[thirdparty/glibc.git] / malloc / mcheck.c

/* Standard debugging hooks for `malloc'.
   Copyright (C) 1990-2015 Free Software Foundation, Inc.
   This file is part of the GNU C Library.
   Written May 1989 by Mike Haertel.

   The GNU C Library is free software; you can redistribute it and/or
   modify it under the terms of the GNU Lesser General Public
   License as published by the Free Software Foundation; either
   version 2.1 of the License, or (at your option) any later version.

   The GNU C Library is distributed in the hope that it will be useful,
   but WITHOUT ANY WARRANTY; without even the implied warranty of
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
   Lesser General Public License for more details.

   You should have received a copy of the GNU Lesser General Public
   License along with the GNU C Library; if not, see
   <http://www.gnu.org/licenses/>.  */

#ifndef _MALLOC_INTERNAL
# define _MALLOC_INTERNAL
# include <malloc.h>
# include <mcheck.h>
# include <stdint.h>
# include <stdio.h>
# include <libintl.h>
# include <errno.h>
#endif

/* Old hook values.  */
static void (*old_free_hook)(__ptr_t ptr, const __ptr_t);
static __ptr_t (*old_malloc_hook) (size_t size, const __ptr_t);
static __ptr_t (*old_memalign_hook) (size_t alignment, size_t size,
                                     const __ptr_t);
static __ptr_t (*old_realloc_hook) (__ptr_t ptr, size_t size,
                                    const __ptr_t);

/* Function to call when something awful happens.  */
static void (*abortfunc) (enum mcheck_status);

/* Arbitrary magical numbers.  */
#define MAGICWORD       0xfedabeeb
#define MAGICFREE       0xd8675309
#define MAGICBYTE       ((char) 0xd7)
#define MALLOCFLOOD     ((char) 0x93)
#define FREEFLOOD       ((char) 0x95)

struct hdr
{
  size_t size;                  /* Exact size requested by user.  */
  unsigned long int magic;      /* Magic number to check header integrity.  */
  struct hdr *prev;
  struct hdr *next;
  __ptr_t block;                /* Real block allocated, for memalign.  */
  unsigned long int magic2;     /* Extra, keeps us doubleword aligned.  */
};

/* This is the beginning of the list of all memory blocks allocated.
   It is only constructed if the pedantic testing is requested.  */
static struct hdr *root;

static int mcheck_used;

/* Nonzero if pedentic checking of all blocks is requested.  */
static int pedantic;

#if defined _LIBC || defined STDC_HEADERS || defined USG
# include <string.h>
# define flood memset
#else
static void flood (__ptr_t, int, size_t);
static void flood (ptr, val, size)
__ptr_t ptr;
int val;
size_t size;
{
  char *cp = ptr;
  while (size--)
    *cp++ = val;
}
#endif

static enum mcheck_status
checkhdr (const struct hdr *hdr)
{
  enum mcheck_status status;

  if (!mcheck_used)
    /* Maybe the mcheck used is disabled?  This happens when we find
       an error and report it.  */
    return MCHECK_OK;

  switch (hdr->magic ^ ((uintptr_t) hdr->prev + (uintptr_t) hdr->next))
    {
    default:
      status = MCHECK_HEAD;
      break;
    case MAGICFREE:
      status = MCHECK_FREE;
      break;
    case MAGICWORD:
      if (((char *) &hdr[1])[hdr->size] != MAGICBYTE)
        status = MCHECK_TAIL;
      else if ((hdr->magic2 ^ (uintptr_t) hdr->block) != MAGICWORD)
        status = MCHECK_HEAD;
      else
        status = MCHECK_OK;
      break;
    }
  if (status != MCHECK_OK)
    {
      mcheck_used = 0;
      (*abortfunc) (status);
      mcheck_used = 1;
    }
  return status;
}

void
mcheck_check_all (void)
{
  /* Walk through all the active blocks and test whether they were tampered
     with.  */
  struct hdr *runp = root;

