This is an archive of the discontinued LLVM Phabricator instance.

Differential D130795

[LLDB][NFC][Reliability] Fixes for int overflow and uninitialized state
ClosedPublic

Authored by fixathon on Jul 29 2022, 12:35 PM.

Details

Reviewers
clayborg
aadsm
jingham
JDevlieghere
shafik
Commits
rGf7c961cc6ba7: [LLDB][NFC][Reliability] Fixes for int overflow and uninitialized state
Summary

Fixing potential int overflow and uninitialized variables.
These were found by Coverity static code inspection.

Diff Detail

Event Timeline

fixathon created this revision.Jul 29 2022, 12:35 PM
Herald added a reviewer: shafik. · View Herald TranscriptJul 29 2022, 12:35 PM
Herald added a project: Restricted Project. · View Herald Transcript
fixathon requested review of this revision.Jul 29 2022, 12:35 PM
Herald added a project: Restricted Project. · View Herald TranscriptJul 29 2022, 12:35 PM
Herald added a subscriber: lldb-commits. · View Herald Transcript
Harbormaster completed remote builds in B178338: Diff 448701.Jul 29 2022, 12:38 PM
clayborg accepted this revision.Jul 29 2022, 1:29 PM
This revision is now accepted and ready to land.Jul 29 2022, 1:29 PM
Closed by commit rGf7c961cc6ba7: [LLDB][NFC][Reliability] Fixes for int overflow and uninitialized state (authored by fixathon). · Explain WhyJul 29 2022, 1:31 PM
This revision was automatically updated to reflect the committed changes.
fixathon added a commit: rGf7c961cc6ba7: [LLDB][NFC][Reliability] Fixes for int overflow and uninitialized state.
shafik added inline comments.Jul 29 2022, 8:10 PM
lldb/source/Plugins/Process/Utility/NativeRegisterContextDBReg_x86.cpp
67

So we know that wp_index is never greater than 11?

77

You did not update 0xF to 0xFULL like you did the constants above. Was that on purpose?

fixathon marked 2 inline comments as done.Jul 30 2022, 12:42 AM
fixathon added inline comments.
lldb/source/Plugins/Process/Utility/NativeRegisterContextDBReg_x86.cpp
67

For this platform, based on the code and the hardcoded constant the range of wp_index is limited to 0-3 (inclusive)

77

Not on purpose. It's interesting this instance wasn't flagged by coverity likely because
max wp_index value is 3 and 0xF << 28 is still within the 32-bit limit of sizeof(int) the default type for 0xF literal. Then, the signed int will get converted to uint64_t for the bitwise-OR. It's a bit iffy due to the signed type, but should work.

Agreed it would be best be explicit and consistent and mark it as 0xFull. I could include this it into the next batch of reliability diffs next week.

Revision Contents

PathSize
lldb/
source/
Plugins/
Instruction/
ARM64/
2 lines
Process/
Utility/
11 lines
SymbolFile/
DWARF/
2 lines
5 lines
SystemRuntime/
MacOSX/
6 lines
UnwindAssembly/
x86/
2 lines

Diff 448709

lldb/source/Plugins/Instruction/ARM64/EmulateInstructionARM64.cpp

Show First 20 LinesShow All 627 Lines▼ Show 20 Linesbool EmulateInstructionARM64::EmulateADDSUBImm(const uint32_t opcode) {
boolean setflags = S == 1; boolean setflags = S == 1;
uint64_t imm; uint64_t imm;
switch (shift) { switch (shift) {
case 0: case 0:
imm = imm12; imm = imm12;
break; break;
case 1: case 1:
imm = imm12 << 12; imm = static_cast<uint64_t>(imm12) << 12;
break; break;
default: default:
return false; // UNDEFINED; return false; // UNDEFINED;
} }
uint64_t result; uint64_t result;
uint64_t operand1 = uint64_t operand1 =
ReadRegisterUnsigned(eRegisterKindLLDB, gpr_x0_arm64 + n, 0, &success); ReadRegisterUnsigned(eRegisterKindLLDB, gpr_x0_arm64 + n, 0, &success);
uint64_t operand2 = imm; uint64_t operand2 = imm;
▲ Show 20 LinesShow All 536 LinesShow Last 20 Lines

