This is an archive of the discontinued LLVM Phabricator instance.

compiler-rt/lib/lsan/lsan_common.cpp
184	We can use `stack` instead of `StackDepotGet(stack_trace_id)` to avoid another lookup. We can also then remove `stack_trace_id` from the parameter list.
552	I don't see these checks anywhere in `SuppressInvalid`. Why is it safe to omit them? Will we introduce new false negatives because we're suppressing more things?

morehouse accepted this revision.Dec 9 2021, 8:06 AM

morehouse added inline comments.

compiler-rt/lib/lsan/lsan_common.cpp
552	Never mind. I see now that `CollectLeaksCb` filters out things that don't meet these conditions: if (!m.allocated()) return; if (m.tag() == kDirectlyLeaked \|\| m.tag() == kIndirectlyLeaked) leaks->push_back({chunk, m.stack_trace_id(), m.requested_size(), m.tag()});

This revision is now accepted and ready to land.Dec 9 2021, 8:06 AM

rebase

vitalybuka marked 3 inline comments as done.Dec 9 2021, 11:28 AM

Harbormaster completed remote builds in B138491: Diff 393229.Dec 9 2021, 11:50 AM

morehouse accepted this revision.Dec 9 2021, 12:04 PM

Closed by commit rGf86deb18cab6: [lsan] Move out suppression of invalid PCs from StopTheWorld (authored by vitalybuka). · Explain WhyDec 9 2021, 12:17 PM

This revision was automatically updated to reflect the committed changes.

vitalybuka added a commit: rGf86deb18cab6: [lsan] Move out suppression of invalid PCs from StopTheWorld.

For some reason this change makes Firefox Linux ASAN builds break our CI in a way that doesn't even leave logs (it looks like the workers completely die)

Herald added a project: Restricted Project. · View Herald TranscriptMar 18 2022, 2:16 PM

In D115319#3393379, @glandium wrote:

For some reason this change makes Firefox Linux ASAN builds break our CI in a way that doesn't even leave logs (it looks like the workers completely die)

Sorry, no sure what to do with available info.
Have you been able to solve the problem?

sbc100 added a subscriber: sbc100.May 19 2022, 5:24 PM

sbc100 added inline comments.

compiler-rt/lib/lsan/lsan_common.cpp
159	I ran into an issue with this change when attempting to upgrade compiler-rt in emscripten. It seems that this function will always return 0 if stack traces are disabled by doing `malloc_context_size=0/1` ? This means that `SuppressInvalid` always returns true and therefore everything get suppressed and not report is generated at add. We have been recommending `malloc_context_size=0/1` as a way to speed up msan/lsan under emscripten but this change seems to mean that completely disabled lsan (no report generated at all). Does lsan now require malloc_context_size of at least 2?

vitalybuka added inline comments.May 19 2022, 7:18 PM

compiler-rt/lib/lsan/lsan_common.cpp

159

Sounds like reasonable use-case. If so this is unintentional and we need to fix and add a regression test.
How sure you are that this is just from this patch? This function was already present. On a quick look

we had

uptr caller_pc = 0;
    if (stack_id > 0)
      caller_pc = GetCallerPC(StackDepotGet(stack_id));
    // If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark
    // it as reachable, as we can't properly report its allocation stack anyway.
    if (caller_pc == 0 || (param->skip_linker_allocations &&
                           GetLinker()->containsAddress(caller_pc))) {
      m.set_tag(kIgnored);
      param->frontier->push_back(chunk);
    }

which I believe suppress report as well

sbc100 added inline comments.May 19 2022, 7:30 PM

compiler-rt/lib/lsan/lsan_common.cpp
159	Ah, I suppose it could have pre-dated this patch. I know it used to work in LLVM 13 and stopped working when I updated to 14.

