This is an archive of the discontinued LLVM Phabricator instance.

Differential D101031

[scudo] Check if MADV_DONTNEED zeroes memory
ClosedPublic

Authored by vitalybuka on Apr 22 2021, 2:03 AM.

Details

Reviewers
cryptoad
eugenis
Commits
rGd423509b8036: [scudo] Check if MADV_DONTNEED zeroes memory
Summary

QEMU just ignores MADV_DONTNEED
https://github.com/qemu/qemu/blob/b1cffefa1b163bce9aebc3416f562c1d3886eeaa/linux-user/syscall.c#L11941

Depends on D100998.

Diff Detail

Event Timeline

vitalybuka created this revision.Apr 22 2021, 2:03 AM
Herald added a subscriber: jfb. · View Herald TranscriptApr 22 2021, 2:03 AM
vitalybuka requested review of this revision.Apr 22 2021, 2:03 AM
Herald added a project: Restricted Project. · View Herald TranscriptApr 22 2021, 2:03 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
vitalybuka updated this revision to Diff 339522.Apr 22 2021, 2:04 AM

remove unneeded include

vitalybuka updated this revision to Diff 339523.Apr 22 2021, 2:05 AM

reorder includes

vitalybuka updated this revision to Diff 339527.Apr 22 2021, 2:11 AM

comment

Harbormaster completed remote builds in B100188: Diff 339521.Apr 22 2021, 2:33 AM
Harbormaster completed remote builds in B100189: Diff 339522.Apr 22 2021, 2:38 AM
Harbormaster completed remote builds in B100191: Diff 339523.Apr 22 2021, 2:55 AM
Harbormaster completed remote builds in B100195: Diff 339527.Apr 22 2021, 3:22 AM
cryptoad accepted this revision.Apr 22 2021, 8:04 AM

Thank you for finding this!
LGTM with a couple of nits

compiler-rt/lib/scudo/standalone/linux.cpp
94

getPageSizeCached() maybe

112

Maybe for clarity some enum to have descriptive names associated to 0/1/2

This revision is now accepted and ready to land.Apr 22 2021, 8:04 AM
vitalybuka updated this revision to Diff 339708.Apr 22 2021, 10:26 AM

add enum

vitalybuka updated this revision to Diff 339710.Apr 22 2021, 10:28 AM
vitalybuka marked an inline comment as done.

getPageSizeCached

vitalybuka added inline comments.Apr 22 2021, 10:32 AM
compiler-rt/lib/scudo/standalone/linux.cpp
123

I believe in most cases of NoFill it's not needed.
However I could not tell if anything internal, like zeroing header, will not be broken without memset. I don't see issues other then FillContentsMode tests.

Having that we don't expect this branch running without QEMU, I guess it's fine to keep as is.

vitalybuka marked an inline comment as done.Apr 22 2021, 10:33 AM
This revision was landed with ongoing or failed builds.Apr 22 2021, 10:40 AM
Closed by commit rGd423509b8036: [scudo] Check if MADV_DONTNEED zeroes memory (authored by vitalybuka). · Explain Why
This revision was automatically updated to reflect the committed changes.
vitalybuka added a commit: rGd423509b8036: [scudo] Check if MADV_DONTNEED zeroes memory.
Harbormaster completed remote builds in B100324: Diff 339708.Apr 22 2021, 10:43 AM
Harbormaster completed remote builds in B100325: Diff 339710.
pcc added a subscriber: pcc.Apr 22 2021, 5:03 PM

Have you reported this bug to QEMU? Unfortunately the comment you linked to is inaccurate about madvise being a hint on Linux [1].

[1] https://www.youtube.com/watch?v=bg6-LVCHmGM&t=3548s

vitalybuka mentioned this in rGf7164c77144a: [NFC][scudo] Add reference to a QEMU bug.Apr 28 2021, 2:58 PM
vitalybuka added a comment.Apr 28 2021, 3:03 PM
In D101031#2710494, @pcc wrote:

Have you reported this bug to QEMU? Unfortunately the comment you linked to is inaccurate about madvise being a hint on Linux [1].

