Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
OpenHarmony
Third Party Musl
提交
7b2cdd0f
T
Third Party Musl
项目概览
OpenHarmony
/
Third Party Musl
1 年多 前同步成功
通知
37
Star
125
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
T
Third Party Musl
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
未验证
提交
7b2cdd0f
编写于
9月 20, 2022
作者:
O
openharmony_ci
提交者:
Gitee
9月 20, 2022
浏览文件
操作
浏览文件
下载
差异文件
!538 解决无法hook到malloc问题
Merge pull request !538 from leixin/OpenHarmony-3.2-Beta3
上级
8086f6b7
17bc7e8e
变更
1
隐藏空白更改
内联
并排
Showing
1 changed file
with
125 addition
and
2 deletion
+125
-2
porting/linux/user/src/malloc/malloc.c
porting/linux/user/src/malloc/malloc.c
+125
-2
未找到文件。
porting/linux/user/src/malloc/malloc.c
浏览文件 @
7b2cdd0f
...
...
@@ -555,7 +555,20 @@ static size_t mal0_clear(char *p, size_t pagesz, size_t n)
void
*
calloc
(
size_t
m
,
size_t
n
)
{
return
internal_calloc
(
m
,
n
);
if
(
n
&&
m
>
(
size_t
)
-
1
/
n
){
errno
=
ENOMEM
;
return
0
;
}
n
*=
m
;
void
*
p
=
malloc
(
n
);
if
(
!
p
)
return
p
;
if
(
!
__malloc_replaced
)
{
if
(
IS_MMAPPED
(
MEM_TO_CHUNK
(
p
)))
return
p
;
if
(
n
>=
PAGE_SIZE
)
n
=
mal0_clear
(
p
,
PAGE_SIZE
,
n
);
}
return
memset
(
p
,
0
,
n
);
}
void
*
internal_calloc
(
size_t
m
,
size_t
n
)
...
...
@@ -578,7 +591,117 @@ void *internal_calloc(size_t m, size_t n)
void
*
realloc
(
void
*
p
,
size_t
n
)
{
return
internal_realloc
(
p
,
n
);
struct
chunk
*
self
,
*
next
;
size_t
n0
,
n1
;
void
*
new
;
#ifdef MALLOC_RED_ZONE
size_t
user_size
=
n
;
#endif
if
(
!
p
)
return
malloc
(
n
);
if
(
!
n
)
{
free
(
p
);
return
NULL
;
}
if
(
adjust_size
(
&
n
)
<
0
)
return
0
;
self
=
MEM_TO_CHUNK
(
p
);
n1
=
n0
=
CHUNK_SIZE
(
self
);
#ifdef MALLOC_RED_ZONE
/* Not a valid chunk */
if
(
!
(
self
->
state
&
M_STATE_USED
))
a_crash
();
if
(
chunk_checksum_check
(
self
))
a_crash
();
if
(
self
->
state
&
M_RZ_POISON
)
chunk_poison_check
(
self
);
#endif
if
(
IS_MMAPPED
(
self
))
{
size_t
extra
=
self
->
psize
;
char
*
base
=
(
char
*
)
self
-
extra
;
size_t
oldlen
=
n0
+
extra
;
size_t
newlen
=
n
+
extra
;
/* Crash on realloc of freed chunk */
#ifdef MALLOC_RED_ZONE
/* Wrong malloc type */
if
(
!
(
self
->
state
&
M_STATE_MMAP
))
a_crash
();
#endif
if
(
extra
&
1
)
a_crash
();
if
(
newlen
<
PAGE_SIZE
&&
(
new
=
malloc
(
n
-
OVERHEAD
)))
{
n0
=
n
;
goto
copy_free_ret
;
}
newlen
=
(
newlen
+
PAGE_SIZE
-
1
)
&
-
PAGE_SIZE
;
if
(
oldlen
==
newlen
)
return
p
;
base
=
__mremap
(
base
,
oldlen
,
newlen
,
MREMAP_MAYMOVE
);
if
(
base
==
(
void
*
)
-
1
)
goto
copy_realloc
;
self
=
(
void
*
)(
base
+
extra
);
self
->
csize
=
newlen
-
extra
;
#ifdef MALLOC_RED_ZONE
self
->
usize
=
user_size
;
if
(
need_poison
())
{
chunk_poison_set
(
self
);
}
else
{
self
->
state
&=
~
M_RZ_POISON
;
}
chunk_checksum_set
(
self
);
#endif
return
CHUNK_TO_MEM
(
self
);
}
next
=
NEXT_CHUNK
(
self
);
/* Crash on corrupted footer (likely from buffer overflow) */
if
(
next
->
psize
!=
self
->
csize
)
a_crash
();
/* Merge adjacent chunks if we need more space. This is not
* a waste of time even if we fail to get enough space, because our
* subsequent call to free would otherwise have to do the merge. */
if
(
n
>
n1
&&
alloc_fwd
(
next
))
{
n1
+=
CHUNK_SIZE
(
next
);
next
=
NEXT_CHUNK
(
next
);
#ifdef MALLOC_RED_ZONE
/* alloc forward arises, remove the poison tag */
self
->
state
&=
~
M_RZ_POISON
;
#endif
}
/* FIXME: find what's wrong here and reenable it..? */
if
(
0
&&
n
>
n1
&&
alloc_rev
(
self
))
{
self
=
PREV_CHUNK
(
self
);
n1
+=
CHUNK_SIZE
(
self
);
}
self
->
csize
=
n1
|
C_INUSE
;
next
->
psize
=
n1
|
C_INUSE
;
/* If we got enough space, split off the excess and return */
if
(
n
<=
n1
)
{
//memmove(CHUNK_TO_MEM(self), p, n0-OVERHEAD);
trim
(
self
,
n
);
#ifdef MALLOC_RED_ZONE
self
->
usize
=
user_size
;
if
(
need_poison
())
{
chunk_poison_set
(
self
);
}
else
{
self
->
state
&=
~
M_RZ_POISON
;
}
chunk_checksum_set
(
self
);
#endif
return
CHUNK_TO_MEM
(
self
);
}
copy_realloc:
/* As a last resort, allocate a new chunk and copy to it. */
new
=
malloc
(
n
-
OVERHEAD
);
if
(
!
new
)
return
0
;
copy_free_ret:
#ifndef MALLOC_RED_ZONE
memcpy
(
new
,
p
,
n0
-
OVERHEAD
);
#else
memcpy
(
new
,
p
,
self
->
usize
<
user_size
?
self
->
usize
:
user_size
);
chunk_checksum_set
(
self
);
#endif
free
(
CHUNK_TO_MEM
(
self
));
return
new
;
}
void
*
internal_realloc
(
void
*
p
,
size_t
n
)
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录