Commits · jb-mr0-release · Kevin / bionic

12 Jul, 2012 1 commit
- merge in jb-mr0-release history after reset to jb-dev · e1333842
  The Android Automerger authored 12 years ago
  
  e1333842
02 Jul, 2012 1 commit

Andrew Hsieh authored 12 years ago

Since linker is built with -fvisibility=hidden rtld_db_dlactivity()
if hidden from gdb.  Unhide it otherwise gdb may not know linker
activity and rescan solib

Change-Id: Ia8cd8d9738c6ea5696ba2ef0ebf2cf783f9ca70a

40e7ed58

20 Jun, 2012 1 commit
- merge in jb-release history after reset to jb-dev · 77093f2a
  The Android Automerger authored 12 years ago
  
  77093f2a
19 Jun, 2012 2 commits
- Merge "Minor tweak to get memory around corrupted heap chunks dumped." into jb-dev · 4d0128f1
  Andy McFadden authored 12 years ago
  
  4d0128f1
- Minor tweak to get memory around corrupted heap chunks dumped. · ec2ab73b
  Ben Cheng authored 12 years ago
```
Change-Id: I8f72c5c7e23960b13fc53e2354cd74aca8aac3c0
```
  ec2ab73b
11 Jun, 2012 1 commit
- merge in jb-release history after reset to jb-dev · ff7eae7b
  The Android Automerger authored 12 years ago
  
  ff7eae7b
06 Jun, 2012 1 commit
- Use new debuggerd protocol. · b7630f01
  Jeff Brown authored 12 years ago
```
Bug: 6615693
Change-Id: Ibfddc0de3fa2a882f7d0238ab797e5b29296b54b
```
  b7630f01
03 Jun, 2012 1 commit
- merge in jb-release history after reset to jb-dev · db2e7a4c
  The Android Automerger authored 12 years ago
  
  db2e7a4c
01 Jun, 2012 1 commit

bionic: import heaptracker as chk_malloc · e1dd3c28

Iliyan Malchev authored 12 years ago

This patch is a rewrite of libc.debug.malloc = 10 (chk_malloc). It provides
the same features as the original (poison freed memory, detect heap overruns
and underruns), except that it provides more debugging information whenever it
detects a problem.

In addition to the original features, the new chk_malloc() implementation
detects multiple frees within a given range of the last N allocations, N being
configurable via the system property libc.debug.malloc.backlog.

Finally, this patch keeps track of all outstanding memory allocations. On
program exit, we walk that list and report each outstanding allocation.

(There is support (not enabled) for a scanner thread periodically walks over
the list of outstanding allocations as well as the backlog of recently-freed
allocations, checking for heap-usage errors.)

Feature overview:

1) memory leaks
2) multiple frees
3) use after free
4) overrun

Implementation:

-- for each allocation, there is a:
1) stack trace at the time the allocation is made
2) if the memory is freed, there is also a stack trace at the point
3) a front and rear guard (fence)
4) the stack traces are kept together with the allocation

-- the following lists and maintained

1) all outstanding memory allocations
3) a backlog of allocations what are freed; when you call free(), instead of
actually freed, the allocation is moved to this backlog;
4) when the backlog of allocations gets full, the oldest entry gets evicted
from it; at that point, the allocation is checked for overruns or
use-after-free errors, and then actually freed.
5) when the program exits, the list of outstanding allocations and the
backlog are inspected for errors, then freed;

To use this, set the following system properties before running the process or
processes you want to inspect:

libc.malloc.debug.backlog # defaults to 100
libc.malloc.debug 10

When a problem is detected, you will see the following on logcat for a multiple
free:

E/libc ( 7233): +++ ALLOCATION 0x404b9278 SIZE 10 BYTES MULTIPLY FREED!
E/libc ( 7233): +++ ALLOCATION 0x404b9278 SIZE 10 ALLOCATED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c658 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d80 /system/lib/libc.so
E/libc ( 7233): #03 pc 4009647c /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so
E/libc ( 7233): +++ ALLOCATION 0x404b9278 SIZE 10 FIRST FREED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c7d2 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d94 /system/lib/libc.so
E/libc ( 7233): #03 pc 40096490 /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so
E/libc ( 7233): +++ ALLOCATION 0x404b9278 SIZE 10 NOW BEING FREED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c6ac /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d94 /system/lib/libc.so
E/libc ( 7233): #03 pc 400964a0 /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so

