mirror of
https://github.com/genodelabs/genode.git
synced 2024-12-27 17:18:53 +00:00
4ee8919f29
Bomb and any server may generate references to capabilities exceeding 256 - use a 16bit counter until the cap handling in Genode gets unified. Additionally try to print a warning, instead of dying, if we get cap reference count under or overflow. Issue #1615
130 lines
2.6 KiB
C++
130 lines
2.6 KiB
C++
/*
|
|
* \brief Mapping of Genode's capability names to capabilities selectors.
|
|
* \author Alexander Boettcher
|
|
* \date 2013-08-26
|
|
*
|
|
*/
|
|
|
|
/*
|
|
* Copyright (C) 2013-2013 Genode Labs GmbH
|
|
*
|
|
* This file is part of the Genode OS framework, which is distributed
|
|
* under the terms of the GNU General Public License version 2.
|
|
*/
|
|
|
|
#ifndef _INCLUDE__BASE__CAP_MAP_H_
|
|
#define _INCLUDE__BASE__CAP_MAP_H_
|
|
|
|
/* Genode includes */
|
|
#include <base/stdint.h>
|
|
|
|
#include <base/lock.h>
|
|
|
|
#include <util/avl_tree.h>
|
|
#include <util/noncopyable.h>
|
|
|
|
namespace Genode {
|
|
|
|
class Cap_range : public Avl_node<Cap_range> {
|
|
|
|
private:
|
|
|
|
Lock _lock;
|
|
addr_t _base;
|
|
addr_t _last;
|
|
|
|
enum {
|
|
HEADER = sizeof(_base) + sizeof(_lock) + sizeof(_last),
|
|
CAP_RANGE_SIZE = 4096,
|
|
WORDS = (CAP_RANGE_SIZE - HEADER - sizeof(Avl_node<Cap_range>)) / sizeof(addr_t),
|
|
};
|
|
|
|
uint16_t _cap_array[WORDS * sizeof(addr_t) / 2];
|
|
|
|
bool _match(addr_t id) {
|
|
return _base <= id && id < _base + elements(); };
|
|
|
|
public:
|
|
|
|
Cap_range(addr_t base) : _base(base), _last(0) {
|
|
|
|
static_assert(sizeof(*this) == CAP_RANGE_SIZE,
|
|
"Cap_range misconfigured");
|
|
|
|
for (unsigned i = 0; i < elements(); i++)
|
|
_cap_array[i] = 0;
|
|
}
|
|
|
|
addr_t const base() const { return _base; }
|
|
unsigned const elements() { return sizeof(_cap_array) / sizeof(_cap_array[0]); }
|
|
|
|
Cap_range *find_by_id(addr_t);
|
|
|
|
void inc(unsigned id, bool inc_if_one = false);
|
|
void dec(unsigned id, bool revoke = true);
|
|
|
|
addr_t alloc(size_t const num_log2);
|
|
|
|
/************************
|
|
** Avl node interface **
|
|
************************/
|
|
|
|
bool higher(Cap_range *n) { return n->_base > _base; }
|
|
|
|
};
|
|
|
|
|
|
class Cap_index
|
|
{
|
|
private:
|
|
|
|
Cap_range * _range;
|
|
addr_t _local_name;
|
|
|
|
public:
|
|
|
|
Cap_index(Cap_range *range, addr_t local_name)
|
|
: _range(range), _local_name(local_name) {}
|
|
|
|
bool valid() const { return _range; }
|
|
|
|
inline void inc(bool inc_if_one = false)
|
|
{
|
|
if (_range)
|
|
_range->inc(_local_name - _range->base(), inc_if_one);
|
|
}
|
|
|
|
inline void dec()
|
|
{
|
|
if (_range)
|
|
_range->dec(_local_name - _range->base());
|
|
}
|
|
};
|
|
|
|
|
|
class Capability_map : private Noncopyable
|
|
{
|
|
private:
|
|
|
|
Avl_tree<Cap_range> _tree;
|
|
|
|
public:
|
|
|
|
Cap_index find(addr_t local_sel);
|
|
|
|
void insert(Cap_range * range) { _tree.insert(range); }
|
|
|
|
addr_t insert(size_t num_log_2 = 0, addr_t cap = ~0UL);
|
|
|
|
void remove(addr_t sel, uint8_t num_log_2 = 0, bool revoke = true);
|
|
};
|
|
|
|
|
|
/**
|
|
* Get the global Capability_map of the process.
|
|
*/
|
|
Capability_map *cap_map();
|
|
}
|
|
|
|
#endif /* _INCLUDE__BASE__CAP_MAP_H_ */
|