src/bringup/bin/critical-services/crashsvc/crashsvc-test.cc - fuchsia - Git at Google

 // Copyright 2019 The Fuchsia Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "src/bringup/bin/critical-services/crashsvc/crashsvc.h"

 #include <fidl/fuchsia.exception/cpp/wire.h>
 #include <lib/async-loop/cpp/loop.h>
 #include <lib/async-loop/default.h>
 #include <lib/async-loop/testing/cpp/real_loop.h>
 #include <lib/async/cpp/wait.h>
 #include <lib/component/incoming/cpp/protocol.h>
 #include <lib/component/outgoing/cpp/outgoing_directory.h>
 #include <lib/fidl/cpp/wire/server.h>
 #include <lib/zx/event.h>
 #include <lib/zx/exception.h>
 #include <lib/zx/job.h>
 #include <lib/zx/process.h>
 #include <lib/zx/result.h>
 #include <lib/zx/thread.h>
 #include <lib/zx/time.h>
 #include <lib/zx/vmar.h>
 #include <threads.h>
 #include <zircon/syscalls/exception.h>
 #include <zircon/syscalls/object.h>

 #include <list>
 #include <memory>

 #include <mini-process/mini-process.h>
 #include <zxtest/zxtest.h>

 #include "src/bringup/bin/critical-services/crashsvc/exception_handler.h"

 namespace {

 // Crashsvc will attempt to connect to a |fuchsia.exception.Handler| when it catches an exception.
 // We use this fake in order to verify that behaviour.
 class StubExceptionHandler final : public fidl::WireServer<fuchsia_exception::Handler> {
  public:
   void Connect(async_dispatcher_t* dispatcher,
                fidl::ServerEnd<fuchsia_exception::Handler> request) {
     binding_.emplace(dispatcher, std::move(request), this, fidl::kIgnoreBindingClosure);
   }

   // fuchsia.exception.Handler
   void OnException(OnExceptionRequestView request, OnExceptionCompleter::Sync& completer) override {
     exception_count_++;
     if (respond_sync_) {
       completer.Reply();
     } else {
       on_exception_completers_.push_back(completer.ToAsync());
     }
   }

   void IsActive(IsActiveCompleter::Sync& completer) override {
     if (is_active_) {
       completer.Reply();
     } else {
       is_active_completers_.push_back(completer.ToAsync());
     }
   }

   void SendAsyncResponses() {
     for (auto& completer : on_exception_completers_) {
       completer.Reply();
     }

     on_exception_completers_.clear();
   }

   void SetRespondSync(bool val) { respond_sync_ = val; }

   void SetIsActive(bool val) {
     is_active_ = val;
     if (!is_active_) {
       return;
     }

     for (auto& completer : is_active_completers_) {
       completer.Reply();
     }

     is_active_completers_.clear();
   }

   zx_status_t Unbind() {
     if (!binding_.has_value()) {
       return ZX_ERR_BAD_STATE;
     }
     binding_.value().Close(ZX_ERR_PEER_CLOSED);
     binding_ = std::nullopt;
     return ZX_OK;
   }

   bool HasClient() const { return binding_.has_value(); }

   int exception_count() const { return exception_count_; }

  private:
   std::optional<fidl::ServerBinding<fuchsia_exception::Handler>> binding_;

   int exception_count_ = 0;
   bool respond_sync_{true};
   bool is_active_{true};
   std::list<OnExceptionCompleter::Async> on_exception_completers_;
   std::list<IsActiveCompleter::Async> is_active_completers_;
 };

 // Exposes the services through a virtual directory that crashsvc uses in order to connect to
 // services. We use this to inject a |StubExceptionHandler| for the |fuchsia.exception.Handler|
 // service.
 class FakeService {
  public:
   explicit FakeService(async_dispatcher_t* dispatcher) : outgoing_(dispatcher) {
     zx::result endpoints = fidl::CreateEndpoints<fuchsia_io::Directory>();
     ASSERT_OK(endpoints);
     auto& [client, server] = endpoints.value();

