mirror of
https://github.com/mkxp-z/mkxp-z.git
synced 2025-08-23 15:23:44 +02:00
eeef9ff943
Okay, the coroutine implementation of `sandbox_malloc` is clearly
broken. It would be working if Asyncify instrumented the `memory.grow`
WebAssembly instruction, but it doesn't instrument it.
This commit reverts commit 42c4ff9497 and
also increases the default VM memory allocation from 64 MiB to 96 MiB to
account for the lack of ability to increase the memory allocation at run
time. I'll find some new way to implement increasing the memory
allocation later.
130 lines
4.5 KiB
C++
130 lines
4.5 KiB
C++
/*
|
|
** sandbox.cpp
|
|
**
|
|
** This file is part of mkxp.
|
|
**
|
|
** Copyright (C) 2013 - 2021 Amaryllis Kulla <ancurio@mapleshrine.eu>
|
|
**
|
|
** mkxp is free software: you can redistribute it and/or modify
|
|
** it under the terms of the GNU General Public License as published by
|
|
** the Free Software Foundation, either version 2 of the License, or
|
|
** (at your option) any later version.
|
|
**
|
|
** mkxp is distributed in the hope that it will be useful,
|
|
** but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
** GNU General Public License for more details.
|
|
**
|
|
** You should have received a copy of the GNU General Public License
|
|
** along with mkxp. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include <cstdio>
|
|
#include <cstring>
|
|
#include <string>
|
|
#include <wasm-rt.h>
|
|
#include "wasi.h"
|
|
#include <mkxp-retro-ruby.h>
|
|
#include "mkxp-threads.h"
|
|
#include "sandbox.h"
|
|
|
|
#define MJIT_ENABLED 0
|
|
#define MJIT_VERBOSE 0
|
|
#define MJIT_MAX_CACHE 100
|
|
#define MJIT_MIN_CALLS 10000
|
|
#define YJIT_ENABLED 0
|
|
|
|
#define RB (ruby.get())
|
|
#define WASM_NULL 0
|
|
#define WASM_MEM(address) ((void *)&ruby->w2c_memory.data[address])
|
|
#define AWAIT(statement) do statement; while (w2c_ruby_mkxp_sandbox_yield(RB))
|
|
|
|
using namespace mkxp_sandbox;
|
|
|
|
usize sandbox::sandbox_malloc(usize size) {
|
|
usize buf = w2c_ruby_mkxp_sandbox_malloc(RB, size);
|
|
|
|
// Verify that the returned pointer is non-null and the entire allocated buffer is in valid memory
|
|
usize buf_end;
|
|
if (buf == WASM_NULL || __builtin_add_overflow(buf, size, &buf_end) || buf_end >= ruby->w2c_memory.size) {
|
|
throw SandboxOutOfMemoryException();
|
|
}
|
|
|
|
return buf;
|
|
}
|
|
|
|
void sandbox::sandbox_free(usize ptr) {
|
|
w2c_ruby_mkxp_sandbox_free(RB, ptr);
|
|
}
|
|
|
|
sandbox::sandbox() : ruby(new struct w2c_ruby), wasi(new wasi_t(ruby)), bindings(ruby), yielding(false) {
|
|
try {
|
|
// Initialize the sandbox
|
|
wasm2c_ruby_instantiate(RB, wasi.get());
|
|
w2c_ruby_mkxp_sandbox_init(RB);
|
|
|
|
// Determine Ruby command-line arguments
|
|
std::vector<std::string> args{"mkxp-z"};
|
|
args.push_back("/mkxp-retro-dist/bin/mkxp-z");
|
|
if (MJIT_ENABLED) {
|
|
std::string verboseLevel("--mjit-verbose=");
|
|
std::string maxCache("--mjit-max-cache=");
|
|
std::string minCalls("--mjit-min-calls=");
|
|
args.push_back("--mjit");
|
|
verboseLevel += std::to_string(MJIT_VERBOSE);
|
|
maxCache += std::to_string(MJIT_MAX_CACHE);
|
|
minCalls += std::to_string(MJIT_MIN_CALLS);
|
|
args.push_back(verboseLevel.c_str());
|
|
args.push_back(maxCache.c_str());
|
|
args.push_back(minCalls.c_str());
|
|
} else if (YJIT_ENABLED) {
|
|
args.push_back("--yjit");
|
|
}
|
|
|
|
// Copy all the command-line arguments into the sandbox (sandboxed code can't access memory that's outside the sandbox!)
|
|
usize argv_buf = sandbox_malloc(args.size() * sizeof(usize));
|
|
for (usize i = 0; i < args.size(); ++i) {
|
|
usize arg_buf = sandbox_malloc(args[i].length() + 1);
|
|
std::strcpy((char *)WASM_MEM(arg_buf), args[i].c_str());
|
|
WASM_SET(usize, argv_buf + i * sizeof(usize), arg_buf);
|
|
}
|
|
|
|
// Pass the command-line arguments to Ruby
|
|
AWAIT(w2c_ruby_ruby_init_stack(RB, w2c_ruby_rb_wasm_get_stack_pointer(RB)));
|
|
AWAIT(w2c_ruby_ruby_init(RB));
|
|
usize node;
|
|
AWAIT(node = w2c_ruby_ruby_options(RB, args.size(), argv_buf));
|
|
|
|
// Start up Ruby executable node
|
|
bool valid;
|
|
u32 state;
|
|
usize state_buf = sandbox_malloc(sizeof(usize));
|
|
AWAIT(valid = w2c_ruby_ruby_executable_node(RB, node, state_buf));
|
|
if (valid) {
|
|
AWAIT(state = w2c_ruby_ruby_exec_node(RB, node));
|
|
}
|
|
if (!valid || state) {
|
|
throw SandboxNodeException();
|
|
}
|
|
sandbox_free(state_buf);
|
|
|
|
// Set the default encoding to UTF-8
|
|
usize encoding;
|
|
AWAIT(encoding = w2c_ruby_rb_utf8_encoding(RB));
|
|
usize enc;
|
|
AWAIT(enc = w2c_ruby_rb_enc_from_encoding(RB, encoding));
|
|
AWAIT(w2c_ruby_rb_enc_set_default_internal(RB, enc));
|
|
AWAIT(w2c_ruby_rb_enc_set_default_external(RB, enc));
|
|
} catch (SandboxException &) {
|
|
wasm2c_ruby_free(RB);
|
|
throw;
|
|
}
|
|
}
|
|
|
|
sandbox::~sandbox() {
|
|
if (yielding) {
|
|
w2c_ruby_asyncify_stop_unwind(ruby.get());
|
|
}
|
|
bindings.reset(); // Destroy the bindings before destroying the runtime since the bindings destructor requires the runtime to be alive
|
|
wasm2c_ruby_free(RB);
|
|
}
|