Change any and all sqMakeMemory...Executable... prototypes and implementations

to use usqInt for address arguments (sqInt must be used for teh delta arg).
IMO we should use usqInt where it makes sense (our APIs rather than OS APIs).
I'm not interested in supporting 64-bit oops in 32-bit hosts, or 32-bit oops in
64-bit hosts, so I think it safe to assume that usqInt is equiavlent to
usqIntptr_t, & sqInt to sqIntptr_t, and they're shorter.  I'm open to persuasion
so if I'm wrong please correct me (and the source).

Author: eliotmiranda

platforms/Cross/vm/sq.h

@@ -102,7 +102,7 @@ extern void sqDeallocateMemorySegmentAtOfSize(void *addr, sqInt sz);
 #endif /* SPURVM */
 #if COGVM
 extern void sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt, usqInt, sqInt*);
-extern void sqMakeMemoryNotExecutableFromTo(usqIntptr_t, usqIntptr_t);
+extern void sqMakeMemoryNotExecutableFromTo(usqInt, usqInt);
 #endif
 
 /* Platform-dependent memory size adjustment macro. */

platforms/Mac OS/vm/sqMacMemory.c

@@ -121,26 +121,89 @@ sqMacMemoryFree()
 }
 
 #if COGVM
+#   if DUAL_MAPPED_CODE_ZONE
+/* We are indebted to Chris Wellons who designed this elegant API for dual
+ * mapping which we depend on for fine-grained code modification (classical
+ * Deutsch/Schiffman style inline cacheing and derivatives).  Chris's code is:
+	https://nullprogram.com/blog/2016/04/10/
+ *
+ * To cope with modern OSs that disallow executing code in writable memory we
+ * dual-map the code zone, one mapping with read/write permissions and the other
+ * with read/execute permissions. In such a configuration the code zone has
+ * already been alloated and is not included in (what is no longer) the initial
+ * alloc.
+ */
+static void
+memory_alias_map(size_t size, size_t naddr, void **addrs)
+{
+extern char  *exeName;
+	char path[128];
+	snprintf(path, sizeof(path), "/%s(%lu,%p)",
+			 exeName ? exeName : __FUNCTION__, (long)getpid(), addrs);
+	int fd = shm_open(path, O_RDWR | O_CREAT | O_EXCL, 0600);
+	if (fd == -1) {
+		perror("memory_alias_map: shm_open");
+		exit(0666);
+	}
+	shm_unlink(path);
+	ftruncate(fd, size);
+	for (size_t i = 0; i < naddr; i++) {
+		addrs[i] = mmap(addrs[i], size, PROT_READ | PROT_WRITE,
+								addrs[i] ? MAP_FIXED | MAP_SHARED : MAP_SHARED,
+								fd, 0);
+		if (addrs[i] == MAP_FAILED) {
+			perror("memory_alias_map: mmap(addrs[i]...");
+			exit(0667);
+		}
+	}
+	close(fd);
+	return;
+}
+#   endif /* DUAL_MAPPED_CODE_ZONE */
 void
-sqMakeMemoryExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr,
+											usqInt endAddr,
+											sqInt *codeToDataDelta)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
+	usqInt size = endAddr - firstPage;
+
+#  if DUAL_MAPPED_CODE_ZONE
+	usqInt mappings[2];
+
+	mappings[0] = firstPage;
+	mappings[1] = 0;
+
+	memory_alias_map(size, 2, (void **)mappings);
+	assert(mappings[0] == firstPage);
+	*codeToDataDelta = mappings[1] - startAddr;
+
 	if (mprotect((void *)firstPage,
-				 endAddr - firstPage + 1,
+				 size,
+				 PROT_READ | PROT_EXEC) < 0)
+		perror("mprotect(x,y,PROT_READ | PROT_EXEC)");
+
+#  else /* DUAL_MAPPED_CODE_ZONE */
+
+	if (mprotect((void *)firstPage,
+				 size,
 				 PROT_READ | PROT_WRITE | PROT_EXEC) < 0)
 		perror("mprotect(x,y,PROT_READ | PROT_WRITE | PROT_EXEC)");
+
+	*codeToDataDelta = 0;
+#  endif
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
 # if 0
 	/* We get EACCESS on 10.6.3 when trying to disable exec perm; Why? */
 	/* Arguably this is pointless since allocated memory always does include
 	 * write permission.  Annoyingly the mprotect call fails on both linux &
 	 * mac os x.  So make the whole thing a nop.
 	 */
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
 	if (mprotect((void *)firstPage,
 				 endAddr - firstPage + 1,
 				 PROT_READ | PROT_WRITE) < 0

