starnix_modules_ashmem/

lib.rs

// Copyright 2023 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

use linux_uapi::{
    ASHMEM_GET_NAME, ASHMEM_GET_PIN_STATUS, ASHMEM_GET_PROT_MASK, ASHMEM_GET_SIZE,
    ASHMEM_IS_PINNED, ASHMEM_IS_UNPINNED, ASHMEM_NOT_PURGED, ASHMEM_PIN, ASHMEM_PURGE_ALL_CACHES,
    ASHMEM_SET_NAME, ASHMEM_SET_PROT_MASK, ASHMEM_SET_SIZE, ASHMEM_UNPIN, ASHMEM_WAS_PURGED,
};
use once_cell::sync::OnceCell;
use range_map::RangeMap;
use starnix_core::device::DeviceOps;
use starnix_core::mm::memory::MemoryObject;
use starnix_core::mm::{
    DesiredAddress, MappingName, MappingOptions, MemoryAccessor, MemoryAccessorExt, PAGE_SIZE,
    ProtectionFlags,
};
use starnix_core::task::CurrentTask;
use starnix_core::vfs::{
    FileObject, FileOps, FsString, InputBuffer, NamespaceNode, OutputBuffer, SeekTarget,
    default_ioctl, default_seek, fileops_impl_noop_sync,
};
use starnix_lifecycle::AtomicU32Counter;
use starnix_sync::{FileOpsCore, Locked, Mutex, Unlocked};
use starnix_syscalls::{SUCCESS, SyscallArg, SyscallResult};
use starnix_uapi::errors::Errno;
use starnix_uapi::math::round_up_to_increment;
use starnix_uapi::open_flags::OpenFlags;
use starnix_uapi::user_address::{UserAddress, UserCString, UserRef};
use starnix_uapi::{ASHMEM_NAME_LEN, ashmem_pin, device_type, errno, error, off_t, uapi};
use std::sync::Arc;

/// Initializes the ashmem device.
pub fn ashmem_device_init(locked: &mut Locked<Unlocked>, system_task: &CurrentTask) {
    let kernel = system_task.kernel();
    let registry = &kernel.device_registry;

    registry
        .register_misc_device(locked, system_task, "ashmem".into(), AshmemDevice::new())
        .expect("can register ashmem");
}

#[derive(Clone)]
pub struct AshmemDevice {
    pub next_id: Arc<AtomicU32Counter>,
}

pub struct Ashmem {
    memory: OnceCell<Arc<MemoryObject>>,
    state: Mutex<AshmemState>,
}

struct AshmemState {
    size: usize,
    name: FsString,
    prot_flags: ProtectionFlags,
    unpinned: RangeMap<u32, bool>,
    id: u32,
}

impl AshmemDevice {
    pub fn new() -> AshmemDevice {
        AshmemDevice { next_id: Arc::new(AtomicU32Counter::new(1)) }
    }
}

impl DeviceOps for AshmemDevice {
    fn open(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _current_task: &CurrentTask,
        _id: device_type::DeviceType,
        _node: &NamespaceNode,
        _flags: OpenFlags,
    ) -> Result<Box<dyn FileOps>, Errno> {
        let ashmem = Ashmem::new(self.next_id.next());
        Ok(Box::new(ashmem))
    }
}

impl Ashmem {
    fn new(id: u32) -> Ashmem {
        let state = AshmemState {
            size: 0,
            name: b"dev/ashmem\0".into(),
            prot_flags: ProtectionFlags::ACCESS_FLAGS,
            unpinned: RangeMap::<u32, bool>::default(),
            id: id,
        };

