Google Git
Sign in
llvm / llvm-archive / 089ca8750d7cd1f1ec96968922bf4bcfe223bb3a / . / safecode / old_runtime / DebugRuntime / RuntimeChecks.cpp
blob: ccfcd65ff0dff099e0da2bf0a091d2d9caa9f3ef [file] [log] [blame]
//===- PoolAllocatorBitMask.cpp - Implementation of poolallocator runtime -===//
//
// The SAFECode Compiler
//
// This file was developed by the LLVM research group and is distributed under
// the University of Illinois Open Source License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
//
// This file implements various runtime checks used by SAFECode.
//
//===----------------------------------------------------------------------===//
// NOTES:
// 1) Some of the bounds checking code may appear strange. The reason is that
// it is manually inlined to squeeze out some more performance. Please
// don't change it.
//
// 2) This run-time performs MMU re-mapping of pages to perform dangling
// pointer detection. A "shadow" address is the address of a memory block
// that has been remapped to a new virtal address; the shadow address is
// returned to the caller on allocation and is unmapped on deallocation.
// A "canonical" address is the virtual address of memory as it is mapped
// in the pool slabs; the canonical address is remapped to different shadow
// addresses each time that particular piece of memory is allocated.
//
// In normal operation, the shadow address and canonical address are
// identical.
//
//===----------------------------------------------------------------------===//
#include "DebugReport.h"
#include "PoolAllocator.h"
#include "PageManager.h"
#include "ConfigData.h"
#include "RewritePtr.h"
#include "safecode/Runtime/DebugRuntime.h"
#include <map>
#include <cstdarg>
#include <cstdio>
#include <cassert>
#define TAG unsigned tag
extern FILE * ReportLog;
using namespace NAMESPACE_SC;
static inline unsigned char
isInCache (DebugPoolTy * Pool, void * p) {
if ((Pool->objectCache[0].lower <= p) && (p <= Pool->objectCache[0].upper))
return 0;
if ((Pool->objectCache[1].lower <= p) && (p <= Pool->objectCache[1].upper))
return 1;
return 2;
}
static inline void
updateCache (DebugPoolTy * Pool, void * Start, void * End) {
Pool->objectCache[Pool->cacheIndex].lower = Start;
Pool->objectCache[Pool->cacheIndex].upper = End;
Pool->cacheIndex = (Pool->cacheIndex) ? 0 : 1;
return;
}
//
// Function: _barebone_poolcheck()
//
// Description:
// Perform an accurate load/store check for the given pointer. This function
// encapsulates the logic necessary to do the check.
//
// Return value:
// true - The pointer was found within a valid object within the pool.
// false - The pointer was not found within a valid object within the pool.
//
static inline bool
_barebone_poolcheck (DebugPoolTy * Pool, void * Node) {
void * S, * end;
//
// If the pool handle is NULL, return successful.
//
if (!Pool) return false;
//
// First check the cache of objects to see if the pointer is in there.
//
unsigned char index = isInCache (Pool, Node);
if (index < 2) {
return true;
}
//
// Look through the splay trees for an object in which the pointer points.
//
bool fs = Pool->Objects.find(Node, S, end);
if ((fs) && (S <= Node) && (Node <= end)) {
updateCache (Pool, S, end);
return true;
}
//
// This may be a singleton object, so search for it within the pool slabs
// itself.
//
#if 1
if (void * start = __pa_bitmap_poolcheck (Pool, Node)) {
end = (unsigned char *) start + Pool->NodeSize - 1;
updateCache (Pool, start, end);
return true;
}
#endif
//
// The node is not found or is not within bounds; fail!
//
return false;
}
//
// Function: poolcheck_debug()
//
// Description:
// This function performs a load/store check. It ensures that the given
// pointer points into a valid memory object.
//
void
poolcheck_debug (DebugPoolTy *Pool,
void *Node,
TAG,
const char * SourceFilep,
unsigned lineno) {
//
// Check to see if the pointer points to an object within the pool. If it
// does, the check succeeds, so just return to the caller.
//
if (_barebone_poolcheck (Pool, Node))
return;
//
// Look for the object within the splay tree of external objects.