  /* Temporarily turn off the checks.  */
  pedantic = 0;

  while (runp != NULL)
    {
      (void) checkhdr (runp);

      runp = runp->next;
    }

  /* Turn checks on again.  */
  pedantic = 1;
}
#ifdef _LIBC
libc_hidden_def (mcheck_check_all)
#endif

static void
unlink_blk (struct hdr *ptr)
{
  if (ptr->next != NULL)
    {
      ptr->next->prev = ptr->prev;
      ptr->next->magic = MAGICWORD ^ ((uintptr_t) ptr->next->prev
                                      + (uintptr_t) ptr->next->next);
    }
  if (ptr->prev != NULL)
    {
      ptr->prev->next = ptr->next;
      ptr->prev->magic = MAGICWORD ^ ((uintptr_t) ptr->prev->prev
                                      + (uintptr_t) ptr->prev->next);
    }
  else
    root = ptr->next;
}

static void
link_blk (struct hdr *hdr)
{
  hdr->prev = NULL;
  hdr->next = root;
  root = hdr;
  hdr->magic = MAGICWORD ^ (uintptr_t) hdr->next;

  /* And the next block.  */
  if (hdr->next != NULL)
    {
      hdr->next->prev = hdr;
      hdr->next->magic = MAGICWORD ^ ((uintptr_t) hdr
                                      + (uintptr_t) hdr->next->next);
    }
}
static void
freehook (__ptr_t ptr, const __ptr_t caller)
{
  if (pedantic)
    mcheck_check_all ();
  if (ptr)
    {
      struct hdr *hdr = ((struct hdr *) ptr) - 1;
      checkhdr (hdr);
      hdr->magic = MAGICFREE;
      hdr->magic2 = MAGICFREE;
      unlink_blk (hdr);
      hdr->prev = hdr->next = NULL;
      flood (ptr, FREEFLOOD, hdr->size);
      ptr = hdr->block;
    }
  __free_hook = old_free_hook;
  if (old_free_hook != NULL)
    (*old_free_hook)(ptr, caller);
  else
    free (ptr);
  __free_hook = freehook;
}

static __ptr_t
mallochook (size_t size, const __ptr_t caller)
{
  struct hdr *hdr;

  if (pedantic)
    mcheck_check_all ();

  if (size > ~((size_t) 0) - (sizeof (struct hdr) + 1))
    {
      __set_errno (ENOMEM);
      return NULL;
    }

  __malloc_hook = old_malloc_hook;
  if (old_malloc_hook != NULL)
    hdr = (struct hdr *) (*old_malloc_hook)(sizeof (struct hdr) + size + 1,
                                            caller);
  else
    hdr = (struct hdr *) malloc (sizeof (struct hdr) + size + 1);
  __malloc_hook = mallochook;
  if (hdr == NULL)
    return NULL;

  hdr->size = size;
  link_blk (hdr);
  hdr->block = hdr;
  hdr->magic2 = (uintptr_t) hdr ^ MAGICWORD;
  ((char *) &hdr[1])[size] = MAGICBYTE;
  flood ((__ptr_t) (hdr + 1), MALLOCFLOOD, size);
  return (__ptr_t) (hdr + 1);
}

static __ptr_t
memalignhook (size_t alignment, size_t size,
              const __ptr_t caller)
{
  struct hdr *hdr;
  size_t slop;
  char *block;

  if (pedantic)
    mcheck_check_all ();

  slop = (sizeof *hdr + alignment - 1) & - alignment;

  if (size > ~((size_t) 0) - (slop + 1))
    {
      __set_errno (ENOMEM);
      return NULL;
    }