Revision Contents

Path

Size

compiler-rt/

lib/

lsan/

lsan_common.cpp

108 lines

Diff 393251

compiler-rt/lib/lsan/lsan_common.cpp

Show First 20 Lines • Show All 65 Lines • ▼ Show 20 Lines	do { \
Report(__VA_ARGS__); \		Report(__VA_ARGS__); \
} while (0)		} while (0)

class LeakSuppressionContext {		class LeakSuppressionContext {
bool parsed = false;		bool parsed = false;
SuppressionContext context;		SuppressionContext context;
bool suppressed_stacks_sorted = true;		bool suppressed_stacks_sorted = true;
InternalMmapVector<u32> suppressed_stacks;		InternalMmapVector<u32> suppressed_stacks;
		const LoadedModule *suppress_module = nullptr;

Suppression *GetSuppressionForAddr(uptr addr);
void LazyInit();		void LazyInit();
		Suppression *GetSuppressionForAddr(uptr addr);
		bool SuppressInvalid(const StackTrace &stack);
bool SuppressByRule(const StackTrace &stack, uptr hit_count, uptr total_size);		bool SuppressByRule(const StackTrace &stack, uptr hit_count, uptr total_size);

public:		public:
LeakSuppressionContext(const char *supprression_types[],		LeakSuppressionContext(const char *supprression_types[],
int suppression_types_num)		int suppression_types_num)
: context(supprression_types, suppression_types_num) {}		: context(supprression_types, suppression_types_num) {}

bool Suppress(u32 stack_trace_id, uptr hit_count, uptr total_size);		bool Suppress(u32 stack_trace_id, uptr hit_count, uptr total_size);
Show All 34 Lines

void LeakSuppressionContext::LazyInit() {		void LeakSuppressionContext::LazyInit() {
if (!parsed) {		if (!parsed) {
parsed = true;		parsed = true;
context.ParseFromFile(flags()->suppressions);		context.ParseFromFile(flags()->suppressions);
if (&__lsan_default_suppressions)		if (&__lsan_default_suppressions)
context.Parse(__lsan_default_suppressions());		context.Parse(__lsan_default_suppressions());
context.Parse(kStdSuppressions);		context.Parse(kStdSuppressions);
		if (flags()->use_tls && flags()->use_ld_allocations)
		suppress_module = GetLinker();
}		}
}		}

Suppression *LeakSuppressionContext::GetSuppressionForAddr(uptr addr) {		Suppression *LeakSuppressionContext::GetSuppressionForAddr(uptr addr) {
Suppression *s = nullptr;		Suppression *s = nullptr;

// Suppress by module name.		// Suppress by module name.
if (const char *module_name =		if (const char *module_name =
Symbolizer::GetOrInit()->GetModuleNameForPc(addr))		Symbolizer::GetOrInit()->GetModuleNameForPc(addr))
if (context.Match(module_name, kSuppressionLeak, &s))		if (context.Match(module_name, kSuppressionLeak, &s))
return s;		return s;

// Suppress by file or function name.		// Suppress by file or function name.
SymbolizedStack *frames = Symbolizer::GetOrInit()->SymbolizePC(addr);		SymbolizedStack *frames = Symbolizer::GetOrInit()->SymbolizePC(addr);
for (SymbolizedStack *cur = frames; cur; cur = cur->next) {		for (SymbolizedStack *cur = frames; cur; cur = cur->next) {
if (context.Match(cur->info.function, kSuppressionLeak, &s) \|\|		if (context.Match(cur->info.function, kSuppressionLeak, &s) \|\|
context.Match(cur->info.file, kSuppressionLeak, &s)) {		context.Match(cur->info.file, kSuppressionLeak, &s)) {
break;		break;
}		}
}		}
frames->ClearAll();		frames->ClearAll();
return s;		return s;
}		}

