This is an archive of the discontinued LLVM Phabricator instance.

Differential D10735

[msan] Fix SetShadow for mappings at the end of the application address space
ClosedPublic

Authored by foad on Jun 25 2015, 6:37 AM.

Details

Reviewers
samsonov
wschmidt
eugenis
Commits
rG198337bf4200: [msan] Fix SetShadow for mappings at the end of the application address space
rCRT240690: [msan] Fix SetShadow for mappings at the end of the application address space
rL240690: [msan] Fix SetShadow for mappings at the end of the application address space
Summary

On PPC64 if you disable ASLR (or run under gdb) you're likely to see
mmap returning a mapping right at the end of the application address
space region. This caused SetShadow to call MEM_TO_SHADOW() on the
last+1 address in the region, which seems wrong to me; how can
MEM_TO_SHADOW() distinguish this from the first address in the following
region?

Fixed by only calling MEM_TO_SHADOW() once, on the start address.

Diff Detail

Event Timeline

foad updated this revision to Diff 28460.Jun 25 2015, 6:37 AM
foad retitled this revision from to [msan] Fix SetShadow for mappings at the end of the application address space.
foad updated this object.
foad edited the test plan for this revision. (Show Details)
foad added reviewers: samsonov, eugenis, wschmidt.
foad added a subscriber: Unknown Object (MLST).
eugenis accepted this revision.Jun 25 2015, 11:06 AM
eugenis edited edge metadata.

LGTM, good catch

This revision is now accepted and ready to land.Jun 25 2015, 11:06 AM
foad closed this revision.Jun 25 2015, 1:48 PM

Revision Contents

PathSize
lib/
msan/
2 lines

Diff 28460

lib/msan/msan_poisoning.cc

Show First 20 LinesShow All 116 Lines▼ Show 20 Lines
void CopyMemory(void *dst, const void *src, uptr size, StackTrace *stack) { void CopyMemory(void *dst, const void *src, uptr size, StackTrace *stack) {
REAL(memcpy)(dst, src, size); REAL(memcpy)(dst, src, size);
CopyShadowAndOrigin(dst, src, size, stack); CopyShadowAndOrigin(dst, src, size, stack);
} }
void SetShadow(const void *ptr, uptr size, u8 value) { void SetShadow(const void *ptr, uptr size, u8 value) {
uptr PageSize = GetPageSizeCached(); uptr PageSize = GetPageSizeCached();
uptr shadow_beg = MEM_TO_SHADOW(ptr); uptr shadow_beg = MEM_TO_SHADOW(ptr);
uptr shadow_end = MEM_TO_SHADOW((uptr)ptr + size); uptr shadow_end = shadow_beg + size;
if (value || if (value ||
shadow_end - shadow_beg < common_flags()->clear_shadow_mmap_threshold) { shadow_end - shadow_beg < common_flags()->clear_shadow_mmap_threshold) {
REAL(memset)((void *)shadow_beg, value, shadow_end - shadow_beg); REAL(memset)((void *)shadow_beg, value, shadow_end - shadow_beg);
} else { } else {
uptr page_beg = RoundUpTo(shadow_beg, PageSize); uptr page_beg = RoundUpTo(shadow_beg, PageSize);
uptr page_end = RoundDownTo(shadow_end, PageSize); uptr page_end = RoundDownTo(shadow_end, PageSize);
if (page_beg >= page_end) { if (page_beg >= page_end) {
▲ Show 20 LinesShow All 41 LinesShow Last 20 Lines