Glue code for using snmalloc in EDP

.github/workflows/build.yml

@@ -16,7 +16,9 @@ env:
   CARGO_INCREMENTAL: 0
   CARGO_NET_RETRY: 10
   CFLAGS_x86_64_fortanix_unknown_sgx: "-isystem/usr/include/x86_64-linux-gnu -mlvi-hardening -mllvm -x86-experimental-lvi-inline-asm-hardening"
+  # CXXFLAGS is set below
   CC_x86_64_fortanix_unknown_sgx: clang-11
+  CXX_x86_64_fortanix_unknown_sgx: clang++-11
 
 jobs:
   test:
@@ -48,7 +50,7 @@ jobs:
         rustup update
 
     - name: Cargo test --all --exclude sgxs-loaders
-      run: cargo test --verbose --locked --all --exclude sgxs-loaders --exclude async-usercalls && [ "$(echo $(nm -D target/debug/sgx-detect|grep __vdso_sgx_enter_enclave))" = "w __vdso_sgx_enter_enclave" ]
+      run: cargo test --verbose --locked --all --exclude sgxs-loaders --exclude async-usercalls --exclude snmalloc-edp && [ "$(echo $(nm -D target/debug/sgx-detect|grep __vdso_sgx_enter_enclave))" = "w __vdso_sgx_enter_enclave" ]
 
     - name: cargo test -p async-usercalls --target x86_64-fortanix-unknown-sgx --no-run
       run: cargo +nightly test --verbose --locked -p async-usercalls --target x86_64-fortanix-unknown-sgx --no-run
@@ -96,6 +98,24 @@ jobs:
     - name: Build em-app, get-certificate for x86_64-fortanix-unknown-sgx
       run: cargo build --verbose --locked -p em-app -p get-certificate --target=x86_64-fortanix-unknown-sgx
 
+    - name: Build snmalloc-edp
+      run: |
+        git submodule update --init --recursive
+        detect_cxx_include_path() {
+            for path in $(clang++-12 -print-search-dirs|sed -n 's/^libraries:\s*=//p'|tr : ' '); do
+                num_component="$(basename "$path")"
+                if [[ "$num_component" =~ ^[0-9]+(\.[0-9]+)*$ ]]; then
+                    if [[ "$(basename "$(dirname "$path")")" == 'x86_64-linux-gnu' ]]; then
+                        echo $num_component
+                        return
+                    fi
+                fi
+            done
+            exit 1
+        }
+        export CXXFLAGS_x86_64_fortanix_unknown_sgx="-cxx-isystem/usr/include/c++/$(detect_cxx_include_path) -cxx-isystem/usr/include/x86_64-linux-gnu/c++/$(detect_cxx_include_path) $CFLAGS_x86_64_fortanix_unknown_sgx"
+        cargo test --no-run --verbose --locked -p snmalloc-edp --target=x86_64-fortanix-unknown-sgx
+
     - name: Generate API docs
       run: ./doc/generate-api-docs.sh
 

.gitmodules

@@ -0,0 +1,3 @@
+[submodule "snmalloc-edp/snmalloc"]
+	path = snmalloc-edp/snmalloc
+	url = https://github.com/microsoft/snmalloc

Cargo.toml

@@ -33,6 +33,7 @@ members = [
     "intel-sgx/sgxs",
     "ipc-queue",
     "rs-libc",
+    "snmalloc-edp",
 ]
 exclude = [
     "examples/backtrace_panic",

intel-sgx/ias/src/api.rs

@@ -193,7 +193,7 @@ pub struct VerifiedSig {}
 impl VerificationType for VerifiedSig {}
 
 #[derive(Clone, Debug, Eq, PartialEq, Hash)]
-pub(crate) struct Unverified {}
+pub enum Unverified {}
 impl VerificationType for Unverified {}
 
 trait SafeToDeserializeInto {}

snmalloc-edp/CMakeLists.txt

@@ -0,0 +1,10 @@
+cmake_minimum_required(VERSION 3.14)
+set(CMAKE_TRY_COMPILE_TARGET_TYPE STATIC_LIBRARY)
+project(snmalloc-edp CXX)
+set(CMAKE_CXX_STANDARD 20)
+set(CMAKE_CXX_STANDARD_REQUIRED True)
+set(SNMALLOC_HEADER_ONLY_LIBRARY ON)
+add_subdirectory(snmalloc EXCLUDE_FROM_ALL)
+add_library(snmalloc-edp src/rust-sgx-snmalloc-shim.cpp)
+target_link_libraries(snmalloc-edp PRIVATE snmalloc_lib)
+target_compile_options(snmalloc-edp PRIVATE -nostdlib -ffreestanding -fno-exceptions -mrdrnd -fPIC)