lldb/source/Plugins/Process/Utility/NativeRegisterContextDBReg_x86.cpp

Show All 12 Lines
#include "Plugins/Process/Utility/lldb-x86-register-enums.h" #include "Plugins/Process/Utility/lldb-x86-register-enums.h"
using namespace lldb_private; using namespace lldb_private;
// Returns mask/value for status bit of wp_index in DR6 // Returns mask/value for status bit of wp_index in DR6
static inline uint64_t GetStatusBit(uint32_t wp_index) { static inline uint64_t GetStatusBit(uint32_t wp_index) {
// DR6: ...BBBB // DR6: ...BBBB
// 3210 <- status bits for bp./wp. i; 1 if hit // 3210 <- status bits for bp./wp. i; 1 if hit
return 1 << wp_index; return 1ULL << wp_index;
} }
// Returns mask/value for global enable bit of wp_index in DR7 // Returns mask/value for global enable bit of wp_index in DR7
static inline uint64_t GetEnableBit(uint32_t wp_index) { static inline uint64_t GetEnableBit(uint32_t wp_index) {
// DR7: ...GLGLGLGL // DR7: ...GLGLGLGL
// 33221100 <- global/local enable for bp./wp.; 1 if enabled // 33221100 <- global/local enable for bp./wp.; 1 if enabled
// we use global bits because NetBSD kernel does not preserve local // we use global bits because NetBSD kernel does not preserve local
// bits reliably; Linux seems fine with either // bits reliably; Linux seems fine with either
return 1 << (2 * wp_index + 1); return 1ULL << (2 * wp_index + 1);
} }
// Returns mask for both enable bits of wp_index in DR7 // Returns mask for both enable bits of wp_index in DR7
static inline uint64_t GetBothEnableBitMask(uint32_t wp_index) { static inline uint64_t GetBothEnableBitMask(uint32_t wp_index) {
// DR7: ...GLGLGLGL // DR7: ...GLGLGLGL
// 33221100 <- global/local enable for bp./wp.; 1 if enabled // 33221100 <- global/local enable for bp./wp.; 1 if enabled
return 3 << (2 * wp_index + 1); return 3ULL << (2 * wp_index + 1);
} }
// Returns value for type bits of wp_index in DR7 // Returns value for type bits of wp_index in DR7
static inline uint64_t GetWatchTypeBits(uint32_t watch_flags, static inline uint64_t GetWatchTypeBits(uint32_t watch_flags,
uint32_t wp_index) { uint32_t wp_index) {
// DR7: // DR7:
// bit: 3322222222221111... // bit: 3322222222221111...
// 1098765432109876... // 1098765432109876...
// val: SSTTSSTTSSTTSSTT... // val: SSTTSSTTSSTTSSTT...
// wp.: 3333222211110000... // wp.: 3333222211110000...
// //
// where T - type is 01 for write, 11 for r/w // where T - type is 01 for write, 11 for r/w
return watch_flags << (16 + 4 * wp_index); return static_cast<uint64_t>(watch_flags) << (16 + 4 * wp_index);
} }
// Returns value for size bits of wp_index in DR7 // Returns value for size bits of wp_index in DR7
static inline uint64_t GetWatchSizeBits(uint32_t size, uint32_t wp_index) { static inline uint64_t GetWatchSizeBits(uint32_t size, uint32_t wp_index) {
// DR7: // DR7:
// bit: 3322222222221111... // bit: 3322222222221111...
// 1098765432109876... // 1098765432109876...
// val: SSTTSSTTSSTTSSTT... // val: SSTTSSTTSSTTSSTT...
// wp.: 3333222211110000... // wp.: 3333222211110000...
// //
// where S - size is: // where S - size is:
// 00 for 1 byte // 00 for 1 byte
// 01 for 2 bytes // 01 for 2 bytes
// 10 for 8 bytes // 10 for 8 bytes
// 11 for 4 bytes // 11 for 4 bytes
return (size == 8 ? 0x2 : size - 1) << (18 + 4 * wp_index); return static_cast<uint64_t>(size == 8 ? 0x2 : size - 1)
<< (18 + 4 * wp_index);
shafikUnsubmitted
Not Done
ReplyInline Actions

