ?*const pthread_attr_t, start_routine: fn (?*c_void) callconv(.C) ?*c_void, noalias arg: ?*c_void) c_int; pub extern "c" fn pthread_create(noalias newthread: *pthread_t, noalias attr: ?*const pthread_attr_t, start_routine: fn (?*c_void) callconv(.C) ?*c_void, noalias arg: ?*c_void) c_int;
pub extern "c" fn pthread_attr_init(attr: *pthread_attr_t) c_int; pub extern "c" fn pthread_attr_init(attr: *pthread_attr_t) c_int;
pub extern "c" fn pthread_attr_setstack(attr: *pthread_attr_t, stackaddr: *c_void, stacksize: usize) c_int; pub extern "c" fn pthread_attr_setstack(attr: *pthread_attr_t, stackaddr: *c_void, stacksize: usize) c_int;
pub extern "c" fn pthread_attr_setstacksize(attr: *pthread_attr_t, stacksize: usize) c_int;
pub extern "c" fn pthread_attr_setguardsize(attr: *pthread_attr_t, guardsize: usize) c_int; pub extern "c" fn pthread_attr_setguardsize(attr: *pthread_attr_t, guardsize: usize) c_int;
pub extern "c" fn pthread_attr_destroy(attr: *pthread_attr_t) c_int; pub extern "c" fn pthread_attr_destroy(attr: *pthread_attr_t) c_int;
pub extern "c" fn pthread_self() pthread_t; pub extern "c" fn pthread_self() pthread_t;

173
lib/std/thread.zig
View File

@ -40,7 +40,7 @@ pub const Thread = struct {
pub const Data = if (use_pthreads) pub const Data = if (use_pthreads)
struct { struct {
handle: Thread.Handle, handle: Thread.Handle,
memory: []align(mem.page_size) u8, memory: []u8,
} }
else switch (std.Target.current.os.tag) { else switch (std.Target.current.os.tag) {
.linux => struct { .linux => struct {
@ -63,10 +63,10 @@ pub const Thread = struct {
return c.pthread_self(); return c.pthread_self();
} else } else
return switch (std.Target.current.os.tag) { return switch (std.Target.current.os.tag) {
.linux => os.linux.gettid(), .linux => os.linux.gettid(),
.windows => windows.kernel32.GetCurrentThreadId(), .windows => windows.kernel32.GetCurrentThreadId(),
else => @compileError("Unsupported OS"), else => @compileError("Unsupported OS"),
}; };
} }
/// Returns the handle of this thread. /// Returns the handle of this thread.
@ -79,7 +79,7 @@ pub const Thread = struct {
return self.data.handle; return self.data.handle;
} }
pub fn wait(self: *const Thread) void { pub fn wait(self: *Thread) void {
if (use_pthreads) { if (use_pthreads) {
const err = c.pthread_join(self.data.handle, null); const err = c.pthread_join(self.data.handle, null);
switch (err) { switch (err) {
@ -89,7 +89,8 @@ pub const Thread = struct {
os.EDEADLK => unreachable, os.EDEADLK => unreachable,
else => unreachable, else => unreachable,
} }
os.munmap(self.data.memory); std.heap.c_allocator.free(self.data.memory);
std.heap.c_allocator.destroy(self);
} else switch (std.Target.current.os.tag) { } else switch (std.Target.current.os.tag) {
.linux => { .linux => {
while (true) { while (true) {
@ -292,6 +293,47 @@ pub const Thread = struct {
} }
}; };
if (Thread.use_pthreads) {
var attr: c.pthread_attr_t = undefined;
if (c.pthread_attr_init(&attr) != 0) return error.SystemResources;
defer assert(c.pthread_attr_destroy(&attr) == 0);
const thread_obj = try std.heap.c_allocator.create(Thread);
errdefer std.heap.c_allocator.destroy(thread_obj);
if (@sizeOf(Context) > 0) {
thread_obj.data.memory = try std.heap.c_allocator.allocAdvanced(
u8,
@alignOf(Context),
@sizeOf(Context),
.at_least,
);
errdefer std.heap.c_allocator.free(thread_obj.data.memory);
mem.copy(u8, thread_obj.data.memory, mem.asBytes(&context));
} else {
thread_obj.data.memory = @as([*]u8, undefined)[0..0];
}
// Use the same set of parameters used by the libc-less impl.
assert(c.pthread_attr_setstacksize(&attr, default_stack_size) == 0);
assert(c.pthread_attr_setguardsize(&attr, mem.page_size) == 0);
const err = c.pthread_create(
&thread_obj.data.handle,
&attr,
MainFuncs.posixThreadMain,
thread_obj.data.memory.ptr,
);
switch (err) {
0 => return thread_obj,
os.EAGAIN => return error.SystemResources,
os.EPERM => unreachable,
os.EINVAL => unreachable,
else => return os.unexpectedErrno(@intCast(usize, err)),
}
return thread_obj;
}
var guard_end_offset: usize = undefined; var guard_end_offset: usize = undefined;
var stack_end_offset: usize = undefined; var stack_end_offset: usize = undefined;
var thread_start_offset: usize = undefined; var thread_start_offset: usize = undefined;
@ -315,74 +357,41 @@ pub const Thread = struct {
l += @sizeOf(Context); l += @sizeOf(Context);
} }
// Finally, the Thread Local Storage, if any. // Finally, the Thread Local Storage, if any.