		static uptr GetCallerPC(const StackTrace &stack) {
		// The top frame is our malloc/calloc/etc. The next frame is the caller.
		if (stack.size >= 2)
		return stack.trace[1];
		return 0;
		sbc100Unsubmitted Not Done Reply Inline Actions I ran into an issue with this change when attempting to upgrade compiler-rt in emscripten. It seems that this function will always return 0 if stack traces are disabled by doing `malloc_context_size=0/1` ? This means that `SuppressInvalid` always returns true and therefore everything get suppressed and not report is generated at add. We have been recommending `malloc_context_size=0/1` as a way to speed up msan/lsan under emscripten but this change seems to mean that completely disabled lsan (no report generated at all). Does lsan now require malloc_context_size of at least 2? sbc100: I ran into an issue with this change when attempting to upgrade compiler-rt in emscripten. It…
		vitalybukaAuthorUnsubmitted Done Reply Inline Actions Sounds like reasonable use-case. If so this is unintentional and we need to fix and add a regression test. How sure you are that this is just from this patch? This function was already present. On a quick look we had uptr caller_pc = 0; if (stack_id > 0) caller_pc = GetCallerPC(StackDepotGet(stack_id)); // If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark // it as reachable, as we can't properly report its allocation stack anyway. if (caller_pc == 0 \|\| (param->skip_linker_allocations && GetLinker()->containsAddress(caller_pc))) { m.set_tag(kIgnored); param->frontier->push_back(chunk); } which I believe suppress report as well vitalybuka: Sounds like reasonable use-case. If so this is unintentional and we need to fix and add a…
		sbc100Unsubmitted Not Done Reply Inline Actions Ah, I suppose it could have pre-dated this patch. I know it used to work in LLVM 13 and stopped working when I updated to 14. sbc100: Ah, I suppose it could have pre-dated this patch. I know it used to work in LLVM 13 and…
		}

		// On Linux, treats all chunks allocated from ld-linux.so as reachable, which
		// covers dynamically allocated TLS blocks, internal dynamic loader's loaded
		// modules accounting etc.
		// Dynamic TLS blocks contain the TLS variables of dynamically loaded modules.
		// They are allocated with a __libc_memalign() call in allocate_and_init()
		// (elf/dl-tls.c). Glibc won't tell us the address ranges occupied by those
		// blocks, but we can make sure they come from our own allocator by intercepting
		// __libc_memalign(). On top of that, there is no easy way to reach them. Their
		// addresses are stored in a dynamically allocated array (the DTV) which is
		// referenced from the static TLS. Unfortunately, we can't just rely on the DTV
		// being reachable from the static TLS, and the dynamic TLS being reachable from
		// the DTV. This is because the initial DTV is allocated before our interception
		// mechanism kicks in, and thus we don't recognize it as allocated memory. We
		// can't special-case it either, since we don't know its size.
		// Our solution is to include in the root set all allocations made from
		// ld-linux.so (which is where allocate_and_init() is implemented). This is
		// guaranteed to include all dynamic TLS blocks (and possibly other allocations
		// which we don't care about).
		// On all other platforms, this simply checks to ensure that the caller pc is
		// valid before reporting chunks as leaked.
		bool LeakSuppressionContext::SuppressInvalid(const StackTrace &stack) {
		uptr caller_pc = GetCallerPC(stack);
		// If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark
		morehouseUnsubmitted Done Reply Inline Actions We can use `stack` instead of `StackDepotGet(stack_trace_id)` to avoid another lookup. We can also then remove `stack_trace_id` from the parameter list. morehouse: We can use `stack` instead of `StackDepotGet(stack_trace_id)` to avoid another lookup. We can…
		// it as reachable, as we can't properly report its allocation stack anyway.
		return !caller_pc \|\|
		(suppress_module && suppress_module->containsAddress(caller_pc));
		}

bool LeakSuppressionContext::SuppressByRule(const StackTrace &stack,		bool LeakSuppressionContext::SuppressByRule(const StackTrace &stack,
uptr hit_count, uptr total_size) {		uptr hit_count, uptr total_size) {
for (uptr i = 0; i < stack.size; i++) {		for (uptr i = 0; i < stack.size; i++) {
Suppression *s = GetSuppressionForAddr(		Suppression *s = GetSuppressionForAddr(
StackTrace::GetPreviousInstructionPc(stack.trace[i]));		StackTrace::GetPreviousInstructionPc(stack.trace[i]));
if (s) {		if (s) {
s->weight += total_size;		s->weight += total_size;
atomic_fetch_add(&s->hit_count, hit_count, memory_order_relaxed);		atomic_fetch_add(&s->hit_count, hit_count, memory_order_relaxed);
return true;		return true;
}		}
}		}
return false;		return false;
}		}

