This is an archive of the discontinued LLVM Phabricator instance.

Differential D88170

[scudo][standalone] Fix tests under ASan/UBSan
ClosedPublic

Authored by cryptoad on Sep 23 2020, 10:23 AM.

Details

Reviewers
pcc
hctim
cferris
mcgrathr
Commits
rG2efc09c90914: [scudo][standalone] Fix tests under ASan/UBSan
Summary

Fix a potential UB in appendSignedDecimal (with -INT64_MIN) by making
it a special case.

Fix the terrible test cases for isOwned: I was pretty sloppy on those
and used some stack & static variables, but since isOwned accesses
memory prior to the pointer to check for the validity of the Scudo
header, it ended up being detected as some global and stack buffer out
of bounds accesses. So not I am using buffers with enough room so that
the test will not access memory prior to the variables.

With those fixes, the tests pass on the ASan+UBSan Fuchsia build.

Thanks to Roland for pointing those out!

Diff Detail

Event Timeline

cryptoad created this revision.Sep 23 2020, 10:23 AM
Herald added a project: Restricted Project. · View Herald TranscriptSep 23 2020, 10:23 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
cryptoad requested review of this revision.Sep 23 2020, 10:23 AM
Harbormaster completed remote builds in B72691: Diff 293792.Sep 23 2020, 10:59 AM
mcgrathr accepted this revision.Sep 23 2020, 11:14 AM

LGTM modulo clang-format. Thanks for the quick fixes!

This revision is now accepted and ready to land.Sep 23 2020, 11:14 AM
cryptoad added a comment.Sep 23 2020, 11:22 AM
In D88170#2290714, @mcgrathr wrote:

LGTM modulo clang-format. Thanks for the quick fixes!

I actually formatted with a freshly built clang-format using clang-format -style=llvm -i string_utils.cpp, I am assuming there is some discrepancy between this one and the one used in pre-merge checks.

This revision was landed with ongoing or failed builds.Sep 23 2020, 12:08 PM
Closed by commit rG2efc09c90914: [scudo][standalone] Fix tests under ASan/UBSan (authored by cryptoad). · Explain Why
This revision was automatically updated to reflect the committed changes.
cryptoad added a commit: rG2efc09c90914: [scudo][standalone] Fix tests under ASan/UBSan.

Revision Contents

PathSize
compiler-rt/
lib/
scudo/
standalone/
19 lines
tests/
15 lines

Diff 293832

compiler-rt/lib/scudo/standalone/string_utils.cpp

Show First 20 LinesShow All 72 Lines▼ Show 20 Linesstatic int appendUnsigned(char **Buffer, const char *BufferEnd, u64 Num,
bool Upper) { bool Upper) {
return appendNumber(Buffer, BufferEnd, Num, Base, MinNumberLength, return appendNumber(Buffer, BufferEnd, Num, Base, MinNumberLength,
PadWithZero, /*Negative=*/false, Upper); PadWithZero, /*Negative=*/false, Upper);
} }
static int appendSignedDecimal(char **Buffer, const char *BufferEnd, s64 Num, static int appendSignedDecimal(char **Buffer, const char *BufferEnd, s64 Num,
u8 MinNumberLength, bool PadWithZero) { u8 MinNumberLength, bool PadWithZero) {
const bool Negative = (Num < 0); const bool Negative = (Num < 0);
return appendNumber(Buffer, BufferEnd, const u64 UnsignedNum = (Num == INT64_MIN)
static_cast<u64>(Negative ? -Num : Num), 10, ? static_cast<u64>(INT64_MAX) + 1
MinNumberLength, PadWithZero, Negative, : static_cast<u64>(Negative ? -Num : Num);
/*Upper=*/false); return appendNumber(Buffer, BufferEnd, UnsignedNum, 10, MinNumberLength,
PadWithZero, Negative, /*Upper=*/false);
} }
// Use the fact that explicitly requesting 0 Width (%0s) results in UB and // Use the fact that explicitly requesting 0 Width (%0s) results in UB and
// interpret Width == 0 as "no Width requested": // interpret Width == 0 as "no Width requested":
// Width == 0 - no Width requested // Width == 0 - no Width requested
// Width < 0 - left-justify S within and pad it to -Width chars, if necessary // Width < 0 - left-justify S within and pad it to -Width chars, if necessary
// Width > 0 - right-justify S, not implemented yet // Width > 0 - right-justify S, not implemented yet
static int appendString(char **Buffer, const char *BufferEnd, int Width, static int appendString(char **Buffer, const char *BufferEnd, int Width,
▲ Show 20 LinesShow All 60 Lines▼ Show 20 Lines for (; *Cur; Cur++) {
s64 DVal; s64 DVal;
u64 UVal; u64 UVal;
const bool HaveLength = HaveZ || HaveLL; const bool HaveLength = HaveZ || HaveLL;
const bool HaveFlags = HaveWidth || HaveLength; const bool HaveFlags = HaveWidth || HaveLength;
// At the moment only %s supports precision and left-justification. // At the moment only %s supports precision and left-justification.
CHECK(!((Precision >= 0 || LeftJustified) && *Cur != 's')); CHECK(!((Precision >= 0 || LeftJustified) && *Cur != 's'));
switch (*Cur) { switch (*Cur) {
case 'd': { case 'd': {
DVal = HaveLL ? va_arg(Args, s64) DVal = HaveLL ? va_arg(Args, s64)
: HaveZ ? va_arg(Args, sptr) : va_arg(Args, int); : HaveZ ? va_arg(Args, sptr)
: va_arg(Args, int);
Res += appendSignedDecimal(&Buffer, BufferEnd, DVal, Width, PadWithZero); Res += appendSignedDecimal(&Buffer, BufferEnd, DVal, Width, PadWithZero);
break; break;
} }
case 'u': case 'u':
case 'x': case 'x':
case 'X': { case 'X': {
UVal = HaveLL ? va_arg(Args, u64) UVal = HaveLL ? va_arg(Args, u64)
: HaveZ ? va_arg(Args, uptr) : va_arg(Args, unsigned); : HaveZ ? va_arg(Args, uptr)
: va_arg(Args, unsigned);
const bool Upper = (*Cur == 'X'); const bool Upper = (*Cur == 'X');
Res += appendUnsigned(&Buffer, BufferEnd, UVal, (*Cur == 'u') ? 10 : 16, Res += appendUnsigned(&Buffer, BufferEnd, UVal, (*Cur == 'u') ? 10 : 16,
Width, PadWithZero, Upper); Width, PadWithZero, Upper);
break; break;
} }
case 'p': { case 'p': {
RAW_CHECK_MSG(!HaveFlags, PrintfFormatsHelp); RAW_CHECK_MSG(!HaveFlags, PrintfFormatsHelp);
Res += appendPointer(&Buffer, BufferEnd, va_arg(Args, uptr)); Res += appendPointer(&Buffer, BufferEnd, va_arg(Args, uptr));
▲ Show 20 LinesShow All 66 LinesShow Last 20 Lines