snmalloc-edp/Cargo.toml

@@ -0,0 +1,11 @@
+[package]
+name = "snmalloc-edp"
+version = "0.1.0"
+edition = "2021"
+
+# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html
+
+build = "build.rs"
+
+[build-dependencies]
+cmake = "0.1.50"

snmalloc-edp/build.rs

@@ -0,0 +1,5 @@
+fn main() {
+    let mut dst = cmake::build(".");
+    dst.push("build");
+    println!("cargo:rustc-link-search=native={}", dst.display());
+}

snmalloc-edp/src/lib.rs

@@ -0,0 +1,22 @@
+#![no_std]
+
+#[repr(C)]
+pub struct Alloc {
+    _data: [u8; 0],
+    _marker:
+        core::marker::PhantomData<(*mut u8, core::marker::PhantomPinned)>,
+}
+
+#[link(name = "snmalloc-edp", kind = "static")]
+extern {
+    pub fn sn_global_init();
+    pub fn sn_thread_init(allocator: *mut Alloc);
+    pub fn sn_thread_cleanup(allocator: *mut Alloc);
+    pub static sn_alloc_size: usize;
+    pub static sn_alloc_align: usize;
+
+    pub fn sn_rust_alloc(alignment: usize, size: usize) -> *mut u8;
+    pub fn sn_rust_alloc_zeroed(alignment: usize, size: usize) -> *mut u8;
+    pub fn sn_rust_dealloc(ptr: *mut u8, alignment: usize, size: usize);
+    pub fn sn_rust_realloc(ptr: *mut u8, alignment: usize, old_size: usize, new_size: usize) -> *mut u8;
+}

