Merge pull request #6299 from bunnei/ipc-improvements

Various improvements to IPC and session management
author: bunnei 2021-05-15 22:30:21 -0700
committer: GitHub 2021-05-15 22:30:21 -0700
commit: 5a2b15bf75318987d773a2bc69bd6224a28b7939 (patch)
tree: f213f5b011410022e8e98f7c3905d16d575ed413 /src/core/hle/kernel
parent: Merge pull request #6289 from ameerj/oob-blit (diff)
parent: common: tree: Avoid a nullptr dereference. (diff)
download: yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.tar.gz
yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.tar.xz
yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.zip
9 files changed, 122 insertions, 115 deletions
diff --git a/src/core/hle/kernel/hle_ipc.cpp b/src/core/hle/kernel/hle_ipc.cpp
index 93907f75e..ce3466df8 100644
--- a/src/core/hle/kernel/hle_ipc.cpp
+++ b/src/core/hle/kernel/hle_ipc.cpp
@@ -55,7 +55,7 @@ void HLERequestContext::ParseCommandBuffer(const KHandleTable& handle_table, u32
    IPC::RequestParser rp(src_cmdbuf);
    command_header = rp.PopRaw<IPC::CommandHeader>();
-    if (command_header->type == IPC::CommandType::Close) {
+    if (command_header->IsCloseCommand()) {
        // Close does not populate the rest of the IPC header
        return;
    }
@@ -99,39 +99,43 @@ void HLERequestContext::ParseCommandBuffer(const KHandleTable& handle_table, u32
        buffer_w_desciptors.push_back(rp.PopRaw<IPC::BufferDescriptorABW>());
    }
-    buffer_c_offset = rp.GetCurrentOffset() + command_header->data_size;
+    const auto buffer_c_offset = rp.GetCurrentOffset() + command_header->data_size;
-    // Padding to align to 16 bytes
+    if (!command_header->IsTipc()) {
-    rp.AlignWithPadding();
+        // Padding to align to 16 bytes
+        rp.AlignWithPadding();
-    if (Session()->IsDomain() && ((command_header->type == IPC::CommandType::Request ||
-                                   command_header->type == IPC::CommandType::RequestWithContext) ||
+        if (Session()->IsDomain() &&
-                                  !incoming)) {
+            ((command_header->type == IPC::CommandType::Request ||
-        // If this is an incoming message, only CommandType "Request" has a domain header
+              command_header->type == IPC::CommandType::RequestWithContext) ||
-        // All outgoing domain messages have the domain header, if only incoming has it
+             !incoming)) {
-        if (incoming || domain_message_header) {
+            // If this is an incoming message, only CommandType "Request" has a domain header
-            domain_message_header = rp.PopRaw<IPC::DomainMessageHeader>();
+            // All outgoing domain messages have the domain header, if only incoming has it
-        } else {
+            if (incoming || domain_message_header) {
-            if (Session()->IsDomain()) {
+                domain_message_header = rp.PopRaw<IPC::DomainMessageHeader>();
-                LOG_WARNING(IPC, "Domain request has no DomainMessageHeader!");
+            } else {
+                if (Session()->IsDomain()) {
+                    LOG_WARNING(IPC, "Domain request has no DomainMessageHeader!");
+                }
            }
        }
-    }
-    data_payload_header = rp.PopRaw<IPC::DataPayloadHeader>();
+        data_payload_header = rp.PopRaw<IPC::DataPayloadHeader>();
-    data_payload_offset = rp.GetCurrentOffset();
+        data_payload_offset = rp.GetCurrentOffset();
-    if (domain_message_header && domain_message_header->command ==
+        if (domain_message_header &&
-                                     IPC::DomainMessageHeader::CommandType::CloseVirtualHandle) {
+            domain_message_header->command ==
-        // CloseVirtualHandle command does not have SFC* or any data
+                IPC::DomainMessageHeader::CommandType::CloseVirtualHandle) {
-        return;
+            // CloseVirtualHandle command does not have SFC* or any data
-    }
+            return;
+        }
-    if (incoming) {
+        if (incoming) {
-        ASSERT(data_payload_header->magic == Common::MakeMagic('S', 'F', 'C', 'I'));
+            ASSERT(data_payload_header->magic == Common::MakeMagic('S', 'F', 'C', 'I'));
-    } else {
+        } else {
-        ASSERT(data_payload_header->magic == Common::MakeMagic('S', 'F', 'C', 'O'));
+            ASSERT(data_payload_header->magic == Common::MakeMagic('S', 'F', 'C', 'O'));
+        }
    }
    rp.SetCurrentOffset(buffer_c_offset);
@@ -166,84 +170,67 @@ void HLERequestContext::ParseCommandBuffer(const KHandleTable& handle_table, u32
 ResultCode HLERequestContext::PopulateFromIncomingCommandBuffer(const KHandleTable& handle_table,
                                                                u32_le* src_cmdbuf) {
    ParseCommandBuffer(handle_table, src_cmdbuf, true);
-    if (command_header->type == IPC::CommandType::Close) {
+    if (command_header->IsCloseCommand()) {
        // Close does not populate the rest of the IPC header
        return RESULT_SUCCESS;
    }
-    // The data_size already includes the payload header, the padding and the domain header.
