This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
compiler-rt/lib/scudo/standalone/
-
lib/
-
scudo/
-
standalone/
15/16
combined.h
-
flags.inc
-
fuzz/
-
get_error_info_fuzzer.cpp
-
tests/
-
combined_test.cpp

Differential D140932

Dynamically allocate scudo allocation buffer.
ClosedPublic

Authored by fmayer on Jan 3 2023, 5:13 PM.

Download Raw Diff

Details

Reviewers

hctim
eugenis

Commits

rG2426cc773a9d: Dynamically allocate scudo allocation buffer.

Summary

This is so we can increase the buffer size for finding elusive bugs.

Tested by hand with this program

int main(int argc, char** argv) {
  if (argc < 2)
    return 1;
  int n = atoi(argv[1]);
  char* x = reinterpret_cast<char*>(malloc(1));
  *((volatile char*)x) = 1;
  free(x);
  for (; n > 0; --n) {
    char* y = reinterpret_cast<char*>(malloc(1024));
    *((volatile char*)y) = 1;
    free(y);
  }
  *x = 2;
  return 0;
}

SCUDO_OPTIONS=allocation_ring_buffer_size=30000 ./uaf 1000000
-> no allocation trace
SCUDO_OPTIONS=allocation_ring_buffer_size=30000000 ./uaf 1000000
-> allocation trace

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

fmayer created this revision.Jan 3 2023, 5:13 PM

Herald added a project: Restricted Project. · View Herald TranscriptJan 3 2023, 5:13 PM

Herald added subscribers: Chia-hungDuan, Enna1, cryptoad. · View Herald Transcript

fmayer requested review of this revision.Jan 3 2023, 5:13 PM

Herald added a project: Restricted Project. · View Herald TranscriptJan 3 2023, 5:13 PM

Herald added a subscriber: Restricted Project. · View Herald Transcript

fmayer edited the summary of this revision. (Show Details)Jan 3 2023, 5:13 PM

unneeded includes

Harbormaster completed remote builds in B205564: Diff 486122.Jan 3 2023, 5:40 PM

Chia-hungDuan added inline comments.Jan 4 2023, 4:57 PM

compiler-rt/lib/scudo/standalone/combined.h
1049	I'm thinking if we do something like the concept in llvm::TrailingObjects, such as struct TrailingEntries { ... GetRingBufferEntry(...); }; struct AllocationRingBuffer : TrailingEntries { ... }; Will it look better?

fmayer added inline comments.Jan 9 2023, 4:02 PM

compiler-rt/lib/scudo/standalone/combined.h
1049	I thought about this, but getting this right in a standards-compliant way is a quite subtle exercise. E.g. I think we cannot just use the `this` pointer from the AllocationRingBuffer, because that would be going over the object boundaries from a C++ standards perspective. This is why I separately retain the `RawRingBuffer` pointer. All in all I am not sure it's worth it.

fmayer added a reviewer: hctim.Jan 9 2023, 4:09 PM

fmayer added a reviewer: eugenis.Jan 9 2023, 4:33 PM

Chia-hungDuan added inline comments.Jan 9 2023, 5:17 PM

compiler-rt/lib/scudo/standalone/combined.h
1049	I see. I think casting `this` to access the memory address before/after it may be safe if we manage the entire raw memory by ourselves. But l agree with you, I'm not so certain if there's any tricky part. I'm trying to make the allocator(in this combined.h) look simpler so if we can bundle certain functionalities together, the later code restructuring may be easier. That's why I was thinking the trailing structure. But I think it's better to have this first (it reduces the scudo metadata size on certain platforms that don't need a big entry buffer). Thus don't worry about this suggestion, thanks!