platforms/iOS/vm/Common/sqMacV2Memory.c

@@ -188,19 +188,20 @@ sqImageFileReadEntireImage(void *ptr, size_t elementSize, size_t count, sqImageF
 # define roundUpToPage(v) (((v)+pageSize-1)&pageMask)
 #if COGVM || defined(HAVE_NATIVEBOOST) 
 void
-sqMakeMemoryExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr, usqInt endAddr, sqInt *codeToDataDelta)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
 	if (mprotect((void *)firstPage,
 				 roundUpToPage(endAddr - firstPage),
 				 PROT_READ | PROT_WRITE | PROT_EXEC) < 0)
 		perror("mprotect(x,y,PROT_READ | PROT_WRITE | PROT_EXEC)");
+	*codeToDataDelta = 0;
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
 	if (mprotect((void *)firstPage,
 				 roundUpToPage(endAddr - firstPage),
 				 PROT_READ | PROT_WRITE) < 0)

platforms/minheadless/unix/sqPlatformSpecific-Unix.h

@@ -42,9 +42,6 @@ extern sqInt sqGrowMemoryBy(sqInt oldLimit, sqInt delta);
 extern sqInt sqShrinkMemoryBy(sqInt oldLimit, sqInt delta);
 extern sqInt sqMemoryExtraBytesLeft(sqInt includingSwap);
 #if COGVM
-extern void sqMakeMemoryExecutableFromTo(unsigned long, unsigned long);
-extern void sqMakeMemoryNotExecutableFromTo(unsigned long, unsigned long);
-
 extern int osCogStackPageHeadroom(void);
 extern void reportMinimumUnusedHeadroom(void);
 #endif

platforms/minheadless/unix/sqUnixMemory.c

@@ -322,17 +322,20 @@ sqInt sqMemoryExtraBytesLeft(sqInt includingSwap)			{ return uxMemoryExtraBytesL
 #define roundUpToPage(v) (((v)+pageSize-1)&pageMask)
 #if COGVM
 void
-sqMakeMemoryExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr,
+											usqInt endAddr,
+											sqInt *codeToDataDelta)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
 	if (mprotect((void *)firstPage,
 				 endAddr - firstPage + 1,
 				 PROT_READ | PROT_WRITE | PROT_EXEC) < 0)
 		perror("mprotect(x,y,PROT_READ | PROT_WRITE | PROT_EXEC)");
+	*codeToDataDelta = 0;
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
 # if 0
 	unsigned long firstPage = roundDownToPage(startAddr);

platforms/minheadless/unix/sqUnixSpurMemory.c

@@ -240,10 +240,10 @@ sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr,
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
-	unsigned long size = endAddr - firstPage;
+	usqInt firstPage = roundDownToPage(startAddr);
+	usqInt size = endAddr - firstPage;
 	/* Arguably this is pointless since allocated memory always includes write
 	 * permission by default.  Annoyingly the mprotect call fails on both linux
 	 * and mac os x.  So make the whole thing a nop.

platforms/minheadless/windows/sqPlatformSpecific-Win32.h

@@ -134,9 +134,6 @@ sqInt ioSetCursorARGB(sqInt bitsIndex, sqInt w, sqInt h, sqInt x, sqInt y);
 #define PROF_THREAD_PRIORITY THREAD_PRIORITY_TIME_CRITICAL
 
 #if COGVM
-extern void sqMakeMemoryExecutableFromTo(usqIntptr_t, usqIntptr_t);
-extern void sqMakeMemoryNotExecutableFromTo(usqIntptr_t, usqIntptr_t);
-
 extern int osCogStackPageHeadroom(void);
 extern void reportMinimumUnusedHeadroom(void);
 #endif

platforms/minheadless/windows/sqWin32Alloc.c

@@ -181,7 +181,7 @@ sqMemoryExtraBytesLeft(int includingSwap) {
 
 # if COGVM
 void
-sqMakeMemoryExecutableFromTo(usqIntptr_t startAddr, usqIntptr_t endAddr)
+sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr, usqInt endAddr, sqInt *codeToDataDelta)
 {
 	DWORD previous;
 