if (!Thread.use_pthreads) { l = mem.alignForward(l, os.linux.tls.tls_image.alloc_align);
l = mem.alignForward(l, os.linux.tls.tls_image.alloc_align); tls_start_offset = l;
tls_start_offset = l; l += os.linux.tls.tls_image.alloc_size;
l += os.linux.tls.tls_image.alloc_size;
}
// Round the size to the page size. // Round the size to the page size.
break :blk mem.alignForward(l, mem.page_size); break :blk mem.alignForward(l, mem.page_size);
}; };
const mmap_slice = mem: { const mmap_slice = mem: {
if (std.Target.current.os.tag != .netbsd) { // Map the whole stack with no rw permissions to avoid
// Map the whole stack with no rw permissions to avoid // committing the whole region right away
// committing the whole region right away const mmap_slice = os.mmap(
const mmap_slice = os.mmap( null,
null, mmap_len,
mmap_len, os.PROT_NONE,
os.PROT_NONE, os.MAP_PRIVATE | os.MAP_ANONYMOUS,
os.MAP_PRIVATE | os.MAP_ANONYMOUS, -1,
-1, 0,
0, ) catch |err| switch (err) {
) catch |err| switch (err) { error.MemoryMappingNotSupported => unreachable,
error.MemoryMappingNotSupported => unreachable, error.AccessDenied => unreachable,
error.AccessDenied => unreachable, error.PermissionDenied => unreachable,
error.PermissionDenied => unreachable, else => |e| return e,
else => |e| return e, };
}; errdefer os.munmap(mmap_slice);
errdefer os.munmap(mmap_slice);
// Map everything but the guard page as rw // Map everything but the guard page as rw
os.mprotect( os.mprotect(
mmap_slice[guard_end_offset..], mmap_slice[guard_end_offset..],
os.PROT_READ | os.PROT_WRITE, os.PROT_READ | os.PROT_WRITE,
) catch |err| switch (err) { ) catch |err| switch (err) {
error.AccessDenied => unreachable, error.AccessDenied => unreachable,
else => |e| return e, else => |e| return e,
}; };
break :mem mmap_slice; break :mem mmap_slice;
} else {
// NetBSD mprotect is very strict and doesn't allow to "upgrade"
// a PROT_NONE mapping to a RW one so let's allocate everything
// right away
const mmap_slice = os.mmap(
null,
mmap_len,
os.PROT_READ | os.PROT_WRITE,
os.MAP_PRIVATE | os.MAP_ANONYMOUS,
-1,
0,
) catch |err| switch (err) {
error.MemoryMappingNotSupported => unreachable,
error.AccessDenied => unreachable,
error.PermissionDenied => unreachable,
else => |e| return e,
};
errdefer os.munmap(mmap_slice);
// Remap the guard page with no permissions
os.mprotect(
mmap_slice[0..guard_end_offset],
os.PROT_NONE,
) catch |err| switch (err) {
error.AccessDenied => unreachable,
else => |e| return e,
};
break :mem mmap_slice;
}
}; };
const mmap_addr = @ptrToInt(mmap_slice.ptr); const mmap_addr = @ptrToInt(mmap_slice.ptr);
@ -397,33 +406,7 @@ pub const Thread = struct {
context_ptr.* = context; context_ptr.* = context;
} }
if (Thread.use_pthreads) { if (std.Target.current.os.tag == .linux) {
// use pthreads
var attr: c.pthread_attr_t = undefined;
if (c.pthread_attr_init(&attr) != 0) return error.SystemResources;
defer assert(c.pthread_attr_destroy(&attr) == 0);
// Tell pthread where the effective stack start is and its size
assert(c.pthread_attr_setstack(
&attr,
mmap_slice.ptr + guard_end_offset,
stack_end_offset - guard_end_offset,
) == 0);
// Even though pthread's man pages state that the guard size is
// ignored when the stack address is explicitly given, on some
// plaforms such as NetBSD we still have to zero it to prevent
// random crashes in pthread_join calls
assert(c.pthread_attr_setguardsize(&attr, 0) == 0);
const err = c.pthread_create(&thread_ptr.data.handle, &attr, MainFuncs.posixThreadMain, @intToPtr(*c_void, arg));
switch (err) {
0 => return thread_ptr,
os.EAGAIN => return error.SystemResources,
os.EPERM => unreachable,
os.EINVAL => unreachable,
else => return os.unexpectedErrno(@intCast(usize, err)),
}
} else if (std.Target.current.os.tag == .linux) {
const flags: u32 = os.CLONE_VM | os.CLONE_FS | os.CLONE_FILES | const flags: u32 = os.CLONE_VM | os.CLONE_FS | os.CLONE_FILES |
os.CLONE_SIGHAND | os.CLONE_THREAD | os.CLONE_SYSVSEM | os.CLONE_SIGHAND | os.CLONE_THREAD | os.CLONE_SYSVSEM |
os.CLONE_PARENT_SETTID | os.CLONE_CHILD_CLEARTID | os.CLONE_PARENT_SETTID | os.CLONE_CHILD_CLEARTID |