The following for a heap overrun and underrun:

E/libc ( 7233): +++ REAR GUARD MISMATCH [10, 11)
E/libc ( 7233): +++ ALLOCATION 0x404b9198 SIZE 10 HAS A CORRUPTED REAR GUARD
E/libc ( 7233): +++ ALLOCATION 0x404b9198 SIZE 10 ALLOCATED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c658 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d80 /system/lib/libc.so
E/libc ( 7233): #03 pc 40096438 /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so
E/libc ( 7233): +++ ALLOCATION 0x404b9198 SIZE 10 FREED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c7d2 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d94 /system/lib/libc.so
E/libc ( 7233): #03 pc 40096462 /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so
E/libc ( 7233): +++ ALLOCATION 0x404b9358 SIZE 10 HAS A CORRUPTED FRONT GUARD
E/libc ( 7233): +++ ALLOCATION 0x404b9358 SIZE 10 ALLOCATED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c658 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d80 /system/lib/libc.so
E/libc ( 7233): #03 pc 400964ba /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so
E/libc ( 7233): +++ ALLOCATION 0x404b9358 SIZE 10 FREED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c7d2 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d94 /system/lib/libc.so
E/libc ( 7233): #03 pc 400964e4 /system/bin/malloctest
E/libc ( 7233): #04 pc 00016f24 /system/lib/libc.so

The following for a memory leak:

E/libc ( 7233): +++ THERE ARE 1 LEAKED ALLOCATIONS
E/libc ( 7233): +++ DELETING 4096 BYTES OF LEAKED MEMORY AT 0x404b95e8 (1 REMAINING)
E/libc ( 7233): +++ ALLOCATION 0x404b95e8 SIZE 4096 ALLOCATED HERE:
E/libc ( 7233): *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
E/libc ( 7233): #00 pc 0000c35a /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #01 pc 0000c658 /system/lib/libc_malloc_debug_leak.so
E/libc ( 7233): #02 pc 00016d80 /system/lib/libc.so
E/libc ( 7233): #03 pc 0001bc94 /system/lib/libc.so
E/libc ( 7233): #04 pc 0001edf6 /system/lib/libc.so
E/libc ( 7233): #05 pc 0001b80a /system/lib/libc.so
E/libc ( 7233): #06 pc 0001c086 /system/lib/libc.so
E/libc ( 7233): #07 pc 40096402 /system/bin/malloctest
E/libc ( 7233): #08 pc 00016f24 /system/lib/libc.so

Change-Id: Ic440e9d05a01e2ea86b25e8998714e88bc2d16e0
Signed-off-by: Iliyan Malchev <malchev@google.com>

e1dd3c28

31 May, 2012 1 commit
- merge in jb-release history after reset to jb-dev · e1d59154
  The Android Automerger authored 12 years ago
  
  e1d59154
30 May, 2012 2 commits

bionic: introduce libc.debug.malloc.program · 7d2e24eb

Iliyan Malchev authored 12 years ago


libc.debug.malloc.program  provides an additional level of control over which
processes to enable libc.debug.malloc functionality for.  The string value of
libc.debug.malloc.program is matched against the program name; if the value of
libc.debug.malloc.program is a substring of the program name, then malloc debug
is applied to that program at whatever level libc.debug.malloc specifies.

If lib.debug.malloc.program is not specified, then libc.debug.malloc has the
same effect as before.

