1 // Copyright 2016 The Chromium Authors. All rights reserved. 2 // Use of this source code is governed by a BSD-style license that can be 3 // found in the LICENSE file. 4 5 #ifndef BASE_ALLOCATOR_ALLOCATOR_SHIM_H_ 6 #define BASE_ALLOCATOR_ALLOCATOR_SHIM_H_ 7 8 #include <stddef.h> 9 10 #include "base/base_export.h" 11 #include "build/build_config.h" 12 13 namespace base { 14 namespace allocator { 15 16 // Allocator Shim API. Allows to to: 17 // - Configure the behavior of the allocator (what to do on OOM failures). 18 // - Install new hooks (AllocatorDispatch) in the allocator chain. 19 20 // When this shim layer is enabled, the route of an allocation is as-follows: 21 // 22 // [allocator_shim_override_*.h] Intercept malloc() / operator new calls: 23 // The override_* headers define the symbols required to intercept calls to 24 // malloc() and operator new (if not overridden by specific C++ classes). 25 // 26 // [allocator_shim.cc] Routing allocation calls to the shim: 27 // The headers above route the calls to the internal ShimMalloc(), ShimFree(), 28 // ShimCppNew() etc. methods defined in allocator_shim.cc. 29 // These methods will: (1) forward the allocation call to the front of the 30 // AllocatorDispatch chain. (2) perform security hardenings (e.g., might 31 // call std::new_handler on OOM failure). 32 // 33 // [allocator_shim_default_dispatch_to_*.cc] The AllocatorDispatch chain: 34 // It is a singly linked list where each element is a struct with function 35 // pointers (|malloc_function|, |free_function|, etc). Normally the chain 36 // consists of a single AllocatorDispatch element, herein called 37 // the "default dispatch", which is statically defined at build time and 38 // ultimately routes the calls to the actual allocator defined by the build 39 // config (tcmalloc, glibc, ...). 40 // 41 // It is possible to dynamically insert further AllocatorDispatch stages 42 // to the front of the chain, for debugging / profiling purposes. 43 // 44 // All the functions must be thred safe. The shim does not enforce any 45 // serialization. This is to route to thread-aware allocators (e.g, tcmalloc) 46 // wihout introducing unnecessary perf hits. 47 48 struct AllocatorDispatch { 49 using AllocFn = void*(const AllocatorDispatch* self, 50 size_t size, 51 void* context); 52 using AllocZeroInitializedFn = void*(const AllocatorDispatch* self, 53 size_t n, 54 size_t size, 55 void* context); 56 using AllocAlignedFn = void*(const AllocatorDispatch* self, 57 size_t alignment, 58 size_t size, 59 void* context); 60 using ReallocFn = void*(const AllocatorDispatch* self, 61 void* address, 62 size_t size, 63 void* context); 64 using FreeFn = void(const AllocatorDispatch* self, 65 void* address, 66 void* context); 67 // Returns the best available estimate for the actual amount of memory 68 // consumed by the allocation |address|. If possible, this should include 69 // heap overhead or at least a decent estimate of the full cost of the 70 // allocation. If no good estimate is possible, returns zero. 71 using GetSizeEstimateFn = size_t(const AllocatorDispatch* self, 72 void* address, 73 void* context); 74 using BatchMallocFn = unsigned(const AllocatorDispatch* self, 75 size_t size, 76 void** results, 77 unsigned num_requested, 78 void* context); 79 using BatchFreeFn = void(const AllocatorDispatch* self, 80 void** to_be_freed, 81 unsigned num_to_be_freed, 82 void* context); 83 using FreeDefiniteSizeFn = void(const AllocatorDispatch* self, 84 void* ptr, 85 size_t size, 86 void* context); 87 88 AllocFn* const alloc_function; 89 AllocZeroInitializedFn* const alloc_zero_initialized_function; 90 AllocAlignedFn* const alloc_aligned_function; 91 ReallocFn* const realloc_function; 92 FreeFn* const free_function; 93 GetSizeEstimateFn* const get_size_estimate_function; 94 BatchMallocFn* const batch_malloc_function; 95 BatchFreeFn* const batch_free_function; 96 FreeDefiniteSizeFn* const free_definite_size_function; 97 98 const AllocatorDispatch* next; 99 100 // |default_dispatch| is statically defined by one (and only one) of the 101 // allocator_shim_default_dispatch_to_*.cc files, depending on the build 102 // configuration. 103 static const AllocatorDispatch default_dispatch; 104 }; 105 106 // When true makes malloc behave like new, w.r.t calling the new_handler if 107 // the allocation fails (see set_new_mode() in Windows). 108 BASE_EXPORT void SetCallNewHandlerOnMallocFailure(bool value); 109 110 // Allocates |size| bytes or returns nullptr. It does NOT call the new_handler, 111 // regardless of SetCallNewHandlerOnMallocFailure(). 112 BASE_EXPORT void* UncheckedAlloc(size_t size); 113 114 // Inserts |dispatch| in front of the allocator chain. This method is 115 // thread-safe w.r.t concurrent invocations of InsertAllocatorDispatch(). 116 // The callers have responsibility for inserting a single dispatch no more 117 // than once. 118 BASE_EXPORT void InsertAllocatorDispatch(AllocatorDispatch* dispatch); 119 120 // Test-only. Rationale: (1) lack of use cases; (2) dealing safely with a 121 // removal of arbitrary elements from a singly linked list would require a lock 122 // in malloc(), which we really don't want. 123 BASE_EXPORT void RemoveAllocatorDispatchForTesting(AllocatorDispatch* dispatch); 124 125 #if defined(OS_MACOSX) 126 // On macOS, the allocator shim needs to be turned on during runtime. 127 BASE_EXPORT void InitializeAllocatorShim(); 128 #endif // defined(OS_MACOSX) 129 130 } // namespace allocator 131 } // namespace base 132 133 #endif // BASE_ALLOCATOR_ALLOCATOR_SHIM_H_ 134