  __memalign_hook = old_memalign_hook;
  if (old_memalign_hook != NULL)
    block = (*old_memalign_hook)(alignment, slop + size + 1, caller);
  else
    block = memalign (alignment, slop + size + 1);
  __memalign_hook = memalignhook;
  if (block == NULL)
    return NULL;

  hdr = ((struct hdr *) (block + slop)) - 1;

  hdr->size = size;
  link_blk (hdr);
  hdr->block = (__ptr_t) block;
  hdr->magic2 = (uintptr_t) block ^ MAGICWORD;
  ((char *) &hdr[1])[size] = MAGICBYTE;
  flood ((__ptr_t) (hdr + 1), MALLOCFLOOD, size);
  return (__ptr_t) (hdr + 1);
}

static __ptr_t
reallochook (__ptr_t ptr, size_t size, const __ptr_t caller)
{
  if (size == 0)
    {
      freehook (ptr, caller);
      return NULL;
    }

  struct hdr *hdr;
  size_t osize;

  if (pedantic)
    mcheck_check_all ();

  if (size > ~((size_t) 0) - (sizeof (struct hdr) + 1))
    {
      __set_errno (ENOMEM);
      return NULL;
    }

  if (ptr)
    {
      hdr = ((struct hdr *) ptr) - 1;
      osize = hdr->size;

      checkhdr (hdr);
      unlink_blk (hdr);
      if (size < osize)
        flood ((char *) ptr + size, FREEFLOOD, osize - size);
    }
  else
    {
      osize = 0;
      hdr = NULL;
    }
  __free_hook = old_free_hook;
  __malloc_hook = old_malloc_hook;
  __memalign_hook = old_memalign_hook;
  __realloc_hook = old_realloc_hook;
  if (old_realloc_hook != NULL)
    hdr = (struct hdr *) (*old_realloc_hook)((__ptr_t) hdr,
                                             sizeof (struct hdr) + size + 1,
                                             caller);
  else
    hdr = (struct hdr *) realloc ((__ptr_t) hdr,
                                  sizeof (struct hdr) + size + 1);
  __free_hook = freehook;
  __malloc_hook = mallochook;
  __memalign_hook = memalignhook;
  __realloc_hook = reallochook;
  if (hdr == NULL)
    return NULL;

  hdr->size = size;
  link_blk (hdr);
  hdr->block = hdr;
  hdr->magic2 = (uintptr_t) hdr ^ MAGICWORD;
  ((char *) &hdr[1])[size] = MAGICBYTE;
  if (size > osize)
    flood ((char *) (hdr + 1) + osize, MALLOCFLOOD, size - osize);
  return (__ptr_t) (hdr + 1);
}

__attribute__ ((noreturn))
static void
mabort (enum mcheck_status status)
{
  const char *msg;
  switch (status)
    {
    case MCHECK_OK:
      msg = _ ("memory is consistent, library is buggy\n");
      break;
    case MCHECK_HEAD:
      msg = _ ("memory clobbered before allocated block\n");
      break;
    case MCHECK_TAIL:
      msg = _ ("memory clobbered past end of allocated block\n");
      break;
    case MCHECK_FREE:
      msg = _ ("block freed twice\n");
      break;
    default:
      msg = _ ("bogus mcheck_status, library is buggy\n");
      break;
    }
#ifdef _LIBC
  __libc_fatal (msg);
#else
  fprintf (stderr, "mcheck: %s", msg);
  fflush (stderr);
  abort ();
#endif
}

/* Memory barrier so that GCC does not optimize out the argument.  */
#define malloc_opt_barrier(x) \
  ({ __typeof (x) __x = x; __asm ("" : "+m" (__x)); __x; })

int mcheck (func)
void (*func)(enum mcheck_status);
{
  abortfunc = (func != NULL) ? func : &mabort;