+    std::copy_n(src_cmdbuf, IPC::COMMAND_BUFFER_LENGTH, cmd_buf.begin());
-    std::size_t size = data_payload_offset + command_header->data_size -
-                       sizeof(IPC::DataPayloadHeader) / sizeof(u32) - 4;
-    if (domain_message_header)
-        size -= sizeof(IPC::DomainMessageHeader) / sizeof(u32);
-    std::copy_n(src_cmdbuf, size, cmd_buf.begin());
    return RESULT_SUCCESS;
 }
 ResultCode HLERequestContext::WriteToOutgoingCommandBuffer(KThread& requesting_thread) {
+    auto current_offset = handles_offset;
    auto& owner_process = *requesting_thread.GetOwnerProcess();
    auto& handle_table = owner_process.GetHandleTable();
-    std::array<u32, IPC::COMMAND_BUFFER_LENGTH> dst_cmdbuf;
-    memory.ReadBlock(owner_process, requesting_thread.GetTLSAddress(), dst_cmdbuf.data(),
-                     dst_cmdbuf.size() * sizeof(u32));
-    // The header was already built in the internal command buffer. Attempt to parse it to verify
-    // the integrity and then copy it over to the target command buffer.
-    ParseCommandBuffer(handle_table, cmd_buf.data(), false);
    // The data_size already includes the payload header, the padding and the domain header.
-    std::size_t size = data_payload_offset + command_header->data_size -
+    std::size_t size{};
-                       sizeof(IPC::DataPayloadHeader) / sizeof(u32) - 4;
-    if (domain_message_header)
-        size -= sizeof(IPC::DomainMessageHeader) / sizeof(u32);
-    std::copy_n(cmd_buf.begin(), size, dst_cmdbuf.data());
-    if (command_header->enable_handle_descriptor) {
+    if (IsTipc()) {
-        ASSERT_MSG(!move_objects.empty() || !copy_objects.empty(),
+        size = cmd_buf.size();
-                   "Handle descriptor bit set but no handles to translate");
+    } else {
-        // We write the translated handles at a specific offset in the command buffer, this space
+        size = data_payload_offset + data_size - sizeof(IPC::DataPayloadHeader) / sizeof(u32) - 4;
-        // was already reserved when writing the header.
+        if (Session()->IsDomain()) {
-        std::size_t current_offset =
+            size -= sizeof(IPC::DomainMessageHeader) / sizeof(u32);
-            (sizeof(IPC::CommandHeader) + sizeof(IPC::HandleDescriptorHeader)) / sizeof(u32);
-        ASSERT_MSG(!handle_descriptor_header->send_current_pid, "Sending PID is not implemented");
-        ASSERT(copy_objects.size() == handle_descriptor_header->num_handles_to_copy);
-        ASSERT(move_objects.size() == handle_descriptor_header->num_handles_to_move);
-        // We don't make a distinction between copy and move handles when translating since HLE
-        // services don't deal with handles directly. However, the guest applications might check
-        // for specific values in each of these descriptors.
-        for (auto& object : copy_objects) {
-            ASSERT(object != nullptr);
-            R_TRY(handle_table.Add(&dst_cmdbuf[current_offset++], object));
        }
+    }
-        for (auto& object : move_objects) {
+    for (auto& object : copy_objects) {
-            ASSERT(object != nullptr);
+        Handle handle{};
-            R_TRY(handle_table.Add(&dst_cmdbuf[current_offset++], object));
+        if (object) {
+            R_TRY(handle_table.Add(&handle, object));
        }
+        cmd_buf[current_offset++] = handle;
    }
+    for (auto& object : move_objects) {
+        Handle handle{};
+        if (object) {
+            R_TRY(handle_table.Add(&handle, object));
-    // TODO(Subv): Translate the X/A/B/W buffers.
+            // Close our reference to the object, as it is being moved to the caller.