snmalloc-edp/src/rust-sgx-snmalloc-shim.cpp

@@ -0,0 +1,191 @@
+// Copyright (c) Microsoft Corporation.
+// Copyright (c) Open Enclave SDK contributors.
+// Copyright (c) 2020 SchrodingerZhu
+// Copyright (c) Fortanix, Inc.
+//
+// MIT License
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files (the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions:
+//
+// The above copyright notice and this permission notice shall be included in all
+// copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+// SOFTWARE
+
+#include <immintrin.h>
+#include <string.h>
+
+/***************************************************/
+/*** Imported symbols needed by snmalloc SGX PAL ***/
+/***************************************************/
+
+// from entry.S
+extern "C" size_t get_tcs_addr();
+
+// from Rust std
+extern "C" void __rust_print_err(const char *m, size_t s);
+extern "C" [[noreturn]] void __rust_abort();
+
+/*******************************************************/
+/*** Standard C functions needed by snmalloc SGX PAL ***/
+/*******************************************************/
+
+// definition needs to match GNU header
+extern "C" [[noreturn]] void abort() __THROW {
+    __rust_abort();
+}
+
+// definition needs to match GNU header
+extern "C" inline int * __attribute_const__ __errno_location (void) __THROW {
+    static int errno;
+    return &errno;
+}
+
+extern "C" {
+    static size_t HEAP_BASE;
+    static size_t HEAP_SIZE;
+};
+
+/***********************************/
+/*** snmalloc SGX PAL definition ***/
+/***********************************/
+
+#define SNMALLOC_PROVIDE_OWN_CONFIG
+#define SNMALLOC_SGX
+#define SNMALLOC_USE_SMALL_CHUNKS
+#define SNMALLOC_MEMORY_PROVIDER PALEdpSgx
+#define OPEN_ENCLAVE
+// needed for openenclave header:
+#define OE_OK 0
+
+#include "../snmalloc/src/snmalloc/pal/pal_noalloc.h"
+
+namespace snmalloc {
+void register_clean_up() {
+    // TODO: not sure what this is supposed to do
+    abort();
+}
+
+class EdpErrorHandler {
+  public:
+    static void print_stack_trace() {}
+
+    [[noreturn]] static void error(const char *const str) {
+        __rust_print_err(str, strlen(str));
+        abort();
+    }
+    static constexpr size_t address_bits = Aal::address_bits;
+    static constexpr size_t page_size = Aal::smallest_page_size;
+};
+
+using EdpBasePAL = PALNoAlloc<EdpErrorHandler>;
+
+class PALEdpSgx : public EdpBasePAL {
+   public:
+    const static size_t RAND_NUM_GEN_MAX_RETRIES = 64;
+    using ThreadIdentity = size_t;
+    static constexpr uint64_t pal_features = EdpBasePAL::pal_features | Entropy;
+
+    template <bool page_aligned = false>
+    static void zero(void *p, size_t size) noexcept {
+        memset(p, 0, size);
+    }
+
+    static inline uint64_t get_entropy64() {
+        for (size_t retry_count = 0; retry_count < RAND_NUM_GEN_MAX_RETRIES; retry_count++) {
+            long long unsigned int result;
+            if (_rdrand64_step(&result) == 1) {
+                return result;
+            }
+        }
+        EdpErrorHandler::error("no entropy available");
+    }
+
+    static inline ThreadIdentity get_tid() noexcept {
+        return (size_t)get_tcs_addr();
+    }
+};
+} // namespace snmalloc
+
+/**************************************/
+/*** Instantiation of the allocator ***/
+/**************************************/
+
+#include "../snmalloc/src/snmalloc/backend/fixedglobalconfig.h"
+#include "../snmalloc/src/snmalloc/snmalloc_core.h"
+
+using namespace snmalloc;
+
+using Globals = FixedRangeConfig<PALEdpSgx>;
+using Alloc = LocalAllocator<Globals>;
+
+/// Do global initialization for snmalloc. Should be called exactly once prior
+/// to any other snmalloc function calls.
+// TODO: this function shouldn't need the addresses passed in, these can be
+// obtained from the HEAP_* symbols
+extern "C" void sn_global_init() {
+    Globals::init(nullptr, (void *)HEAP_BASE, HEAP_SIZE);
+}
+
+/// Construct a thread-local allocator object in place
+extern "C" void sn_thread_init(Alloc* allocator) {
+    new(allocator) Alloc();
+    allocator->init();
+}
+
+/// Destruct a thread-local allocator object in place
+extern "C" void sn_thread_cleanup(Alloc* allocator) {
+    allocator->teardown();
+    allocator->~Alloc();
+}
+
+extern "C" size_t sn_alloc_size = sizeof(Alloc);
+extern "C" size_t sn_alloc_align = alignof(Alloc);
+
+/// Return a pointer to a thread-local allocator object of size
+/// `sn_alloc_size` and alignment `sn_alloc_align`.
+extern "C" Alloc* __rust_get_thread_allocator();
+
+/******************************************************/
+/*** Rust-compatible shims for the global allocator ***/
+/******************************************************/
+
+extern "C" void *sn_rust_alloc(size_t alignment, size_t size) {
+    return __rust_get_thread_allocator()->alloc(aligned_size(alignment, size));
+}
+
+extern "C" void *sn_rust_alloc_zeroed(size_t alignment, size_t size) {
+    return __rust_get_thread_allocator()->alloc<YesZero>(
+        aligned_size(alignment, size));
+}
+
+extern "C" void sn_rust_dealloc(void *ptr, size_t alignment, size_t size) {
+    __rust_get_thread_allocator()->dealloc(ptr, aligned_size(alignment, size));
+}
+
+extern "C" void *sn_rust_realloc(void *ptr, size_t alignment, size_t old_size,
+                                 size_t new_size) {
+    size_t aligned_old_size = aligned_size(alignment, old_size),
+           aligned_new_size = aligned_size(alignment, new_size);
+    if (size_to_sizeclass_full(aligned_old_size).raw() ==
+        size_to_sizeclass_full(aligned_new_size).raw())
+        return ptr;
+    Alloc* allocator = __rust_get_thread_allocator();
+    void *p = allocator->alloc(aligned_new_size);
+    if (p) {
+        std::memcpy(p, ptr, old_size < new_size ? old_size : new_size);
+        allocator->dealloc(ptr, aligned_old_size);
+    }
+    return p;
+}