fmayer marked 2 inline comments as done.Jan 10 2023, 2:44 PM

hctim added inline comments.Jan 10 2023, 3:44 PM

compiler-rt/lib/scudo/standalone/combined.h
181–182	not sure what extra information this comment is telling me...
945–957	why not just allow the fuzzer to replace the entire ringbuffer?
950	this seems unnecessary, the regular API can be used?
1064–1067	can you have just `RingBuffer` and not have this raw variant? it seems to be only used in two places (there are more references to the name but they're just from the same-named argument). the invariant doesn't always hold and seems tricky to maintain. for example, it doesn't hold when fuzzing is under operation.

remove comment

compiler-rt/lib/scudo/standalone/combined.h
945–957	No, this is not how this gets used. The fuzzer creates the buffer for itself, and then uses a STATIC method on that. As such, what's in the `Allocator` object doesn't matter. What does matter is that the `Size` member of the RingBuffer is consistent with its size, otherwise we will trivially get loads of crashes.
950	See other comment about fuzzer API.
1064–1067	This is to be strictly standards compliant (and to retain some convenience). I think what we could do is _only_ keep the `RawRingBuffer` and cast it for all uses of `RingBuffer`.

fmayer added inline comments.Jan 11 2023, 10:44 AM

compiler-rt/lib/scudo/standalone/combined.h
1064–1067	the invariant doesn't always hold and seems tricky to maintain. for example, it doesn't hold when fuzzing is under operation. It does always hold. This only gets assigned in one place. Fuzzing is irrelevant because it doesn't use an Allocator object.

hctim added inline comments.Jan 11 2023, 11:33 AM

compiler-rt/lib/scudo/standalone/combined.h
945–957	yeah, so the fuzzer calls `getErrorInfo` using a fuzzer-generated ringbuffer. previously `getRingBufferErrorInfo` used `AllocationRingBuffer::NumEntries` to determine the size of the ringbuffer, so that definition was ifdef'd. now the size of the ringbuffer is dynamic and accessed through `RingBuffer->Size`. so why not just allow the fuzzer to control the size AND contentx of the ringbuffer, and just set RingBuffer->Size to the right value? i assumed that there was some reference during `getErrorInfo` to the ringbuffer via. the allocator, but if that's not the case, just delete these functions (getRingBufferSizeForFuzzer, setRingBufferForFuzzing)?

Harbormaster completed remote builds in B207140: Diff 488284.Jan 11 2023, 11:56 AM

change fuzzer

fmayer added inline comments.Jan 11 2023, 12:29 PM

compiler-rt/lib/scudo/standalone/combined.h
945–957	I really disagree to leak the structs to the fuzzer (as discussed offline), it's much less neat than providing one function to it to fix up the `Size`. Either way we are adding an API for the fuzzer: either through two structs and implicit invariants about them, or with one function and the fuzzer can otherwise still treat the `RingBuffer` as an opaque blob. The other suggestion is a good point, I allowed the fuzzer to control both the Size and the content.

hctim accepted this revision.Jan 11 2023, 12:54 PM

This revision is now accepted and ready to land.Jan 11 2023, 12:54 PM

If you could please change InitRingBuffer & RingBufferSizeInBytes to abide to the LLVM coding standard (https://llvm.org/docs/CodingStandards.html#name-types-functions-variables-and-enumerators-properly)

style

more style

In D140932#4045007, @cryptoad wrote:

If you could please change InitRingBuffer & RingBufferSizeInBytes to abide to the LLVM coding standard (https://llvm.org/docs/CodingStandards.html#name-types-functions-variables-and-enumerators-properly)

Thanks. Also changed GetRingBufferEntry to getRingBufferEntry.

fmayer marked 4 inline comments as done.Jan 11 2023, 1:19 PM

Harbormaster completed remote builds in B207191: Diff 488353.Jan 11 2023, 2:52 PM

LGTM

compiler-rt/lib/scudo/standalone/combined.h
1064–1067	I think what we could do is _only_ keep the RawRingBuffer and cast it for all uses of RingBuffer. I'd like this. Add an accessor function or something - the current code wastes memory, however little.

evgenii's comment

fmayer marked an inline comment as done.Jan 11 2023, 4:44 PM

This revision was landed with ongoing or failed builds.Jan 11 2023, 4:53 PM

Closed by commit rG2426cc773a9d: Dynamically allocate scudo allocation buffer. (authored by fmayer). · Explain Why

This revision was automatically updated to reflect the committed changes.

fmayer added a commit: rG2426cc773a9d: Dynamically allocate scudo allocation buffer..

