[base] Add VirtualAddressSpace unittests

These tests cover the basic VirtualAddressSpace functionality for the three different types of address spaces currently available: the root space, subspaces, and emulated subspaces. This CL also includes minor bugfixes in VirtualAddressSpace implementations and removes RandomizedVirtualAlloc in platform-win32.cc which doesn't seem to do anything useful anymore but prevents page allocation hints from working correctly. Bug: v8:10391 Change-Id: Ifa260d18fd366516b5a41ab42ce2f1785c57d061 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3386801Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Commit-Queue: Samuel Groß <saelo@chromium.org> Cr-Commit-Position: refs/heads/main@{#78666}

[base] Add VirtualAddressSpace unittests
These tests cover the basic VirtualAddressSpace functionality for the three different types of address spaces currently available: the root space, subspaces, and emulated subspaces. This CL also includes minor bugfixes in VirtualAddressSpace implementations and removes RandomizedVirtualAlloc in platform-win32.cc which doesn't seem to do anything useful anymore but prevents page allocation hints from working correctly. Bug: v8:10391 Change-Id: Ifa260d18fd366516b5a41ab42ce2f1785c57d061 Reviewed-on: https://chromium-review.googlesource.com/c/v8/v8/+/3386801Reviewed-by: Michael Lippautz <mlippautz@chromium.org> Commit-Queue: Samuel Groß <saelo@chromium.org> Cr-Commit-Position: refs/heads/main@{#78666}
c992a256 · Samuel Groß · V8 LUCI CQ · 86acc1d0 · c992a256 · c992a256
Commit c992a256 authored Jan 17, 2022 by Samuel Groß Committed by V8 LUCI CQ Jan 18, 2022
5 changed files
--- a/src/base/emulated-virtual-address-subspace.cc
+++ b/src/base/emulated-virtual-address-subspace.cc
@@ -40,7 +40,7 @@ void EmulatedVirtualAddressSubspace::SetRandomSeed(int64_t seed) {

 Address EmulatedVirtualAddressSubspace::RandomPageAddress() {
  MutexGuard guard(&mutex_);
-  Address addr = base() + (rng_.NextInt64() % size());
+  Address addr = base() + (static_cast<uint64_t>(rng_.NextInt64()) % size());
  return RoundDown(addr, allocation_granularity());
 }

@@ -77,13 +77,14 @@ Address EmulatedVirtualAddressSubspace::AllocatePages(
    while (!UnmappedRegionContains(hint, size)) {
      hint = RandomPageAddress();
    }
+    hint = RoundDown(hint, alignment);

-    Address region =
+    const Address result =
        parent_space_->AllocatePages(hint, size, alignment, permissions);
-    if (region && UnmappedRegionContains(region, size)) {
-      return region;
-    } else if (region) {
-      CHECK(parent_space_->FreePages(region, size));
+    if (UnmappedRegionContains(result, size)) {
+      return result;
+    } else if (result) {
+      CHECK(parent_space_->FreePages(result, size));
    }

    // Retry at a different address.

--- a/src/base/platform/platform-win32.cc
+++ b/src/base/platform/platform-win32.cc
@@ -815,43 +815,31 @@ DWORD GetProtectionFromMemoryPermission(OS::MemoryPermission access) {
  UNREACHABLE();
 }

-void* VirtualAllocWrapper(void* hint, size_t size, DWORD flags, DWORD protect) {
+void* VirtualAllocWrapper(void* address, size_t size, DWORD flags,
+                          DWORD protect) {
  if (VirtualAlloc2) {
-    return VirtualAlloc2(nullptr, hint, size, flags, protect, NULL, 0);
+    return VirtualAlloc2(nullptr, address, size, flags, protect, NULL, 0);
  } else {
-    return VirtualAlloc(hint, size, flags, protect);
+    return VirtualAlloc(address, size, flags, protect);
  }
 }