So we know that wp_index is never greater than 11?

shafik: So we know that `wp_index` is never greater than 11?
fixathonAuthorUnsubmitted
Done
ReplyInline Actions

For this platform, based on the code and the hardcoded constant the range of wp_index is limited to 0-3 (inclusive)

fixathon: For this platform, based on the code and the hardcoded constant the range of wp_index is…
} }
// Returns bitmask for all bits controlling wp_index in DR7 // Returns bitmask for all bits controlling wp_index in DR7
static inline uint64_t GetWatchControlBitmask(uint32_t wp_index) { static inline uint64_t GetWatchControlBitmask(uint32_t wp_index) {
// DR7: // DR7:
// bit: 33222222222211111111110000000000 // bit: 33222222222211111111110000000000
// 10987654321098765432109876543210 // 10987654321098765432109876543210
// val: SSTTSSTTSSTTSSTTxxxxxxGLGLGLGLGL // val: SSTTSSTTSSTTSSTTxxxxxxGLGLGLGLGL
// wp.: 3333222211110000xxxxxxEE33221100 // wp.: 3333222211110000xxxxxxEE33221100
return GetBothEnableBitMask(wp_index) | (0xF << (16 + 4 * wp_index)); return GetBothEnableBitMask(wp_index) | (0xF << (16 + 4 * wp_index));
shafikUnsubmitted
Not Done
ReplyInline Actions

You did not update 0xF to 0xFULL like you did the constants above. Was that on purpose?

shafik: You did not update `0xF` to `0xFULL` like you did the constants above. Was that on purpose?
fixathonAuthorUnsubmitted
Not Done
ReplyInline Actions

Not on purpose. It's interesting this instance wasn't flagged by coverity likely because
max wp_index value is 3 and 0xF << 28 is still within the 32-bit limit of sizeof(int) the default type for 0xF literal. Then, the signed int will get converted to uint64_t for the bitwise-OR. It's a bit iffy due to the signed type, but should work.

Agreed it would be best be explicit and consistent and mark it as 0xFull. I could include this it into the next batch of reliability diffs next week.

fixathon: Not on purpose. It's interesting this instance wasn't flagged by coverity likely because max…
} }
// Bit mask for control bits regarding all watchpoints. // Bit mask for control bits regarding all watchpoints.
static constexpr uint64_t watchpoint_all_control_bit_mask = 0xFFFF00FF; static constexpr uint64_t watchpoint_all_control_bit_mask = 0xFFFF00FF;
const RegisterInfo *NativeRegisterContextDBReg_x86::GetDR(int num) const { const RegisterInfo *NativeRegisterContextDBReg_x86::GetDR(int num) const {
assert(num >= 0 && num <= 7); assert(num >= 0 && num <= 7);
switch (GetRegisterInfoInterface().GetTargetArchitecture().GetMachine()) { switch (GetRegisterInfoInterface().GetTargetArchitecture().GetMachine()) {
▲ Show 20 LinesShow All 191 LinesShow Last 20 Lines

lldb/source/Plugins/SymbolFile/DWARF/DWARFASTParserClang.cpp

Show First 20 LinesShow All 2,725 Lines▼ Show 20 Linesvoid DWARFASTParserClang::ParseSingleMember(
const uint64_t word_width = 32; const uint64_t word_width = 32;
CompilerType member_clang_type = member_type->GetLayoutCompilerType(); CompilerType member_clang_type = member_type->GetLayoutCompilerType();
if (attrs.accessibility == eAccessNone) if (attrs.accessibility == eAccessNone)
attrs.accessibility = default_accessibility; attrs.accessibility = default_accessibility;
uint64_t field_bit_offset = (attrs.member_byte_offset == UINT32_MAX uint64_t field_bit_offset = (attrs.member_byte_offset == UINT32_MAX
? 0 ? 0
: (attrs.member_byte_offset * 8)); : (attrs.member_byte_offset * 8ULL));
if (attrs.bit_size > 0) { if (attrs.bit_size > 0) {
FieldInfo this_field_info; FieldInfo this_field_info;
this_field_info.bit_offset = field_bit_offset; this_field_info.bit_offset = field_bit_offset;
this_field_info.bit_size = attrs.bit_size; this_field_info.bit_size = attrs.bit_size;
if (attrs.data_bit_offset != UINT64_MAX) { if (attrs.data_bit_offset != UINT64_MAX) {
this_field_info.bit_offset = attrs.data_bit_offset; this_field_info.bit_offset = attrs.data_bit_offset;
▲ Show 20 LinesShow All 829 LinesShow Last 20 Lines