     ASSERT_OK(outgoing_.AddUnmanagedProtocol<fuchsia_exception::Handler>(
         [this, dispatcher](fidl::ServerEnd<fuchsia_exception::Handler> request) {
           exception_handler_.Connect(dispatcher, std::move(request));
         }));
     ASSERT_OK(outgoing_.Serve(std::move(server)));

     zx::result remote = fidl::CreateEndpoints(&svc_local_);
     ASSERT_OK(remote.status_value());
     ASSERT_OK(component::ConnectAt(client, std::move(remote.value()),
                                    component::OutgoingDirectory::kServiceDirectory));
   }

   StubExceptionHandler& exception_handler() { return exception_handler_; }
   fidl::ClientEnd<fuchsia_io::Directory> take_service_channel() { return std::move(svc_local_); }

  private:
   StubExceptionHandler exception_handler_;
   fidl::ClientEnd<fuchsia_io::Directory> svc_local_;
   component::OutgoingDirectory outgoing_;
 };

 class TestBase : public zxtest::Test, public loop_fixture::RealLoop {
  public:
   void SetUp() final {
     ASSERT_OK(zx::job::create(*zx::job::default_job(), 0, &parent_job_));
     ASSERT_OK(parent_job_.create_exception_channel(0, &exception_channel_));

     ASSERT_OK(zx::job::create(parent_job_, 0, &job_));
   }

   void TearDown() override { loop().Shutdown(); }

   // Synchronously creates a process under |job_| that immediately crashes.
   void GenerateException() const {
     zx::process process;
     zx::thread thread;
     GenerateException(&process, &thread);
   }

   // Synchronously creates a process under |job_| that requests a backtrace.
   void GenerateBacktraceRequest() {
     zx::channel command_channel;
     zx::process process;
     zx::thread thread;
     ASSERT_NO_FATAL_FAILURE(CreateMiniProcess(&process, &thread, &command_channel));

     printf("Intentionally dumping test thread '%s', the following dump is expected\n", kTaskName);
     ASSERT_OK(mini_process_cmd_send(command_channel.get(), MINIP_CMD_BACKTRACE_REQUEST));
     RunLoopUntil([&]() {
       zx_status_t status =
           command_channel.wait_one(ZX_CHANNEL_READABLE, zx::time::infinite_past(), nullptr);
       if (status != ZX_OK) {
         EXPECT_STATUS(ZX_ERR_TIMED_OUT, status);
       }
       return status != ZX_ERR_TIMED_OUT;
     });
     ASSERT_OK(mini_process_cmd_read_reply(command_channel.get(), nullptr));
   }

   // Generates a new exception so the ExceptionHandler FIDL message sent by crashsvc can be
   // analyzed.
   void AnalyzeCrash() {
     zx::process process;
     zx::thread thread;
     ASSERT_NO_FATAL_FAILURE(GenerateException(&process, &thread));

     // Wait for the exception to bubble up and reset it so it doesn't escape the test environment.
     auto exception = ReadPendingException(zx::duration::infinite());
     ASSERT_OK(exception);
     exception->first.reset();
   }

   // Synchronously read and return the exception from |exception_channel_| within |limit|.
   zx::result<std::pair<zx::exception, zx_exception_info_t>> ReadPendingException(
       const zx::duration limit) {
     async::WaitOnce wait(exception_channel().get(), ZX_CHANNEL_READABLE);
     zx_status_t status = wait.Begin(
         dispatcher(),
         [quit = QuitLoopClosure()](async_dispatcher_t* dispatcher, async::WaitOnce* wait,
                                    zx_status_t status, const zx_packet_signal_t* signal) {
           EXPECT_OK(status);
           quit();
         });
     ZX_ASSERT_MSG(status == ZX_OK, "Beginning a wait must succeed in this test: %s",
                   zx_status_get_string(status));

     if (RunLoopWithTimeout(limit)) {
       return zx::error(ZX_ERR_TIMED_OUT);
     }

     zx_exception_info_t info;
     zx::exception exception;
     if (const auto status = exception_channel().read(0, &info, exception.reset_and_get_address(),
                                                      sizeof(info), 1, nullptr, nullptr);
         status != ZX_OK) {
       return zx::error(status);
     }

     return zx::ok(std::make_pair(std::move(exception), info));
   }

   fidl::ClientEnd<fuchsia_io::Directory> take_service_channel() {
     return fake_service_.take_service_channel();
   }

