Home | History | Annotate | Download | only in stdlib 
      1 /*	$OpenBSD: atexit.c,v 1.20 2014/07/11 09:51:37 kettenis Exp $ */
      2 /*
      3  * Copyright (c) 2002 Daniel Hartmeier
      4  * All rights reserved.
      5  *
      6  * Redistribution and use in source and binary forms, with or without
      7  * modification, are permitted provided that the following conditions
      8  * are met:
      9  *
     10  *    - Redistributions of source code must retain the above copyright
     11  *      notice, this list of conditions and the following disclaimer.
     12  *    - Redistributions in binary form must reproduce the above
     13  *      copyright notice, this list of conditions and the following
     14  *      disclaimer in the documentation and/or other materials provided
     15  *      with the distribution.
     16  *
     17  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
     18  * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
     19  * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
     20  * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
     21  * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
     22  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
     23  * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
     24  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
     25  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
     26  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
     27  * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
     28  * POSSIBILITY OF SUCH DAMAGE.
     29  *
     30  */
     31 
     32 #include <sys/types.h>
     33 #include <sys/mman.h>
     34 #include <stdlib.h>
     35 #include <string.h>
     36 #include <unistd.h>
     37 #include "atexit.h"
     38 #include "private/thread_private.h"
     39 
     40 struct atexit {
     41 	struct atexit *next;		/* next in list */
     42 	int ind;			/* next index in this table */
     43 	int max;			/* max entries >= ATEXIT_SIZE */
     44 	struct atexit_fn {
     45 		void (*fn_ptr)(void *);
     46 		void *fn_arg;		/* argument for CXA callback */
     47 		void *fn_dso;		/* shared module handle */
     48 	} fns[1];			/* the table itself */
     49 };
     50 
     51 static struct atexit *__atexit;
     52 static int restartloop;
     53 
     54 /* BEGIN android-changed: __unregister_atfork is used by __cxa_finalize */
     55 extern void __unregister_atfork(void* dso);
     56 /* END android-changed */
     57 
     58 /*
     59  * Function pointers are stored in a linked list of pages. The list
     60  * is initially empty, and pages are allocated on demand. The first
     61  * function pointer in the first allocated page (the last one in
     62  * the linked list) is reserved for the cleanup function.
     63  *
     64  * Outside the following functions, all pages are mprotect()'ed
     65  * to prevent unintentional/malicious corruption.
     66  */
     67 
     68 /*
     69  * Register a function to be performed at exit or when a shared object
     70  * with the given dso handle is unloaded dynamically.  Also used as
     71  * the backend for atexit().  For more info on this API, see:
     72  *
     73  *	http://www.codesourcery.com/cxx-abi/abi.html#dso-dtor
     74  */
     75 int
     76 __cxa_atexit(void (*func)(void *), void *arg, void *dso)
     77 {
     78 	struct atexit *p = __atexit;
     79 	struct atexit_fn *fnp;
     80 	size_t pgsize = getpagesize();
     81 	int ret = -1;
     82 
     83 	if (pgsize < sizeof(*p))
     84 		return (-1);
     85 	_ATEXIT_LOCK();
     86 	p = __atexit;
     87 	if (p != NULL) {
     88 		if (p->ind + 1 >= p->max)
     89 			p = NULL;
     90 		else if (mprotect(p, pgsize, PROT_READ | PROT_WRITE))
     91 			goto unlock;
     92 	}
     93 	if (p == NULL) {
     94 		p = mmap(NULL, pgsize, PROT_READ | PROT_WRITE,
     95 		    MAP_ANON | MAP_PRIVATE, -1, 0);
     96 		if (p == MAP_FAILED)
     97 			goto unlock;
     98 		if (__atexit == NULL) {
     99 			memset(&p->fns[0], 0, sizeof(p->fns[0]));
    100 			p->ind = 1;
    101 		} else
    102 			p->ind = 0;
    103 		p->max = (pgsize - ((char *)&p->fns[0] - (char *)p)) /
    104 		    sizeof(p->fns[0]);
    105 		p->next = __atexit;
    106 		__atexit = p;
    107 	}
    108 	fnp = &p->fns[p->ind++];
    109 	fnp->fn_ptr = func;
    110 	fnp->fn_arg = arg;
    111 	fnp->fn_dso = dso;
    112 	if (mprotect(p, pgsize, PROT_READ))
    113 		goto unlock;
    114 	restartloop = 1;
    115 	ret = 0;
    116 unlock:
    117 	_ATEXIT_UNLOCK();
    118 	return (ret);
    119 }
    120 
    121 /*
    122  * Call all handlers registered with __cxa_atexit() for the shared
    123  * object owning 'dso'.