lldb/source/Plugins/SymbolFile/DWARF/DWARFUnit.cpp

Show First 20 LinesShow All 576 Lines▼ Show 20 Lines
void DWARFUnit::SetStrOffsetsBase(dw_offset_t str_offsets_base) { void DWARFUnit::SetStrOffsetsBase(dw_offset_t str_offsets_base) {
m_str_offsets_base = str_offsets_base; m_str_offsets_base = str_offsets_base;
} }
dw_addr_t DWARFUnit::ReadAddressFromDebugAddrSection(uint32_t index) const { dw_addr_t DWARFUnit::ReadAddressFromDebugAddrSection(uint32_t index) const {
uint32_t index_size = GetAddressByteSize(); uint32_t index_size = GetAddressByteSize();
dw_offset_t addr_base = GetAddrBase(); dw_offset_t addr_base = GetAddrBase();
dw_addr_t offset = addr_base + index * index_size; dw_addr_t offset = addr_base + static_cast<dw_addr_t>(index) * index_size;
const DWARFDataExtractor &data = const DWARFDataExtractor &data =
m_dwarf.GetDWARFContext().getOrLoadAddrData(); m_dwarf.GetDWARFContext().getOrLoadAddrData();
if (data.ValidOffsetForDataOfSize(offset, index_size)) if (data.ValidOffsetForDataOfSize(offset, index_size))
return data.GetMaxU64_unchecked(&offset, index_size); return data.GetMaxU64_unchecked(&offset, index_size);
return LLDB_INVALID_ADDRESS; return LLDB_INVALID_ADDRESS;
} }
// It may be called only with m_die_array_mutex held R/W. // It may be called only with m_die_array_mutex held R/W.
▲ Show 20 LinesShow All 434 Lines▼ Show 20 Lines if (!range_list_or_error)
return range_list_or_error.takeError(); return range_list_or_error.takeError();
llvm::Expected<llvm::DWARFAddressRangesVector> llvm_ranges = llvm::Expected<llvm::DWARFAddressRangesVector> llvm_ranges =
range_list_or_error->getAbsoluteRanges( range_list_or_error->getAbsoluteRanges(
llvm::object::SectionedAddress{GetBaseAddress()}, llvm::object::SectionedAddress{GetBaseAddress()},
GetAddressByteSize(), [&](uint32_t index) { GetAddressByteSize(), [&](uint32_t index) {
uint32_t index_size = GetAddressByteSize(); uint32_t index_size = GetAddressByteSize();
dw_offset_t addr_base = GetAddrBase(); dw_offset_t addr_base = GetAddrBase();
lldb::offset_t offset = addr_base + index * index_size; lldb::offset_t offset =
addr_base + static_cast<lldb::offset_t>(index) * index_size;
return llvm::object::SectionedAddress{ return llvm::object::SectionedAddress{
m_dwarf.GetDWARFContext().getOrLoadAddrData().GetMaxU64( m_dwarf.GetDWARFContext().getOrLoadAddrData().GetMaxU64(
&offset, index_size)}; &offset, index_size)};
}); });
if (!llvm_ranges) if (!llvm_ranges)
return llvm_ranges.takeError(); return llvm_ranges.takeError();
DWARFRangeList ranges; DWARFRangeList ranges;
Show All 14 Lines