Harbormaster completed remote builds in B207233: Diff 488410.Jan 11 2023, 5:07 PM

shafik added a subscriber: shafik.Jan 11 2023, 5:30 PM

shafik added inline comments.

compiler-rt/lib/scudo/standalone/combined.h

1265

On my local build I am seeing the following diagnostic:

combined.h:1267:47: error: conversion from ‘scudo::uptr’ {aka ‘long unsigned int’} to ‘scudo::u32’ {aka ‘unsigned int’} may change value [-Werror=conversion]
         getRingBufferEntry(RawRingBuffer, Pos % getRingBuffer()->Size);
                                           ~~~~^~~~~~~~~~~~~~~~~~~~~~~

fmayer added inline comments.Jan 11 2023, 5:30 PM

compiler-rt/lib/scudo/standalone/combined.h
1265	Sorry, should be fixed in rGed864f0a09d1fc7eae96faa4eb35b33880e6c478

Hi, I realized that the clang-ppc64le-rhel bot is exhibiting the following error when building this patch (https://lab.llvm.org/buildbot/#/builders/57/builds/23848/steps/7/logs/stdio):

FAILED: compiler-rt/lib/scudo/standalone/tests/ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/runtimes/runtimes-bins/compiler-rt/lib/scudo/standalone/tests/ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o 
cd /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/runtimes/runtimes-bins/compiler-rt/lib/scudo/standalone/tests && /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/./bin/clang -fPIC -fno-semantic-interposition -fvisibility-inlines-hidden -Werror -Werror=date-time -Werror=unguarded-availability-new -Wall -Wextra -Wno-unused-parameter -Wwrite-strings -Wcast-qual -Wmissing-field-initializers -Wimplicit-fallthrough -Wcovered-switch-default -Wno-noexcept-type -Wnon-virtual-dtor -Wdelete-non-virtual-dtor -Wsuggest-override -Wno-comment -Wstring-conversion -Wmisleading-indentation -Wctad-maybe-unsupported -fdiagnostics-color -ffunction-sections -fdata-sections -Wall -Werror -Wno-unused-parameter -Wno-unknown-warning-option -Wthread-safety -Wthread-safety-reference -Wthread-safety-beta -g -Wno-covered-switch-default -Wno-suggest-override -DGTEST_NO_LLVM_SUPPORT=1 -DGTEST_HAS_RTTI=0 -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/include -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/include -DGTEST_HAS_RTTI=0 -g -Wno-mismatched-new-delete -m64 -fno-function-sections -c -o ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp
In file included from /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:10:
In file included from /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/scudo_unit_test.h:15:
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:1628:28: error: comparison of integers of different signs: 'const unsigned long' and 'const int' [-Werror,-Wsign-compare]
GTEST_IMPL_CMP_HELPER_(GT, >);
~~~~~~~~~~~~~~~~~~~~~~~~~~~^~
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:1608:12: note: expanded from macro 'GTEST_IMPL_CMP_HELPER_'
  if (val1 op val2) {\
      ~~~~ ^  ~~~~
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:708:3: note: in instantiation of function template specialization 'testing::internal::CmpHelperGT<unsigned long, int>' requested here
  ASSERT_GT(Size, 0);
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:2076:32: note: expanded from macro 'ASSERT_GT'
# define ASSERT_GT(val1, val2) GTEST_ASSERT_GT(val1, val2)
                               ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:2050:44: note: expanded from macro 'GTEST_ASSERT_GT'
  ASSERT_PRED_FORMAT2(::testing::internal::CmpHelperGT, val1, val2)
                                           ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:705:1: note: in instantiation of member function 'ScudoCombinedTestRingBufferSize<scudo::AndroidSvelteConfig>::Run' requested here
SCUDO_TYPED_TEST(ScudoCombinedTest, RingBufferSize) {
^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:129:3: note: expanded from macro 'SCUDO_TYPED_TEST'
  SCUDO_TYPED_TEST_ALL_TYPES(FIXTURE, NAME)                                    \
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:115:3: note: expanded from macro 'SCUDO_TYPED_TEST_ALL_TYPES'
  SCUDO_TYPED_TEST_TYPE(FIXTURE, NAME, AndroidSvelteConfig)                    \
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:122:70: note: expanded from macro 'SCUDO_TYPED_TEST_TYPE'
  TEST_F(FIXTURE##NAME##_##TYPE, NAME) { FIXTURE##NAME<scudo::TYPE>::Run(); }