  /* These hooks may not be safely inserted if malloc is already in use.  */
  if (__malloc_initialized <= 0 && !mcheck_used)
    {
      /* We call malloc() once here to ensure it is initialized.  */
      void *p = malloc (0);
      /* GCC might optimize out the malloc/free pair without a barrier.  */
      p = malloc_opt_barrier (p);
      free (p);

      old_free_hook = __free_hook;
      __free_hook = freehook;
      old_malloc_hook = __malloc_hook;
      __malloc_hook = mallochook;
      old_memalign_hook = __memalign_hook;
      __memalign_hook = memalignhook;
      old_realloc_hook = __realloc_hook;
      __realloc_hook = reallochook;
      mcheck_used = 1;
    }

  return mcheck_used ? 0 : -1;
}
#ifdef _LIBC
libc_hidden_def (mcheck)
#endif

int mcheck_pedantic (func)
void (*func)(enum mcheck_status);
{
  int res = mcheck (func);
  if (res == 0)
    pedantic = 1;
  return res;
}

enum mcheck_status
mprobe (__ptr_t ptr)
{
  return mcheck_used ? checkhdr (((struct hdr *) ptr) - 1) : MCHECK_DISABLED;
}
Commit	Line	Data
6d52618b	1	/* Standard debugging hooks for `malloc'.
b168057a	2	Copyright (C) 1990-2015 Free Software Foundation, Inc.
41bdb6e2	3	This file is part of the GNU C Library.
6d52618b UD	4	Written May 1989 by Mike Haertel.
6d52618b UD	5
41bdb6e2 AJ	6	The GNU C Library is free software; you can redistribute it and/or
	7	modify it under the terms of the GNU Lesser General Public
	8	License as published by the Free Software Foundation; either
	9	version 2.1 of the License, or (at your option) any later version.
6d52618b	10
41bdb6e2	11	The GNU C Library is distributed in the hope that it will be useful,
6d52618b UD	12	but WITHOUT ANY WARRANTY; without even the implied warranty of
6d52618b UD	13	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
41bdb6e2	14	Lesser General Public License for more details.
6d52618b	15
41bdb6e2	16	You should have received a copy of the GNU Lesser General Public
59ba27a6 PE	17	License along with the GNU C Library; if not, see
59ba27a6 PE	18	<http://www.gnu.org/licenses/>. */
6d52618b	19
6c8dbf00	20	#ifndef _MALLOC_INTERNAL
9756dfe1 UD	21	# define _MALLOC_INTERNAL
	22	# include <malloc.h>
	23	# include <mcheck.h>
8e605e78	24	# include <stdint.h>
9756dfe1	25	# include <stdio.h>
4360eafd	26	# include <libintl.h>
3b111893	27	# include <errno.h>
6d52618b UD	28	#endif
	29
	30	/* Old hook values. */
6c8dbf00	31	static void (*old_free_hook)(__ptr_t ptr, const __ptr_t);
1ba4f030 JM	32	static __ptr_t (*old_malloc_hook) (size_t size, const __ptr_t);
1ba4f030 JM	33	static __ptr_t (*old_memalign_hook) (size_t alignment, size_t size,
6c8dbf00	34	const __ptr_t);
1ba4f030	35	static __ptr_t (*old_realloc_hook) (__ptr_t ptr, size_t size,
6c8dbf00	36	const __ptr_t);
6d52618b UD	37
6d52618b UD	38	/* Function to call when something awful happens. */
