Define a new text section and use a linker script to safely calculating remote callback length

andrurogerz · andrurogerz · commit b997bdbf55a2 · 2025-01-13T08:56:01.000-08:00
diff --git a/tools/swift-inspect/Package.swift b/tools/swift-inspect/Package.swift
@@ -37,7 +37,8 @@ let package = Package(
             name: "AndroidCLib",
             path: "Sources/AndroidCLib",
             publicHeadersPath: "include",
-            cSettings: [.unsafeFlags(["-fPIC"])]),
+            cSettings: [.unsafeFlags(["-fPIC"])],
+            linkerSettings: [.unsafeFlags(["-Xlinker", "-TSources/AndroidCLib/section-text-remote.ld"])]),
         .systemLibrary(
             name: "SwiftInspectClientInterface"),
         .testTarget(
diff --git a/tools/swift-inspect/Sources/AndroidCLib/heap.c b/tools/swift-inspect/Sources/AndroidCLib/heap.c
@@ -54,32 +54,40 @@
 #define ENTRY_SIZE  2
 
 // Callback for malloc_iterate. Because this function is meant to be copied to
-// a different process for execution, it must not make any function calls. It
-// could be written as asm, but simple C is more readable/maintainable and
-// should consistently compile to movable, position-independent code.
+// a different process for execution, it must not make any function calls to
+// ensure compiles to simple, position-independent code. It is implemented in C
+// for readability/maintainability. It is placed in its own code section to
+// simplify calculating its size.
+__attribute__((noinline, used, section(".text.remote")))
 static void heap_iterate_callback(unsigned long base, unsigned long size, void *arg) {
   volatile uint64_t *data = (uint64_t*)arg;
   while (data[NEXT_FREE_IDX] >= data[MAX_VALID_IDX]) {
     // SIGTRAP indicates the buffer is full and needs to be drained before more
     // entries can be written.
     __builtin_debugtrap();
+
+    // After the SIGTRAP, the signal handler advances the instruction pointer
+    // (PC) to the next instruction. Inserting a nop instruction here ensures
+    // the CPU has a clear, executable instruction to process, which avoids
+    // potential speculative execution or pipeline issues that could arise if
+    // the next instruction were a control transfer like a branch or jump.
     __asm__ __volatile__("nop");
   }
   data[data[NEXT_FREE_IDX]++] = base;
   data[data[NEXT_FREE_IDX]++] = size;
-  __asm__ __volatile__(".align 8");
-  __asm__ __volatile__(".local heap_iterate_callback_end");
-  __asm__ __volatile__("heap_iterate_callback_end:");
 }
 
+// Linker-populated symbol defined in section-text-remote.ld. Used to calculate
+// the size of the heap_iterate_callback function when copying it to a remote
+// process for execution.
+extern char _remote_code_section_end;
+
 void* heap_iterate_callback_start() {
   return (void*)heap_iterate_callback;
 }
 
 size_t heap_iterate_callback_len() {
-  extern char heap_iterate_callback_end;
-  return (uintptr_t)&heap_iterate_callback_end - (uintptr_t)heap_iterate_callback
-    + sizeof(uintptr_t);
+  return (uintptr_t)&_remote_code_section_end - (uintptr_t)heap_iterate_callback;
 }
 
 bool heap_iterate_metadata_init(void* data, size_t len) {
diff --git a/tools/swift-inspect/Sources/AndroidCLib/section-text-remote.ld b/tools/swift-inspect/Sources/AndroidCLib/section-text-remote.ld
@@ -0,0 +1,22 @@
+/*===------------------------------------------------------------------------===
+ *
+ * This source file is part of the Swift.org open source project
+ *
+ * Copyright (c) 2014 - 2024 Apple Inc. and the Swift project authors
+ * Licensed under Apache License v2.0 with Runtime Library Exception
+ *
+ * See https://swift.org/LICENSE.txt for license information
+ * See https://swift.org/CONTRIBUTORS.txt for the list of Swift project authors
+ *
+ *==------------------------------------------------------------------------==*/
+
+SECTIONS
+{
+  . = ALIGN(8);
+  .text.remote : {
+    _remote_code_section_start = .;
+    *(.text.remote)
+    _remote_code_section_end = .;
+  }
+} INSERT AFTER .text;
+
