This is an archive of the discontinued LLVM Phabricator instance.

Differential D102979

[scudo] Use MAP_NORESERVE to release pages
AbandonedPublic

Authored by vitalybuka on May 23 2021, 12:06 AM.

Details

Reviewers
cryptoad
pcc
hctim
Summary

This allows to avoid memset in workaround
of QEMU-user implementation of MADV_DONTNEED.

Diff Detail

Event Timeline

vitalybuka requested review of this revision.May 23 2021, 12:06 AM
vitalybuka created this revision.
Herald added a project: Restricted Project. · View Herald TranscriptMay 23 2021, 12:06 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
vitalybuka added a child revision: D102980: [scudo] Always MAP_NORESERVE in to release pages.May 23 2021, 12:14 AM
Harbormaster completed remote builds in B105791: Diff 347236.May 23 2021, 12:38 AM
cryptoad added inline comments.May 23 2021, 10:04 AM
compiler-rt/lib/scudo/standalone/linux.cpp
172

Looks like Data is still UNUSED

compiler-rt/lib/scudo/standalone/secondary.h
156 ↗(On Diff #347236)

Maybe move that up a block since it's common to the if & else

compiler-rt/lib/scudo/standalone/tests/common_test.cpp
1

There is a misalignment of - compared to the bottom one. Not sure which one has the right count.

18–20

Can this be put in SCUDO_LINUX block and a UNREACHABLE or equivalent for other systems?

37

= {};
Not important for Linux but will be for Fuchsia.

vitalybuka mentioned this in D102994: [NFC][scudo] Small test cleanup.May 23 2021, 3:52 PM
vitalybuka added a parent revision: D102994: [NFC][scudo] Small test cleanup.May 23 2021, 3:52 PM
vitalybuka updated this revision to Diff 347276.EditedMay 23 2021, 3:55 PM
vitalybuka marked 5 inline comments as done.

addressing @cryptoad comments

vitalybuka added inline comments.May 23 2021, 3:56 PM
compiler-rt/lib/scudo/standalone/tests/common_test.cpp
37

This file is done on D102994

Harbormaster completed remote builds in B105825: Diff 347276.May 23 2021, 4:37 PM
hctim added inline comments.May 24 2021, 9:53 AM
compiler-rt/lib/scudo/standalone/primary64.h
270 ↗(On Diff #347276)

More descriptive defaults: MAP_ALLOWNOMEM | MAP_RESIZABLE?

357 ↗(On Diff #347276)

MTE mode can change at runtime after initLinkerInitialized is called, so we do need to re-check useMemoryTagging<>() every time we allocate. Maybe call the member PersistentMapFlags (i.e. it persists across the allocator and is once-init), and add a member getMapFlags() that returns PersistentMapFlags | (useMemoryTagging<>() ? MAP_MEMTAG : 0).

pcc added a comment.May 24 2021, 10:00 AM

TBH, I'm not sure it's worth going to this much effort to work around this QEMU bug. It seems better to figure out a way to use QEMU in system mode instead.

compiler-rt/lib/scudo/standalone/primary64.h
358 ↗(On Diff #347276)

This will continue to create mappings with PROT_MTE after MTE is disabled.

compiler-rt/lib/scudo/standalone/secondary.h
385 ↗(On Diff #347276)

This will break the split mapping of MTE enabled secondary allocations. The first few pages need to have MTE enabled and the rest have MTE disabled.

pcc added inline comments.May 24 2021, 10:04 AM
compiler-rt/lib/scudo/standalone/primary64.h
270 ↗(On Diff #347276)

Initialize to 0 so that the combined allocator remains in bss.

vitalybuka mentioned this in rG6435ca4e2b9b: [NFC][scudo] Small test cleanup.May 24 2021, 10:17 AM
vitalybuka marked 4 inline comments as done.May 24 2021, 11:05 AM
In D102979#2777588, @pcc wrote:

TBH, I'm not sure it's worth going to this much effort to work around this QEMU bug. It seems better to figure out a way to use QEMU in system mode instead.

This does not looks like a lot of work to maintain this, but I propose to threat this as default behavior D102980.
Let's chat about if we need QEMU-user later today.

compiler-rt/lib/scudo/standalone/primary64.h
270 ↗(On Diff #347276)

I replaced with function which will return flags.