For example, to enable libc.deubug.malloc = 10 only to the mediaserver, do the
following:

   adb root # necessary for setprop
   adb setprop libc.debug.malloc.program mediaserver
   adb setprop libc.debug.malloc 10
   adb kill -9 $(pid mediaserver)

Change-Id: I6f01c12f033c8e2e015d73025369d7f1685ba200
Signed-off-by: Iliyan Malchev <malchev@google.com>

7d2e24eb

Merge "Ensure that the port number and TXID are properly randomized." into jb-dev · 03539a36
Geremy Condra authored 12 years ago

03539a36

25 May, 2012 1 commit

Print the corrupted address passed to free(). · 2481468f

Ben Cheng authored 12 years ago

For example:

@@@ ABORTING: INVALID HEAP ADDRESS IN dlfree addr=0x5c3bfbd0
Fatal signal 11 (SIGSEGV) at 0xdeadbaad (code=1), thread 2942

The addr=0x5c3bfbd0 part is new.

Change-Id: I8670144b2b0a3a6182384150d762c97dfee5452f

2481468f

24 May, 2012 2 commits

Print the corrupted address passed to free(). · c84ff11d

Ben Cheng authored 12 years ago

For example:

@@@ ABORTING: INVALID HEAP ADDRESS IN dlfree addr=0x5c3bfbd0
Fatal signal 11 (SIGSEGV) at 0xdeadbaad (code=1), thread 2942

The addr=0x5c3bfbd0 part is new.

Change-Id: I8670144b2b0a3a6182384150d762c97dfee5452f

c84ff11d

Ensure that the port number and TXID are properly randomized. · b23f193d

Geremy Condra authored 12 years ago

This fix reads from /dev/urandom to get the required entropy.

Bug: 6535492
Change-Id: Ibc2fec3f71a67607b608ad9b767b0b6504993c1d

b23f193d

10 May, 2012 1 commit
- merge in jb-release history after reset to jb-dev · 4dc3a7e1
  The Android Automerger authored 12 years ago
  
  4dc3a7e1
09 May, 2012 2 commits

bionic: add support for non-NEON memcpy() on NEON SoCs · 08e72d01

Prajakta Gudadhe authored 12 years ago

Some SoCs that support NEON nevertheless perform better with a non-NEON than a
NEON memcpy().  This patch adds build variable ARCH_ARM_USE_NON_NEON_MEMCPY,
which can be set in BoardConfig.mk.  When ARCH_ARM_USE_NON_NEON_MEMCPY is
defined, we compile in the non-NEON optimized memcpy() even if the SoC supports
NEON.

Change-Id: Ia0e5bee6bad5880ffc5ff8f34a1382d567546cf9

08e72d01

merge in jb-release history after reset to jb-dev · e2390bff
The Android Automerger authored 12 years ago

e2390bff

08 May, 2012 1 commit

Implement the "abort" stub in assembly for ARM. · 08b51e2c

Ben Cheng authored 12 years ago

So that we can always get the full stack trace regardless of gcc's handling
of the "noreturn" attribute associated with abort().

[cherry-picked from master]

BUG:6455193
Change-Id: I0102355f5bf20e636d3feab9d1424495f38e39e2

08b51e2c

30 Apr, 2012 1 commit
- merge in jb-release history after reset to jb-dev · e0f1fca4
  The Android Automerger authored 12 years ago
  
  e0f1fca4
26 Apr, 2012 2 commits

Merge "Update f_accessory.h kernel header" into jb-dev · efcf8893
Mike Lockwood authored 12 years ago

efcf8893

libc: continue to use Android's custom linker script · b091dd9b

Nick Kralevich authored 12 years ago

By default, Android no longer compiles code using it's custom
linker script /build/core/armelf.xsc. However, this causes
problems for libc. Certain programs linked using older versions
of GOLD expect libc.so to export __exidx_start and __exidx_end.
Removing the custom linker script causes libc.so not to export
those symbols.

For now, continue using the old linker script, until we can
figure out a better solution.

Change-Id: Iaf002afd63a58b848818da24e5a4525620dc4d74

b091dd9b

25 Apr, 2012 2 commits
- Update f_accessory.h kernel header · ed87404c
  Mike Lockwood authored 12 years ago
```
Change-Id: I29ec4aa4843b9308cbfa412df88e026e8475b715
Signed-off-by: Mike Lockwood <lockwood@google.com>
```
  ed87404c
- merge in jb-release history after reset to jb-dev · 22d80c0b
  The Android Automerger authored 12 years ago
  
  22d80c0b
23 Apr, 2012 1 commit

linker: remove STB_LOCAL hack · 94179a50

Nick Kralevich authored 12 years ago

The ARM static linker wasn't properly handling __exidx_start
and __exidx_end symbols. Now that the static linker has been fixed,
we don't need the dynamic linker to work around this problem.