+            object->Close();
+        }
+        cmd_buf[current_offset++] = handle;
+    }
-    if (Session()->IsDomain() && domain_message_header) {
+    // Write the domain objects to the command buffer, these go after the raw untranslated data.
-        ASSERT(domain_message_header->num_objects == domain_objects.size());
+    // TODO(Subv): This completely ignores C buffers.
-        // Write the domain objects to the command buffer, these go after the raw untranslated data.
-        // TODO(Subv): This completely ignores C buffers.
-        std::size_t domain_offset = size - domain_message_header->num_objects;
+    if (Session()->IsDomain()) {
+        current_offset = domain_offset - static_cast<u32>(domain_objects.size());
        for (const auto& object : domain_objects) {
            server_session->AppendDomainRequestHandler(object);
-            dst_cmdbuf[domain_offset++] =
+            cmd_buf[current_offset++] =
                static_cast<u32_le>(server_session->NumDomainRequestHandlers());
        }
    }
    // Copy the translated command buffer back into the thread's command buffer area.
-    memory.WriteBlock(owner_process, requesting_thread.GetTLSAddress(), dst_cmdbuf.data(),
+    memory.WriteBlock(owner_process, requesting_thread.GetTLSAddress(), cmd_buf.data(),
-                      dst_cmdbuf.size() * sizeof(u32));
+                      size * sizeof(u32));
    return RESULT_SUCCESS;
 }
diff --git a/src/core/hle/kernel/hle_ipc.h b/src/core/hle/kernel/hle_ipc.h
index 21e384706..4fba300dc 100644
--- a/src/core/hle/kernel/hle_ipc.h
+++ b/src/core/hle/kernel/hle_ipc.h
@@ -66,7 +66,8 @@ public:
     * this request (ServerSession, Originator thread, Translated command buffer, etc).
     * @returns ResultCode the result code of the translate operation.
     */
-    virtual ResultCode HandleSyncRequest(Kernel::HLERequestContext& context) = 0;
+    virtual ResultCode HandleSyncRequest(Kernel::KServerSession& session,
+                                         Kernel::HLERequestContext& context) = 0;
    /**
     * Signals that a client has just connected to this HLE handler and keeps the
@@ -128,15 +129,28 @@ public:
    /// Writes data from this context back to the requesting process/thread.
    ResultCode WriteToOutgoingCommandBuffer(KThread& requesting_thread);
-    u32_le GetCommand() const {
+    u32_le GetHipcCommand() const {
        return command;
    }
+    u32_le GetTipcCommand() const {
+        return static_cast<u32_le>(command_header->type.Value()) -
+               static_cast<u32_le>(IPC::CommandType::TIPC_CommandRegion);
+    }
+    u32_le GetCommand() const {
+        return command_header->IsTipc() ? GetTipcCommand() : GetHipcCommand();
+    }
+    bool IsTipc() const {
+        return command_header->IsTipc();
+    }
    IPC::CommandType GetCommandType() const {
        return command_header->type;
    }
-    unsigned GetDataPayloadOffset() const {
+    u32 GetDataPayloadOffset() const {
        return data_payload_offset;
    }
@@ -291,8 +305,10 @@ private:
    std::vector<IPC::BufferDescriptorABW> buffer_w_desciptors;
    std::vector<IPC::BufferDescriptorC> buffer_c_desciptors;
-    unsigned data_payload_offset{};
+    u32 data_payload_offset{};
-    unsigned buffer_c_offset{};
+    u32 handles_offset{};
+    u32 domain_offset{};
+    u32 data_size{};
    u32_le command{};
    std::vector<std::shared_ptr<SessionRequestHandler>> domain_request_handlers;
diff --git a/src/core/hle/kernel/k_client_port.cpp b/src/core/hle/kernel/k_client_port.cpp
index e14b915b9..ad01cf67e 100644
--- a/src/core/hle/kernel/k_client_port.cpp
+++ b/src/core/hle/kernel/k_client_port.cpp
@@ -58,9 +58,9 @@ bool KClientPort::IsSignaled() const {
 ResultCode KClientPort::CreateSession(KClientSession** out) {
    // Reserve a new session from the resource limit.
-    KScopedResourceReservation session_reservation(kernel.CurrentProcess()->GetResourceLimit(),
+    // KScopedResourceReservation session_reservation(kernel.CurrentProcess()->GetResourceLimit(),
-                                                   LimitableResource::Sessions);
+    //                                               LimitableResource::Sessions);
-    R_UNLESS(session_reservation.Succeeded(), ResultLimitReached);
+    // R_UNLESS(session_reservation.Succeeded(), ResultLimitReached);
    // Update the session counts.