357 ↗(On Diff #347276)

Actually missed this point, and tried to keep same protection.
If so I can just read Options when create ReleaseRecorder.

compiler-rt/lib/scudo/standalone/secondary.h
385 ↗(On Diff #347276)

Thanks, I missed this one. Seems easy to fix.
Before that I'd like to NFC refactor this code to make it more obvious.

vitalybuka updated this revision to Diff 347456.May 24 2021, 11:10 AM
vitalybuka marked 2 inline comments as done.

addressed most comments

vitalybuka planned changes to this revision.May 24 2021, 11:11 AM
Harbormaster completed remote builds in B105954: Diff 347456.May 24 2021, 11:36 AM
vitalybuka updated this revision to Diff 348328.May 27 2021, 10:48 AM

Avoid tracking Prot flags in allocators

Herald added a subscriber: ormris. · View Herald TranscriptMay 27 2021, 10:48 AM
Harbormaster completed remote builds in B106554: Diff 348328.May 27 2021, 10:52 AM
vitalybuka updated this revision to Diff 348334.May 27 2021, 11:06 AM

fix x86 build

Harbormaster completed remote builds in B106559: Diff 348334.May 27 2021, 11:45 AM
vitalybuka planned changes to this revision.May 27 2021, 2:19 PM

need reconsider as I found another related issue

ormris removed a subscriber: ormris.Jun 3 2021, 10:18 AM
vitalybuka abandoned this revision.Jun 11 2021, 3:12 PM

Revision Contents

PathSize
compiler-rt/
lib/
scudo/
standalone/
59 lines
tests/
3 lines

Diff 348334

compiler-rt/lib/scudo/standalone/linux.cpp

Show All 14 Lines
#include "linux.h" #include "linux.h"
#include "mutex.h" #include "mutex.h"
#include "string_utils.h" #include "string_utils.h"
#include <errno.h> #include <errno.h>
#include <fcntl.h> #include <fcntl.h>
#include <linux/futex.h> #include <linux/futex.h>
#include <sched.h> #include <sched.h>
#include <stdio.h>
#include <stdlib.h> #include <stdlib.h>
#include <string.h> #include <string.h>
#include <sys/mman.h> #include <sys/mman.h>
#include <sys/stat.h> #include <sys/stat.h>
#include <sys/syscall.h> #include <sys/syscall.h>
#include <sys/time.h> #include <sys/time.h>
#include <time.h> #include <time.h>
#include <unistd.h> #include <unistd.h>
#ifndef PROT_MTE
#define PROT_MTE 0x20
#endif
#if SCUDO_ANDROID #if SCUDO_ANDROID
#include <sys/prctl.h> #include <sys/prctl.h>
// Definitions of prctl arguments to set a vma name in Android kernels. // Definitions of prctl arguments to set a vma name in Android kernels.
#define ANDROID_PR_SET_VMA 0x53564d41 #define ANDROID_PR_SET_VMA 0x53564d41
#define ANDROID_PR_SET_VMA_ANON_NAME 0 #define ANDROID_PR_SET_VMA_ANON_NAME 0
#endif #endif
namespace scudo { namespace scudo {
uptr getPageSize() { return static_cast<uptr>(sysconf(_SC_PAGESIZE)); } uptr getPageSize() { return static_cast<uptr>(sysconf(_SC_PAGESIZE)); }
void NORETURN die() { abort(); } void NORETURN die() { abort(); }
void *map(void *Addr, uptr Size, UNUSED const char *Name, uptr Flags, void *map(void *Addr, uptr Size, UNUSED const char *Name, uptr Flags,
UNUSED MapPlatformData *Data) { UNUSED MapPlatformData *Data) {
int MmapFlags = MAP_PRIVATE | MAP_ANONYMOUS; int MmapFlags = MAP_PRIVATE | MAP_ANONYMOUS;
int MmapProt; int MmapProt;
if (Flags & MAP_NOACCESS) { if (Flags & MAP_NOACCESS) {
MmapFlags |= MAP_NORESERVE; MmapFlags |= MAP_NORESERVE;
MmapProt = PROT_NONE; MmapProt = PROT_NONE;
} else { } else {
MmapProt = PROT_READ | PROT_WRITE; MmapProt = PROT_READ | PROT_WRITE;
} }
#if defined(__aarch64__) #if defined(__aarch64__)
#ifndef PROT_MTE
#define PROT_MTE 0x20
#endif
if (Flags & MAP_MEMTAG) if (Flags & MAP_MEMTAG)
MmapProt |= PROT_MTE; MmapProt |= PROT_MTE;
#endif #endif
if (Addr) { if (Addr) {
// Currently no scenario for a noaccess mapping with a fixed address. // Currently no scenario for a noaccess mapping with a fixed address.
DCHECK_EQ(Flags & MAP_NOACCESS, 0); DCHECK_EQ(Flags & MAP_NOACCESS, 0);
MmapFlags |= MAP_FIXED; MmapFlags |= MAP_FIXED;
} }
▲ Show 20 LinesShow All 44 Lines▼ Show 20 Linesstatic bool madviseNotNeedFailsCached() {
State NeedsMemset = static_cast<State>(atomic_load_relaxed(&Cache)); State NeedsMemset = static_cast<State>(atomic_load_relaxed(&Cache));
if (NeedsMemset == Unknown) { if (NeedsMemset == Unknown) {
NeedsMemset = madviseNotNeedFails() ? Yes : No; NeedsMemset = madviseNotNeedFails() ? Yes : No;
atomic_store_relaxed(&Cache, NeedsMemset); atomic_store_relaxed(&Cache, NeedsMemset);
} }
return NeedsMemset == Yes; return NeedsMemset == Yes;
} }
static uptr getProt(FILE *F, uptr Ptr, int *Prot) {
CHECK(F);
char line[1024];
u64 B, E;
do {
CHECK_NE(fgets(line, sizeof(line), F), nullptr);
} while (sscanf(line, "%llx-%llx ", &B, &E) != 2 || Ptr < B || Ptr >= E);
CHECK_LE(B, Ptr);
CHECK_LT(Ptr, E);
static const char Field[] = "VmFlags:";
do {
CHECK_NE(fgets(line, sizeof(line), F), nullptr);
} while (strncmp(line, Field, sizeof(Field) - 1) != 0);
*Prot = 0;
char *Saved = nullptr;
char *Token = strtok_r(line + sizeof(Field) - 1, " \n", &Saved);
for (; Token; Token = strtok_r(nullptr, " \n", &Saved)) {
if (strcmp(Token, "rd") == 0)
*Prot |= PROT_READ;
else if (strcmp(Token, "wr") == 0)
*Prot |= PROT_WRITE;
else if (strcmp(Token, "mt") == 0)
*Prot |= PROT_MTE;
}
return static_cast<uptr>(E);
}
static void releaseByReMap(void *Addr, uptr Size) {
FILE *F = fopen("/proc/self/smaps", "r");
while (Size) {
uptr B = reinterpret_cast<uptr>(Addr);
int Prot;
// FIXME: Tests do not catch if we just set PROT_READ | PROT_WRITE.
uptr E = getProt(F, B, &Prot);
uptr MapSize = Min(E - B, Size);
if (Addr != mmap(Addr, MapSize, Prot,
MAP_FIXED | MAP_PRIVATE | MAP_ANONYMOUS | MAP_NORESERVE,
-1, 0)) {
dieOnMapUnmapError();
}
Addr = reinterpret_cast<void *>(B + MapSize);
Size -= MapSize;
}
fclose(F);
}
void releasePagesToOS(uptr BaseAddress, uptr Offset, uptr Size, void releasePagesToOS(uptr BaseAddress, uptr Offset, uptr Size,
UNUSED MapPlatformData *Data) { UNUSED MapPlatformData *Data) {
void *Addr = reinterpret_cast<void *>(BaseAddress + Offset); void *Addr = reinterpret_cast<void *>(BaseAddress + Offset);
cryptoadUnsubmitted
Done
ReplyInline Actions

