migrate os::mem::Access to os::mem::Permission

Author: mazunki

api/arch/x86/paging.hpp

@@ -127,11 +127,11 @@ namespace paging {
 using namespace util::literals;
 using namespace util::bitops;
 
-/** Conversion from x86 paging flags to mem::Accessflags **/
-os::mem::Access to_memflags(Flags f);
+/** Conversion from x86 paging flags to mem::Permission flags **/
+os::mem::Permission to_memflags(Flags f);
 
-/** Conversion from mem::Access flags to x86 paging flags **/
-Flags to_x86(os::mem::Access prot);
+/** Conversion from mem::Permission flags to x86 paging flags **/
+Flags to_x86(os::mem::Permission prot);
 
 /** Summary of currently mapped page- and page directories **/
 struct Summary {

api/kernel/memory.hpp

@@ -26,17 +26,10 @@
 #include <sstream>
 #include <expects>
 #include <kernel/memmap.hpp>
+#include <sys/mman.hpp>
 
 namespace os::mem {
 
-  /** POSIX mprotect compliant access bits **/
-  enum class Access : uint8_t {
-    none = 0,
-    read = 1,
-    write = 2,
-    execute = 4
-  };
-
   using Raw_allocator = buddy::Alloc<false>;
 
   /** Get default allocator for untyped allocations */
@@ -68,7 +61,7 @@ namespace os::mem {
    * Virtual to physical memory mapping.
    * For interfacing with the virtual memory API, e.g. mem::map / mem::protect.
    **/
-  template <typename Fl = Access>
+  template <typename Fl = os::mem::Permission>
   struct Mapping
   {
     static const size_t any_size;
@@ -126,7 +119,7 @@ namespace os::mem {
   Map unmap(uintptr_t addr);
 
   /** Get protection flags for page enclosing a given address */
-  Access flags(uintptr_t addr);
+  Permission flags(uintptr_t addr);
 
   /** Determine active page size of a given linear address **/
   uintptr_t active_page_size(uintptr_t addr);
@@ -142,20 +135,20 @@ namespace os::mem {
    * might result in 513 4KiB pages or 1 2MiB page and 1 4KiB page getting
    * protected.
    **/
-  Map protect(uintptr_t linear, size_t len, Access flags = Access::read);
+  Map protect(uintptr_t linear, size_t len, Permission flags = Permission::Read);  // TODO(mazunki): consider whether we should default to Read here
 
   /**
    * Set and return access flags for a given linear address range
    * The range is expected to be mapped by a previous call to map.
    **/
-  Access protect_range(uintptr_t linear, Access flags = Access::read);
+  Permission protect_range(uintptr_t linear, Permission flags = Permission::Read);  // TODO(mazunki): consider whether we should default to Read here
 
   /**
    * Set and return access flags for a page starting at linear.
    * @note : the page size can be any of the supported sizes and
    *         protection will apply for that whole page.
    **/
-  Access protect_page(uintptr_t linear, Access flags = Access::read);
+  Permission protect_page(uintptr_t linear, Permission flags = Permission::Read);  // TODO(mazunki): consider whether we should default to Read here
 
 
   /** Get the physical address to which linear address is mapped **/
@@ -176,20 +169,6 @@ namespace os::mem {
 
 
 
-
-
-// Enable bitwise ops on access flags
-namespace util {
-inline namespace bitops {
-  template<>
-  struct enable_bitmask_ops<os::mem::Access> {
-    using type = typename std::underlying_type<os::mem::Access>::type;
-    static constexpr bool enable = true;
-  };
-}
-}
-
-
 namespace os::mem {
 
   //
@@ -333,11 +312,12 @@ namespace os::mem {
   virtual_move(uintptr_t src, size_t size, uintptr_t dst, const char* label)
   {
     using namespace util::bitops;
-    const auto flags = os::mem::Access::read | os::mem::Access::write;
+    const auto flags = os::mem::Permission::Data;  // TODO(mazunki): shouldn't this inherit flags from @src?
     // setup @dst as new virt area for @src
     os::mem::map({dst, src, flags, size}, label);
+
     // unpresent @src
-    os::mem::protect(src, size, os::mem::Access::none);
+    os::mem::protect(src, size, os::mem::Permission::Any);  // TODO(mazunki): change to Permission::None when introduced
   }
 }
 

api/sys/mman.hpp

@@ -17,6 +17,20 @@ namespace os::mem {
     Fixed     = MAP_FIXED,
     Anonymous = MAP_ANONYMOUS,
   };
+
+  enum class Permission : uint8_t {  // TODO(mazunki): consider making Permission::{Read,Write,Execute} private or standalone class
+    Read    = PROT_READ,
+    Write   = PROT_WRITE,
+    Execute = PROT_EXEC,
+
+    Data    = Read | Write,
+    Code    = Read | Execute,
+
+    Any     = 0,  // TODO(mazunki): this should really be R|W|X; but requires some refactoring
+    RWX     = Read|Write|Execute,  // TODO(mazunki): temporary, remove me. references should use Permission::Any
+
+    // None    = 0,  // TODO(mazunki): implement this after Any is properly implemented (to avoid confusion with old Access::none which had a different meaning). should block all access (best used for unmapped stuff, potentially tests)
+  };
 } // os::mmap
 