//
int fs = 0;
void * start, *end;
fs = ExternalObjects.find (Node, start, end);
if ((fs) && (start <= Node) && (Node <= end)) {
return;
}
//
// If it's a rewrite pointer, convert it back into its original value so
// that we can print the real faulting address.
//
if (isRewritePtr (Node)) {
Node = pchk_getActualValue (Pool, Node);
}
//
// If dangling pointer detection is enabled, see if the pointer points within
// a freed memory object. If so, this is a dangling pointer error.
// Otherwise, it is just a regular load/store error.
//
DebugViolationInfo v;
v.type = ViolationInfo::FAULT_LOAD_STORE,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Node,
v.SourceFile = SourceFilep,
v.lineNo = lineno,
v.PoolHandle = Pool;
ReportMemoryViolation(&v);
return;
}
//
// Function: poolcheckalign_debug()
//
// Description:
// Identical to poolcheckalign() but with additional debug info parameters.
//
// Inputs:
// Pool - The pool in which the pointer should be found.
// Node - The pointer to check.
// Offset - The offset, in bytes, that the pointer should be to the beginning
// of objects found in the pool.
//
// FIXME:
// For now, this does nothing, but it should, in fact, do a run-time check.
//
void
poolcheckalign_debug (DebugPoolTy *Pool, void *Node, unsigned Offset, TAG, const char * SourceFile, unsigned lineno) {
//
// Let null pointers go if the alignment is zero; such pointers are aligned.
//
if ((Node == 0) && (Offset == 0))
return;
//
// If no pool was specified, return.
//
if (!Pool) return;
//
// First check the cache of objects to see if the pointer is in there.
//
void * S = 0;
void * end = 0;
bool found = false;
unsigned char index = isInCache (Pool, Node);
if (index < 2) {
S = Pool->objectCache[index].lower;
end = Pool->objectCache[index].upper;
found = true;
}
//
// Look for the object in the splay of regular objects.
//
if (!found)
found = Pool->Objects.find (Node, S, end);
//
// If we can't find the object in the splay tree, try to find it in the pool
// itself.
//
if (!found) {
#if 1
if (void * start = __pa_bitmap_poolcheck (Pool, Node)) {
S = start;
end = (unsigned char *)start + Pool->NodeSize - 1;
found = true;
}
#endif
}
//
// Determine whether the alignment of the object is correct. Note that Node
// may be pointing to an array of objects, so we need to take the offset of
// the pointer from the beginning of the object modulo the size of a single
// array element. In this run-time, the size of a single element is stored
// within the pool descriptor.
//
if (found) {
unsigned char * Nodep = (unsigned char *) Node;
unsigned char * Sp = (unsigned char *) S;
unsigned Alignment = ((Nodep - Sp) % Pool->NodeSize);
if (Alignment == Offset) {
return;
}
}
//
// The object has not been found. Provide an error.
//
if (logregs) {
fprintf (stderr, "Violation(A): %p: %p %d %d\n", (void *) Pool, Node, Offset, Pool->NodeSize);
fflush (stderr);
}
unsigned char * Sp = (unsigned char *) S;
unsigned char * endp = (unsigned char *) end;
AlignmentViolation v;
v.type = ViolationInfo::FAULT_ALIGN,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Node,
v.PoolHandle = Pool,
v.dbgMetaData = 0,
v.SourceFile = SourceFile,
v.lineNo = lineno,
v.objStart = (found ? Sp : 0),
v.objLen = (found ? (endp - Sp) + 1: 0);
v.alignment = Offset;
ReportMemoryViolation(&v);
}
void
poolcheckui_debug (DebugPoolTy *Pool,
void *Node,
TAG,
const char * SourceFilep,
unsigned lineno) {
if (_barebone_poolcheck (Pool, Node))
return;
//
// Look for the object within the splay tree of external objects.
// Always look in these splay tree because some objects (namely argv strings)
// are stored in this splay tree.
//
int fs = 0;
void * S, *end = 0;
if (1) {
S = Node;
fs = ExternalObjects.find (Node, S, end);
if ((fs) && (S <= Node) && (Node <= end)) {
return;
}
}
//
// The node is not found or is not within bounds. Report a warning but keep
// going.
