| // Copyright 2016 The Fuchsia Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include <errno.h> |
| #include <unistd.h> |
| |
| #include <zircon/process.h> |
| #include <zircon/syscalls.h> |
| #include <zircon/syscalls/object.h> |
| #include <unittest/unittest.h> |
| #include <sys/mman.h> |
| |
| namespace { |
| |
| #if defined(__x86_64__) |
| |
| // This is based on code from kernel/ which isn't usable by code in system/. |
| enum { X86_CPUID_ADDR_WIDTH = 0x80000008 }; |
| |
| uint32_t x86_linear_address_width() { |
| uint32_t eax, ebx, ecx, edx; |
| __asm__("cpuid" |
| : "=a"(eax), "=b"(ebx), "=c"(ecx), "=d"(edx) |
| : "a"(X86_CPUID_ADDR_WIDTH), "c"(0)); |
| return (eax >> 8) & 0xff; |
| } |
| |
| #endif |
| |
| bool address_space_limits_test() { |
| BEGIN_TEST; |
| |
| #if defined(__x86_64__) |
| size_t page_size = getpagesize(); |
| zx_handle_t vmo; |
| EXPECT_EQ(zx_vmo_create(page_size, 0, &vmo), ZX_OK); |
| EXPECT_LT(0, vmo, "vm_object_create"); |
| |
| // This is the lowest non-canonical address on x86-64. We want to |
| // make sure that userland cannot map a page immediately below |
| // this address. See docs/sysret_problem.md for an explanation of |
| // the reason. |
| uintptr_t noncanon_addr = |
| ((uintptr_t) 1) << (x86_linear_address_width() - 1); |
| |
| zx_info_vmar_t vmar_info; |
| zx_status_t status = zx_object_get_info(zx_vmar_root_self(), ZX_INFO_VMAR, |
| &vmar_info, sizeof(vmar_info), |
| NULL, NULL); |
| EXPECT_EQ(ZX_OK, status, "get_info"); |
| |
| // Check that we cannot map a page ending at |noncanon_addr|. |
| size_t offset = noncanon_addr - page_size - vmar_info.base; |
| uintptr_t addr; |
| status = zx_vmar_map( |
| zx_vmar_root_self(), offset, vmo, 0, page_size, |
| ZX_VM_FLAG_PERM_READ | ZX_VM_FLAG_PERM_WRITE | ZX_VM_FLAG_SPECIFIC, |
| &addr); |
| EXPECT_EQ(ZX_ERR_INVALID_ARGS, status, "vm_map"); |
| |
| // Check that we can map at the next address down. This helps to |
| // verify that the previous check didn't fail for some unexpected |
| // reason. |
| offset = noncanon_addr - page_size * 2 - vmar_info.base; |
| status = zx_vmar_map( |
| zx_vmar_root_self(), offset, vmo, 0, page_size, |
| ZX_VM_FLAG_PERM_READ | ZX_VM_FLAG_PERM_WRITE | ZX_VM_FLAG_SPECIFIC, |
| &addr); |
| EXPECT_EQ(ZX_OK, status, "vm_map"); |
| |
| // Check that ZX_VM_FLAG_SPECIFIC fails on already-mapped locations. |
| // Otherwise, the previous mapping could have overwritten |
| // something that was in use, which could cause problems later. |
| status = zx_vmar_map( |
| zx_vmar_root_self(), offset, vmo, 0, page_size, |
| ZX_VM_FLAG_PERM_READ | ZX_VM_FLAG_PERM_WRITE | ZX_VM_FLAG_SPECIFIC, |
| &addr); |
| EXPECT_EQ(ZX_ERR_NO_MEMORY, status, "vm_map"); |
| |
| // Clean up. |
| status = zx_vmar_unmap(zx_vmar_root_self(), addr, page_size); |
| EXPECT_EQ(ZX_OK, status, "vm_unmap"); |
| status = zx_handle_close(vmo); |
| EXPECT_EQ(ZX_OK, status, "handle_close"); |
| #endif |
| |
| END_TEST; |
| } |
| |
| bool mmap_len_test() { |
| BEGIN_TEST; |
| |
| uint32_t* addr = (uint32_t*)mmap(NULL, 0, PROT_READ, MAP_PRIVATE|MAP_ANON, -1, 0); |
| auto test_errno = errno; |
| EXPECT_EQ(MAP_FAILED, addr, "mmap should fail when len == 0"); |
| EXPECT_EQ(EINVAL, test_errno, "mmap errno should be EINVAL when len == 0"); |
| |
| addr = (uint32_t*)mmap(NULL, PTRDIFF_MAX, PROT_READ, MAP_PRIVATE|MAP_ANON, -1, 0); |
| test_errno = errno; |
| EXPECT_EQ(MAP_FAILED, addr, "mmap should fail when len >= PTRDIFF_MAX"); |
| EXPECT_EQ(ENOMEM, test_errno, "mmap errno should be ENOMEM when len >= PTRDIFF_MAX"); |
| |
| END_TEST; |
| } |
| |
| bool mmap_offset_test() { |
| BEGIN_TEST; |
| |
| uint32_t* addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_PRIVATE|MAP_ANON, -1, 4); |