   StubExceptionHandler& stub_handler() { return fake_service_.exception_handler(); }

   const zx::job& job() const { return job_; }
   zx::job& job() { return job_; }

   const zx::channel& exception_channel() const { return exception_channel_; }
   zx::channel& exception_channel() { return exception_channel_; }

  private:
   static constexpr char kTaskName[] = "crashsvc-test";
   static constexpr uint32_t kTaskNameLen = sizeof(kTaskName) - 1;

   // Creates a mini-process under |job_|.
   void CreateMiniProcess(zx::process* process, zx::thread* thread,
                          zx::channel* command_channel) const {
     zx::vmar vmar;
     ASSERT_OK(zx::process::create(job(), kTaskName, kTaskNameLen, 0, process, &vmar));
     ASSERT_OK(zx::thread::create(*process, kTaskName, kTaskNameLen, 0, thread));

     zx::event event;
     ASSERT_OK(zx::event::create(0, &event));

     ASSERT_OK(start_mini_process_etc(process->get(), thread->get(), vmar.get(), event.release(),
                                      true, command_channel->reset_and_get_address()));
   }

   // Synchronously creates a process under |job_| that immediately crashes.
   void GenerateException(zx::process* process, zx::thread* thread) const {
     zx::channel command_channel;
     ASSERT_NO_FATAL_FAILURE(CreateMiniProcess(process, thread, &command_channel));

     // Use mini_process_cmd_send() here to send but not wait for a response
     // so we can handle the exception.
     printf("Intentionally crashing test thread '%s', the following dump is expected\n", kTaskName);
     ASSERT_OK(mini_process_cmd_send(command_channel.get(), MINIP_CMD_BUILTIN_TRAP));
   }

   FakeService fake_service_{dispatcher()};

   zx::job parent_job_;
   zx::job job_;
   zx::channel exception_channel_;
 };

 class CrashsvcTest : public TestBase {
  public:
   void TearDown() final {
     // Kill |job_| to stop exception handling and crashsvc
     ASSERT_OK(job().kill());
   }

   void StartCrashsvc(bool with_svc = false) {
     zx::channel exception_channel;
     ASSERT_OK(job().create_exception_channel(0, &exception_channel));
     fidl::ClientEnd<fuchsia_io::Directory> svc;
     if (with_svc) {
       svc = take_service_channel();
     }
     async::PostTask(loop().dispatcher(), [dispatcher = loop().dispatcher(),
                                           exception_channel = std::move(exception_channel),
                                           svc = std::move(svc)]() mutable {
       zx::result result = start_crashsvc(dispatcher, std::move(exception_channel), std::move(svc));
       ASSERT_OK(result);
       // Move the wait onto the dispatcher so that it is destroyed on its thread.
       async::PostDelayedTask(
           dispatcher, [wait = std::move(result.value())]() {}, zx::duration::infinite());
     });
   }

   zx_status_t CheckPendingException(const zx::duration limit) {
     const auto exception = ReadPendingException(limit);
     return exception.status_value();
   }
 };

 TEST_F(CrashsvcTest, StartAndStop) { ASSERT_NO_FATAL_FAILURE(StartCrashsvc()); }

 TEST_F(CrashsvcTest, ThreadCrashNoExceptionHandler) {
   // crashsvc should pass the exception up the chain when done.
   ASSERT_NO_FATAL_FAILURE(StartCrashsvc());
   ASSERT_NO_FATAL_FAILURE(GenerateException());
   ASSERT_OK(CheckPendingException(zx::duration::infinite()));
 }

 TEST_F(CrashsvcTest, ThreadBacktraceNoExceptionHandler) {
   // The backtrace request exception should not make it out of crashsvc.
   ASSERT_NO_FATAL_FAILURE(StartCrashsvc());
   ASSERT_NO_FATAL_FAILURE(GenerateBacktraceRequest());
   ASSERT_EQ(CheckPendingException(zx::sec(0)), ZX_ERR_TIMED_OUT);
 }

 TEST_F(CrashsvcTest, ExceptionHandlerSuccess) {
   // crashsvc should pass the exception to the stub handler.
   ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