b80163bd	39	static void (*abortfunc) (enum mcheck_status);
6d52618b UD	40
6d52618b UD	41	/* Arbitrary magical numbers. */
6c8dbf00 OB	42	#define MAGICWORD 0xfedabeeb
	43	#define MAGICFREE 0xd8675309
	44	#define MAGICBYTE ((char) 0xd7)
	45	#define MALLOCFLOOD ((char) 0x93)
	46	#define FREEFLOOD ((char) 0x95)
6d52618b UD	47
6d52618b UD	48	struct hdr
6c8dbf00 OB	49	{
	50	size_t size; /* Exact size requested by user. */
	51	unsigned long int magic; /* Magic number to check header integrity. */
	52	struct hdr *prev;
	53	struct hdr *next;
	54	__ptr_t block; /* Real block allocated, for memalign. */
	55	unsigned long int magic2; /* Extra, keeps us doubleword aligned. */
	56	};
6d52618b	57
8e605e78 UD	58	/* This is the beginning of the list of all memory blocks allocated.
	59	It is only constructed if the pedantic testing is requested. */
	60	static struct hdr *root;
	61
adef3744 UD	62	static int mcheck_used;
adef3744 UD	63
8e605e78 UD	64	/* Nonzero if pedentic checking of all blocks is requested. */
	65	static int pedantic;
	66
9756dfe1 UD	67	#if defined _LIBC \|\| defined STDC_HEADERS \|\| defined USG
	68	# include <string.h>
	69	# define flood memset
6d52618b	70	#else
1ba4f030	71	static void flood (__ptr_t, int, size_t);
6c8dbf00 OB	72	static void flood (ptr, val, size)
	73	__ptr_t ptr;
	74	int val;
	75	size_t size;
6d52618b UD	76	{
	77	char *cp = ptr;
	78	while (size--)
	79	*cp++ = val;
	80	}
	81	#endif
	82
6d52618b	83	static enum mcheck_status
b80163bd	84	checkhdr (const struct hdr *hdr)
6d52618b UD	85	{
6d52618b UD	86	enum mcheck_status status;
adef3744 UD	87
	88	if (!mcheck_used)
	89	/* Maybe the mcheck used is disabled? This happens when we find
	90	an error and report it. */
	91	return MCHECK_OK;
	92
8e605e78	93	switch (hdr->magic ^ ((uintptr_t) hdr->prev + (uintptr_t) hdr->next))
6d52618b UD	94	{
	95	default:
	96	status = MCHECK_HEAD;
	97	break;
	98	case MAGICFREE:
	99	status = MCHECK_FREE;
	100	break;
	101	case MAGICWORD:
	102	if (((char *) &hdr[1])[hdr->size] != MAGICBYTE)
6c8dbf00	103	status = MCHECK_TAIL;
6e3d59bc	104	else if ((hdr->magic2 ^ (uintptr_t) hdr->block) != MAGICWORD)
6c8dbf00	105	status = MCHECK_HEAD;
6d52618b	106	else
6c8dbf00	107	status = MCHECK_OK;
6d52618b UD	108	break;
	109	}
	110	if (status != MCHECK_OK)
adef3744 UD	111	{
	112	mcheck_used = 0;
	113	(*abortfunc) (status);
	114	mcheck_used = 1;
	115	}
6d52618b UD	116	return status;
	117	}
	118
77e1d15a	119	void
b80163bd	120	mcheck_check_all (void)
8e605e78	121	{
fad64255	122	/* Walk through all the active blocks and test whether they were tampered
8e605e78 UD	123	with. */
	124	struct hdr *runp = root;
	125
30e0f9c3 UD	126	/* Temporarily turn off the checks. */
	127	pedantic = 0;
	128
8e605e78 UD	129	while (runp != NULL)
	130	{
	131	(void) checkhdr (runp);
	132
	133	runp = runp->next;
	134	}
30e0f9c3 UD	135
