mirror of
https://github.com/GrapheneOS/hardened_malloc.git
synced 2024-10-01 01:36:01 -04:00
365ee6900d
async_safe_fatal() calls abort() at the end, which can be intercepted by a custom SIGABRT handler. In particular, crashlytics installs such a handler and tries to fork() after catching SIGABRT. hardened_malloc uses pthread_atfork() to register fork handlers. These handlers try to lock internal hardened_malloc mutexes. If at least one of those mutexes is already locked, which is usually the case, thread that called fatai_error() gets deadlocked, while the other threads (if there are any) continue to run.
45 lines
1.1 KiB
C
45 lines
1.1 KiB
C
#include <errno.h>
|
|
#include <stdlib.h>
|
|
#include <string.h>
|
|
|
|
#include <unistd.h>
|
|
|
|
#ifdef __ANDROID__
|
|
#include <async_safe/log.h>
|
|
int mallopt(int param, int value);
|
|
#define M_BIONIC_RESTORE_DEFAULT_SIGABRT_HANDLER (-1003)
|
|
#endif
|
|
|
|
#include "util.h"
|
|
|
|
#ifndef __ANDROID__
|
|
static int write_full(int fd, const char *buf, size_t length) {
|
|
do {
|
|
ssize_t bytes_written = write(fd, buf, length);
|
|
if (bytes_written == -1) {
|
|
if (errno == EINTR) {
|
|
continue;
|
|
}
|
|
return -1;
|
|
}
|
|
buf += bytes_written;
|
|
length -= bytes_written;
|
|
} while (length);
|
|
|
|
return 0;
|
|
}
|
|
#endif
|
|
|
|
COLD noreturn void fatal_error(const char *s) {
|
|
#ifdef __ANDROID__
|
|
mallopt(M_BIONIC_RESTORE_DEFAULT_SIGABRT_HANDLER, 0);
|
|
async_safe_fatal("hardened_malloc: fatal allocator error: %s", s);
|
|
#else
|
|
const char *prefix = "fatal allocator error: ";
|
|
(void)(write_full(STDERR_FILENO, prefix, strlen(prefix)) != -1 &&
|
|
write_full(STDERR_FILENO, s, strlen(s)) != -1 &&
|
|
write_full(STDERR_FILENO, "\n", 1));
|
|
abort();
|
|
#endif
|
|
}
|