   RunLoopUntilIdle();
   EXPECT_EQ(stub_handler().exception_count(), 1);
 }

 TEST_F(CrashsvcTest, ExceptionHandlerAsync) {
   // We tell the stub exception handler to not respond immediately to test that this does not block
   // crashsvc from further processing other exceptions.
   stub_handler().SetRespondSync(false);

   ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));

   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

   RunLoopUntilIdle();
   EXPECT_EQ(stub_handler().exception_count(), 4);

   // We now tell the stub exception handler to respond all the pending requests it had, which would
   // trigger the (empty) callbacks in crashsvc on the next async loop run.
   stub_handler().SendAsyncResponses();
   RunLoopUntilIdle();
 }

 TEST_F(CrashsvcTest, MultipleThreadExceptionHandler) {
   ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));

   // Make sure crashsvc continues to loop no matter what the exception handler does.
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
   ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

   RunLoopUntilIdle();
   EXPECT_EQ(stub_handler().exception_count(), 4);
 }

 TEST_F(CrashsvcTest, ThreadBacktraceExceptionHandler) {
   // Thread backtrace requests shouldn't be sent out to the exception handler.
   ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));
   ASSERT_NO_FATAL_FAILURE(GenerateBacktraceRequest());

   RunLoopUntilIdle();
   EXPECT_EQ(stub_handler().exception_count(), 0);
 }

 constexpr auto kExceptionHandlerTimeout = zx::sec(3);

 class ExceptionHandlerTest : public TestBase {
  public:
 };

 TEST_F(ExceptionHandlerTest, ExceptionHandlerReconnects) {
   ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

   RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
   ASSERT_TRUE(stub_handler().HasClient());

   // Simulates crashsvc losing connection with fuchsia.exception.Handler.
   ASSERT_OK(stub_handler().Unbind());

   RunLoopUntil([&handler] { return !handler.ConnectedToServer(); });
   ASSERT_FALSE(stub_handler().HasClient());

   // Create an invalid exception to trigger the reconnection logic.
   handler.Handle(zx::exception{}, zx_exception_info_t{});

   RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
   ASSERT_TRUE(stub_handler().HasClient());
 }

 TEST_F(ExceptionHandlerTest, ExceptionHandlerWaitsForIsActive) {
   ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

   zx::channel exception_channel_self;
   ASSERT_OK(zx::job::default_job()->create_exception_channel(0, &exception_channel_self));

   // Instructs the stub to not respond to calls to IsActive.
   stub_handler().SetIsActive(false);

   RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
   ASSERT_TRUE(stub_handler().HasClient());

   ASSERT_NO_FATAL_FAILURE(GenerateException());

   auto exception = ReadPendingException(zx::duration::infinite());
   ASSERT_OK(exception);

   // Handle the exception.
   handler.Handle(std::move(exception->first), exception->second);
   ASSERT_EQ(stub_handler().exception_count(), 0u);

   stub_handler().SetIsActive(true);
   RunLoopUntil([&stub = stub_handler()] { return stub.exception_count() == 1; });
 }

 TEST_F(ExceptionHandlerTest, ExceptionHandlerIsActiveTimeOut) {
   ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

   zx::channel exception_channel_self;
   ASSERT_OK(zx::job::default_job()->create_exception_channel(0, &exception_channel_self));

   // Instructs the stub to not respond to calls to IsActive.
   stub_handler().SetIsActive(false);

   RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
   ASSERT_TRUE(stub_handler().HasClient());

   ASSERT_NO_FATAL_FAILURE(GenerateException());

   auto exception = ReadPendingException(zx::duration::infinite());
   ASSERT_OK(exception);

   // Handle the exception.
   handler.Handle(std::move(exception->first), exception->second);

   RunLoopWithTimeout(kExceptionHandlerTimeout);
   ASSERT_EQ(stub_handler().exception_count(), 0u);

   // The exception should be passed up the chain after the timeout. Once we get the exception, kill
   // the job which will stop exception handling and cause the crashsvc thread to exit.
   //
   // Use a non-infinite timeout to prevent hangs.
   ASSERT_OK(exception_channel_self.wait_one(ZX_CHANNEL_READABLE, zx::deadline_after(zx::sec(3)),
                                             nullptr));
 }

 }  // namespace
	// Copyright 2019 The Fuchsia Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "src/bringup/bin/critical-services/crashsvc/crashsvc.h"