	136	/* Turn checks on again. */
	137	pedantic = 1;
8e605e78	138	}
a14f26ef RM	139	#ifdef _LIBC
	140	libc_hidden_def (mcheck_check_all)
	141	#endif
8e605e78	142
8e605e78	143	static void
b80163bd	144	unlink_blk (struct hdr *ptr)
8e605e78 UD	145	{
	146	if (ptr->next != NULL)
	147	{
	148	ptr->next->prev = ptr->prev;
	149	ptr->next->magic = MAGICWORD ^ ((uintptr_t) ptr->next->prev
6c8dbf00	150	+ (uintptr_t) ptr->next->next);
8e605e78 UD	151	}
	152	if (ptr->prev != NULL)
	153	{
	154	ptr->prev->next = ptr->next;
	155	ptr->prev->magic = MAGICWORD ^ ((uintptr_t) ptr->prev->prev
6c8dbf00	156	+ (uintptr_t) ptr->prev->next);
8e605e78 UD	157	}
	158	else
	159	root = ptr->next;
	160	}
	161
8e605e78	162	static void
b80163bd	163	link_blk (struct hdr *hdr)
8e605e78 UD	164	{
	165	hdr->prev = NULL;
	166	hdr->next = root;
	167	root = hdr;
	168	hdr->magic = MAGICWORD ^ (uintptr_t) hdr->next;
	169
	170	/* And the next block. */
	171	if (hdr->next != NULL)
	172	{
	173	hdr->next->prev = hdr;
	174	hdr->next->magic = MAGICWORD ^ ((uintptr_t) hdr
6c8dbf00	175	+ (uintptr_t) hdr->next->next);
8e605e78 UD	176	}
8e605e78 UD	177	}
6d52618b	178	static void
b80163bd	179	freehook (__ptr_t ptr, const __ptr_t caller)
6d52618b	180	{
8e605e78	181	if (pedantic)
77e1d15a	182	mcheck_check_all ();
6d52618b UD	183	if (ptr)
	184	{
	185	struct hdr hdr = ((struct hdr ) ptr) - 1;
	186	checkhdr (hdr);
	187	hdr->magic = MAGICFREE;
6e3d59bc	188	hdr->magic2 = MAGICFREE;
8e605e78 UD	189	unlink_blk (hdr);
8e605e78 UD	190	hdr->prev = hdr->next = NULL;
6d52618b	191	flood (ptr, FREEFLOOD, hdr->size);
6e3d59bc	192	ptr = hdr->block;
6d52618b UD	193	}
6d52618b UD	194	__free_hook = old_free_hook;
a2b08ee5	195	if (old_free_hook != NULL)
6c8dbf00	196	(*old_free_hook)(ptr, caller);
a2b08ee5	197	else
a334319f	198	free (ptr);
6d52618b UD	199	__free_hook = freehook;
	200	}
	201
6d52618b	202	static __ptr_t
1ba4f030	203	mallochook (size_t size, const __ptr_t caller)
6d52618b UD	204	{
	205	struct hdr *hdr;
	206
8e605e78	207	if (pedantic)
77e1d15a	208	mcheck_check_all ();
8e605e78	209
3b111893 UD	210	if (size > ~((size_t) 0) - (sizeof (struct hdr) + 1))
	211	{
	212	__set_errno (ENOMEM);
	213	return NULL;
	214	}
	215
6d52618b	216	__malloc_hook = old_malloc_hook;
a2b08ee5	217	if (old_malloc_hook != NULL)
6c8dbf00 OB	218	hdr = (struct hdr ) (old_malloc_hook)(sizeof (struct hdr) + size + 1,
6c8dbf00 OB	219	caller);
a2b08ee5	220	else
a334319f	221	hdr = (struct hdr *) malloc (sizeof (struct hdr) + size + 1);
6d52618b UD	222	__malloc_hook = mallochook;
	223	if (hdr == NULL)
	224	return NULL;
	225
	226	hdr->size = size;
8e605e78	227	link_blk (hdr);
6e3d59bc RM	228	hdr->block = hdr;
	229	hdr->magic2 = (uintptr_t) hdr ^ MAGICWORD;
	230	((char *) &hdr[1])[size] = MAGICBYTE;
	231	flood ((__ptr_t) (hdr + 1), MALLOCFLOOD, size);
	232	return (__ptr_t) (hdr + 1);
	233	}
	234