-uint8_t* RandomizedVirtualAlloc(size_t size, DWORD flags, DWORD protect,
-                                void* hint) {
-  LPVOID base = nullptr;
-  static BOOL use_aslr = -1;
-#ifdef V8_HOST_ARCH_32_BIT
-  // Don't bother randomizing on 32-bit hosts, because they lack the room and
-  // don't have viable ASLR anyway.
-  if (use_aslr == -1 && !IsWow64Process(GetCurrentProcess(), &use_aslr))
-    use_aslr = FALSE;
-#else
-  use_aslr = TRUE;
-#endif
-
-  if (use_aslr && protect != PAGE_READWRITE) {
-    // For executable or reserved pages try to randomize the allocation address.
-    base = VirtualAllocWrapper(hint, size, flags, protect);
-  }
+uint8_t* VirtualAllocWithHint(size_t size, DWORD flags, DWORD protect,
+                              void* hint) {
+  LPVOID base = VirtualAllocWrapper(hint, size, flags, protect);

  // On failure, let the OS find an address to use.
-  if (base == nullptr) {
+  if (hint && base == nullptr) {
    base = VirtualAllocWrapper(nullptr, size, flags, protect);
  }
+
  return reinterpret_cast<uint8_t*>(base);
 }

 void* AllocateInternal(void* hint, size_t size, size_t alignment,
                       size_t page_size, DWORD flags, DWORD protect) {
  // First, try an exact size aligned allocation.
-  uint8_t* base = RandomizedVirtualAlloc(size, flags, protect, hint);
+  uint8_t* base = VirtualAllocWithHint(size, flags, protect, hint);
  if (base == nullptr) return nullptr;  // Can't allocate, we're OOM.

  // If address is suitably aligned, we're done.
@@ -871,7 +859,7 @@ void* AllocateInternal(void* hint, size_t size, size_t alignment,
  const int kMaxAttempts = 3;
  aligned_base = nullptr;
  for (int i = 0; i < kMaxAttempts; ++i) {
-    base = RandomizedVirtualAlloc(padded_size, flags, protect, hint);
+    base = VirtualAllocWithHint(padded_size, flags, protect, hint);
    if (base == nullptr) return nullptr;  // Can't allocate, we're OOM.

    // Try to trim the allocation by freeing the padded allocation and then

--- a/src/base/virtual-address-space.cc
+++ b/src/base/virtual-address-space.cc
@@ -173,7 +173,7 @@ Address VirtualAddressSubspace::RandomPageAddress() {
  MutexGuard guard(&mutex_);
  // Note: the random numbers generated here aren't uniformly distributed if the
  // size isn't a power of two.
-  Address addr = base() + (rng_.NextInt64() % size());
+  Address addr = base() + (static_cast<uint64_t>(rng_.NextInt64()) % size());
  return RoundDown(addr, allocation_granularity());
 }


--- a/test/unittests/BUILD.gn
+++ b/test/unittests/BUILD.gn
@@ -233,6 +233,7 @@ v8_source_set("unittests_sources") {
    "base/threaded-list-unittest.cc",
    "base/utils/random-number-generator-unittest.cc",
    "base/vector-unittest.cc",
+    "base/virtual-address-space-unittest.cc",
    "base/vlq-base64-unittest.cc",
    "base/vlq-unittest.cc",
    "codegen/aligned-slot-allocator-unittest.cc",