	#include <fidl/fuchsia.exception/cpp/wire.h>
	#include <lib/async-loop/cpp/loop.h>
	#include <lib/async-loop/default.h>
	#include <lib/async-loop/testing/cpp/real_loop.h>
	#include <lib/async/cpp/wait.h>
	#include <lib/component/incoming/cpp/protocol.h>
	#include <lib/component/outgoing/cpp/outgoing_directory.h>
	#include <lib/fidl/cpp/wire/server.h>
	#include <lib/zx/event.h>
	#include <lib/zx/exception.h>
	#include <lib/zx/job.h>
	#include <lib/zx/process.h>
	#include <lib/zx/result.h>
	#include <lib/zx/thread.h>
	#include <lib/zx/time.h>
	#include <lib/zx/vmar.h>
	#include <threads.h>
	#include <zircon/syscalls/exception.h>
	#include <zircon/syscalls/object.h>

	#include <list>
	#include <memory>

	#include <mini-process/mini-process.h>
	#include <zxtest/zxtest.h>

	#include "src/bringup/bin/critical-services/crashsvc/exception_handler.h"

	namespace {

	// Crashsvc will attempt to connect to a \|fuchsia.exception.Handler\| when it catches an exception.
	// We use this fake in order to verify that behaviour.
	class StubExceptionHandler final : public fidl::WireServer<fuchsia_exception::Handler> {
	public:
	void Connect(async_dispatcher_t* dispatcher,
	fidl::ServerEnd<fuchsia_exception::Handler> request) {
	binding_.emplace(dispatcher, std::move(request), this, fidl::kIgnoreBindingClosure);
	}

	// fuchsia.exception.Handler
	void OnException(OnExceptionRequestView request, OnExceptionCompleter::Sync& completer) override {
	exception_count_++;
	if (respond_sync_) {
	completer.Reply();
	} else {
	on_exception_completers_.push_back(completer.ToAsync());
	}
	}

	void IsActive(IsActiveCompleter::Sync& completer) override {
	if (is_active_) {
	completer.Reply();
	} else {
	is_active_completers_.push_back(completer.ToAsync());
	}
	}

	void SendAsyncResponses() {
	for (auto& completer : on_exception_completers_) {
	completer.Reply();
	}

	on_exception_completers_.clear();
	}

	void SetRespondSync(bool val) { respond_sync_ = val; }

	void SetIsActive(bool val) {
	is_active_ = val;
	if (!is_active_) {
	return;
	}

	for (auto& completer : is_active_completers_) {
	completer.Reply();
	}

	is_active_completers_.clear();
	}

	zx_status_t Unbind() {
	if (!binding_.has_value()) {
	return ZX_ERR_BAD_STATE;
	}
	binding_.value().Close(ZX_ERR_PEER_CLOSED);
	binding_ = std::nullopt;
	return ZX_OK;
	}

	bool HasClient() const { return binding_.has_value(); }

	int exception_count() const { return exception_count_; }

	private:
	std::optional<fidl::ServerBinding<fuchsia_exception::Handler>> binding_;

	int exception_count_ = 0;
	bool respond_sync_{true};
	bool is_active_{true};
	std::list<OnExceptionCompleter::Async> on_exception_completers_;
	std::list<IsActiveCompleter::Async> is_active_completers_;
	};

	// Exposes the services through a virtual directory that crashsvc uses in order to connect to
	// services. We use this to inject a \|StubExceptionHandler\| for the \|fuchsia.exception.Handler\|
	// service.
	class FakeService {
	public:
	explicit FakeService(async_dispatcher_t* dispatcher) : outgoing_(dispatcher) {
	zx::result endpoints = fidl::CreateEndpoints<fuchsia_io::Directory>();
	ASSERT_OK(endpoints);
	auto& [client, server] = endpoints.value();

	ASSERT_OK(outgoing_.AddUnmanagedProtocol<fuchsia_exception::Handler>(
	[this, dispatcher](fidl::ServerEnd<fuchsia_exception::Handler> request) {
	exception_handler_.Connect(dispatcher, std::move(request));
	}));
	ASSERT_OK(outgoing_.Serve(std::move(server)));

	zx::result remote = fidl::CreateEndpoints(&svc_local_);
	ASSERT_OK(remote.status_value());
	ASSERT_OK(component::ConnectAt(client, std::move(remote.value()),
	component::OutgoingDirectory::kServiceDirectory));
	}