                                                                     ^
1 error generated.

Would you be able to assist in resolving this issue?

Herald added subscribers: yaneury, supersymetrie. · View Herald TranscriptJan 16 2023, 9:32 AM

tislam added a subscriber: tislam.Jan 16 2023, 9:36 AM

In D140932#4056785, @amyk wrote:

Hi, I realized that the clang-ppc64le-rhel bot is exhibiting the following error when building this patch (https://lab.llvm.org/buildbot/#/builders/57/builds/23848/steps/7/logs/stdio):

FAILED: compiler-rt/lib/scudo/standalone/tests/ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/runtimes/runtimes-bins/compiler-rt/lib/scudo/standalone/tests/ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o 
cd /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/runtimes/runtimes-bins/compiler-rt/lib/scudo/standalone/tests && /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/build/./bin/clang -fPIC -fno-semantic-interposition -fvisibility-inlines-hidden -Werror -Werror=date-time -Werror=unguarded-availability-new -Wall -Wextra -Wno-unused-parameter -Wwrite-strings -Wcast-qual -Wmissing-field-initializers -Wimplicit-fallthrough -Wcovered-switch-default -Wno-noexcept-type -Wnon-virtual-dtor -Wdelete-non-virtual-dtor -Wsuggest-override -Wno-comment -Wstring-conversion -Wmisleading-indentation -Wctad-maybe-unsupported -fdiagnostics-color -ffunction-sections -fdata-sections -Wall -Werror -Wno-unused-parameter -Wno-unknown-warning-option -Wthread-safety -Wthread-safety-reference -Wthread-safety-beta -g -Wno-covered-switch-default -Wno-suggest-override -DGTEST_NO_LLVM_SUPPORT=1 -DGTEST_HAS_RTTI=0 -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/include -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone -I/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/include -DGTEST_HAS_RTTI=0 -g -Wno-mismatched-new-delete -m64 -fno-function-sections -c -o ScudoUnitTestsObjects.combined_test.cpp.powerpc64le.o /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp
In file included from /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:10:
In file included from /home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/scudo_unit_test.h:15:
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:1628:28: error: comparison of integers of different signs: 'const unsigned long' and 'const int' [-Werror,-Wsign-compare]
GTEST_IMPL_CMP_HELPER_(GT, >);
~~~~~~~~~~~~~~~~~~~~~~~~~~~^~
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:1608:12: note: expanded from macro 'GTEST_IMPL_CMP_HELPER_'
  if (val1 op val2) {\
      ~~~~ ^  ~~~~
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:708:3: note: in instantiation of function template specialization 'testing::internal::CmpHelperGT<unsigned long, int>' requested here
  ASSERT_GT(Size, 0);
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:2076:32: note: expanded from macro 'ASSERT_GT'
# define ASSERT_GT(val1, val2) GTEST_ASSERT_GT(val1, val2)
                               ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/runtimes/../third-party/unittest/googletest/include/gtest/gtest.h:2050:44: note: expanded from macro 'GTEST_ASSERT_GT'
  ASSERT_PRED_FORMAT2(::testing::internal::CmpHelperGT, val1, val2)
                                           ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:705:1: note: in instantiation of member function 'ScudoCombinedTestRingBufferSize<scudo::AndroidSvelteConfig>::Run' requested here
SCUDO_TYPED_TEST(ScudoCombinedTest, RingBufferSize) {
^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:129:3: note: expanded from macro 'SCUDO_TYPED_TEST'
  SCUDO_TYPED_TEST_ALL_TYPES(FIXTURE, NAME)                                    \
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:115:3: note: expanded from macro 'SCUDO_TYPED_TEST_ALL_TYPES'
  SCUDO_TYPED_TEST_TYPE(FIXTURE, NAME, AndroidSvelteConfig)                    \
  ^
/home/buildbots/docker-RHEL84-buildbot/SetupBot/worker_env/ppc64le-clang-rhel-test/clang-ppc64le-rhel/llvm-project/compiler-rt/lib/scudo/standalone/tests/combined_test.cpp:122:70: note: expanded from macro 'SCUDO_TYPED_TEST_TYPE'
  TEST_F(FIXTURE##NAME##_##TYPE, NAME) { FIXTURE##NAME<scudo::TYPE>::Run(); }
                                                                     ^
1 error generated.

