indirect-pointer-inl_8h_source.html

// Copyright 2023 the V8 project authors. All rights reserved.

// Use of this source code is governed by a BSD-style license that can be

// found in the LICENSE file.


#ifndef V8_SANDBOX_INDIRECT_POINTER_INL_H_

#define V8_SANDBOX_INDIRECT_POINTER_INL_H_


#include "src/sandbox/indirect-pointer.h"

// Include the non-inl header before the rest of the headers.


#include "include/v8-internal.h"

#include "src/base/atomic-utils.h"

#include "src/sandbox/code-pointer-table-inl.h"

#include "src/sandbox/isolate-inl.h"

#include "src/sandbox/trusted-pointer-table-inl.h"


namespace v8 {

namespace internal {


V8_INLINE void InitSelfIndirectPointerField(

    Address field_address, IsolateForSandbox isolate, Tagged<HeapObject> host,

    IndirectPointerTag tag,

    TrustedPointerPublishingScope* opt_publishing_scope) {

#ifdef V8_ENABLE_SANDBOX

  DCHECK_NE(tag, kUnknownIndirectPointerTag);

  // TODO(saelo): in the future, we might want to CHECK here or in

  // AllocateAndInitializeEntry that the host lives in trusted space.


  IndirectPointerHandle handle;

  if (tag == kCodeIndirectPointerTag) {

    CodePointerTable::Space* space =

        isolate.GetCodePointerTableSpaceFor(field_address);

    handle =

        IsolateGroup::current()

            ->code_pointer_table()

            ->AllocateAndInitializeEntry(space, host.address(), kNullAddress,

                                         kDefaultCodeEntrypointTag);

  } else {

    TrustedPointerTable::Space* space =

        isolate.GetTrustedPointerTableSpaceFor(tag);

    handle = isolate.GetTrustedPointerTableFor(tag).AllocateAndInitializeEntry(

        space, host.ptr(), tag, opt_publishing_scope);

  }


  // Use a Release_Store to ensure that the store of the pointer into the table

  // is not reordered after the store of the handle. Otherwise, other threads

  // may access an uninitialized table entry and crash.

  auto location = reinterpret_cast<IndirectPointerHandle*>(field_address);

  base::AsAtomic32::Release_Store(location, handle);

#else

  UNREACHABLE();

#endif

}


namespace {

#ifdef V8_ENABLE_SANDBOX

template <IndirectPointerTag tag>

V8_INLINE Tagged<Object> ResolveTrustedPointerHandle(

    IndirectPointerHandle handle, IsolateForSandbox isolate) {

  const TrustedPointerTable& table = isolate.GetTrustedPointerTableFor(tag);

  return Tagged<Object>(table.Get(handle, tag));

}


V8_INLINE Tagged<Object> ResolveCodePointerHandle(

    IndirectPointerHandle handle) {

  CodePointerTable* table = IsolateGroup::current()->code_pointer_table();

  return Tagged<Object>(table->GetCodeObject(handle));

}

#endif  // V8_ENABLE_SANDBOX

}  // namespace


template <IndirectPointerTag tag>


V8_INLINE Tagged<Object> ReadIndirectPointerField(Address field_address,

                                                  IsolateForSandbox isolate,

                                                  AcquireLoadTag) {

#ifdef V8_ENABLE_SANDBOX

  // Load the indirect pointer handle from the object.

  // Technically, we could use memory_order_consume here as the loads are

  // dependent, but that appears to be deprecated in favor of acquire ordering.

  auto location = reinterpret_cast<IndirectPointerHandle*>(field_address);

  IndirectPointerHandle handle = base::AsAtomic32::Acquire_Load(location);


  // Resolve the handle. The tag implies the pointer table to use.

  if constexpr (tag == kUnknownIndirectPointerTag) {

    // In this case we need to check if the handle is a code pointer handle and

    // select the appropriate table based on that.

    if (handle & kCodePointerHandleMarker) {

      return ResolveCodePointerHandle(handle);

    } else {

      // TODO(saelo): once we have type tagging for entries in the trusted

      // pointer table, we could ASSUME that the top bits of the tag match the

      // instance type, which might allow the compiler to optimize subsequent

      // instance type checks.

      return ResolveTrustedPointerHandle<tag>(handle, isolate);

    }

  } else if constexpr (tag == kCodeIndirectPointerTag) {

    return ResolveCodePointerHandle(handle);

  } else {

    return ResolveTrustedPointerHandle<tag>(handle, isolate);