        Ashmem { memory: OnceCell::new(), state: Mutex::new(state) }
    }

    fn memory(&self) -> Result<&Arc<MemoryObject>, Errno> {
        self.memory.get().ok_or_else(|| errno!(EINVAL))
    }

    fn is_mapped(&self) -> bool {
        self.memory.get().is_some()
    }
}

impl FileOps for Ashmem {
    fileops_impl_noop_sync!();

    fn is_seekable(&self) -> bool {
        true
    }

    fn seek(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        _current_task: &CurrentTask,
        current_offset: off_t,
        target: SeekTarget,
    ) -> Result<off_t, Errno> {
        if !self.is_mapped() {
            return error!(EBADF);
        }
        let eof_offset = self.state.lock().size;
        default_seek(current_offset, target, || Ok(eof_offset.try_into().unwrap()))
    }

    fn read(
        &self,
        _locked: &mut starnix_sync::Locked<FileOpsCore>,
        _file: &FileObject,
        _current_task: &CurrentTask,
        offset: usize,
        data: &mut dyn OutputBuffer,
    ) -> Result<usize, Errno> {
        let memory = self.memory().map_err(|_| errno!(EBADF))?;
        let file_length = self.state.lock().size;
        let actual = {
            let want_read = data.available();
            if offset < file_length {
                let to_read =
                    if file_length < offset + want_read { file_length - offset } else { want_read };
                let buf =
                    memory.read_to_vec(offset as u64, to_read as u64).map_err(|_| errno!(EIO))?;
                data.write_all(&buf[..])?;
                to_read
            } else {
                0
            }
        };
        Ok(actual)
    }

    fn write(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        _file: &FileObject,
        _current_task: &CurrentTask,
        _offset: usize,
        _data: &mut dyn InputBuffer,
    ) -> Result<usize, Errno> {
        error!(EINVAL)
    }

    fn mmap(
        &self,
        _locked: &mut Locked<FileOpsCore>,
        file: &FileObject,
        current_task: &CurrentTask,
        addr: DesiredAddress,
        memory_offset: u64,
        length: usize,
        prot_flags: ProtectionFlags,
        mapping_options: MappingOptions,
        _filename: NamespaceNode,
    ) -> Result<UserAddress, Errno> {
        let state = self.state.lock();
        let size_paged_aligned = round_up_to_increment(state.size, *PAGE_SIZE as usize)?;

        // Filter protections
        if !state.prot_flags.contains(prot_flags) {
            return error!(EINVAL);
        }
        // Filter size
        if size_paged_aligned < length {
            return error!(EINVAL);
        }

        let memory = self
            .memory
            .get_or_try_init(|| {
                if size_paged_aligned == 0 {
                    return error!(EINVAL);
                }
                // Round up to page boundary
                let vmo = zx::Vmo::create(size_paged_aligned as u64).map_err(|_| errno!(ENOMEM))?;
                let memory = MemoryObject::from(vmo).with_zx_name(b"starnix:ashmem");
                Ok(Arc::new(memory))
            })?
            .clone();

        let mapped_addr = current_task.mm()?.map_memory(
            addr,
            memory,
            memory_offset,
            length,
            prot_flags,
            file.max_access_for_memory_mapping(),
            mapping_options,
            MappingName::Ashmem(state.name.clone().into()),
        )?;

        Ok(mapped_addr)
    }

    fn ioctl(
        &self,
        locked: &mut Locked<Unlocked>,
        file: &FileObject,
        current_task: &CurrentTask,
        request: u32,
        arg: SyscallArg,
    ) -> Result<SyscallResult, Errno> {
        match request {
            #[allow(unreachable_patterns)]
            ASHMEM_SET_SIZE | starnix_uapi::arch32::ASHMEM_SET_SIZE => {
                let mut state = self.state.lock();

                if self.is_mapped() {
                    return error!(EINVAL);
                }
                state.size = arg.into();
                Ok(SUCCESS)
            }
            ASHMEM_GET_SIZE => Ok(self.state.lock().size.into()),
            ASHMEM_SET_NAME => {
                let mut state = self.state.lock();

                if self.is_mapped() {
                    return error!(EINVAL);
                }
                let mut name = current_task.read_c_string_to_vec(
                    UserCString::new(current_task, arg),
                    ASHMEM_NAME_LEN as usize,
                )?;
                name.push(0); // Add a null terminator