//
if (logregs) {
fprintf (stderr, "PoolcheckUI failed(%p:%x): %p %p from %p\n",
(void*)Pool, fs, (void*)Node, end, __builtin_return_address(0));
fflush (stderr);
}
return;
}
//
// Function: boundscheck_lookup()
//
// Description:
// Perform the lookup for a bounds check.
//
// Inputs:
// Source - The pointer to look up within the set of valid objects.
//
// Outputs:
// Source - If the object is found within the pool, this is the address of the
// first valid byte of the object.
//
// End - If the object is found within the pool, this is the address of the
// last valid byte of the object.
//
// Return value:
// true - The object was found in the pool.
// false - The object was not found in the pool.
//
static bool
boundscheck_lookup (DebugPoolTy * Pool, void * & Source, void * & End ) {
//
// If there is a pool, then search for the object within the pool and return
// its bounds.
//
if (Pool) {
//
// First check the cache of objects to see if the pointer is in there.
//
unsigned char index = isInCache (Pool, Source);
if (index < 2) {
Source = Pool->objectCache[index].lower;
End = Pool->objectCache[index].upper;
return true;
}
//
// Search the splay tree. If we find the object, add it to the cache.
//
if (Pool->Objects.find(Source, Source, End)) {
updateCache (Pool, Source, End);
return true;
}
//
// Perhaps we are indexing on a singleton object. Do a poolcheck to
// get the object bounds and recheck the pointer.
//
#if 1
if (void * start = __pa_bitmap_poolcheck (Pool, Source)) {
Source = start;
End = (unsigned char *)start + Pool->NodeSize - 1;
updateCache (Pool, Source, End);
return true;
}
#endif
}
//
// No pool was given, so we cannot find the object. Let the run-time use the
// slow path to search for externally allocated objects, argv pointers, and
// the like.
//
return false;
}
//
// Function: boundscheck_check()
//
// Description:
// This is the slow path for a boundscheck() and boundcheckui() calls.
//
// Inputs:
// ObjStart - The address of the first valid byte of the object.
// ObjEnd - The address of the last valid byte of the object.
// Pool - The pool in which the pointer belong.
// Source - The source pointer used in the indexing operation (the GEP).
// Dest - The result pointer of the indexing operation (the GEP).
// CanFail - Flags whether the check can fail (for complete DSNodes).
//
// Note:
// If ObjLen is zero, then the lookup says that Source was not found within
// any valid object.
//
static void *
boundscheck_check (bool found, void * ObjStart, void * ObjEnd,
DebugPoolTy * Pool,
void * Source, void * Dest, bool CanFail,
const char * SourceFile, unsigned int lineno) {
//
// Determine if this is a rewrite pointer that is being indexed. If so,
// compute the original value, re-do the indexing operation, and rewrite the
// value back.
//
if (isRewritePtr (Source)) {
//
// Get the real pointer value (which is outside the bounds of a valid
// object).
//
void * RealSrc = pchk_getActualValue (Pool, Source);
//
// Compute the real result pointer (the value the GEP would really have on
// the original pointer value).
//
Dest = (void *)((intptr_t) RealSrc + ((intptr_t) Dest - (intptr_t) Source));
//
// Retrieve the original bounds of the object.
//
getOOBObject (Source, ObjStart, ObjEnd);
//
// Redo the bounds check. If it succeeds, return the real value.
// Otherwise, just continue on with the rest of the failed bounds check
// processing as before.
//
if (__builtin_expect (((ObjStart <= Dest) && ((Dest <= ObjEnd))), 1)) {
if (logregs) {
fprintf (stderr, "unrewrite(1): (0x%p) -> (0x%p, 0x%p) \n", Source, RealSrc, Dest);
fflush (stderr);
}
return Dest;
}
//
// Pretend this was an index off of the original out of bounds pointer
// value and continue processing
//
if (logregs) {
fprintf (stderr, "unrewrite(2): %p -> %p, Dest: %p, Obj: %p - %p\n", Source, RealSrc, Dest, ObjStart, ObjEnd);
fflush (stderr);
}
found = true;
Source = RealSrc;
}
//
// Now, we know that the pointer is out of bounds. If we indexed off the
// beginning or end of a valid object, determine if we can rewrite the
// pointer into an OOB pointer. Whether we can or not depends upon the
// SAFECode configuration.
