This is an archive of the discontinued LLVM Phabricator instance.

Differential D110471

[Sanitizers] intercept hexdump on FreeBSD
ClosedPublic

Authored by devnexen on Sep 25 2021, 3:17 AM.

Details

Reviewers
vitalybuka
Commits
rGb4c840e70b63: [Sanitizers] intercept hexdump on FreeBSD.

Diff Detail

Event Timeline

devnexen created this revision.Sep 25 2021, 3:17 AM
Herald added a subscriber: emaste. · View Herald TranscriptSep 25 2021, 3:17 AM
devnexen requested review of this revision.Sep 25 2021, 3:17 AM
Herald added a project: Restricted Project. · View Herald TranscriptSep 25 2021, 3:17 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
Harbormaster completed remote builds in B125690: Diff 375021.Sep 25 2021, 3:31 AM
Herald added a subscriber: ormris. · View Herald TranscriptSep 25 2021, 3:31 AM
vitalybuka accepted this revision.Sep 28 2021, 12:00 PM
vitalybuka added a subscriber: eugenis.

LGTM but I am not sure what is the rule for stuff we intercept vs expect instrumentation from the user
WDYT? @eugenis

This revision is now accepted and ready to land.Sep 28 2021, 12:00 PM
This revision was landed with ongoing or failed builds.Jan 20 2023, 10:01 AM
Closed by commit rGb4c840e70b63: [Sanitizers] intercept hexdump on FreeBSD. (authored by devnexen). · Explain Why
This revision was automatically updated to reflect the committed changes.
devnexen added a commit: rGb4c840e70b63: [Sanitizers] intercept hexdump on FreeBSD..
Herald added a project: Restricted Project. · View Herald TranscriptJan 20 2023, 10:01 AM
Herald added a subscriber: Enna1. · View Herald Transcript
MaskRay added subscribers: dim, MaskRay.EditedJan 23 2023, 8:16 AM

hexdump looks like to come from libmba, not a critical component (libc is usually difficult to instrument, but other libraries are not). I think the user should compile libmba with instrumentation instead of adding interceptors to sanitizers (which adds complexity). @dim @emaste
(HWAddressSanitizer is deployed on Android. Its C library bionic is instrumented so that very few interceptors are needed.)

dim added a comment.Jan 23 2023, 8:22 AM
In D110471#4073813, @MaskRay wrote:

hexdump looks like to come from libmba, not a critical component (libc is usually difficult to instrument, but other libraries are not). I think the user should compile libmba with instrumentation instead of adding interceptors to sanitizers (which adds complexity). @dim @emaste

It is actually in libutil (see https://www.freebsd.org/cgi/man.cgi?query=hexdump&sektion=3), but it might be somewhat tricky for end users to instrument this system library.

(HWAddressSanitizer is deployed on Android. Its C library bionic is instrumented so that very few interceptors are needed.)

Does that result in overhead if sanitization is *not* asked for?

MaskRay added a comment.Jan 23 2023, 8:30 AM
In D110471#4073833, @dim wrote:
In D110471#4073813, @MaskRay wrote:

hexdump looks like to come from libmba, not a critical component (libc is usually difficult to instrument, but other libraries are not). I think the user should compile libmba with instrumentation instead of adding interceptors to sanitizers (which adds complexity). @dim @emaste

It is actually in libutil (see https://www.freebsd.org/cgi/man.cgi?query=hexdump&sektion=3), but it might be somewhat tricky for end users to instrument this system library.

OK, it's fine then. We just need to kind in mind that if there are too many functions, adding interceptors does not scale.

(HWAddressSanitizer is deployed on Android. Its C library bionic is instrumented so that very few interceptors are needed.)

Does that result in overhead if sanitization is *not* asked for?

The idea is to use a sanitizer-instrumented .a/.so (like multilib) only when requested by -fsanitize=....

Revision Contents

PathSize
compiler-rt/
lib/
sanitizer_common/
15 lines
1 line
test/
sanitizer_common/
TestCases/
FreeBSD/
23 lines