 
@@ -28,3 +42,12 @@ namespace util {
     };
   }
 
+  inline namespace bitops {
+    template<>
+    struct enable_bitmask_ops<os::mem::Permission> {
+      using type = typename std::underlying_type<os::mem::Permission>::type;
+      static constexpr bool enable = true;
+    };
+  }
+}
+#endif // _SYS_MMAN_HPP

src/arch/i686/paging.cpp

@@ -33,6 +33,6 @@ namespace mem {
   }
 
   template <>
-  const size_t Mapping<os::mem::Access>::any_size = 4096;
+  const size_t Mapping<os::mem::Permission>::any_size = 4096;
 }
 }

src/arch/x86_64/ist.cpp

@@ -38,7 +38,7 @@ static stack create_stack_virt(size_t size, const char* name)
   // TODO randomize location / ask virtual memory allocator
   const uintptr_t stack_area = 1ull << 46;
 
-  const mem::Access flags = mem::Access::read | mem::Access::write;
+  const mem::Permission flags = mem::Permission::Data;
 
   // Virtual area
   // Adds a guard page between each new stack
@@ -53,7 +53,7 @@ static stack create_stack_virt(size_t size, const char* name)
 
   Expects(map);
   Expects(mem::active_page_size(map.lin) == 4096);
-  Expects(mem::flags(map.lin - 1) == mem::Access::none
+  Expects(mem::flags(map.lin - 1) == mem::Permission::Any // TODO(mazunki): should this be Permission::None?
           && "Guard page should not present");
 
   // Next stack starts after next page

src/arch/x86_64/paging.cpp

@@ -134,42 +134,44 @@ void __arch_init_paging() {
 namespace x86 {
 namespace paging {
 
-os::mem::Access to_memflags(Flags f)
+os::mem::Permission to_memflags(Flags f)
 {
-  os::mem::Access prot = os::mem::Access::none;
+  using Permission = os::mem::Permission;
+  Permission prot = Permission::Any;  // TODO(mazunki): should probably be 0 (or introduce Permission::Empty)
 
   if (! has_flag(f, Flags::present)) {
-    prot |= os::mem::Access::none;
+    prot |= Permission::Any;  // TODO(mazunki): should probably be Permission::None
     return prot;
   }
 
-  prot |= os::mem::Access::read;
+  prot |= Permission::Read;
 
   if (has_flag(f, Flags::writable)) {
-    prot |= os::mem::Access::write;
+    prot |= Permission::Write;
   }
 
   if (! has_flag(f, Flags::no_exec)) {
-    prot |= os::mem::Access::execute;
+    prot |= Permission::Execute;
   }
 
   return prot;
 }
 
-Flags to_x86(os::mem::Access prot)
+Flags to_x86(os::mem::Permission prot)  // TODO(mazunki): probably implement Any, RWX, None here
 {
+  using Permission = os::mem::Permission;
   Flags flags = Flags::none;
-  if (prot != os::mem::Access::none) {
+  if (prot != Permission::Any) {
     flags |= Flags::present;
   } else {
     return Flags::none;
   }
 
-  if (has_flag(prot, os::mem::Access::write)) {
+  if (has_flag(prot, Permission::Write)) {
     flags |= Flags::writable;
   }
 
-  if (not has_flag(prot, os::mem::Access::execute)) {
+  if (not has_flag(prot, Permission::Execute)) {
     flags |= Flags::no_exec;
   }
 
@@ -183,7 +185,7 @@ void invalidate(void *pageaddr){
 
 }} // x86::paging
 
-namespace os {
+namespace os {  // TODO(mazunki): could it be worth moving this into `x86::paging::` instead?
 namespace mem {
 
 using Map_x86 = Mapping<x86::paging::Flags>;
@@ -237,7 +239,15 @@ uintptr_t mem::virt_to_phys(uintptr_t linear)
   return __pml4->addr_of(*ent);
 }
 
-os::mem::Access mem::protect_page(uintptr_t linear, Access flags)
+/*
+ * TODO(mazunki):
+ * might be better to rename this to set_protection(linear, flags),
+ * and introduce permit_page() and prohibit_page() to add/remove permissions
+ *
+ * mprotect/protect_page() are misleading as we can use it to remove
+ * protections of pages too
+ */
+os::mem::Permission mem::protect_page(uintptr_t linear, Permission flags)
 {
   MEM_PRINT("::protect_page 0x%lx\n", linear);
   x86::paging::Flags xflags = x86::paging::to_x86(flags);
@@ -246,7 +256,7 @@ os::mem::Access mem::protect_page(uintptr_t linear, Access flags)
   return to_memflags(f);
 };
 