    {
@@ -91,7 +91,7 @@ ResultCode KClientPort::CreateSession(KClientSession** out) {
    // Create a new session.
    KSession* session = KSession::Create(kernel);
    if (session == nullptr) {
-        /* Decrement the session count. */
+        // Decrement the session count.
        const auto prev = num_sessions--;
        if (prev == max_sessions) {
            this->NotifyAvailable();
@@ -104,7 +104,7 @@ ResultCode KClientPort::CreateSession(KClientSession** out) {
    session->Initialize(this, parent->GetName());
    // Commit the session reservation.
-    session_reservation.Commit();
+    // session_reservation.Commit();
    // Register the session.
    KSession::Register(kernel, session);
diff --git a/src/core/hle/kernel/k_server_session.cpp b/src/core/hle/kernel/k_server_session.cpp
index b28cc2499..8850d9af5 100644
--- a/src/core/hle/kernel/k_server_session.cpp
+++ b/src/core/hle/kernel/k_server_session.cpp
@@ -95,7 +95,7 @@ ResultCode KServerSession::HandleDomainSyncRequest(Kernel::HLERequestContext& co
            UNREACHABLE();
            return RESULT_SUCCESS; // Ignore error if asserts are off
        }
-        return domain_request_handlers[object_id - 1]->HandleSyncRequest(context);
+        return domain_request_handlers[object_id - 1]->HandleSyncRequest(*this, context);
    case IPC::DomainMessageHeader::CommandType::CloseVirtualHandle: {
        LOG_DEBUG(IPC, "CloseVirtualHandle, object_id=0x{:08X}", object_id);
@@ -135,7 +135,7 @@ ResultCode KServerSession::CompleteSyncRequest(HLERequestContext& context) {
        // If there is no domain header, the regular session handler is used
    } else if (hle_handler != nullptr) {
        // If this ServerSession has an associated HLE handler, forward the request to it.
-        result = hle_handler->HandleSyncRequest(context);
+        result = hle_handler->HandleSyncRequest(*this, context);
    }
    if (convert_to_domain) {
diff --git a/src/core/hle/kernel/k_session.cpp b/src/core/hle/kernel/k_session.cpp
index 025b8b555..b7ce27a0b 100644
--- a/src/core/hle/kernel/k_session.cpp
+++ b/src/core/hle/kernel/k_session.cpp
@@ -78,7 +78,7 @@ void KSession::OnClientClosed() {
 void KSession::PostDestroy(uintptr_t arg) {
    // Release the session count resource the owner process holds.
    KProcess* owner = reinterpret_cast<KProcess*>(arg);
-    owner->GetResourceLimit()->Release(LimitableResource::Sessions, 1);
+    // owner->GetResourceLimit()->Release(LimitableResource::Sessions, 1);
    owner->Close();
 }
diff --git a/src/core/hle/kernel/kernel.cpp b/src/core/hle/kernel/kernel.cpp
index bd4e4d350..8b55df82e 100644
--- a/src/core/hle/kernel/kernel.cpp
+++ b/src/core/hle/kernel/kernel.cpp
@@ -44,6 +44,7 @@
 #include "core/hle/kernel/time_manager.h"
 #include "core/hle/lock.h"
 #include "core/hle/result.h"
+#include "core/hle/service/sm/sm.h"
 #include "core/memory.h"
 MICROPROFILE_DEFINE(Kernel_SVC, "Kernel", "SVC", MP_RGB(70, 200, 70));
@@ -656,6 +657,7 @@ struct KernelCore::Impl {
    /// Map of named ports managed by the kernel, which can be retrieved using
    /// the ConnectToPort SVC.