--- a/test/unittests/base/virtual-address-space-unittest.cc
+++ b/test/unittests/base/virtual-address-space-unittest.cc
+// Copyright 2022 the V8 project authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "src/base/virtual-address-space.h"
+
+#include "src/base/emulated-virtual-address-subspace.h"
+#include "testing/gtest/include/gtest/gtest.h"
+
+namespace v8 {
+namespace base {
+
+constexpr size_t KB = 1024;
+constexpr size_t MB = KB * 1024;
+
+void TestRandomPageAddressGeneration(v8::VirtualAddressSpace* space) {
+  space->SetRandomSeed(::testing::FLAGS_gtest_random_seed);
+  for (int i = 0; i < 10; i++) {
+    Address addr = space->RandomPageAddress();
+    EXPECT_GE(addr, space->base());
+    EXPECT_LT(addr, space->base() + space->size());
+  }
+}
+
+void TestBasicPageAllocation(v8::VirtualAddressSpace* space) {
+  // Allocation sizes in KB.
+  const size_t allocation_sizes[] = {4,   8,   12,  16,   32,  64,  128,
+                                     256, 512, 768, 1024, 768, 512, 256,
+                                     128, 64,  32,  16,   12,  8,   4};
+
+  std::vector<Address> allocations;
+  size_t alignment = space->allocation_granularity();
+  for (size_t i = 0; i < arraysize(allocation_sizes); i++) {
+    size_t size = allocation_sizes[i] * KB;
+    if (!IsAligned(size, space->allocation_granularity())) continue;
+    Address allocation =
+        space->AllocatePages(VirtualAddressSpace::kNoHint, size, alignment,
+                             PagePermissions::kReadWrite);
+
+    ASSERT_NE(kNullAddress, allocation);
+    EXPECT_GE(allocation, space->base());
+    EXPECT_LT(allocation, space->base() + space->size());
+
+    allocations.push_back(allocation);
+
+    // Memory must be writable
+    *reinterpret_cast<size_t*>(allocation) = size;
+  }
+
+  // Windows has an allocation granularity of 64KB and macOS could have 16KB, so
+  // we won't necessarily have managed to obtain all allocations, but we
+  // should've gotten all that are >= 64KB.
+  EXPECT_GE(allocations.size(), 11UL);
+
+  for (Address allocation : allocations) {
+    //... and readable
+    size_t size = *reinterpret_cast<size_t*>(allocation);
+    EXPECT_TRUE(space->FreePages(allocation, size));
+  }
+}
+
+void TestPageAllocationAlignment(v8::VirtualAddressSpace* space) {
+  // In multiples of the allocation_granularity.
+  const size_t alignments[] = {1, 2, 4, 8, 16, 32, 64};
+  const size_t size = space->allocation_granularity();
+
+  for (size_t i = 0; i < arraysize(alignments); i++) {
+    size_t alignment = alignments[i] * space->allocation_granularity();
+    Address allocation =
+        space->AllocatePages(VirtualAddressSpace::kNoHint, size, alignment,
+                             PagePermissions::kReadWrite);
+
+    ASSERT_NE(kNullAddress, allocation);
+    EXPECT_TRUE(IsAligned(allocation, alignment));
+    EXPECT_GE(allocation, space->base());
+    EXPECT_LT(allocation, space->base() + space->size());
+
+    EXPECT_TRUE(space->FreePages(allocation, size));
+  }
+}
+
+void TestParentSpaceCannotAllocateInChildSpace(v8::VirtualAddressSpace* parent,
+                                               v8::VirtualAddressSpace* child) {
+  child->SetRandomSeed(::testing::FLAGS_gtest_random_seed);
+
+  size_t chunksize = parent->allocation_granularity();
+  size_t alignment = chunksize;
+  Address start = child->base();
+  Address end = start + child->size();
+
+  for (int i = 0; i < 10; i++) {
+    Address hint = child->RandomPageAddress();
+    Address allocation = parent->AllocatePages(hint, chunksize, alignment,
+                                               PagePermissions::kNoAccess);
+    ASSERT_NE(kNullAddress, allocation);
+    EXPECT_TRUE(allocation < start || allocation >= end);
+    EXPECT_TRUE(parent->FreePages(allocation, chunksize));