Looks like Data is still UNUSED

cryptoad: Looks like `Data` is still `UNUSED`
if (madviseNotNeedFailsCached()) { if (madviseNotNeedFailsCached()) {
// Workaround for QEMU-user ignoring MADV_DONTNEED. // Workaround for QEMU-user ignoring MADV_DONTNEED.
// https://github.com/qemu/qemu/blob/b1cffefa1b163bce9aebc3416f562c1d3886eeaa/linux-user/syscall.c#L11941 // https://github.com/qemu/qemu/blob/b1cffefa1b163bce9aebc3416f562c1d3886eeaa/linux-user/syscall.c#L11941
// https://bugs.launchpad.net/qemu/+bug/1926521 // https://bugs.launchpad.net/qemu/+bug/1926521
memset(Addr, 0, Size); return releaseByReMap(Addr, Size);
} }
while (madvise(Addr, Size, MADV_DONTNEED) == -1 && errno == EAGAIN) { while (madvise(Addr, Size, MADV_DONTNEED) == -1 && errno == EAGAIN) {
} }
} }
// Calling getenv should be fine (c)(tm) at any time. // Calling getenv should be fine (c)(tm) at any time.
const char *getEnv(const char *Name) { return getenv(Name); } const char *getEnv(const char *Name) { return getenv(Name); }
▲ Show 20 LinesShow All 119 LinesShow Last 20 Lines

compiler-rt/lib/scudo/standalone/tests/common_test.cpp

//===-- common_test.cpp -----------------------------------------*- C++ -*-===// //===-- common_test.cpp -----------------------------------------*- C++ -*-===//
cryptoadUnsubmitted
Done
ReplyInline Actions

