android_system_core

ACPR/android_system_core

Fork 0

Commit graph

Author	SHA1	Message	Date
Tom Cherry	6533fff0e0	logd: remove min heap in SerializedFlushToState There was a bug in SerializedFlushToState::Prune() caused by an access to a SerializedLogEntry raw pointer as a member of a MinHeapElement, which was deleted earlier in the function. Instead of just fixing the order of the access and the deletion, I sought out to remove the raw pointer entirely. In doing so, I noticed that the min heap doesn't provide significant benefit, since we'll only ever have 8 log buffers so scalability is not an issue. Therefore this change removes the min heap entirely and uses the existing log_position_ and logs_needed_from_next_position_ members to keep track of which are the next unread logs. It also adds a smoke test for SerializedFlushToState::Prune() and additional CHECK() statements to help prevent future errors. Bug: 168869299 Test: unit tests Change-Id: Id4d5fdbaff2fe6dc49c38f01e73f900f84d3696b	2020-09-18 15:32:32 -07:00
Tom Cherry	b07e339b53	logd: fix use after resize of contents_ vector SerializedFlushToState::PopNextUnreadLog() was calling AddMinHeapEntry() to replenish the element that was just popped off of the heap, however AddMinHeapEntry() also manages reference counts for the buffers, and this resulting in the following scenario: PopNextUnreadLog() returns a pointer referencing log buffer #1 AddMinHeapEntry() sees that all logs from buffer #1 has been read, so it decrements the reference count The caller of PopNextUnreadLog() uses the result which references invalid memory. This calls CheckForNewLogs() within HasUnreadLogs() instead of requiring a separate call, which fixes an additional issue where continuing from the loop in SerializedLogBuffer::FlushTo() may not pick up subsequent logs in a given log buffer, since CheckForNewLogs() wouldn't be called. This was exacerbated by the above change. This adds a test to check the reference counts for this case and fixes an argument mismatch in SerializedFlushToStateTest. This adds the corpus that surfaced the issue. Bug: 159753229 Bug: 159783005 Test: these unit tests, run fuzzer without error Change-Id: Ib2636dfc14293b7e2cd00876b9def6e9dbbff4ce	2020-06-24 15:31:46 -07:00
Tom Cherry	1a796bca57	logd: add a SerializedLogBuffer suitable for compression Initial commit for a SerializedLogBuffer. The intention here is for the serialized data to be compressed (currently using zlib) to allow for substantially longer logs in the same memory footprint. Test: unit tests Change-Id: I2528e4e1ff1cf3bc91130173a107f371f04d911a	2020-06-12 14:35:30 -07:00

Author

SHA1

Message

Date

Tom Cherry

6533fff0e0

logd: remove min heap in SerializedFlushToState

There was a bug in SerializedFlushToState::Prune() caused by an access
to a SerializedLogEntry raw pointer as a member of a MinHeapElement,
which was deleted earlier in the function.

Instead of just fixing the order of the access and the deletion, I
sought out to remove the raw pointer entirely.  In doing so, I noticed
that the min heap doesn't provide significant benefit, since we'll
only ever have 8 log buffers so scalability is not an issue.

Therefore this change removes the min heap entirely and uses the
existing log_position_ and logs_needed_from_next_position_ members to
keep track of which are the next unread logs.

It also adds a smoke test for SerializedFlushToState::Prune() and
additional CHECK() statements to help prevent future errors.

Bug: 168869299
Test: unit tests
Change-Id: Id4d5fdbaff2fe6dc49c38f01e73f900f84d3696b

2020-09-18 15:32:32 -07:00

Tom Cherry

b07e339b53

logd: fix use after resize of contents_ vector

SerializedFlushToState::PopNextUnreadLog() was calling
AddMinHeapEntry() to replenish the element that was just popped off of
the heap, however AddMinHeapEntry() also manages reference counts for
the buffers, and this resulting in the following scenario:

PopNextUnreadLog() returns a pointer referencing log buffer #1
AddMinHeapEntry() sees that all logs from buffer #1 has been read, so
it decrements the reference count
The caller of PopNextUnreadLog() uses the result which references
invalid memory.

This calls CheckForNewLogs() within HasUnreadLogs() instead of
requiring a separate call, which fixes an additional issue where
continuing from the loop in SerializedLogBuffer::FlushTo() may not
pick up subsequent logs in a given log buffer, since CheckForNewLogs()
wouldn't be called.  This was exacerbated by the above change.

This adds a test to check the reference counts for this case and fixes
an argument mismatch in SerializedFlushToStateTest.

This adds the corpus that surfaced the issue.

Bug: 159753229
Bug: 159783005
Test: these unit tests, run fuzzer without error
Change-Id: Ib2636dfc14293b7e2cd00876b9def6e9dbbff4ce

2020-06-24 15:31:46 -07:00

Tom Cherry

1a796bca57

logd: add a SerializedLogBuffer suitable for compression

Initial commit for a SerializedLogBuffer.  The intention here is for
the serialized data to be compressed (currently using zlib) to allow
for substantially longer logs in the same memory footprint.

Test: unit tests
Change-Id: I2528e4e1ff1cf3bc91130173a107f371f04d911a

2020-06-12 14:35:30 -07:00

3 commits