//
if (found) {
if ((ConfigData.StrictIndexing == false) ||
(((char *) Dest) == (((char *)ObjEnd)+1))) {
void * ptr = rewrite_ptr (Pool, Dest, ObjStart, ObjEnd, SourceFile, lineno);
if (logregs) {
fprintf (ReportLog, "boundscheck: rewrite(1): %p %p %p %p at pc=%p to %p at %s (%d)\n",
ObjStart, ObjEnd, Source, Dest, (void*)__builtin_return_address(0), ptr, SourceFile, lineno);
fflush (ReportLog);
}
return ptr;
} else {
intptr_t allocPC = 0;
unsigned allocID = 0;
unsigned char * allocSF = (unsigned char *) "<Unknown>";
unsigned allocLN = 0;
PDebugMetaData debugmetadataptr = NULL;
void * S , * end;
if (dummyPool.DPTree.find(ObjStart, S, end, debugmetadataptr)) {
allocPC = ((intptr_t) (debugmetadataptr->allocPC)) - 5;
allocID = debugmetadataptr->allocID;
allocSF = (unsigned char *) debugmetadataptr->SourceFile;
allocLN = debugmetadataptr->lineno;
}
OutOfBoundsViolation v;
v.type = ViolationInfo::FAULT_OUT_OF_BOUNDS,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Dest,
v.dbgMetaData = debugmetadataptr,
v.PoolHandle = Pool,
v.SourceFile = SourceFile,
v.lineNo = lineno,
v.objStart = ObjStart,
v.objLen = (unsigned)((char*) ObjEnd - (char*)(ObjStart)) + 1;
ReportMemoryViolation(&v);
return Dest;
}
}
/*
* Allow pointers to the first page in memory provided that they remain
* within that page. Loads and stores using such pointers will fault. This
* allows indexing of NULL pointers without error.
*/
if ((((unsigned char *)0) <= Source) && (Source < (unsigned char *)(4096))) {
if ((((unsigned char *)0) <= Dest) && (Dest < (unsigned char *)(4096))) {
if (logregs) {
fprintf (ReportLog, "boundscheck: NULL Index: %x %x %p %p at pc=%p at %s (%d)\n",
0, 4096, (void*)Source, (void*)Dest, (void*)__builtin_return_address(0), SourceFile, lineno);
fflush (ReportLog);
}
return Dest;
} else {
if ((ConfigData.StrictIndexing == false) ||
(((uintptr_t) Dest) == 4096)) {
if (logregs) {
fprintf (ReportLog, "boundscheck: rewrite(3): %x %x %p %p at pc=%p at %s (%d)\n",
0, 4096, (void*)Source, (void*)Dest, (void*)__builtin_return_address(0), SourceFile, lineno);
fflush (ReportLog);
}
return rewrite_ptr (Pool,
Dest,
(void *)0,
(void *)4096,
SourceFile,
lineno);
} else {
OutOfBoundsViolation v;
v.type = ViolationInfo::FAULT_OUT_OF_BOUNDS,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Dest,
v.dbgMetaData = NULL,
v.PoolHandle = Pool,
v.SourceFile = NULL,
v.lineNo = 0,
v.objStart = 0,
v.objLen = 4096;
ReportMemoryViolation(&v);
}
}
}
//
// Attempt to look for the object in the external object splay tree.
// Do this even if we're not tracking external allocations because a few
// other objects without associated pools (e.g., argv pointers) may be
// registered in here.
//
if (1) {
void * S, * end;
bool fs = ExternalObjects.find(Source, S, end);
if (fs) {
if ((S <= Dest) && (Dest <= end)) {
return Dest;
} else {
if ((ConfigData.StrictIndexing == false) ||
(((char *) Dest) == (((char *)end)+1))) {
void * ptr = rewrite_ptr (Pool, Dest, S, end, SourceFile, lineno);
if (logregs)
fprintf (ReportLog,
"boundscheck: rewrite(2): %p %p %p %p at pc=%p to %p at %s (%d)\n",
S, end, Source, Dest, (void*)__builtin_return_address(0),
ptr, SourceFile, lineno);
fflush (ReportLog);
return ptr;
}
OutOfBoundsViolation v;
v.type = ViolationInfo::FAULT_OUT_OF_BOUNDS,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Dest,
v.dbgMetaData = NULL,
v.PoolHandle = Pool,
v.SourceFile = SourceFile,
v.lineNo = lineno,
v.objStart = ObjStart,
v.objLen = (unsigned)((char*) end - (char*)(S)) + 1;
ReportMemoryViolation(&v);
}
}
}
//
// We cannot find the object. Continue execution.
