Edit
kc3-lang/angle/src/libGLESv2/global_state.h
Branch :
-
Show log
Commit
-
Author :
Peng Huang
Date : 2021-07-10 15:25:20
Hash : a8e98a23
Message : Fix gl::Context::unMakeCurrent crashes The crash is because Display::makeCurrent() may fail, in that case, egl_stubs.cpp will not update the current context in global_state and Thread accordingly. And then Context::refCount could be reach 0, and be released, however egl_stubs.cpp still thinks the context is current, and then user-after-free happens. This CL fixes the problem by updating current context of Thread in Display::makeCurrent, and reading the current context of Thread in egl_stubs.cpp and setting it to global_state. Bug: chromium:1171371 Change-Id: Ifc5fffb0e4902c9c72514839d03e5783d50fe283 Reviewed-on: https://chromium-review.googlesource.com/c/angle/angle/+/3017210 Reviewed-by: Jonah Ryan-Davis <jonahr@google.com> Reviewed-by: Geoff Lang <geofflang@chromium.org> Commit-Queue: Peng Huang <penghuang@chromium.org>
- src/libGLESv2/global_state.h
-
// // Copyright 2014 The ANGLE Project Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. // // global_state.h : Defines functions for querying the thread-local GL and EGL state. #ifndef LIBGLESV2_GLOBALSTATE_H_ #define LIBGLESV2_GLOBALSTATE_H_ #include "libANGLE/Context.h" #include "libANGLE/Debug.h" #include "libANGLE/Thread.h" #include "libANGLE/features.h" #include <mutex> namespace angle { using GlobalMutex = std::recursive_mutex; // - TLS_SLOT_OPENGL and TLS_SLOT_OPENGL_API: These two aren't used by bionic // itself, but allow the graphics code to access TLS directly rather than // using the pthread API. // // Choose the TLS_SLOT_OPENGL TLS slot with the value that matches value in the header file in // bionic(tls_defines.h) constexpr size_t kAndroidOpenGLTlsSlot = 3; #if defined(ANGLE_PLATFORM_ANDROID) // The following ASM variant provides a much more performant store/retrieve interface // compared to those provided by the pthread library. These have been derived from code // in the bionic module of Android -> // https://cs.android.com/android/platform/superproject/+/master:bionic/libc/platform/bionic/tls.h;l=30 # if defined(__aarch64__) # define ANGLE_ANDROID_GET_GL_TLS() \ ({ \ void **__val; \ __asm__("mrs %0, tpidr_el0" : "=r"(__val)); \ __val; \ }) # elif defined(__arm__) # define ANGLE_ANDROID_GET_GL_TLS() \ ({ \ void **__val; \ __asm__("mrc p15, 0, %0, c13, c0, 3" : "=r"(__val)); \ __val; \ }) # elif defined(__mips__) // On mips32r1, this goes via a kernel illegal instruction trap that's // optimized for v1 # define ANGLE_ANDROID_GET_GL_TLS() \ ({ \ register void **__val asm("v1"); \ __asm__( \ ".set push\n" \ ".set mips32r2\n" \ "rdhwr %0,$29\n" \ ".set pop\n" \ : "=r"(__val)); \ __val; \ }) # elif defined(__i386__) # define ANGLE_ANDROID_GET_GL_TLS() \ ({ \ void **__val; \ __asm__("movl %%gs:0, %0" : "=r"(__val)); \ __val; \ }) # elif defined(__x86_64__) # define ANGLE_ANDROID_GET_GL_TLS() \ ({ \ void **__val; \ __asm__("mov %%fs:0, %0" : "=r"(__val)); \ __val; \ }) # else # error unsupported architecture # endif #endif // ANGLE_PLATFORM_ANDROID } // namespace angle namespace egl { class Debug; class Thread; extern thread_local Thread *gCurrentThread; angle::GlobalMutex &GetGlobalMutex(); gl::Context *GetGlobalLastContext(); void SetGlobalLastContext(gl::Context *context); Thread *GetCurrentThread(); Debug *GetDebug(); // Sync the current context from Thread to global state. class ScopedSyncCurrentContextFromThread { public: ScopedSyncCurrentContextFromThread(egl::Thread *thread); ~ScopedSyncCurrentContextFromThread(); private: egl::Thread *const mThread; }; } // namespace egl #define ANGLE_SCOPED_GLOBAL_LOCK() \ std::lock_guard<angle::GlobalMutex> globalMutexLock(egl::GetGlobalMutex()) namespace gl { ANGLE_INLINE Context *GetGlobalContext() { #if defined(ANGLE_PLATFORM_ANDROID) // TODO: Replace this branch with a compile time flag (http://anglebug.com/4764) if (angle::gUseAndroidOpenGLTlsSlot) { return static_cast<gl::Context *>(ANGLE_ANDROID_GET_GL_TLS()[angle::kAndroidOpenGLTlsSlot]); } #endif ASSERT(egl::gCurrentThread); return egl::gCurrentThread->getContext(); } ANGLE_INLINE Context *GetValidGlobalContext() { #if defined(ANGLE_PLATFORM_ANDROID) // TODO: Replace this branch with a compile time flag (http://anglebug.com/4764) if (angle::gUseAndroidOpenGLTlsSlot) { Context *context = static_cast<gl::Context *>(ANGLE_ANDROID_GET_GL_TLS()[angle::kAndroidOpenGLTlsSlot]); if (context && !context->isContextLost()) { return context; } } #endif return gCurrentValidContext; } // Generate a context lost error on the context if it is non-null and lost. void GenerateContextLostErrorOnContext(Context *context); void GenerateContextLostErrorOnCurrentGlobalContext(); #if defined(ANGLE_FORCE_CONTEXT_CHECK_EVERY_CALL) // TODO(b/177574181): This should be handled in a backend-specific way. // if previous context different from current context, dirty all state static ANGLE_INLINE void DirtyContextIfNeeded(Context *context) { if (context && context != egl::GetGlobalLastContext()) { context->dirtyAllState(); SetGlobalLastContext(context); } } #endif ANGLE_INLINE std::unique_lock<angle::GlobalMutex> GetContextLock(Context *context) { #if defined(ANGLE_FORCE_CONTEXT_CHECK_EVERY_CALL) auto lock = std::unique_lock<angle::GlobalMutex>(egl::GetGlobalMutex()); DirtyContextIfNeeded(context); return lock; #else return context->isShared() ? std::unique_lock<angle::GlobalMutex>(egl::GetGlobalMutex()) : std::unique_lock<angle::GlobalMutex>(); #endif } } // namespace gl #endif // LIBGLESV2_GLOBALSTATE_H_