There is a misalignment of - compared to the bottom one. Not sure which one has the right count.

cryptoad: There is a misalignment of `-` compared to the bottom one. Not sure which one has the right…
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "internal_defs.h" #include "internal_defs.h"
#include "tests/scudo_unit_test.h" #include "tests/scudo_unit_test.h"
#include "common.h" #include "common.h"
#include <algorithm> #include <algorithm>
#include <fstream> #include <fstream>
namespace scudo { namespace scudo {
static uptr getResidentMemorySize() { static uptr getResidentMemorySize() {
if (!SCUDO_LINUX) if (!SCUDO_LINUX)
UNREACHABLE("Not implemented!"); UNREACHABLE("Not implemented!");
cryptoadUnsubmitted
Done
ReplyInline Actions

Can this be put in SCUDO_LINUX block and a UNREACHABLE or equivalent for other systems?

cryptoad: Can this be put in `SCUDO_LINUX` block and a `UNREACHABLE` or equivalent for other systems?
uptr Size; uptr Size;
uptr Resident; uptr Resident;
std::ifstream IFS("/proc/self/statm"); std::ifstream IFS("/proc/self/statm");
IFS >> Size; IFS >> Size;
IFS >> Resident; IFS >> Resident;
return Resident * getPageSizeCached(); return Resident * getPageSizeCached();
} }
// Fuchsia needs getResidentMemorySize implementation. // Fuchsia needs getResidentMemorySize implementation.
TEST(ScudoCommonTest, SKIP_ON_FUCHSIA(ResidentMemorySize)) { TEST(ScudoCommonTest, SKIP_ON_FUCHSIA(ResidentMemorySize)) {
uptr OnStart = getResidentMemorySize(); uptr OnStart = getResidentMemorySize();
EXPECT_GT(OnStart, 0UL); EXPECT_GT(OnStart, 0UL);
const uptr Size = 1ull << 30; const uptr Size = 1ull << 30;
const uptr Threshold = Size >> 3; const uptr Threshold = Size >> 3;
MapPlatformData Data = {}; MapPlatformData Data = {};
cryptoadUnsubmitted
Done
ReplyInline Actions

= {};
Not important for Linux but will be for Fuchsia.

cryptoad: `= {};` Not important for Linux but will be for Fuchsia.
vitalybukaAuthorUnsubmitted
Done
ReplyInline Actions

This file is done on D102994

vitalybuka: This file is done on D102994
uptr *P = reinterpret_cast<uptr *>( uptr *P = reinterpret_cast<uptr *>(
map(nullptr, Size, "ResidentMemorySize", 0, &Data)); map(nullptr, Size, "ResidentMemorySize", 0, &Data));
const ptrdiff_t N = Size / sizeof(*P); const ptrdiff_t N = Size / sizeof(*P);
ASSERT_NE(nullptr, P); ASSERT_NE(nullptr, P);
EXPECT_LT(getResidentMemorySize() - OnStart, Threshold); EXPECT_LT(getResidentMemorySize() - OnStart, Threshold);
EXPECT_EQ(std::count(P, P + N, 0), N); EXPECT_EQ(std::count(P, P + N, 0), N);
memset(P, 1, Size); memset(P, 1, Size);
EXPECT_EQ(std::count(P, P + N, 0), 0); EXPECT_EQ(std::count(P, P + N, 0), 0);
EXPECT_GT(getResidentMemorySize() - OnStart, Size - Threshold); EXPECT_GT(getResidentMemorySize() - OnStart, Size - Threshold);
releasePagesToOS((uptr)P, 0, Size, &Data); releasePagesToOS((uptr)P, 0, Size, &Data);
EXPECT_LT(getResidentMemorySize() - OnStart, Threshold);
EXPECT_EQ(std::count(P, P + N, 0), N); EXPECT_EQ(std::count(P, P + N, 0), N);
// FIXME: does not work with QEMU-user.
// EXPECT_LT(getResidentMemorySize() - OnStart, Threshold);
memset(P, 1, Size); memset(P, 1, Size);
EXPECT_EQ(std::count(P, P + N, 0), 0); EXPECT_EQ(std::count(P, P + N, 0), 0);
EXPECT_GT(getResidentMemorySize() - OnStart, Size - Threshold); EXPECT_GT(getResidentMemorySize() - OnStart, Size - Threshold);
unmap(P, Size, 0, &Data); unmap(P, Size, 0, &Data);
} }
} // namespace scudo } // namespace scudo