                state.name = name.into();
                Ok(SUCCESS)
            }
            ASHMEM_GET_NAME => {
                let state = self.state.lock();
                let name = &state.name[..];

                current_task.write_memory(arg.into(), name)?;
                Ok(SUCCESS)
            }
            #[allow(unreachable_patterns)]
            ASHMEM_SET_PROT_MASK | starnix_uapi::arch32::ASHMEM_SET_PROT_MASK => {
                let mut state = self.state.lock();
                let prot_flags =
                    ProtectionFlags::from_access_bits(arg.into()).ok_or_else(|| errno!(EINVAL))?;

                // Do not allow protections to be increased
                if !state.prot_flags.contains(prot_flags) {
                    return error!(EINVAL);
                }

                state.prot_flags = prot_flags;
                Ok(SUCCESS)
            }
            ASHMEM_GET_PROT_MASK => Ok(self.state.lock().prot_flags.bits().into()),
            ASHMEM_PIN | ASHMEM_UNPIN | ASHMEM_GET_PIN_STATUS => {
                let mut state = self.state.lock();

                if !self.is_mapped() {
                    return error!(EINVAL);
                }

                let user_ref = UserRef::<ashmem_pin>::new(arg.into());
                let pin = current_task.read_object(user_ref)?;
                let (lo, hi) =
                    (pin.offset, pin.offset.checked_add(pin.len).ok_or_else(|| errno!(EFAULT))?);

                // Bounds check
                if (lo as usize) >= state.size || (hi as usize) > state.size {
                    return error!(EINVAL);
                }

                // Aligned to page size
                if (lo as u64) % *PAGE_SIZE != 0 || (hi as u64) % *PAGE_SIZE != 0 {
                    return error!(EINVAL);
                }

                match request {
                    ASHMEM_PIN => {
                        for is_purged in state.unpinned.remove(lo..hi).iter() {
                            if *is_purged {
                                return Ok(ASHMEM_WAS_PURGED.into());
                            }
                        }

                        return Ok(ASHMEM_NOT_PURGED.into());
                    }
                    ASHMEM_UNPIN => {
                        // This method has must_use but we don't actually need to do any explicit
                        // cleanup.
                        let _ = state.unpinned.insert(lo..hi, false);
                        return Ok(ASHMEM_IS_UNPINNED.into());
                    }
                    ASHMEM_GET_PIN_STATUS => {
                        let mut intervals = state.unpinned.range(lo..hi);
                        return match intervals.next() {
                            Some(_) => Ok(ASHMEM_IS_UNPINNED.into()),
                            None => Ok(ASHMEM_IS_PINNED.into()),
                        };
                    }
                    _ => unreachable!(),
                }
            }
            ASHMEM_PURGE_ALL_CACHES => {
                let mut state = self.state.lock();
                let memory = self.memory.get().ok_or_else(|| errno!(EINVAL))?;

                if state.unpinned.is_empty() {
                    return Ok(ASHMEM_IS_PINNED.into());
                }
                let unpinned: Vec<_> = state.unpinned.iter().map(|(k, _)| k.clone()).collect();
                for range in unpinned.into_iter() {
                    let (lo, hi) = (range.start as u64, range.end as u64);
                    memory.op_range(zx::VmoOp::ZERO, lo, hi - lo).unwrap_or(());

                    // This method has must_use but we don't actually need to do any explicit
                    // cleanup.
                    let _ = state.unpinned.insert(range, true);
                }
                return Ok(ASHMEM_IS_UNPINNED.into());
            }
            #[allow(unreachable_patterns)]
            uapi::ASHMEM_GET_FILE_ID | uapi::arch32::ASHMEM_GET_FILE_ID => {
                let state = self.state.lock();
                current_task.write_object(arg.into(), &(state.id))?;
                Ok(SUCCESS)
            }
            _ => default_ioctl(file, locked, current_task, request, arg),
        }
    }
}