Diff 490903

compiler-rt/lib/sanitizer_common/sanitizer_common_interceptors.inc

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 10,351 Lines▼ Show 20 Lines COMMON_INTERCEPTOR_WRITE_RANGE(ctx, utsname,
__sanitizer::struct_utsname_sz); __sanitizer::struct_utsname_sz);
return res; return res;
} }
#define INIT___XUNAME COMMON_INTERCEPT_FUNCTION(__xuname) #define INIT___XUNAME COMMON_INTERCEPT_FUNCTION(__xuname)
#else #else
#define INIT___XUNAME #define INIT___XUNAME
#endif #endif
#if SANITIZER_INTERCEPT_HEXDUMP
INTERCEPTOR(void, hexdump, const void *ptr, int length, const char *header, int flags) {
void *ctx;
COMMON_INTERCEPTOR_ENTER(ctx, hexdump, ptr, length, header, flags);
COMMON_INTERCEPTOR_READ_RANGE(ctx, ptr, length);
COMMON_INTERCEPTOR_READ_RANGE(ctx, header, internal_strlen(header) + 1);
REAL(hexdump)(ptr, length, header, flags);
}
#define INIT_HEXDUMP COMMON_INTERCEPT_FUNCTION(hexdump);
#else
#define INIT_HEXDUMP
#endif
#include "sanitizer_common_interceptors_netbsd_compat.inc" #include "sanitizer_common_interceptors_netbsd_compat.inc"
static void InitializeCommonInterceptors() { static void InitializeCommonInterceptors() {
#if SI_POSIX #if SI_POSIX
static u64 metadata_mem[sizeof(MetadataHashMap) / sizeof(u64) + 1]; static u64 metadata_mem[sizeof(MetadataHashMap) / sizeof(u64) + 1];
interceptor_metadata_map = new ((void *)&metadata_mem) MetadataHashMap(); interceptor_metadata_map = new ((void *)&metadata_mem) MetadataHashMap();
#endif #endif
▲ Show 20 LinesShow All 302 Lines▼ Show 20 Lines#endif
INIT_GETENTROPY; INIT_GETENTROPY;
INIT_QSORT; INIT_QSORT;
INIT_QSORT_R; INIT_QSORT_R;
INIT_BSEARCH; INIT_BSEARCH;
INIT_SIGALTSTACK; INIT_SIGALTSTACK;
INIT_PROCCTL INIT_PROCCTL
INIT_UNAME; INIT_UNAME;
INIT___XUNAME; INIT___XUNAME;
INIT_HEXDUMP;
INIT___PRINTF_CHK; INIT___PRINTF_CHK;
} }

compiler-rt/lib/sanitizer_common/sanitizer_platform_interceptors.h

Show First 20 LinesShow All 585 Lines▼ Show 20 Lines
// sigaltstack on i386 macOS cannot be intercepted due to setjmp() // sigaltstack on i386 macOS cannot be intercepted due to setjmp()
// calling it and assuming that it does not clobber registers. // calling it and assuming that it does not clobber registers.
#define SANITIZER_INTERCEPT_SIGALTSTACK \ #define SANITIZER_INTERCEPT_SIGALTSTACK \
(SI_POSIX && !(SANITIZER_APPLE && SANITIZER_I386)) (SI_POSIX && !(SANITIZER_APPLE && SANITIZER_I386))
#define SANITIZER_INTERCEPT_UNAME (SI_POSIX && !SI_FREEBSD) #define SANITIZER_INTERCEPT_UNAME (SI_POSIX && !SI_FREEBSD)
#define SANITIZER_INTERCEPT___XUNAME SI_FREEBSD #define SANITIZER_INTERCEPT___XUNAME SI_FREEBSD
#define SANITIZER_INTERCEPT_FLOPEN SI_FREEBSD #define SANITIZER_INTERCEPT_FLOPEN SI_FREEBSD
#define SANITIZER_INTERCEPT_PROCCTL SI_FREEBSD #define SANITIZER_INTERCEPT_PROCCTL SI_FREEBSD
#define SANITIZER_INTERCEPT_HEXDUMP SI_FREEBSD
// This macro gives a way for downstream users to override the above // This macro gives a way for downstream users to override the above
// interceptor macros irrespective of the platform they are on. They have // interceptor macros irrespective of the platform they are on. They have
// to do two things: // to do two things:
// 1. Build compiler-rt with -DSANITIZER_OVERRIDE_INTERCEPTORS. // 1. Build compiler-rt with -DSANITIZER_OVERRIDE_INTERCEPTORS.
// 2. Provide a header file named sanitizer_intercept_overriders.h in the // 2. Provide a header file named sanitizer_intercept_overriders.h in the
// include path for their compiler-rt build. // include path for their compiler-rt build.
// An example of an overrider for strlen interceptor that one can list in // An example of an overrider for strlen interceptor that one can list in
Show All 15 Lines

compiler-rt/test/sanitizer_common/TestCases/FreeBSD/hexdump.cc

  • This file was added.
// RUN: %clangxx -O0 -g %s -o %t -lutil && %run %t 2>&1 | FileCheck %s
#include <assert.h>
#include <stdio.h>
#include <stdlib.h>
#include <libutil.h>
int main(void) {
printf("hexdump");
char *line;
size_t lineno = 0, len;
const char *delim = "\\\\#";
FILE *fp = fopen("/etc/fstab", "r");
assert(fp);
line = fparseln(fp, &len, &lineno, delim, 0);
hexdump(line, len, nullptr, 0);
free(line);
fclose(fp);
assert(lineno != 0);
assert(len > 0);
return 0;
}