Change-Id: I041b94903609fafab33663a7d441a5e70b7ffcdd

94179a50

19 Apr, 2012 1 commit
- merge in jb-release history after reset to master · 5fb8130b
  The Android Automerger authored 12 years ago
  
  5fb8130b
18 Apr, 2012 4 commits
- add linux/sw_sync.h · baeacba0
  Erik Gilling authored 12 years ago
```
Change-Id: I79de18d04b950c21b985d5ebc01cd3306a43d318
Signed-off-by: Erik Gilling <konkers@android.com>
```
  baeacba0
- add linux/sync.h · 6b99103c
  Erik Gilling authored 12 years ago
```
Change-Id: I38bb9498e18cb2b2e84a97487d4ad1e15fabd9d4
Signed-off-by: Erik Gilling <konkers@android.com>
```
  6b99103c
- merge in jb-release history after reset to master · 91b76aa2
  The Android Automerger authored 12 years ago
  
  91b76aa2
- Fix segv when unwinding stack past __libc_init. · 4a9d6e50
  Evgeniy Stepanov authored 12 years ago
```
This change mirrors cd15bacf for statically-linked binaries.

Change-Id: Id870832a50b37f0ef3e79e1ed03ed31390bfc9ef
```
  4a9d6e50
17 Apr, 2012 1 commit
- merge in jb-release history after reset to master · bfb30015
  The Android Automerger authored 12 years ago
  
  bfb30015
16 Apr, 2012 9 commits
- resolved conflicts for merge of 35d592cc to master · 762a4fe2
  Elliott Hughes authored 12 years ago
```
Change-Id: I8184302daf61814d26c837f9920b4e68d96d7f65
```
  762a4fe2
- resolved conflicts for merge of ef987656 to master · f848321c
  Elliott Hughes authored 12 years ago
```
Change-Id: I3854de8f4cddaf344444efa6f9da027642a237d9
```
  f848321c
- resolved conflicts for merge of 6b8fd054 to master · 8ecb4770
  Elliott Hughes authored 12 years ago
```
Change-Id: Ifc5a10d9c2f7764ad80d64cc552aad81d5fbf5eb
```
  8ecb4770
- am ff219e57: am 6435d27f: Merge "bionic: fix NULL parameter failure in getcwd()" · 8266cf94
  Elliott Hughes authored 12 years ago
```
* commit 'ff219e57':
  bionic: fix NULL parameter failure in getcwd()
```
  8266cf94
- am 418e647a: Merge "libstdc++: Fix x86 thread-safe one-time-construction implementation." · 35d592cc
  Elliott Hughes authored 12 years ago
```
* commit '418e647a':
  libstdc++: Fix x86 thread-safe one-time-construction implementation.
```
  35d592cc
- am 4994deae: Merge "Bionic: Fix wrong prototype of system call clock_nanosleep" · ef987656
  Elliott Hughes authored 12 years ago
```
* commit '4994deae':
  Bionic: Fix wrong prototype of system call clock_nanosleep
```
  ef987656
- am 7b8666e6: Merge "bionic: Fix wrong prototype of system call getresuid/getresgid" · 6b8fd054
  Elliott Hughes authored 12 years ago
```
* commit '7b8666e6':
  bionic: Fix wrong prototype of system call getresuid/getresgid
```
  6b8fd054
- am 6435d27f: Merge "bionic: fix NULL parameter failure in getcwd()" · ff219e57
  Elliott Hughes authored 12 years ago
```
* commit '6435d27f':
  bionic: fix NULL parameter failure in getcwd()
```
  ff219e57
- Merge "libstdc++: Fix x86 thread-safe one-time-construction implementation." · 418e647a
  Elliott Hughes authored 12 years ago
  
  418e647a