	StubExceptionHandler& exception_handler() { return exception_handler_; }
	fidl::ClientEnd<fuchsia_io::Directory> take_service_channel() { return std::move(svc_local_); }

	private:
	StubExceptionHandler exception_handler_;
	fidl::ClientEnd<fuchsia_io::Directory> svc_local_;
	component::OutgoingDirectory outgoing_;
	};

	class TestBase : public zxtest::Test, public loop_fixture::RealLoop {
	public:
	void SetUp() final {
	ASSERT_OK(zx::job::create(*zx::job::default_job(), 0, &parent_job_));
	ASSERT_OK(parent_job_.create_exception_channel(0, &exception_channel_));

	ASSERT_OK(zx::job::create(parent_job_, 0, &job_));
	}

	void TearDown() override { loop().Shutdown(); }

	// Synchronously creates a process under \|job_\| that immediately crashes.
	void GenerateException() const {
	zx::process process;
	zx::thread thread;
	GenerateException(&process, &thread);
	}

	// Synchronously creates a process under \|job_\| that requests a backtrace.
	void GenerateBacktraceRequest() {
	zx::channel command_channel;
	zx::process process;
	zx::thread thread;
	ASSERT_NO_FATAL_FAILURE(CreateMiniProcess(&process, &thread, &command_channel));

	printf("Intentionally dumping test thread '%s', the following dump is expected\n", kTaskName);
	ASSERT_OK(mini_process_cmd_send(command_channel.get(), MINIP_CMD_BACKTRACE_REQUEST));
	RunLoopUntil([&]() {
	zx_status_t status =
	command_channel.wait_one(ZX_CHANNEL_READABLE, zx::time::infinite_past(), nullptr);
	if (status != ZX_OK) {
	EXPECT_STATUS(ZX_ERR_TIMED_OUT, status);
	}
	return status != ZX_ERR_TIMED_OUT;
	});
	ASSERT_OK(mini_process_cmd_read_reply(command_channel.get(), nullptr));
	}

	// Generates a new exception so the ExceptionHandler FIDL message sent by crashsvc can be
	// analyzed.
	void AnalyzeCrash() {
	zx::process process;
	zx::thread thread;
	ASSERT_NO_FATAL_FAILURE(GenerateException(&process, &thread));

	// Wait for the exception to bubble up and reset it so it doesn't escape the test environment.
	auto exception = ReadPendingException(zx::duration::infinite());
	ASSERT_OK(exception);
	exception->first.reset();
	}

	// Synchronously read and return the exception from \|exception_channel_\| within \|limit\|.
	zx::result<std::pair<zx::exception, zx_exception_info_t>> ReadPendingException(
	const zx::duration limit) {
	async::WaitOnce wait(exception_channel().get(), ZX_CHANNEL_READABLE);
	zx_status_t status = wait.Begin(
	dispatcher(),
	[quit = QuitLoopClosure()](async_dispatcher_t* dispatcher, async::WaitOnce* wait,
	zx_status_t status, const zx_packet_signal_t* signal) {
	EXPECT_OK(status);
	quit();
	});
	ZX_ASSERT_MSG(status == ZX_OK, "Beginning a wait must succeed in this test: %s",
	zx_status_get_string(status));

	if (RunLoopWithTimeout(limit)) {
	return zx::error(ZX_ERR_TIMED_OUT);
	}

	zx_exception_info_t info;
	zx::exception exception;
	if (const auto status = exception_channel().read(0, &info, exception.reset_and_get_address(),
	sizeof(info), 1, nullptr, nullptr);
	status != ZX_OK) {
	return zx::error(status);
	}

	return zx::ok(std::make_pair(std::move(exception), info));
	}

	fidl::ClientEnd<fuchsia_io::Directory> take_service_channel() {
	return fake_service_.take_service_channel();
	}