bool LeakSuppressionContext::Suppress(u32 stack_trace_id, uptr hit_count,		bool LeakSuppressionContext::Suppress(u32 stack_trace_id, uptr hit_count,
uptr total_size) {		uptr total_size) {
LazyInit();		LazyInit();
StackTrace stack = StackDepotGet(stack_trace_id);		StackTrace stack = StackDepotGet(stack_trace_id);
if (!SuppressByRule(stack, hit_count, total_size))		if (!SuppressInvalid(stack) && !SuppressByRule(stack, hit_count, total_size))
return false;		return false;
suppressed_stacks_sorted = false;		suppressed_stacks_sorted = false;
suppressed_stacks.push_back(stack_trace_id);		suppressed_stacks.push_back(stack_trace_id);
return true;		return true;
}		}

static LeakSuppressionContext *GetSuppressionContext() {		static LeakSuppressionContext *GetSuppressionContext() {
CHECK(suppression_ctx);		CHECK(suppression_ctx);
▲ Show 20 Lines • Show All 347 Lines • ▼ Show 20 Lines	static void CollectIgnoredCb(uptr chunk, void *arg) {
LsanMetadata m(chunk);		LsanMetadata m(chunk);
if (m.allocated() && m.tag() == kIgnored) {		if (m.allocated() && m.tag() == kIgnored) {
LOG_POINTERS("Ignored: chunk %p-%p of size %zu.\n", (void *)chunk,		LOG_POINTERS("Ignored: chunk %p-%p of size %zu.\n", (void *)chunk,
(void *)(chunk + m.requested_size()), m.requested_size());		(void *)(chunk + m.requested_size()), m.requested_size());
reinterpret_cast<Frontier *>(arg)->push_back(chunk);		reinterpret_cast<Frontier *>(arg)->push_back(chunk);
}		}
}		}

static uptr GetCallerPC(const StackTrace &stack) {
// The top frame is our malloc/calloc/etc. The next frame is the caller.
if (stack.size >= 2)
return stack.trace[1];
return 0;
}

struct InvalidPCParam {
Frontier *frontier;
bool skip_linker_allocations;
};

// ForEachChunk callback. If the caller pc is invalid or is within the linker,
// mark as reachable. Called by ProcessPlatformSpecificAllocations.
static void MarkInvalidPCCb(uptr chunk, void *arg) {
CHECK(arg);
InvalidPCParam param = reinterpret_cast<InvalidPCParam >(arg);
chunk = GetUserBegin(chunk);
LsanMetadata m(chunk);
if (m.allocated() && m.tag() != kReachable && m.tag() != kIgnored) {
morehouseUnsubmitted Done Reply Inline Actions I don't see these checks anywhere in `SuppressInvalid`. Why is it safe to omit them? Will we introduce new false negatives because we're suppressing more things? morehouse: I don't see these checks anywhere in `SuppressInvalid`. Why is it safe to omit them? Will we…
morehouseUnsubmitted Done Reply Inline Actions Never mind. I see now that `CollectLeaksCb` filters out things that don't meet these conditions: if (!m.allocated()) return; if (m.tag() == kDirectlyLeaked \|\| m.tag() == kIndirectlyLeaked) leaks->push_back({chunk, m.stack_trace_id(), m.requested_size(), m.tag()}); morehouse: Never mind. I see now that `CollectLeaksCb` filters out things that don't meet these…
u32 stack_id = m.stack_trace_id();
uptr caller_pc = 0;
if (stack_id > 0)
caller_pc = GetCallerPC(StackDepotGet(stack_id));
// If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark
// it as reachable, as we can't properly report its allocation stack anyway.
if (caller_pc == 0 \|\| (param->skip_linker_allocations &&
GetLinker()->containsAddress(caller_pc))) {
m.set_tag(kIgnored);
param->frontier->push_back(chunk);
}
}
}