-os::mem::Access mem::protect_range(uintptr_t linear, Access flags)
+os::mem::Permission mem::protect_range(uintptr_t linear, Permission flags)
 {
   MEM_PRINT("::protect 0x%lx \n", linear);
   x86::paging::Flags xflags = x86::paging::to_x86(flags);
@@ -273,7 +283,7 @@ os::mem::Access mem::protect_range(uintptr_t linear, Access flags)
   return to_memflags(fl);
 };
 
-os::mem::Map mem::protect(uintptr_t linear, size_t len, Access flags)
+os::mem::Map mem::protect(uintptr_t linear, size_t len, Permission flags)
 {
   if (UNLIKELY(len < min_psize()))
     mem_fail_fast("Can't map less than a page\n");
@@ -297,7 +307,7 @@ os::mem::Map mem::protect(uintptr_t linear, size_t len, Access flags)
   return to_mmap(res);
 }
 
-os::mem::Access mem::flags(uintptr_t addr)
+os::mem::Permission mem::flags(uintptr_t addr)
 {
   return to_memflags(__pml4->flags_r(addr));
 }
@@ -356,7 +366,7 @@ os::mem::Map mem::unmap(uintptr_t lin){
     m.phys = 0;
     m.size = map_ent.size();
 
-    m = __pml4->map_r({key, 0, x86::paging::to_x86(Access::none), (size_t)map_ent.size()});
+    m = __pml4->map_r({key, 0, x86::paging::to_x86(Permission::Any), (size_t)map_ent.size()});  // TODO(mazunki): this should maybe be Permission::None
 
     Ensures(m.size == util::bits::roundto<4_KiB>(map_ent.size()));
     os::mem::vmmap().erase(key);
@@ -386,7 +396,7 @@ void allow_executable()
   m.phys       = __exec_begin;
   m.size       = exec_size;
   m.page_sizes = os::mem::Map::any_size;
-  m.flags      = os::mem::Access::execute | os::mem::Access::read;
+  m.flags      = os::mem::Permission::Code;
 
   os::mem::map(m, "ELF .text");
 }

src/kernel/elf.cpp

@@ -502,6 +502,6 @@ void elf_protect_symbol_areas()
       {(uintptr_t) src, (uintptr_t) src + size-1, "Symbols & strings"});
 
   INFO2("* Protecting syms %p to %p (size %#zx)", src, &src[size], size);
-  os::mem::protect((uintptr_t) src, size, os::mem::Access::read);
+  os::mem::protect((uintptr_t) src, size, os::mem::Permission::Read);
 }
 #endif

src/kernel/multiboot.cpp

@@ -164,7 +164,7 @@ void kernel::multiboot(uint32_t boot_addr)
       if (not (map.type & MULTIBOOT_MEMORY_AVAILABLE)) {
 
         if (util::bits::is_aligned<4_KiB>(map.addr)) {
-          os::mem::map({addr, addr, os::mem::Access::read | os::mem::Access::write, size},
+          os::mem::map({addr, addr, os::mem::Permission::Data, size},
                        "Reserved (Multiboot)");
           continue;
         }
@@ -175,7 +175,7 @@ void kernel::multiboot(uint32_t boot_addr)
       else
       {
         // Map as free memory
-        //os::mem::map_avail({map.addr, map.addr, {os::mem::Access::read | os::mem::Access::write}, map.len}, "Reserved (Multiboot)");
+        //os::mem::map_avail({map.addr, map.addr, {os::mem::Permission::Data}, map.len}, "Reserved (Multiboot)");
       }
     }
     INFO2("");

src/musl/mmap.cpp

@@ -57,7 +57,7 @@ uintptr_t mmap_allocation_end() {
 static void* sys_mmap(void * addr, size_t length, int /*prot*/, int _flags,
                       int fd, off_t /*offset*/)
 {
-  using os::mmap::Flags;
+  using os::mem::Flags;
   const Flags flags = static_cast<Flags>(_flags);
 
   // TODO: Implement minimal functionality to be POSIX compliant

src/platform/x86_pc/os.cpp

@@ -139,7 +139,7 @@ void kernel::start(uint32_t boot_magic, uint32_t boot_addr)
 #if defined(ARCH_x86_64)
   // protect the basic pagetable used by LiveUpdate and any other
   // systems that need to exit long/protected mode
-  os::mem::map({0x1000, 0x1000, os::mem::Access::read, 0x7000}, "Page tables");
+  os::mem::map({0x1000, 0x1000, os::mem::Permission::Read, 0x7000}, "Page tables");
   memmap.assign_range({0x10000, 0x9d3ff, "Stack"});
 #elif defined(ARCH_i686)
   memmap.assign_range({0x10000, 0x9d3ff, "Stack"});