6e3d59bc	235	static __ptr_t
1ba4f030	236	memalignhook (size_t alignment, size_t size,
6c8dbf00	237	const __ptr_t caller)
6e3d59bc RM	238	{
6e3d59bc RM	239	struct hdr *hdr;
1ba4f030	240	size_t slop;
6e3d59bc RM	241	char *block;
	242
	243	if (pedantic)
	244	mcheck_check_all ();
	245
6c8dbf00	246	slop = (sizeof *hdr + alignment - 1) & - alignment;
6e3d59bc	247
3b111893 UD	248	if (size > ~((size_t) 0) - (slop + 1))
	249	{
	250	__set_errno (ENOMEM);
	251	return NULL;
	252	}
	253
6e3d59bc RM	254	__memalign_hook = old_memalign_hook;
6e3d59bc RM	255	if (old_memalign_hook != NULL)
6c8dbf00	256	block = (*old_memalign_hook)(alignment, slop + size + 1, caller);
6e3d59bc	257	else
a334319f	258	block = memalign (alignment, slop + size + 1);
6e3d59bc RM	259	__memalign_hook = memalignhook;
	260	if (block == NULL)
	261	return NULL;
	262
	263	hdr = ((struct hdr *) (block + slop)) - 1;
	264
	265	hdr->size = size;
	266	link_blk (hdr);
	267	hdr->block = (__ptr_t) block;
	268	hdr->magic2 = (uintptr_t) block ^ MAGICWORD;
6d52618b UD	269	((char *) &hdr[1])[size] = MAGICBYTE;
	270	flood ((__ptr_t) (hdr + 1), MALLOCFLOOD, size);
	271	return (__ptr_t) (hdr + 1);
	272	}
	273
6d52618b	274	static __ptr_t
1ba4f030	275	reallochook (__ptr_t ptr, size_t size, const __ptr_t caller)
6d52618b	276	{
129abdd3 UD	277	if (size == 0)
	278	{
	279	freehook (ptr, caller);
2acd01ac	280	return NULL;
129abdd3 UD	281	}
129abdd3 UD	282
6d52618b	283	struct hdr *hdr;
1ba4f030	284	size_t osize;
6d52618b	285
8e605e78	286	if (pedantic)
77e1d15a	287	mcheck_check_all ();
8e605e78	288
3b111893 UD	289	if (size > ~((size_t) 0) - (sizeof (struct hdr) + 1))
	290	{
	291	__set_errno (ENOMEM);
	292	return NULL;
	293	}
	294
6d52618b UD	295	if (ptr)
	296	{
	297	hdr = ((struct hdr *) ptr) - 1;
	298	osize = hdr->size;
	299
	300	checkhdr (hdr);
8e605e78	301	unlink_blk (hdr);
6d52618b	302	if (size < osize)
6c8dbf00	303	flood ((char *) ptr + size, FREEFLOOD, osize - size);
6d52618b UD	304	}
	305	else
	306	{
	307	osize = 0;
	308	hdr = NULL;
	309	}
	310	__free_hook = old_free_hook;
	311	__malloc_hook = old_malloc_hook;
6e3d59bc	312	__memalign_hook = old_memalign_hook;
6d52618b	313	__realloc_hook = old_realloc_hook;
a2b08ee5	314	if (old_realloc_hook != NULL)
6c8dbf00 OB	315	hdr = (struct hdr ) (old_realloc_hook)((__ptr_t) hdr,
	316	sizeof (struct hdr) + size + 1,
	317	caller);
a2b08ee5	318	else
a334319f	319	hdr = (struct hdr *) realloc ((__ptr_t) hdr,
6c8dbf00	320	sizeof (struct hdr) + size + 1);
6d52618b UD	321	__free_hook = freehook;
6d52618b UD	322	__malloc_hook = mallochook;
6e3d59bc	323	__memalign_hook = memalignhook;
6d52618b UD	324	__realloc_hook = reallochook;
	325	if (hdr == NULL)
	326	return NULL;
	327
	328	hdr->size = size;
8e605e78	329	link_blk (hdr);
6e3d59bc RM	330	hdr->block = hdr;
6e3d59bc RM	331	hdr->magic2 = (uintptr_t) hdr ^ MAGICWORD;
