This is an archive of the discontinued LLVM Phabricator instance.

Differential D10944

[asan] Fix an OS X startup crash when an empty section is present
ClosedPublic

Authored by kubamracek on Jul 4 2015, 3:08 AM.

Details

Reviewers
glider
samsonov
Summary

On OS X, when the main instrumented binary contains a custom section with zero length, ASan will crash (assert failure) early in the initialization. This can be reproduced with a linker option -sectcreate mysegment mysection /dev/null. Running such a binary with ASan produces just:

$ ./a.out
==38355==AddressSanitizer CHECK failed: .../llvm/projects/compiler-rt/lib/sanitizer_common/sanitizer_posix.cc:258 "((start1 <= end1)) != (0)" (0x0, 0x0)

There seems to be an off-by-one bug in MemoryRangeIsAvailable, this patch fixes it and adds a regression test.

Diff Detail

Event Timeline

kubamracek updated this revision to Diff 29048.Jul 4 2015, 3:08 AM
kubamracek retitled this revision from to [asan] Fix an OS X startup crash when an empty section is present.
kubamracek updated this object.
kubamracek added reviewers: glider, samsonov.
kubamracek added subscribers: samsonov, glider.
samsonov added a subscriber: llvm-commits.Jul 6 2015, 9:33 AM
samsonov added inline comments.Jul 6 2015, 9:40 AM
lib/sanitizer_common/sanitizer_posix.cc
275

This is incorrect. IntervalsAreSeparate and MemoryRangeIsAvailable assume that start and end are inclusive (just audit its code and uses).
You need a special case for zero-size interval.

kubamracek updated this revision to Diff 29101.Jul 6 2015, 9:48 AM

Second take on the fix.

samsonov accepted this revision.Jul 6 2015, 9:55 AM
samsonov edited edge metadata.

LGTM

This revision is now accepted and ready to land.Jul 6 2015, 9:55 AM
kubamracek closed this revision.Jul 6 2015, 10:17 AM

Landed in r241474.

glider edited edge metadata.Jul 7 2015, 9:27 AM

LGTM

Revision Contents

PathSize
lib/
sanitizer_common/
1 line
test/
asan/
TestCases/
Darwin/
12 lines

Diff 29101

lib/sanitizer_common/sanitizer_posix.cc

Show First 20 LinesShow All 264 Lines▼ Show 20 Lines
// several worker threads on Mac, which aren't expected to map big chunks of // several worker threads on Mac, which aren't expected to map big chunks of
// memory). // memory).
bool MemoryRangeIsAvailable(uptr range_start, uptr range_end) { bool MemoryRangeIsAvailable(uptr range_start, uptr range_end) {
MemoryMappingLayout proc_maps(/*cache_enabled*/true); MemoryMappingLayout proc_maps(/*cache_enabled*/true);
uptr start, end; uptr start, end;
while (proc_maps.Next(&start, &end, while (proc_maps.Next(&start, &end,
/*offset*/0, /*filename*/0, /*filename_size*/0, /*offset*/0, /*filename*/0, /*filename_size*/0,
/*protection*/0)) { /*protection*/0)) {
if (start == end) continue; // Empty range.
CHECK_NE(0, end); CHECK_NE(0, end);
if (!IntervalsAreSeparate(start, end - 1, range_start, range_end)) if (!IntervalsAreSeparate(start, end - 1, range_start, range_end))
samsonovUnsubmitted
Not Done
ReplyInline Actions

This is incorrect. IntervalsAreSeparate and MemoryRangeIsAvailable assume that start and end are inclusive (just audit its code and uses).
You need a special case for zero-size interval.

samsonov: This is incorrect. `IntervalsAreSeparate` and `MemoryRangeIsAvailable` assume that start and…
return false; return false;
} }
return true; return true;
} }
void DumpProcessMap() { void DumpProcessMap() {
MemoryMappingLayout proc_maps(/*cache_enabled*/true); MemoryMappingLayout proc_maps(/*cache_enabled*/true);
uptr start, end; uptr start, end;
▲ Show 20 LinesShow All 83 LinesShow Last 20 Lines

test/asan/TestCases/Darwin/empty-section.cc

// Regression test with an empty (length = 0) custom section.
// RUN: %clangxx_asan -g -O0 %s -c -o %t.o
// RUN: %clangxx_asan -g -O0 %t.o -o %t -sectcreate mysegment mysection /dev/null
// RUN: %run %t 2>&1 | FileCheck %s
#include <stdio.h>
int main() {
printf("Hello, world!\n");
// CHECK: Hello, world!
}