Google Git
Sign in
fuchsia / fuchsia / refs/heads/releases/canary / . / src / graphics / tests / icd_conformance / icd_conformance.cc
blob: 7afa0429e2381ffbca7419dd3aaa5cd26bab3d34 [file] [log] [blame]
// Copyright 2022 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <dlfcn.h>
#include <fidl/fuchsia.io/cpp/wire.h>
#include <fidl/fuchsia.vulkan.loader/cpp/wire.h>
#include <lib/component/incoming/cpp/protocol.h>
#include <lib/fdio/namespace.h>
#include <lib/fidl/cpp/wire/connect_service.h>
#include <lib/fit/defer.h>
#include <lib/fzl/vmo-mapper.h>
#include <zircon/dlfcn.h>
#include <set>
#include <gtest/gtest.h>
#include "rapidjson/prettywriter.h"
#include "rapidjson/schema.h"
#include "src/lib/elflib/elflib.h"
#include "src/lib/files/directory.h"
#include "src/lib/files/file.h"
#include "src/lib/fxl/strings/split_string.h"
#include "src/lib/json_parser/json_parser.h"
#include "src/lib/json_parser/pretty_print.h"
namespace {
const char* kManifestFsPath = "/manifestfs";
const char* kManifestSchema = R"(
{
"$schema":"http://json-schema.org/schema#",
"type":"object",
"properties":{
"file_format_version":{
"type":"string"
},
"ICD":{
"type":"object",
"properties":{
"library_path":{
"type":"string"
},
"api_version":{
"type":"string"
}
},
"required":[
"library_path",
"api_version"
]
}
},
"required":[
"file_format_version",
"ICD"
]
}
)";
std::set<std::string> GetSymbolAllowlist() {
std::string allowlist;
EXPECT_TRUE(files::ReadFileToString("/pkg/data/imported_symbols.allowlist", &allowlist));
auto split_strings =
fxl::SplitStringCopy(allowlist, "\n", fxl::kTrimWhitespace, fxl::kSplitWantNonEmpty);
std::set<std::string> split_allowlist;
for (auto& string : split_strings) {
// Remove commented lines.
if (string.compare(0, 1, "#") == 0) {
continue;
}
split_allowlist.insert(std::move(string));
}
return split_allowlist;
}
void ValidateSharedObject(const zx::vmo& vmo) {
fzl::VmoMapper mapper;
ASSERT_EQ(ZX_OK, mapper.Map(vmo, 0, 0, ZX_VM_PERM_READ | ZX_VM_ALLOW_FAULTS));
std::unique_ptr<elflib::ElfLib> lib =
elflib::ElfLib::Create(reinterpret_cast<uint8_t*>(mapper.start()), mapper.size());
ASSERT_TRUE(lib);
auto deps = lib->GetSharedObjectDependencies();
ASSERT_TRUE(deps);
const std::set<std::string> kSoAllowlist{"libzircon.so", "libc.so"};
// Validate all needed shared libraries against allowlist.
for (const std::string& dep : *deps) {
EXPECT_TRUE(kSoAllowlist.count(dep)) << "Disallowed library: " << dep;
}
EXPECT_LT(0u, deps->size());
auto dynamic_symbols = lib->GetAllDynamicSymbols();
ASSERT_TRUE(dynamic_symbols);
// Validate imported symbols against the Magma allowlist.
auto symbol_allowlist = GetSymbolAllowlist();
for (const auto& [name, symbol] : *dynamic_symbols) {
// We could also consider weak symbol references here, as resolving a weak symbol could change
// the behavior of the ICD. However, the Intel ICD uses a lot of weak symbols.
// TODO(https://fxbug.dev/42054491): Consider checking weak symbols.
if (symbol.getBinding() == elflib::STB_GLOBAL && symbol.st_shndx == elflib::SHN_UNDEF) {
EXPECT_TRUE(symbol_allowlist.count(name))
<< "Disallowed import: " << name << " type " << symbol.getType();
}
}
auto warnings = lib->GetAndClearWarnings();
for (const std::string& warning : warnings) {
ADD_FAILURE() << warning;
}
void* dl = dlopen_vmo(vmo.get(), RTLD_NOW | RTLD_LOCAL);
EXPECT_TRUE(dl) << "Error " << dlerror();
dlclose(dl);
}
bool ValidateManifestJson(const rapidjson::GenericDocument<rapidjson::UTF8<>>& doc) {
rapidjson::Document schema_doc;
schema_doc.Parse(kManifestSchema);
EXPECT_FALSE(schema_doc.HasParseError()) << schema_doc.GetParseError();
rapidjson::SchemaDocument schema(schema_doc);
rapidjson::SchemaValidator validator(schema);
if (!doc.Accept(validator)) {
rapidjson::StringBuffer sb;
rapidjson::PrettyWriter<rapidjson::StringBuffer> w(sb);
validator.GetError().Accept(w);
ADD_FAILURE() << "manifest.json failed validation " << sb.GetString();
return false;
}
return true;
}
void ValidateIcd(fidl::WireSyncClient<fuchsia_vulkan_loader::Loader>& loader,
const std::string& manifest_filename) {
json_parser::JSONParser manifest_parser;
auto manifest_doc =
manifest_parser.ParseFromFile(std::string(kManifestFsPath) + "/" + manifest_filename);
ASSERT_FALSE(manifest_parser.HasError()) << manifest_parser.error_str();
ASSERT_TRUE(ValidateManifestJson(manifest_doc));
std::string library_path = manifest_doc["ICD"].GetObject()["library_path"].GetString();
auto res = loader->Get(fidl::StringView::FromExternal(library_path));
ASSERT_EQ(res.status(), ZX_OK);
zx::vmo vmo = std::move(res->lib);
ValidateSharedObject(vmo);
}
TEST(IcdConformance, SharedLibraries) {
auto svc = component::OpenServiceRoot();
auto client_end = component::ConnectAt<fuchsia_vulkan_loader::Loader>(*svc);
fidl::WireSyncClient client{std::move(*client_end)};
auto manifest_fs_endpoints = fidl::Endpoints<fuchsia_io::Directory>::Create();
auto manifest_result =
client->ConnectToManifestFs(fuchsia_vulkan_loader::ConnectToManifestOptions::kWaitForIdle,
manifest_fs_endpoints.server.TakeChannel());
EXPECT_EQ(ZX_OK, manifest_result.status());
fdio_ns_t* ns;
EXPECT_EQ(ZX_OK, fdio_ns_get_installed(&ns));
EXPECT_EQ(ZX_OK, fdio_ns_bind(ns, kManifestFsPath,
manifest_fs_endpoints.client.TakeChannel().release()));
auto defer_unbind = fit::defer([&]() { fdio_ns_unbind(ns, kManifestFsPath); });
std::vector<std::string> manifests;
EXPECT_TRUE(files::ReadDirContents(kManifestFsPath, &manifests));
for (auto& manifest : manifests) {
if (manifest == ".")
continue;
SCOPED_TRACE(manifest);
ValidateIcd(client, manifest);
}
}
} // namespace