  }

#else

  UNREACHABLE();

#endif

}


template <IndirectPointerTag tag>


V8_INLINE void WriteIndirectPointerField(Address field_address,

                                         Tagged<ExposedTrustedObject> value,

                                         ReleaseStoreTag) {

#ifdef V8_ENABLE_SANDBOX

  static_assert(tag != kIndirectPointerNullTag);

  IndirectPointerHandle handle = value->self_indirect_pointer_handle();

  DCHECK_NE(handle, kNullIndirectPointerHandle);

  auto location = reinterpret_cast<IndirectPointerHandle*>(field_address);

  base::AsAtomic32::Release_Store(location, handle);

#else

  UNREACHABLE();

#endif

}


}  // namespace internal

}  // namespace v8


#endif  // V8_SANDBOX_INDIRECT_POINTER_INL_H_

atomic-utils.h

v8::base::AsAtomicImpl::Release_Store
static void Release_Store(T *addr, typename std::remove_reference< T >::type new_value)
Definition atomic-utils.h:100

v8::base::AsAtomicImpl::Acquire_Load
static T Acquire_Load(T *addr)
Definition atomic-utils.h:78

v8::internal::IsolateForSandbox
Definition isolate.h:67

v8::internal::IsolateGroup::current
static IsolateGroup * current()
Definition isolate-group.h:181

v8::internal::TaggedImpl::ptr
V8_INLINE constexpr StorageType ptr() const
Definition tagged-impl.h:114

v8::internal::Tagged< HeapObject >::address
Address address() const
Definition tagged.h:525

v8::internal::Tagged
Definition waiter-queue-node.h:21

v8::internal::TrustedPointerPublishingScope
Definition trusted-pointer-scope.h:62

code-pointer-table-inl.h

indirect-pointer.h

v8::internal::handle
V8_INLINE IndirectHandle< T > handle(Tagged< T > object, Isolate *isolate)
Definition handles-inl.h:72

v8::internal::WriteIndirectPointerField
V8_INLINE void WriteIndirectPointerField(Address field_address, Tagged< ExposedTrustedObject > value, ReleaseStoreTag)
Definition indirect-pointer-inl.h:107

v8::internal::ReadIndirectPointerField
V8_INLINE Tagged< Object > ReadIndirectPointerField(Address field_address, IsolateForSandbox isolate, AcquireLoadTag)
Definition indirect-pointer-inl.h:73

v8::internal::IndirectPointerTag
IndirectPointerTag
Definition indirect-pointer-tag.h:108

v8::internal::kIndirectPointerNullTag
@ kIndirectPointerNullTag
Definition indirect-pointer-tag.h:111

v8::internal::kUnknownIndirectPointerTag
@ kUnknownIndirectPointerTag
Definition indirect-pointer-tag.h:142

v8::internal::kDefaultCodeEntrypointTag
@ kDefaultCodeEntrypointTag
Definition code-entrypoint-tag.h:38

v8::internal::internal
internal
Definition wasm-objects-inl.h:458

v8::internal::Tagged< Object >
Tagged< Object >
Definition js-objects-inl.h:162

v8::internal::IndirectPointerHandle
uint32_t IndirectPointerHandle
Definition v8-internal.h:726

v8::internal::Address
Address
Definition api-callbacks-inl.h:36

v8::internal::InitSelfIndirectPointerField
V8_INLINE void InitSelfIndirectPointerField(Address field_address, IsolateForSandbox isolate, Tagged< HeapObject > host, IndirectPointerTag tag, TrustedPointerPublishingScope *opt_publishing_scope)
Definition indirect-pointer-inl.h:20

v8::internal::kNullIndirectPointerHandle
constexpr IndirectPointerHandle kNullIndirectPointerHandle
Definition v8-internal.h:729

v8::internal::UNREACHABLE
UNREACHABLE()

v8::internal::kNullAddress
static constexpr Address kNullAddress
Definition v8-internal.h:53

v8::internal::kCodePointerHandleMarker
constexpr uint32_t kCodePointerHandleMarker
Definition v8-internal.h:805

v8
Definition api-arguments-inl.h:19

isolate-inl.h

DCHECK_NE
#define DCHECK_NE(v1, v2)
Definition logging.h:486

v8::AcquireLoadTag
Definition globals.h:2903

v8::ReleaseStoreTag
Definition globals.h:2905

trusted-pointer-table-inl.h

v8-internal.h

V8_INLINE
#define V8_INLINE
Definition v8config.h:500