// On Linux, treats all chunks allocated from ld-linux.so as reachable, which
// covers dynamically allocated TLS blocks, internal dynamic loader's loaded
// modules accounting etc.
// Dynamic TLS blocks contain the TLS variables of dynamically loaded modules.
// They are allocated with a __libc_memalign() call in allocate_and_init()
// (elf/dl-tls.c). Glibc won't tell us the address ranges occupied by those
// blocks, but we can make sure they come from our own allocator by intercepting
// __libc_memalign(). On top of that, there is no easy way to reach them. Their
// addresses are stored in a dynamically allocated array (the DTV) which is
// referenced from the static TLS. Unfortunately, we can't just rely on the DTV
// being reachable from the static TLS, and the dynamic TLS being reachable from
// the DTV. This is because the initial DTV is allocated before our interception
// mechanism kicks in, and thus we don't recognize it as allocated memory. We
// can't special-case it either, since we don't know its size.
// Our solution is to include in the root set all allocations made from
// ld-linux.so (which is where allocate_and_init() is implemented). This is
// guaranteed to include all dynamic TLS blocks (and possibly other allocations
// which we don't care about).
// On all other platforms, this simply checks to ensure that the caller pc is
// valid before reporting chunks as leaked.
static void ProcessPC(Frontier *frontier) {
InvalidPCParam arg;
arg.frontier = frontier;
arg.skip_linker_allocations =
flags()->use_tls && flags()->use_ld_allocations && GetLinker() != nullptr;
ForEachChunk(MarkInvalidPCCb, &arg);
}

// Sets the appropriate tag on each chunk.		// Sets the appropriate tag on each chunk.
static void ClassifyAllChunks(SuspendedThreadsList const &suspended_threads,		static void ClassifyAllChunks(SuspendedThreadsList const &suspended_threads,
Frontier *frontier) {		Frontier *frontier) {
const InternalMmapVector<u32> &suppressed_stacks =		const InternalMmapVector<u32> &suppressed_stacks =
GetSuppressionContext()->GetSortedSuppressedStacks();		GetSuppressionContext()->GetSortedSuppressedStacks();
if (!suppressed_stacks.empty()) {		if (!suppressed_stacks.empty()) {
ForEachChunk(IgnoredSuppressedCb,		ForEachChunk(IgnoredSuppressedCb,
const_cast<InternalMmapVector<u32> *>(&suppressed_stacks));		const_cast<InternalMmapVector<u32> *>(&suppressed_stacks));
}		}
ForEachChunk(CollectIgnoredCb, frontier);		ForEachChunk(CollectIgnoredCb, frontier);
ProcessGlobalRegions(frontier);		ProcessGlobalRegions(frontier);
ProcessThreads(suspended_threads, frontier);		ProcessThreads(suspended_threads, frontier);
ProcessRootRegions(frontier);		ProcessRootRegions(frontier);
FloodFillTag(frontier, kReachable);		FloodFillTag(frontier, kReachable);

CHECK_EQ(0, frontier->size());
ProcessPC(frontier);

// The check here is relatively expensive, so we do this in a separate flood		// The check here is relatively expensive, so we do this in a separate flood
// fill. That way we can skip the check for chunks that are reachable		// fill. That way we can skip the check for chunks that are reachable
// otherwise.		// otherwise.
LOG_POINTERS("Processing platform-specific allocations.\n");		LOG_POINTERS("Processing platform-specific allocations.\n");
ProcessPlatformSpecificAllocations(frontier);		ProcessPlatformSpecificAllocations(frontier);
FloodFillTag(frontier, kReachable);		FloodFillTag(frontier, kReachable);

// Iterate over leaked chunks and mark those that are reachable from other		// Iterate over leaked chunks and mark those that are reachable from other
▲ Show 20 Lines • Show All 450 Lines • Show Last 20 Lines

This is an archive of the discontinued LLVM Phabricator instance.

[lsan] Move out suppression of invalid PCs from StopTheWorldClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 393251

compiler-rt/lib/lsan/lsan_common.cpp

[lsan] Move out suppression of invalid PCs from StopTheWorld
ClosedPublic