lldb/source/Plugins/SystemRuntime/MacOSX/SystemRuntimeMacOSX.cpp

Show First 20 LinesShow All 781 Lines▼ Show 20 Lines if (error.Success()) {
// //
// struct introspection_dispatch_pending_items_array_s { // struct introspection_dispatch_pending_items_array_s {
// uint32_t version; // uint32_t version;
// uint32_t size_of_item_info; // uint32_t size_of_item_info;
// introspection_dispatch_pending_item_info_s items[]; // introspection_dispatch_pending_item_info_s items[];
// } // }
offset_t offset = 0; offset_t offset = 0;
int i = 0; uint64_t i = 0;
uint32_t version = extractor.GetU32(&offset); uint32_t version = extractor.GetU32(&offset);
if (version == 1) { if (version == 1) {
pending_item_refs.new_style = true; pending_item_refs.new_style = true;
uint32_t item_size = extractor.GetU32(&offset); uint32_t item_size = extractor.GetU32(&offset);
uint32_t start_of_array_offset = offset; uint32_t start_of_array_offset = offset;
while (offset < pending_items_pointer.items_buffer_size && while (offset < pending_items_pointer.items_buffer_size &&
static_cast<size_t>(i) < pending_items_pointer.count) { i < pending_items_pointer.count) {
offset = start_of_array_offset + (i * item_size); offset = start_of_array_offset + (i * item_size);
ItemRefAndCodeAddress item; ItemRefAndCodeAddress item;
item.item_ref = extractor.GetAddress(&offset); item.item_ref = extractor.GetAddress(&offset);
item.code_address = extractor.GetAddress(&offset); item.code_address = extractor.GetAddress(&offset);
pending_item_refs.item_refs_and_code_addresses.push_back(item); pending_item_refs.item_refs_and_code_addresses.push_back(item);
i++; i++;
} }
} else { } else {
offset = 0; offset = 0;
pending_item_refs.new_style = false; pending_item_refs.new_style = false;
while (offset < pending_items_pointer.items_buffer_size && while (offset < pending_items_pointer.items_buffer_size &&
static_cast<size_t>(i) < pending_items_pointer.count) { i < pending_items_pointer.count) {
ItemRefAndCodeAddress item; ItemRefAndCodeAddress item;
item.item_ref = extractor.GetAddress(&offset); item.item_ref = extractor.GetAddress(&offset);
item.code_address = LLDB_INVALID_ADDRESS; item.code_address = LLDB_INVALID_ADDRESS;
pending_item_refs.item_refs_and_code_addresses.push_back(item); pending_item_refs.item_refs_and_code_addresses.push_back(item);
i++; i++;
} }
} }
} }
▲ Show 20 LinesShow All 170 LinesShow Last 20 Lines

lldb/source/Plugins/UnwindAssembly/x86/x86AssemblyInspectionEngine.cpp

Show First 20 LinesShow All 960 Lines▼ Show 20 Linesbool x86AssemblyInspectionEngine::GetNonCallSiteUnwindPlanFromAssembly(
std::vector<bool> saved_registers(32, false); std::vector<bool> saved_registers(32, false);
// Once the prologue has completed we'll save a copy of the unwind // Once the prologue has completed we'll save a copy of the unwind
// instructions If there is an epilogue in the middle of the function, after // instructions If there is an epilogue in the middle of the function, after
// that epilogue we'll reinstate the unwind setup -- we assume that some code // that epilogue we'll reinstate the unwind setup -- we assume that some code
// path jumps over the mid-function epilogue // path jumps over the mid-function epilogue
UnwindPlan::RowSP prologue_completed_row; // copy of prologue row of CFI UnwindPlan::RowSP prologue_completed_row; // copy of prologue row of CFI
int prologue_completed_sp_bytes_offset_from_cfa; // The sp value before the int prologue_completed_sp_bytes_offset_from_cfa = 0; // The sp value before the
// epilogue started executed // epilogue started executed
bool prologue_completed_is_aligned = false; bool prologue_completed_is_aligned = false;
std::vector<bool> prologue_completed_saved_registers; std::vector<bool> prologue_completed_saved_registers;
while (current_func_text_offset < size) { while (current_func_text_offset < size) {
int stack_offset, insn_len; int stack_offset, insn_len;
int machine_regno; // register numbers masked directly out of instructions int machine_regno; // register numbers masked directly out of instructions
uint32_t lldb_regno; // register numbers in lldb's eRegisterKindLLDB uint32_t lldb_regno; // register numbers in lldb's eRegisterKindLLDB
▲ Show 20 LinesShow All 638 LinesShow Last 20 Lines