@@ -190,10 +190,11 @@ sqMakeMemoryExecutableFromTo(usqIntptr_t startAddr, usqIntptr_t endAddr)
 						PAGE_EXECUTE_READWRITE,
 						&previous))
 		sqWin32PrintLastError("VirtualProtect(x,y,PAGE_EXECUTE_READWRITE)");
+	*codeToDataDelta = 0;
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(usqIntptr_t startAddr, usqIntptr_t endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
 	DWORD previous;
 

platforms/minheadless/windows/sqWin32SpurAlloc.c

@@ -214,7 +214,7 @@ sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr,
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(usqIntptr_t startAddr, usqIntptr_t endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
 	DWORD previous;
     SIZE_T size;

platforms/unix/vm/sqUnixMemory.c

@@ -320,22 +320,87 @@ sqInt sqMemoryExtraBytesLeft(sqInt includingSwap)			{ return uxMemoryExtraBytesL
 
 #define roundDownToPage(v) ((v)&pageMask)
 #define roundUpToPage(v) (((v)+pageSize-1)&pageMask)
+
 #if COGVM
+#   if DUAL_MAPPED_CODE_ZONE
+/* We are indebted to Chris Wellons who designed this elegant API for dual
+ * mapping which we depend on for fine-grained code modification (classical
+ * Deutsch/Schiffman style inline cacheing and derivatives).  Chris's code is:
+	https://nullprogram.com/blog/2016/04/10/
+ *
+ * To cope with modern OSs that disallow executing code in writable memory we
+ * dual-map the code zone, one mapping with read/write permissions and the other
+ * with read/execute permissions. In such a configuration the code zone has
+ * already been alloated and is not included in (what is no longer) the initial
+ * alloc.
+ */
+static void
+memory_alias_map(size_t size, size_t naddr, void **addrs)
+{
+extern char  *exeName;
+	char path[128];
+	snprintf(path, sizeof(path), "/%s(%lu,%p)",
+			 exeName ? exeName : __FUNCTION__, (long)getpid(), addrs);
+	int fd = shm_open(path, O_RDWR | O_CREAT | O_EXCL, 0600);
+	if (fd == -1) {
+		perror("memory_alias_map: shm_open");
+		exit(0666);
+	}
+	shm_unlink(path);
+	ftruncate(fd, size);
+	for (size_t i = 0; i < naddr; i++) {
+		addrs[i] = mmap(addrs[i], size, PROT_READ | PROT_WRITE,
+								addrs[i] ? MAP_FIXED | MAP_SHARED : MAP_SHARED,
+								fd, 0);
+		if (addrs[i] == MAP_FAILED) {
+			perror("memory_alias_map: mmap(addrs[i]...");
+			exit(0667);
+		}
+	}
+	close(fd);
+	return;
+}
+#   endif /* DUAL_MAPPED_CODE_ZONE */
+
 void
-sqMakeMemoryExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryExecutableFromToCodeToDataDelta(usqInt startAddr,
+											usqInt endAddr,
+											sqInt *codeToDataDelta)
 {
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
+	usqInt size = endAddr - firstPage;
+
+#  if DUAL_MAPPED_CODE_ZONE
+	usqInt mappings[2];
+
+	mappings[0] = firstPage;
+	mappings[1] = 0;
+
+	memory_alias_map(size, 2, (void **)mappings);
+	assert(mappings[0] == firstPage);
+	*codeToDataDelta = mappings[1] - startAddr;
+
 	if (mprotect((void *)firstPage,
-				 endAddr - firstPage + 1,
+				 size,
+				 PROT_READ | PROT_EXEC) < 0)
+		perror("mprotect(x,y,PROT_READ | PROT_EXEC)");
+
+#  else /* DUAL_MAPPED_CODE_ZONE */
+
+	if (mprotect((void *)firstPage,
+				 size,
 				 PROT_READ | PROT_WRITE | PROT_EXEC) < 0)
 		perror("mprotect(x,y,PROT_READ | PROT_WRITE | PROT_EXEC)");
+
+	*codeToDataDelta = 0;
+#  endif
 }
 
 void
-sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
+sqMakeMemoryNotExecutableFromTo(usqInt startAddr, usqInt endAddr)
 {
 # if 0
-	unsigned long firstPage = roundDownToPage(startAddr);
+	usqInt firstPage = roundDownToPage(startAddr);
 	/* Arguably this is pointless since allocated memory always does include
 	 * write permission.  Annoyingly the mprotect call fails on both linux &
 	 * mac os x.  So make the whole thing a nop.
@@ -352,7 +417,8 @@ sqMakeMemoryNotExecutableFromTo(unsigned long startAddr, unsigned long endAddr)
 
 # define MBytes	*1024*1024
 
-int main()
+int
+main()
 {
   char *mem= sqAllocateMemory(4 MBytes, 40 MBytes);
   printf("memory allocated at %p\n", mem);