| auto test_errno = errno; |
| EXPECT_EQ(MAP_FAILED, addr, "mmap should fail for unaligned offset"); |
| EXPECT_EQ(EINVAL, test_errno, "mmap errno should be EINVAL for unaligned offset"); |
| |
| END_TEST; |
| } |
| |
| bool mmap_prot_test() { |
| BEGIN_TEST; |
| |
| volatile uint32_t* addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_NONE, MAP_PRIVATE|MAP_ANON, -1, 0); |
| EXPECT_NE(MAP_FAILED, addr, "mmap should have succeeded for PROT_NONE"); |
| |
| addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_PRIVATE|MAP_ANON, -1, 0); |
| EXPECT_NE(MAP_FAILED, addr, "mmap failed for read-only alloc"); |
| |
| // This is somewhat pointless, to have a private read-only mapping, but we |
| // should be able to read it. |
| EXPECT_EQ(*addr, *addr, "could not read from mmaped address"); |
| |
| addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANON, -1, 0); |
| EXPECT_NE(MAP_FAILED, addr, "mmap failed for read-write alloc"); |
| |
| // Now we test writing to the mapped memory, and verify that we can read it |
| // back. |
| *addr = 5678u; |
| EXPECT_EQ(5678u, *addr, "writing to address returned by mmap failed"); |
| |
| // TODO: test PROT_EXEC |
| |
| END_TEST; |
| } |
| |
| bool mmap_flags_test() { |
| BEGIN_TEST; |
| |
| uint32_t* addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_ANON, -1, 0); |
| auto test_errno = errno; |
| EXPECT_EQ(MAP_FAILED, addr, "mmap should fail without MAP_PRIVATE or MAP_SHARED"); |
| EXPECT_EQ(EINVAL, test_errno, "mmap errno should be EINVAL with bad flags"); |
| |
| addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_PRIVATE|MAP_SHARED|MAP_ANON, -1, 0); |
| test_errno = errno; |
| EXPECT_EQ(MAP_FAILED, addr, "mmap should fail with both MAP_PRIVATE and MAP_SHARED"); |
| EXPECT_EQ(EINVAL, test_errno, "mmap errno should be EINVAL with bad flags"); |
| |
| addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_PRIVATE|MAP_ANON, -1, 0); |
| EXPECT_NE(MAP_FAILED, addr, "mmap failed with MAP_PRIVATE flags"); |
| |
| addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ, MAP_SHARED|MAP_ANON, -1, 0); |
| EXPECT_NE(MAP_FAILED, addr, "mmap failed with MAP_SHARED flags"); |
| |
| END_TEST; |
| } |
| |
| bool mprotect_test() { |
| BEGIN_TEST; |
| |
| uint32_t* addr = (uint32_t*)mmap(NULL, sizeof(uint32_t), PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANON, -1, 0); |
| ASSERT_NE(MAP_FAILED, addr, "mmap failed to map"); |
| |
| int page_size = getpagesize(); |
| // Should be able to write. |
| *addr = 10; |
| EXPECT_EQ(10u, *addr, "read after write failed"); |
| |
| int status = mprotect(addr, page_size, PROT_READ); |
| EXPECT_EQ(0, status, "mprotect failed to downgrade to read-only"); |
| |
| // TODO: catch page fault exceptions and confirm that the following line |
| // fails |
| //*addr = 12; |
| |
| status = mprotect(addr, page_size, PROT_WRITE); |
| auto test_errno = errno; |
| EXPECT_EQ(-1, status, "mprotect should fail for write-only"); |
| EXPECT_EQ(ENOTSUP, test_errno, "mprotect should return ENOTSUP for write-only"); |
| |
| status = mprotect(addr, page_size, PROT_NONE); |
| test_errno = errno; |
| EXPECT_EQ(0, status, "mprotect should succeed for PROT_NONE"); |
| |
| END_TEST; |
| } |
| |
| } |
| |
| BEGIN_TEST_CASE(memory_mapping_tests) |
| RUN_TEST(address_space_limits_test); |
| RUN_TEST(mmap_len_test); |
| RUN_TEST(mmap_offset_test); |
| RUN_TEST(mmap_prot_test); |
| RUN_TEST(mmap_flags_test); |
| RUN_TEST(mprotect_test); |
| END_TEST_CASE(memory_mapping_tests) |
| |
| #ifndef BUILD_COMBINED_TESTS |
| int main(int argc, char** argv) { |
| bool success = unittest_run_all_tests(argc, argv); |
| return success ? 0 : -1; |
| } |
| #endif |