+    std::unordered_map<std::string, ServiceInterfaceFactory> service_interface_factory;
    NamedPortTable named_ports;
    std::unique_ptr<Core::ExclusiveMonitor> exclusive_monitor;
@@ -844,18 +846,17 @@ void KernelCore::PrepareReschedule(std::size_t id) {
    // TODO: Reimplement, this
 }
-void KernelCore::AddNamedPort(std::string name, KClientPort* port) {
+void KernelCore::RegisterNamedService(std::string name, ServiceInterfaceFactory&& factory) {
-    port->Open();
+    impl->service_interface_factory.emplace(std::move(name), factory);
-    impl->named_ports.emplace(std::move(name), port);
 }
-KernelCore::NamedPortTable::iterator KernelCore::FindNamedPort(const std::string& name) {
+KClientPort* KernelCore::CreateNamedServicePort(std::string name) {
-    return impl->named_ports.find(name);
+    auto search = impl->service_interface_factory.find(name);
-}
+    if (search == impl->service_interface_factory.end()) {
+        UNIMPLEMENTED();
-KernelCore::NamedPortTable::const_iterator KernelCore::FindNamedPort(
+        return {};
-    const std::string& name) const {
+    }
-    return impl->named_ports.find(name);
+    return &search->second(impl->system.ServiceManager(), impl->system);
 }
 bool KernelCore::IsValidNamedPort(NamedPortTable::const_iterator port) const {
diff --git a/src/core/hle/kernel/kernel.h b/src/core/hle/kernel/kernel.h
index 51aaccbc7..2d01e1ae0 100644
--- a/src/core/hle/kernel/kernel.h
+++ b/src/core/hle/kernel/kernel.h
@@ -27,6 +27,10 @@ class CoreTiming;
 struct EventType;
 } // namespace Core::Timing
+namespace Service::SM {
+class ServiceManager;
+}
 namespace Kernel {
 class KClientPort;
@@ -51,6 +55,9 @@ class ServiceThread;
 class Synchronization;
 class TimeManager;
+using ServiceInterfaceFactory =
+    std::function<KClientPort&(Service::SM::ServiceManager&, Core::System&)>;
 namespace Init {
 struct KSlabResourceCounts;
 }
@@ -172,14 +179,11 @@ public:
    void InvalidateCpuInstructionCacheRange(VAddr addr, std::size_t size);
-    /// Adds a port to the named port table
+    /// Registers a named HLE service, passing a factory used to open a port to that service.
-    void AddNamedPort(std::string name, KClientPort* port);
+    void RegisterNamedService(std::string name, ServiceInterfaceFactory&& factory);
-    /// Finds a port within the named port table with the given name.
-    NamedPortTable::iterator FindNamedPort(const std::string& name);
-    /// Finds a port within the named port table with the given name.
+    /// Opens a port to a service previously registered with RegisterNamedService.
-    NamedPortTable::const_iterator FindNamedPort(const std::string& name) const;
+    KClientPort* CreateNamedServicePort(std::string name);
    /// Determines whether or not the given port is a valid named port.
    bool IsValidNamedPort(NamedPortTable::const_iterator port) const;
diff --git a/src/core/hle/kernel/slab_helpers.h b/src/core/hle/kernel/slab_helpers.h
index 0c5995db0..d0f7f084b 100644
--- a/src/core/hle/kernel/slab_helpers.h
+++ b/src/core/hle/kernel/slab_helpers.h
@@ -67,11 +67,11 @@ class KAutoObjectWithSlabHeapAndContainer : public Base {
 private:
    static Derived* Allocate(KernelCore& kernel) {
-        return kernel.SlabHeap<Derived>().AllocateWithKernel(kernel);
+        return new Derived(kernel);
    }
    static void Free(KernelCore& kernel, Derived* obj) {
-        kernel.SlabHeap<Derived>().Free(obj);
+        delete obj;
    }
 public:
diff --git a/src/core/hle/kernel/svc.cpp b/src/core/hle/kernel/svc.cpp
index 52011be9c..6b445677e 100644
--- a/src/core/hle/kernel/svc.cpp
+++ b/src/core/hle/kernel/svc.cpp
@@ -284,12 +284,11 @@ static ResultCode ConnectToNamedPort(Core::System& system, Handle* out, VAddr po
    auto& handle_table = kernel.CurrentProcess()->GetHandleTable();
    // Find the client port.
-    const auto it = kernel.FindNamedPort(port_name);
+    auto port = kernel.CreateNamedServicePort(port_name);
-    if (!kernel.IsValidNamedPort(it)) {
+    if (!port) {
-        LOG_WARNING(Kernel_SVC, "tried to connect to unknown port: {}", port_name);
+        LOG_ERROR(Kernel_SVC, "tried to connect to unknown port: {}", port_name);
        return ResultNotFound;
    }
-    auto port = it->second;
    // Reserve a handle for the port.
    // NOTE: Nintendo really does write directly to the output handle here.
author	bunnei	2021-05-15 22:30:21 -0700
committer	GitHub	2021-05-15 22:30:21 -0700
commit	5a2b15bf75318987d773a2bc69bd6224a28b7939 (patch)
tree	f213f5b011410022e8e98f7c3905d16d575ed413 /src/core/hle/kernel
parent	Merge pull request #6289 from ameerj/oob-blit (diff)
parent	common: tree: Avoid a nullptr dereference. (diff)
download	yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.tar.gz yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.tar.xz yuzu-5a2b15bf75318987d773a2bc69bd6224a28b7939.zip