compiler-rt/lib/scudo/standalone/tests/combined_test.cpp

Show First 20 LinesShow All 76 Lines▼ Show 20 Linestemplate <typename Config> struct TestAllocator : scudo::Allocator<Config> {
} }
~TestAllocator() { this->unmapTestOnly(); } ~TestAllocator() { this->unmapTestOnly(); }
}; };
template <class Config> static void testAllocator() { template <class Config> static void testAllocator() {
using AllocatorT = TestAllocator<Config>; using AllocatorT = TestAllocator<Config>;
auto Allocator = std::unique_ptr<AllocatorT>(new AllocatorT()); auto Allocator = std::unique_ptr<AllocatorT>(new AllocatorT());
EXPECT_FALSE(Allocator->isOwned(&Mutex)); static scudo::u8 StaticBuffer[scudo::Chunk::getHeaderSize() + 1];
EXPECT_FALSE(Allocator->isOwned(&Allocator)); EXPECT_FALSE(
scudo::u64 StackVariable = 0x42424242U; Allocator->isOwned(&StaticBuffer[scudo::Chunk::getHeaderSize()]));
EXPECT_FALSE(Allocator->isOwned(&StackVariable));
EXPECT_EQ(StackVariable, 0x42424242U); scudo::u8 StackBuffer[scudo::Chunk::getHeaderSize() + 1];
for (scudo::uptr I = 0; I < sizeof(StackBuffer); I++)
StackBuffer[I] = 0x42U;
EXPECT_FALSE(Allocator->isOwned(&StackBuffer[scudo::Chunk::getHeaderSize()]));
for (scudo::uptr I = 0; I < sizeof(StackBuffer); I++)
EXPECT_EQ(StackBuffer[I], 0x42U);
constexpr scudo::uptr MinAlignLog = FIRST_32_SECOND_64(3U, 4U); constexpr scudo::uptr MinAlignLog = FIRST_32_SECOND_64(3U, 4U);
// This allocates and deallocates a bunch of chunks, with a wide range of // This allocates and deallocates a bunch of chunks, with a wide range of
// sizes and alignments, with a focus on sizes that could trigger weird // sizes and alignments, with a focus on sizes that could trigger weird
// behaviors (plus or minus a small delta of a power of two for example). // behaviors (plus or minus a small delta of a power of two for example).
for (scudo::uptr SizeLog = 0U; SizeLog <= 20U; SizeLog++) { for (scudo::uptr SizeLog = 0U; SizeLog <= 20U; SizeLog++) {
for (scudo::uptr AlignLog = MinAlignLog; AlignLog <= 16U; AlignLog++) { for (scudo::uptr AlignLog = MinAlignLog; AlignLog <= 16U; AlignLog++) {
▲ Show 20 LinesShow All 458 LinesShow Last 20 Lines