[1] https://www.youtube.com/watch?v=bg6-LVCHmGM&t=3548s

I agree that this does not match strange but documented behavior.
Unfortunately there is a lot of comments about that online but no new/closed bug on the QEMU tracker.
Created one https://bugs.launchpad.net/qemu/+bug/1926521

vitalybuka added a reverting change: rG4458e8c4b42f: Revert "[scudo] Check if MADV_DONTNEED zeroes memory".May 28 2021, 1:54 AM

Revision Contents

PathSize
compiler-rt/
lib/
scudo/
standalone/
31 lines

Diff 339708

compiler-rt/lib/scudo/standalone/linux.cpp

//===-- linux.cpp -----------------------------------------------*- C++ -*-===// //===-- linux.cpp -----------------------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "platform.h" #include "platform.h"
#if SCUDO_LINUX #if SCUDO_LINUX
#include "atomic_helpers.h"
#include "common.h" #include "common.h"
#include "linux.h" #include "linux.h"
#include "mutex.h" #include "mutex.h"
#include "string_utils.h" #include "string_utils.h"
#include <errno.h> #include <errno.h>
#include <fcntl.h> #include <fcntl.h>
#include <linux/futex.h> #include <linux/futex.h>
▲ Show 20 LinesShow All 63 Lines▼ Show 20 Lines
void setMemoryPermission(uptr Addr, uptr Size, uptr Flags, void setMemoryPermission(uptr Addr, uptr Size, uptr Flags,
UNUSED MapPlatformData *Data) { UNUSED MapPlatformData *Data) {
int Prot = (Flags & MAP_NOACCESS) ? PROT_NONE : (PROT_READ | PROT_WRITE); int Prot = (Flags & MAP_NOACCESS) ? PROT_NONE : (PROT_READ | PROT_WRITE);
if (mprotect(reinterpret_cast<void *>(Addr), Size, Prot) != 0) if (mprotect(reinterpret_cast<void *>(Addr), Size, Prot) != 0)
dieOnMapUnmapError(); dieOnMapUnmapError();
} }
static bool madviseNeedsMemset() {
uptr Size = getPageSize();
cryptoadUnsubmitted
Done
ReplyInline Actions

getPageSizeCached() maybe

cryptoad: `getPageSizeCached()` maybe
char *P = (char *)mmap(0, Size, PROT_READ | PROT_WRITE,
MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);
if (!P)
dieOnMapUnmapError(errno == ENOMEM);
*P = -1;
while (madvise(P, Size, MADV_DONTNEED) == -1 && errno == EAGAIN) {
}
bool R = (*P != 0);
if (munmap(P, Size) != 0)
dieOnMapUnmapError();
return R;
}
static bool madviseNeedsMemsetCached() {
static atomic_u8 Cache;
enum State : u8 { Unknown = 0, Yes = 1, No = 2 };
State NeedsMemset = static_cast<State>(atomic_load_relaxed(&Cache));
if (NeedsMemset == Unknown) {
cryptoadUnsubmitted
Done
ReplyInline Actions

Maybe for clarity some enum to have descriptive names associated to 0/1/2

cryptoad: Maybe for clarity some `enum` to have descriptive names associated to 0/1/2
NeedsMemset = madviseNeedsMemset() ? Yes : No;
atomic_store_relaxed(&Cache, NeedsMemset);
}
return NeedsMemset == Yes;
}
void releasePagesToOS(uptr BaseAddress, uptr Offset, uptr Size, void releasePagesToOS(uptr BaseAddress, uptr Offset, uptr Size,
UNUSED MapPlatformData *Data) { UNUSED MapPlatformData *Data) {
void *Addr = reinterpret_cast<void *>(BaseAddress + Offset); void *Addr = reinterpret_cast<void *>(BaseAddress + Offset);
if (madviseNeedsMemsetCached()) {
// Workaround for QEMU-user ignoring MADV_DONTNEED.
vitalybukaAuthorUnsubmitted
Done
ReplyInline Actions

I believe in most cases of NoFill it's not needed.
However I could not tell if anything internal, like zeroing header, will not be broken without memset. I don't see issues other then FillContentsMode tests.

Having that we don't expect this branch running without QEMU, I guess it's fine to keep as is.

vitalybuka: I believe in most cases of NoFill it's not needed. However I could not tell if anything…
memset(Addr, 0, Size);
}
while (madvise(Addr, Size, MADV_DONTNEED) == -1 && errno == EAGAIN) { while (madvise(Addr, Size, MADV_DONTNEED) == -1 && errno == EAGAIN) {
} }
} }
// Calling getenv should be fine (c)(tm) at any time. // Calling getenv should be fine (c)(tm) at any time.
const char *getEnv(const char *Name) { return getenv(Name); } const char *getEnv(const char *Name) { return getenv(Name); }
namespace { namespace {
▲ Show 20 LinesShow All 118 LinesShow Last 20 Lines