6d52618b UD	332	((char *) &hdr[1])[size] = MAGICBYTE;
	333	if (size > osize)
	334	flood ((char *) (hdr + 1) + osize, MALLOCFLOOD, size - osize);
	335	return (__ptr_t) (hdr + 1);
	336	}
	337
b80163bd	338	__attribute__ ((noreturn))
6d52618b	339	static void
b80163bd	340	mabort (enum mcheck_status status)
6d52618b UD	341	{
	342	const char *msg;
	343	switch (status)
	344	{
	345	case MCHECK_OK:
6c8dbf00	346	msg = _ ("memory is consistent, library is buggy\n");
6d52618b UD	347	break;
6d52618b UD	348	case MCHECK_HEAD:
6c8dbf00	349	msg = _ ("memory clobbered before allocated block\n");
6d52618b UD	350	break;
6d52618b UD	351	case MCHECK_TAIL:
6c8dbf00	352	msg = _ ("memory clobbered past end of allocated block\n");
6d52618b UD	353	break;
6d52618b UD	354	case MCHECK_FREE:
6c8dbf00	355	msg = _ ("block freed twice\n");
6d52618b UD	356	break;
6d52618b UD	357	default:
6c8dbf00	358	msg = _ ("bogus mcheck_status, library is buggy\n");
6d52618b UD	359	break;
	360	}
	361	#ifdef _LIBC
	362	__libc_fatal (msg);
	363	#else
9756dfe1	364	fprintf (stderr, "mcheck: %s", msg);
6d52618b UD	365	fflush (stderr);
	366	abort ();
	367	#endif
	368	}
	369
f0c1dedf AJ	370	/* Memory barrier so that GCC does not optimize out the argument. */
f0c1dedf AJ	371	#define malloc_opt_barrier(x) \
6c8dbf00	372	({ __typeof (x) __x = x; __asm ("" : "+m" (__x)); __x; })
f0c1dedf	373
6c8dbf00 OB	374	int mcheck (func)
6c8dbf00 OB	375	void (*func)(enum mcheck_status);
6d52618b UD	376	{
	377	abortfunc = (func != NULL) ? func : &mabort;
	378
	379	/* These hooks may not be safely inserted if malloc is already in use. */
9756dfe1	380	if (__malloc_initialized <= 0 && !mcheck_used)
6d52618b	381	{
1b20d937	382	/* We call malloc() once here to ensure it is initialized. */
a334319f	383	void *p = malloc (0);
f0c1dedf AJ	384	/* GCC might optimize out the malloc/free pair without a barrier. */
f0c1dedf AJ	385	p = malloc_opt_barrier (p);
a334319f	386	free (p);
1b20d937	387
6d52618b UD	388	old_free_hook = __free_hook;
	389	__free_hook = freehook;
	390	old_malloc_hook = __malloc_hook;
	391	__malloc_hook = mallochook;
6e3d59bc RM	392	old_memalign_hook = __memalign_hook;
6e3d59bc RM	393	__memalign_hook = memalignhook;
6d52618b UD	394	old_realloc_hook = __realloc_hook;
	395	__realloc_hook = reallochook;
	396	mcheck_used = 1;
	397	}
	398
	399	return mcheck_used ? 0 : -1;
	400	}
509d1b68 RM	401	#ifdef _LIBC
	402	libc_hidden_def (mcheck)
	403	#endif
6d52618b	404
6c8dbf00 OB	405	int mcheck_pedantic (func)
6c8dbf00 OB	406	void (*func)(enum mcheck_status);
8e605e78	407	{
77e1d15a UD	408	int res = mcheck (func);
	409	if (res == 0)
	410	pedantic = 1;
	411	return res;
8e605e78 UD	412	}
8e605e78 UD	413
6d52618b UD	414	enum mcheck_status
	415	mprobe (__ptr_t ptr)
	416	{
997a4165	417	return mcheck_used ? checkhdr (((struct hdr *) ptr) - 1) : MCHECK_DISABLED;
6d52618b	418	}