    124  * Note: if 'dso' is NULL, then all remaining handlers are called.
    125  */
    126 void
    127 __cxa_finalize(void *dso)
    128 {
    129 	struct atexit *p, *q;
    130 	struct atexit_fn fn;
    131 	int n, pgsize = getpagesize();
    132 	static int call_depth;
    133 
    134 	_ATEXIT_LOCK();
    135 	call_depth++;
    136 
    137 restart:
    138 	restartloop = 0;
    139 	for (p = __atexit; p != NULL; p = p->next) {
    140 		for (n = p->ind; --n >= 0;) {
    141 			if (p->fns[n].fn_ptr == NULL)
    142 				continue;	/* already called */
    143 			if (dso != NULL && dso != p->fns[n].fn_dso)
    144 				continue;	/* wrong DSO */
    145 
    146 			/*
    147 			 * Mark handler as having been already called to avoid
    148 			 * dupes and loops, then call the appropriate function.
    149 			 */
    150 			fn = p->fns[n];
    151 			if (mprotect(p, pgsize, PROT_READ | PROT_WRITE) == 0) {
    152 				p->fns[n].fn_ptr = NULL;
    153 				mprotect(p, pgsize, PROT_READ);
    154 			}
    155 			_ATEXIT_UNLOCK();
    156 			(*fn.fn_ptr)(fn.fn_arg);
    157 			_ATEXIT_LOCK();
    158 			if (restartloop)
    159 				goto restart;
    160 		}
    161 	}
    162 
    163 	call_depth--;
    164 
    165 	/*
    166 	 * If called via exit(), unmap the pages since we have now run
    167 	 * all the handlers.  We defer this until calldepth == 0 so that
    168 	 * we don't unmap things prematurely if called recursively.
    169 	 */
    170 	if (dso == NULL && call_depth == 0) {
    171 		for (p = __atexit; p != NULL; ) {
    172 			q = p;
    173 			p = p->next;
    174 			munmap(q, pgsize);
    175 		}
    176 		__atexit = NULL;
    177 	}
    178 	_ATEXIT_UNLOCK();
    179 
    180   /* BEGIN android-changed: call __unregister_atfork if dso is not null */
    181   if (dso != NULL) {
    182     __unregister_atfork(dso);
    183   }
    184   /* END android-changed */
    185 }
    186 
    187 /*
    188  * Register the cleanup function
    189  */
    190 void
    191 __atexit_register_cleanup(void (*func)(void))
    192 {
    193 	struct atexit *p;
    194 	size_t pgsize = getpagesize();
    195 
    196 	if (pgsize < sizeof(*p))
    197 		return;
    198 	_ATEXIT_LOCK();
    199 	p = __atexit;
    200 	while (p != NULL && p->next != NULL)
    201 		p = p->next;
    202 	if (p == NULL) {
    203 		p = mmap(NULL, pgsize, PROT_READ | PROT_WRITE,
    204 		    MAP_ANON | MAP_PRIVATE, -1, 0);
    205 		if (p == MAP_FAILED)
    206 			goto unlock;
    207 		p->ind = 1;
    208 		p->max = (pgsize - ((char *)&p->fns[0] - (char *)p)) /
    209 		    sizeof(p->fns[0]);
    210 		p->next = NULL;
    211 		__atexit = p;
    212 	} else {
    213 		if (mprotect(p, pgsize, PROT_READ | PROT_WRITE))
    214 			goto unlock;
    215 	}
    216 	p->fns[0].fn_ptr = (void (*)(void *))func;
    217 	p->fns[0].fn_arg = NULL;
    218 	p->fns[0].fn_dso = NULL;
    219 	mprotect(p, pgsize, PROT_READ);
    220 	restartloop = 1;
    221 unlock:
    222 	_ATEXIT_UNLOCK();
    223 }
    224