+  }
+}
+
+TEST(VirtualAddressSpaceTest, TestRootSpace) {
+  VirtualAddressSpace rootspace;
+
+  TestRandomPageAddressGeneration(&rootspace);
+  TestBasicPageAllocation(&rootspace);
+  TestPageAllocationAlignment(&rootspace);
+}
+
+TEST(VirtualAddressSpaceTest, TestSubspace) {
+  constexpr size_t kSubspaceSize = 32 * MB;
+  constexpr size_t kSubSubspaceSize = 16 * MB;
+
+  VirtualAddressSpace rootspace;
+
+  if (!rootspace.CanAllocateSubspaces()) return;
+  size_t subspace_alignment = rootspace.allocation_granularity();
+  auto subspace = rootspace.AllocateSubspace(
+      VirtualAddressSpace::kNoHint, kSubspaceSize, subspace_alignment,
+      PagePermissions::kReadWriteExecute);
+  ASSERT_TRUE(subspace);
+  EXPECT_NE(kNullAddress, subspace->base());
+  EXPECT_EQ(kSubspaceSize, subspace->size());
+
+  TestRandomPageAddressGeneration(subspace.get());
+  TestBasicPageAllocation(subspace.get());
+  TestPageAllocationAlignment(subspace.get());
+  TestParentSpaceCannotAllocateInChildSpace(&rootspace, subspace.get());
+
+  // Test sub-subspaces
+  if (!subspace->CanAllocateSubspaces()) return;
+  size_t subsubspace_alignment = subspace->allocation_granularity();
+  auto subsubspace = subspace->AllocateSubspace(
+      VirtualAddressSpace::kNoHint, kSubSubspaceSize, subsubspace_alignment,
+      PagePermissions::kReadWriteExecute);
+  ASSERT_TRUE(subsubspace);
+  EXPECT_NE(kNullAddress, subsubspace->base());
+  EXPECT_EQ(kSubSubspaceSize, subsubspace->size());
+
+  TestRandomPageAddressGeneration(subsubspace.get());
+  TestBasicPageAllocation(subsubspace.get());
+  TestPageAllocationAlignment(subsubspace.get());
+  TestParentSpaceCannotAllocateInChildSpace(subspace.get(), subsubspace.get());
+}
+
+TEST(VirtualAddressSpaceTest, TestEmulatedSubspace) {
+  constexpr size_t kSubspaceSize = 32 * MB;
+  // Size chosen so page allocation tests will obtain pages in both the mapped
+  // and the unmapped region.
+  constexpr size_t kSubspaceMappedSize = 1 * MB;
+
+  VirtualAddressSpace rootspace;
+
+  size_t subspace_alignment = rootspace.allocation_granularity();
+  ASSERT_TRUE(
+      IsAligned(kSubspaceMappedSize, rootspace.allocation_granularity()));
+  Address reservation = kNullAddress;
+  for (int i = 0; i < 10; i++) {
+    // Reserve the full size first at a random address, then free it again to
+    // ensure that there's enough free space behind the final reservation.
+    Address hint = rootspace.RandomPageAddress();
+    reservation = rootspace.AllocatePages(hint, kSubspaceSize,
+                                          rootspace.allocation_granularity(),
+                                          PagePermissions::kNoAccess);
+    ASSERT_NE(kNullAddress, reservation);
+    hint = reservation;
+    EXPECT_TRUE(rootspace.FreePages(reservation, kSubspaceSize));
+    reservation =
+        rootspace.AllocatePages(hint, kSubspaceMappedSize, subspace_alignment,
+                                PagePermissions::kNoAccess);
+    if (reservation == hint) {
+      break;
+    } else {
+      EXPECT_TRUE(rootspace.FreePages(reservation, kSubspaceMappedSize));
+      reservation = kNullAddress;
+    }
+  }
+  ASSERT_NE(kNullAddress, reservation);
+
+  EmulatedVirtualAddressSubspace subspace(&rootspace, reservation,
+                                          kSubspaceMappedSize, kSubspaceSize);
+  EXPECT_EQ(reservation, subspace.base());
+  EXPECT_EQ(kSubspaceSize, subspace.size());
+
+  TestRandomPageAddressGeneration(&subspace);
+  TestBasicPageAllocation(&subspace);
+  TestPageAllocationAlignment(&subspace);
+  // An emulated subspace does *not* guarantee that the parent space cannot
+  // allocate pages in it, so no TestParentSpaceCannotAllocateInChildSpace.
+}
+
+}  // namespace base
+}  // namespace v8