//
if (CanFail) {
OutOfBoundsViolation v;
v.type = ViolationInfo::FAULT_OUT_OF_BOUNDS,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Dest,
v.PoolHandle = Pool,
v.dbgMetaData = NULL,
v.SourceFile = SourceFile,
v.lineNo = lineno,
v.objStart = 0,
v.objLen = 0;
ReportMemoryViolation(&v);
}
//
// Perform one last-ditch check for incomplete nodes. It may be possible
// that we're doing a GEP off a pointer into a freed object. If dangling
// pointer detection is enabled, we can determine if the source pointer
// was freed and reject the indexing operation.
//
PDebugMetaData debugmetadataptr = NULL;
if ((ConfigData.RemapObjects) &&
(dummyPool.DPTree.find (Source, ObjStart, ObjEnd, debugmetadataptr))) {
//
// If the indexing operation stays within the bounds of a freed object,
// then don't flag an error. Dereferences of the pointer will flag an
// error.
//
if (__builtin_expect (((ObjStart <= Dest) && ((Dest <= ObjEnd))), 1)) {
return Dest;
}
//
// Otherwise, do what we always do: either rewrite the pointer or generate
// an array indexing error report.
//
if ((ConfigData.StrictIndexing == false) ||
(((char *) Dest) == (((char *)ObjEnd)+1))) {
void * ptr = rewrite_ptr (Pool, Dest, ObjStart, ObjEnd, SourceFile, lineno);
if (logregs) {
fprintf (ReportLog, "boundscheck: rewrite(4): %p %p %p %p at pc=%p to %p at %s (%d)\n",
ObjStart, ObjEnd, Source, Dest, (void*)__builtin_return_address(0), ptr, SourceFile, lineno);
fflush (ReportLog);
}
return ptr;
} else {
intptr_t allocPC = 0;
unsigned allocID = 0;
unsigned char * allocSF = (unsigned char *) "<Unknown>";
unsigned allocLN = 0;
allocPC = ((intptr_t) (debugmetadataptr->allocPC)) - 5;
allocID = debugmetadataptr->allocID;
allocSF = (unsigned char *) debugmetadataptr->SourceFile;
allocLN = debugmetadataptr->lineno;
OutOfBoundsViolation v;
v.type = ViolationInfo::FAULT_OUT_OF_BOUNDS,
v.faultPC = __builtin_return_address(0),
v.faultPtr = Dest,
v.dbgMetaData = debugmetadataptr,
v.PoolHandle = Pool,
v.SourceFile = SourceFile,
v.lineNo = lineno,
v.objStart = ObjStart,
v.objLen = (unsigned)((char*) ObjEnd - (char*)(ObjStart)) + 1;
ReportMemoryViolation(&v);
return Dest;
}
}
return Dest;
}
//
// Function: boundscheck_debug()
//
// Description:
// Identical to boundscheck() except that it takes additional debug info
// parameters.
//
// FIXME: this function is marked as noinline due to LLVM bug 4562
// http://llvm.org/bugs/show_bug.cgi?id=4562
//
// the attribute should be taken once the bug is fixed.
void * __attribute__((noinline))
boundscheck_debug (DebugPoolTy * Pool, void * Source, void * Dest, TAG, const char * SourceFile, unsigned lineno) {
// This code is inlined at all boundscheck() calls
// Search the splay for Source and return the bounds of the object
void * ObjStart = Source, * ObjEnd = 0;
bool ret = boundscheck_lookup (Pool, ObjStart, ObjEnd);
if (logregs) {
fprintf (stderr, "boundscheck_debug(%d): %d: %p - %p\n", tag, ret, ObjStart, ObjEnd);
fflush (stderr);
}
// Check if destination lies in the same object
if (__builtin_expect ((ret && (ObjStart <= Dest) &&
((Dest <= ObjEnd))), 1)) {
return Dest;
} else {
//
// Either:
// 1) A valid object was not found in splay tree, or
// 2) Dest is not within the valid object in which Source was found
//
return boundscheck_check (ret, ObjStart, ObjEnd, Pool, Source, Dest, true, SourceFile, lineno);
}
}
//
// Function: boundscheckui_debug()
//
// Description:
// Identical to boundscheckui() but with debug information.
