This is an archive of the discontinued LLVM Phabricator instance.

[libunwind] Allow restoring SP while unwinding.
ClosedPublic

Authored by charco on Jul 22 2021, 6:09 PM.

Download Raw Diff

Details

Reviewers

phosek
mcgrathr

Group Reviewers

Restricted Project

Commits

rGa085c23aa3c8: [libunwind] Allow restoring SP while unwinding.

Summary

This commit modifies stepWithDwarf allowing for CFI directives to
specify the value of the stack pointer.

Previously, the SP would be unconditionally set to the CFA, because it
(wrongly) stated that the CFA is the stack pointer at the call site of a
function, but that is not always true.

One situation in which that is false, is for example if you have
switched stacks. In that case if you set the CFA to the SP before
switching the stack, the CFA would be far away from where the current
call frame is located.

The CFA always points to the current call frame, and that call frame
could have a CFI directive that specifies how to restore the stack
pointer. If not, it is OK to fallback and set the SP = CFA.

This change sets SP = CFA before restoring the registers during
unwinding, allowing the stack frame to be restored with a value
different than the CFA.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

charco created this revision.Jul 22 2021, 6:09 PM

Herald added a project: Restricted Project. · View Herald TranscriptJul 22 2021, 6:09 PM

Herald added a reviewer: Restricted Project. · View Herald Transcript

Herald added a subscriber: libcxx-commits. · View Herald Transcript

charco requested review of this revision.Jul 22 2021, 6:09 PM

Herald added a project: Restricted Project. · View Herald TranscriptJul 22 2021, 6:09 PM

Herald added a subscriber: llvm-commits. · View Herald Transcript

charco added reviewers: phosek, mcgrathr.Jul 22 2021, 6:09 PM

charco added a subscriber: eep.

Harbormaster completed remote builds in B115751: Diff 361054.Jul 22 2021, 6:17 PM

LGTM

This revision is now accepted and ready to land.Jul 22 2021, 6:45 PM

update commit msg

Harbormaster completed remote builds in B115759: Diff 361064.Jul 22 2021, 7:13 PM

This revision was landed with ongoing or failed builds.Jul 23 2021, 12:40 PM

Closed by commit rGa085c23aa3c8: [libunwind] Allow restoring SP while unwinding. (authored by charco). · Explain Why

This revision was automatically updated to reflect the committed changes.

charco added a commit: rGa085c23aa3c8: [libunwind] Allow restoring SP while unwinding..

charco mentioned this in D106725: [libFuzzer] Fix CFI Directives for fuchsia.Jul 23 2021, 4:36 PM

charco mentioned this in rGa9c515983dc2: [libFuzzer] Fix CFI Directives for fuchsia.Jul 28 2021, 5:59 PM

Revision Contents

Path

Size

libunwind/

src/

DwarfInstructions.hpp

14 lines

Diff 361304

libunwind/src/DwarfInstructions.hpp

Show First 20 Lines • Show All 161 Lines • ▼ Show 20 Lines	if (CFI_Parser<A>::decodeFDE(addressSpace, fdeStart, &fdeInfo,
PrologInfo prolog;		PrologInfo prolog;
if (CFI_Parser<A>::parseFDEInstructions(addressSpace, fdeInfo, cieInfo, pc,		if (CFI_Parser<A>::parseFDEInstructions(addressSpace, fdeInfo, cieInfo, pc,
R::getArch(), &prolog)) {		R::getArch(), &prolog)) {
// get pointer to cfa (architecture specific)		// get pointer to cfa (architecture specific)
pint_t cfa = getCFA(addressSpace, prolog, registers);		pint_t cfa = getCFA(addressSpace, prolog, registers);

// restore registers that DWARF says were saved		// restore registers that DWARF says were saved
R newRegisters = registers;		R newRegisters = registers;

		// Typically, the CFA is the stack pointer at the call site in
		// the previous frame. However, there are scenarios in which this is not
		// true. For example, if we switched to a new stack. In that case, the
		// value of the previous SP might be indicated by a CFI directive.
		//
		// We set the SP here to the CFA, allowing for it to be overridden
		// by a CFI directive later on.
		newRegisters.setSP(cfa);

pint_t returnAddress = 0;		pint_t returnAddress = 0;
const int lastReg = R::lastDwarfRegNum();		const int lastReg = R::lastDwarfRegNum();
assert(static_cast<int>(CFI_Parser<A>::kMaxRegisterNumber) >= lastReg &&		assert(static_cast<int>(CFI_Parser<A>::kMaxRegisterNumber) >= lastReg &&
"register range too large");		"register range too large");
assert(lastReg >= (int)cieInfo.returnAddressRegister &&		assert(lastReg >= (int)cieInfo.returnAddressRegister &&
"register range does not contain return address register");		"register range does not contain return address register");
for (int i = 0; i <= lastReg; ++i) {		for (int i = 0; i <= lastReg; ++i) {
if (prolog.savedRegisters[i].location !=		if (prolog.savedRegisters[i].location !=
Show All 17 Lines	if (CFI_Parser<A>::parseFDEInstructions(addressSpace, fdeInfo, cieInfo, pc,
return UNW_EBADREG;		return UNW_EBADREG;
} else if (i == (int)cieInfo.returnAddressRegister) {		} else if (i == (int)cieInfo.returnAddressRegister) {
// Leaf function keeps the return address in register and there is no		// Leaf function keeps the return address in register and there is no
// explicit intructions how to restore it.		// explicit intructions how to restore it.
returnAddress = registers.getRegister(cieInfo.returnAddressRegister);		returnAddress = registers.getRegister(cieInfo.returnAddressRegister);
}		}
}		}

// By definition, the CFA is the stack pointer at the call site, so
// restoring SP means setting it to CFA.
newRegisters.setSP(cfa);

isSignalFrame = cieInfo.isSignalFrame;		isSignalFrame = cieInfo.isSignalFrame;

#if defined(_LIBUNWIND_TARGET_AARCH64)		#if defined(_LIBUNWIND_TARGET_AARCH64)
// If the target is aarch64 then the return address may have been signed		// If the target is aarch64 then the return address may have been signed
// using the v8.3 pointer authentication extensions. The original		// using the v8.3 pointer authentication extensions. The original
// return address needs to be authenticated before the return address is		// return address needs to be authenticated before the return address is
// restored. autia1716 is used instead of autia as autia1716 assembles		// restored. autia1716 is used instead of autia as autia1716 assembles
// to a NOP on pre-v8.3a architectures.		// to a NOP on pre-v8.3a architectures.
▲ Show 20 Lines • Show All 615 Lines • Show Last 20 Lines