	StubExceptionHandler& stub_handler() { return fake_service_.exception_handler(); }

	const zx::job& job() const { return job_; }
	zx::job& job() { return job_; }

	const zx::channel& exception_channel() const { return exception_channel_; }
	zx::channel& exception_channel() { return exception_channel_; }

	private:
	static constexpr char kTaskName[] = "crashsvc-test";
	static constexpr uint32_t kTaskNameLen = sizeof(kTaskName) - 1;

	// Creates a mini-process under \|job_\|.
	void CreateMiniProcess(zx::process* process, zx::thread* thread,
	zx::channel* command_channel) const {
	zx::vmar vmar;
	ASSERT_OK(zx::process::create(job(), kTaskName, kTaskNameLen, 0, process, &vmar));
	ASSERT_OK(zx::thread::create(*process, kTaskName, kTaskNameLen, 0, thread));

	zx::event event;
	ASSERT_OK(zx::event::create(0, &event));

	ASSERT_OK(start_mini_process_etc(process->get(), thread->get(), vmar.get(), event.release(),
	true, command_channel->reset_and_get_address()));
	}

	// Synchronously creates a process under \|job_\| that immediately crashes.
	void GenerateException(zx::process* process, zx::thread* thread) const {
	zx::channel command_channel;
	ASSERT_NO_FATAL_FAILURE(CreateMiniProcess(process, thread, &command_channel));

	// Use mini_process_cmd_send() here to send but not wait for a response
	// so we can handle the exception.
	printf("Intentionally crashing test thread '%s', the following dump is expected\n", kTaskName);
	ASSERT_OK(mini_process_cmd_send(command_channel.get(), MINIP_CMD_BUILTIN_TRAP));
	}

	FakeService fake_service_{dispatcher()};

	zx::job parent_job_;
	zx::job job_;
	zx::channel exception_channel_;
	};

	class CrashsvcTest : public TestBase {
	public:
	void TearDown() final {
	// Kill \|job_\| to stop exception handling and crashsvc
	ASSERT_OK(job().kill());
	}

	void StartCrashsvc(bool with_svc = false) {
	zx::channel exception_channel;
	ASSERT_OK(job().create_exception_channel(0, &exception_channel));
	fidl::ClientEnd<fuchsia_io::Directory> svc;
	if (with_svc) {
	svc = take_service_channel();
	}
	async::PostTask(loop().dispatcher(), [dispatcher = loop().dispatcher(),
	exception_channel = std::move(exception_channel),
	svc = std::move(svc)]() mutable {
	zx::result result = start_crashsvc(dispatcher, std::move(exception_channel), std::move(svc));
	ASSERT_OK(result);
	// Move the wait onto the dispatcher so that it is destroyed on its thread.
	async::PostDelayedTask(
	dispatcher, [wait = std::move(result.value())]() {}, zx::duration::infinite());
	});
	}

	zx_status_t CheckPendingException(const zx::duration limit) {
	const auto exception = ReadPendingException(limit);
	return exception.status_value();
	}
	};

	TEST_F(CrashsvcTest, StartAndStop) { ASSERT_NO_FATAL_FAILURE(StartCrashsvc()); }

	TEST_F(CrashsvcTest, ThreadCrashNoExceptionHandler) {
	// crashsvc should pass the exception up the chain when done.
	ASSERT_NO_FATAL_FAILURE(StartCrashsvc());
	ASSERT_NO_FATAL_FAILURE(GenerateException());
	ASSERT_OK(CheckPendingException(zx::duration::infinite()));
	}

	TEST_F(CrashsvcTest, ThreadBacktraceNoExceptionHandler) {
	// The backtrace request exception should not make it out of crashsvc.
	ASSERT_NO_FATAL_FAILURE(StartCrashsvc());
	ASSERT_NO_FATAL_FAILURE(GenerateBacktraceRequest());
	ASSERT_EQ(CheckPendingException(zx::sec(0)), ZX_ERR_TIMED_OUT);
	}

	TEST_F(CrashsvcTest, ExceptionHandlerSuccess) {
	// crashsvc should pass the exception to the stub handler.
	ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

	RunLoopUntilIdle();
	EXPECT_EQ(stub_handler().exception_count(), 1);
	}

	TEST_F(CrashsvcTest, ExceptionHandlerAsync) {
	// We tell the stub exception handler to not respond immediately to test that this does not block
	// crashsvc from further processing other exceptions.
	stub_handler().SetRespondSync(false);

	ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));

	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

	RunLoopUntilIdle();
	EXPECT_EQ(stub_handler().exception_count(), 4);

	// We now tell the stub exception handler to respond all the pending requests it had, which would
	// trigger the (empty) callbacks in crashsvc on the next async loop run.
	stub_handler().SendAsyncResponses();
	RunLoopUntilIdle();
	}

	TEST_F(CrashsvcTest, MultipleThreadExceptionHandler) {
	ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));

	// Make sure crashsvc continues to loop no matter what the exception handler does.
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());
	ASSERT_NO_FATAL_FAILURE(AnalyzeCrash());

	RunLoopUntilIdle();
	EXPECT_EQ(stub_handler().exception_count(), 4);
	}

	TEST_F(CrashsvcTest, ThreadBacktraceExceptionHandler) {
	// Thread backtrace requests shouldn't be sent out to the exception handler.
	ASSERT_NO_FATAL_FAILURE(StartCrashsvc(true));
	ASSERT_NO_FATAL_FAILURE(GenerateBacktraceRequest());

	RunLoopUntilIdle();
	EXPECT_EQ(stub_handler().exception_count(), 0);
	}

	constexpr auto kExceptionHandlerTimeout = zx::sec(3);

	class ExceptionHandlerTest : public TestBase {
	public:
	};

	TEST_F(ExceptionHandlerTest, ExceptionHandlerReconnects) {
	ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

	RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
	ASSERT_TRUE(stub_handler().HasClient());

	// Simulates crashsvc losing connection with fuchsia.exception.Handler.
	ASSERT_OK(stub_handler().Unbind());

	RunLoopUntil([&handler] { return !handler.ConnectedToServer(); });
	ASSERT_FALSE(stub_handler().HasClient());

	// Create an invalid exception to trigger the reconnection logic.
	handler.Handle(zx::exception{}, zx_exception_info_t{});

	RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
	ASSERT_TRUE(stub_handler().HasClient());
	}

	TEST_F(ExceptionHandlerTest, ExceptionHandlerWaitsForIsActive) {
	ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

	zx::channel exception_channel_self;
	ASSERT_OK(zx::job::default_job()->create_exception_channel(0, &exception_channel_self));

	// Instructs the stub to not respond to calls to IsActive.
	stub_handler().SetIsActive(false);

	RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
	ASSERT_TRUE(stub_handler().HasClient());

	ASSERT_NO_FATAL_FAILURE(GenerateException());

	auto exception = ReadPendingException(zx::duration::infinite());
	ASSERT_OK(exception);

	// Handle the exception.
	handler.Handle(std::move(exception->first), exception->second);
	ASSERT_EQ(stub_handler().exception_count(), 0u);

	stub_handler().SetIsActive(true);
	RunLoopUntil([&stub = stub_handler()] { return stub.exception_count() == 1; });
	}

	TEST_F(ExceptionHandlerTest, ExceptionHandlerIsActiveTimeOut) {
	ExceptionHandler handler(loop().dispatcher(), take_service_channel(), kExceptionHandlerTimeout);

	zx::channel exception_channel_self;
	ASSERT_OK(zx::job::default_job()->create_exception_channel(0, &exception_channel_self));

	// Instructs the stub to not respond to calls to IsActive.
	stub_handler().SetIsActive(false);

	RunLoopUntil([&stub = stub_handler()] { return stub.HasClient(); });
	ASSERT_TRUE(stub_handler().HasClient());

	ASSERT_NO_FATAL_FAILURE(GenerateException());

	auto exception = ReadPendingException(zx::duration::infinite());
	ASSERT_OK(exception);

	// Handle the exception.
	handler.Handle(std::move(exception->first), exception->second);

	RunLoopWithTimeout(kExceptionHandlerTimeout);
	ASSERT_EQ(stub_handler().exception_count(), 0u);

	// The exception should be passed up the chain after the timeout. Once we get the exception, kill
	// the job which will stop exception handling and cause the crashsvc thread to exit.
	//
	// Use a non-infinite timeout to prevent hangs.
	ASSERT_OK(exception_channel_self.wait_one(ZX_CHANNEL_READABLE, zx::deadline_after(zx::sec(3)),
	nullptr));
	}

	} // namespace