//
// Inputs:
// Pool - The pool to which the pointers (Source and Dest) should
// belong.
// Source - The Source pointer of the indexing operation (the GEP).
// Dest - The result of the indexing operation (the GEP).
// SourceFile - The source file in which the check was inserted.
// lineno - The line number of the instruction for which the check was
// inserted.
//
void *
boundscheckui_debug (DebugPoolTy * Pool,
void * Source,
void * Dest, TAG,
const char * SourceFile,
unsigned int lineno) {
// This code is inlined at all boundscheckui calls
// Search the splay for Source and return the bounds of the object
void * ObjStart = Source, * ObjEnd = 0;
bool ret = boundscheck_lookup (Pool, ObjStart, ObjEnd);
if (logregs) {
fprintf (stderr, "boundscheckui_debug: %p: %p - %p\n", (void *) Pool, ObjStart, ObjEnd);
fflush (stderr);
}
// Check if destination lies in the same object
if (__builtin_expect ((ret && (ObjStart <= Dest) &&
((Dest <= ObjEnd))), 1)) {
return Dest;
} else {
//
// Either:
// 1) A valid object was not found in splay tree, or
// 2) Dest is not within the valid object in which Source was found
//
return boundscheck_check (ret,
ObjStart,
ObjEnd,
Pool,
Source,
Dest,
false,
SourceFile,
lineno);
}
}
//
// Function: funccheck()
//
// Description:
// Determine whether the specified function pointer is one of the functions
// in the given list.
//
// Inputs:
// num - The number of function targets in the DSNode.
// f - The function pointer that we are testing.
// g - The first function given in the DSNode.
//
void
__sc_dbg_funccheck (unsigned num, void *f, void *g, ...) {
va_list ap;
unsigned i = 0;
// Test against the first function in the list
if (f == g) return;
i++;
va_start(ap, g);
for ( ; i != num; ++i) {
void *h = va_arg(ap, void *);
if (f == h) {
return;
}
}
if (logregs) {
fprintf(stderr, "funccheck failed(num=%d): %p %p\n", num, f, g);
fflush(stderr);
}
abort();
}
/// Stubs
void
poolcheck (DebugPoolTy *Pool, void *Node) {
poolcheck_debug(Pool, Node, 0, NULL, 0);
}
void
poolcheckui (DebugPoolTy *Pool, void *Node) {
poolcheckui_debug(Pool, Node, 0, NULL, 0);
}
//
// Function: boundscheck()
//
// Description:
// Perform a precise bounds check. Ensure that Source is within a valid
// object within the pool and that Dest is within the bounds of the same
// object.
//
void *
boundscheck (DebugPoolTy * Pool, void * Source, void * Dest) {
return boundscheck_debug(Pool, Source, Dest, 0, NULL, 0);
}
//
// Function: boundscheckui()
//
// Description:
// Perform a bounds check (with lookup) on the given pointers.
//
// Inputs:
// Pool - The pool to which the pointers (Source and Dest) should belong.
// Source - The Source pointer of the indexing operation (the GEP).
// Dest - The result of the indexing operation (the GEP).
//
void *
boundscheckui (DebugPoolTy * Pool, void * Source, void * Dest) {
return boundscheckui_debug (Pool, Source, Dest, 0, NULL, 0);
}
//
// Function: poolcheckalign()
//
// Description:
// Ensure that the given pointer is both within an object in the pool *and*
// points to the correct offset within the pool.
//
// Inputs:
// Pool - The pool in which the pointer should be found.
// Node - The pointer to check.
// Offset - The offset, in bytes, that the pointer should be to the beginning
// of objects found in the pool.
//
void
poolcheckalign (DebugPoolTy *Pool, void *Node, unsigned Offset) {
poolcheckalign_debug(Pool, Node, Offset, 0, NULL, 0);
}