Handle the alternate signal stack correctly in android_unsafe_frame_pointer_chase. If an alternate signal stack is set and the frame record is in bounds of that stack, we need to use the top of the alternate signal stack for bounds checking rather than the normal stack. Bug: 150215618 Change-Id: I78b760d61b27da44f8e0cfee3fe94a791011fe58

commit: b8d13487887a3751c2cf46c834c7888e0ee18205 [log] [tgz]
author: Peter Collingbourne <pcc@google.com> Wed Feb 26 19:01:13 2020 -0800
committer: Peter Collingbourne <pcc@google.com> Thu Feb 27 10:44:15 2020 -0800
tree: f2d482d43ac122b0415061023f80972a1a8629d9
parent: c4f9c9d1710fd7ba2e252e8b3268e179bf8bc5fe [diff] [blame]
diff --git a/libc/bionic/android_unsafe_frame_pointer_chase.cpp b/libc/bionic/android_unsafe_frame_pointer_chase.cpp
index 0fb086e..e25867b 100644
--- a/libc/bionic/android_unsafe_frame_pointer_chase.cpp
+++ b/libc/bionic/android_unsafe_frame_pointer_chase.cpp

@@ -57,6 +57,12 @@
 
   auto begin = reinterpret_cast<uintptr_t>(__builtin_frame_address(0));
   uintptr_t end = __get_thread()->stack_top;
+
+  stack_t ss;
+  if (sigaltstack(nullptr, &ss) == 0 && (ss.ss_flags & SS_ONSTACK)) {
+    end = reinterpret_cast<uintptr_t>(ss.ss_sp) + ss.ss_size;
+  }
+
   size_t num_frames = 0;
   while (1) {
     auto* frame = reinterpret_cast<frame_record*>(begin);
commit	b8d13487887a3751c2cf46c834c7888e0ee18205	[log] [tgz]
author	Peter Collingbourne <pcc@google.com>	Wed Feb 26 19:01:13 2020 -0800
committer	Peter Collingbourne <pcc@google.com>	Thu Feb 27 10:44:15 2020 -0800
tree	f2d482d43ac122b0415061023f80972a1a8629d9
parent	c4f9c9d1710fd7ba2e252e8b3268e179bf8bc5fe [diff] [blame]