This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
compiler-rt/lib/sanitizer_common/
-
lib/
-
sanitizer_common/
1
sanitizer_posix.cpp

Differential D140353

[Sanitizer] Fix page alignment for mmap calls
ClosedPublic

Authored by thetruestblue on Dec 19 2022, 4:15 PM.

Download Raw Diff

Details

Reviewers

vitalybuka
ro
yln
rsundahl
wrotki

Commits

rG1293e93ee3da: [Sanitizer] Fix page alignment for mmap calls

Summary

We are in the process of enabling sanitizer_common unit tests on arm64 for apple devices. rdar://101436019

The test CompactRingBuffer.int64 is failing on arm64 with the error:

==17265==ERROR: SanitizerTool failed to deallocate 0xfffffffffffff000 (-4096) bytes at address 0x000105c30000  
SanitizerTool: CHECK failed: sanitizer_posix.cpp:63 "(("unable to unmap" && 0)) != (0)" (0x0, 0x0) (tid=157296)

If page size is sufficiently larger than alignment then this code:

UnmapOrDie((void*)end, map_end - end);

end is will be greater than map_end causing the value passed to UnmapOrDie to be negative.

This is caused when GetPageSizeCached returns 16k and alignment is 8k.
map_size and what is mapped by mmap uses size and alignment which is smaller than what is calculated by end using the actual page size.
Therefore, map_end ends up being less than end.
The call to mmap is allocating sufficent page-aligned memory, because it calls RoundUp within MmapOrDieOnFatalError.
But this size is not being captured by map_size.

We can address this by rounding up map_size here to be page-aligned. This ensures that map_end will be greater than or equal to end and that it will match mmaps use of page-aligned value, and the
subsequent call to munmap will also be page-aligned.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

thetruestblue created this revision.Dec 19 2022, 4:15 PM

Herald added a project: Restricted Project. · View Herald TranscriptDec 19 2022, 4:15 PM

Herald added subscribers: Enna1, kristof.beyls. · View Herald Transcript

thetruestblue requested review of this revision.Dec 19 2022, 4:15 PM

Herald added a project: Restricted Project. · View Herald TranscriptDec 19 2022, 4:15 PM

Herald added a subscriber: Restricted Project. · View Herald Transcript

Harbormaster completed remote builds in B204055: Diff 484128.Dec 19 2022, 6:40 PM

thetruestblue updated this revision to Diff 484272.Dec 20 2022, 7:44 AM

Harbormaster completed remote builds in B204163: Diff 484272.Dec 20 2022, 8:15 AM

This fixes the case where map_end is greater than end because of page size and alignment difference.
However, I believe this function could use further refinement, I don't think it is handling "alignment" versus "page-aligned" adequately.
alignment is being treated as a size, rather than a page aligned location, which seems to be what we should be expecting here.
Particularly with the calls to UnmaporDie, which expect a page-aligned value.

vitalybuka accepted this revision.Dec 21 2022, 1:52 PM

vitalybuka added inline comments.

compiler-rt/lib/sanitizer_common/sanitizer_posix.cpp
106	Needs {}

This revision is now accepted and ready to land.Dec 21 2022, 1:52 PM

This revision was landed with ongoing or failed builds.Dec 22 2022, 10:26 AM

Closed by commit rG1293e93ee3da: [Sanitizer] Fix page alignment for mmap calls (authored by Blue Gaston <bgaston2@apple.com>). · Explain Why

This revision was automatically updated to reflect the committed changes.

Blue Gaston <bgaston2@apple.com> added a commit: rG1293e93ee3da: [Sanitizer] Fix page alignment for mmap calls.

@wrotki: you touched similar code recently. Can you do a post-merge review to convince yourself that this is doing the right thing? Thanks!

Revision Contents

Path

Size

compiler-rt/

lib/

sanitizer_common/

sanitizer_posix.cpp

11 lines

Diff 484883

compiler-rt/lib/sanitizer_common/sanitizer_posix.cpp

	Show First 20 Lines • Show All 81 Lines • ▼ Show 20 Lines
	// We want to map a chunk of address space aligned to 'alignment'.			// We want to map a chunk of address space aligned to 'alignment'.
	// We do it by mapping a bit more and then unmapping redundant pieces.			// We do it by mapping a bit more and then unmapping redundant pieces.
	// We probably can do it with fewer syscalls in some OS-dependent way.			// We probably can do it with fewer syscalls in some OS-dependent way.
	void *MmapAlignedOrDieOnFatalError(uptr size, uptr alignment,			void *MmapAlignedOrDieOnFatalError(uptr size, uptr alignment,
	const char *mem_type) {			const char *mem_type) {
	CHECK(IsPowerOfTwo(size));			CHECK(IsPowerOfTwo(size));
	CHECK(IsPowerOfTwo(alignment));			CHECK(IsPowerOfTwo(alignment));
	uptr map_size = size + alignment;			uptr map_size = size + alignment;
				// mmap maps entire pages and rounds up map_size needs to be a an integral
				// number of pages.
				// We need to be aware of this size for calculating end and for unmapping
				// fragments before and after the alignment region.
				map_size = RoundUpTo(map_size, GetPageSizeCached());
	uptr map_res = (uptr)MmapOrDieOnFatalError(map_size, mem_type);			uptr map_res = (uptr)MmapOrDieOnFatalError(map_size, mem_type);
	if (UNLIKELY(!map_res))			if (UNLIKELY(!map_res))
	return nullptr;			return nullptr;
	uptr map_end = map_res + map_size;
	uptr res = map_res;			uptr res = map_res;
	if (!IsAligned(res, alignment)) {			if (!IsAligned(res, alignment)) {
	res = (map_res + alignment - 1) & ~(alignment - 1);			res = (map_res + alignment - 1) & ~(alignment - 1);
	UnmapOrDie((void*)map_res, res - map_res);			UnmapOrDie((void*)map_res, res - map_res);
	}			}
				uptr map_end = map_res + map_size;
	uptr end = res + size;			uptr end = res + size;
	end = RoundUpTo(end, GetPageSizeCached());			end = RoundUpTo(end, GetPageSizeCached());
	if (end != map_end)			if (end != map_end) {
				vitalybukaUnsubmitted Not Done Reply Inline Actions Needs {} vitalybuka: Needs {}
				CHECK_LT(end, map_end);
	UnmapOrDie((void*)end, map_end - end);			UnmapOrDie((void*)end, map_end - end);
				}
	return (void*)res;			return (void*)res;
	}			}

	void MmapNoReserveOrDie(uptr size, const char mem_type) {			void MmapNoReserveOrDie(uptr size, const char mem_type) {
	size = RoundUpTo(size, GetPageSizeCached());			size = RoundUpTo(size, GetPageSizeCached());
	uptr p = MmapNamed(nullptr, size, PROT_READ \| PROT_WRITE,			uptr p = MmapNamed(nullptr, size, PROT_READ \| PROT_WRITE,
	MAP_PRIVATE \| MAP_ANON \| MAP_NORESERVE, mem_type);			MAP_PRIVATE \| MAP_ANON \| MAP_NORESERVE, mem_type);
	int reserrno;			int reserrno;
	▲ Show 20 Lines • Show All 293 Lines • Show Last 20 Lines