Would you be able to assist in resolving this issue?

Seems like this was fixed in rG6be602f79cbf501f0e67cee3f926c11fa7490d4f

Revision Contents

Path

Size

compiler-rt/

lib/

scudo/

standalone/

combined.h

89 lines

flags.inc

3 lines

fuzz/

get_error_info_fuzzer.cpp

11 lines

tests/

combined_test.cpp

14 lines

Diff 488410

compiler-rt/lib/scudo/standalone/combined.h

Show First 20 Lines • Show All 171 Lines • ▼ Show 20 Lines void init() {

Stats.init(); Stats.init();

const s32 ReleaseToOsIntervalMs = getFlags()->release_to_os_interval_ms; const s32 ReleaseToOsIntervalMs = getFlags()->release_to_os_interval_ms;

Primary.init(ReleaseToOsIntervalMs); Primary.init(ReleaseToOsIntervalMs);

Secondary.init(&Stats, ReleaseToOsIntervalMs); Secondary.init(&Stats, ReleaseToOsIntervalMs);

Quarantine.init( Quarantine.init(

static_cast<uptr>(getFlags()->quarantine_size_kb << 10), static_cast<uptr>(getFlags()->quarantine_size_kb << 10),

static_cast<uptr>(getFlags()->thread_local_quarantine_size_kb << 10)); static_cast<uptr>(getFlags()->thread_local_quarantine_size_kb << 10));

initRingBuffer();

} }

hctimUnsubmitted

Done

not sure what extra information this comment is telling me...

hctim: not sure what extra information this comment is telling me...

// Initialize the embedded GWP-ASan instance. Requires the main allocator to // Initialize the embedded GWP-ASan instance. Requires the main allocator to

// be functional, best called from PostInitCallback. // be functional, best called from PostInitCallback.

void initGwpAsan() { void initGwpAsan() {

#ifdef GWP_ASAN_HOOKS #ifdef GWP_ASAN_HOOKS

gwp_asan::options::Options Opt; gwp_asan::options::Options Opt;

Opt.Enabled = getFlags()->GWP_ASAN_Enabled; Opt.Enabled = getFlags()->GWP_ASAN_Enabled;

Opt.MaxSimultaneousAllocations = Opt.MaxSimultaneousAllocations =

▲ Show 20 Lines • Show All 736 Lines • ▼ Show 20 Lines #endif // GWP_ASAN_HOOKS

const char *getRegionInfoArrayAddress() const { const char *getRegionInfoArrayAddress() const {

return Primary.getRegionInfoArrayAddress(); return Primary.getRegionInfoArrayAddress();

} }

static uptr getRegionInfoArraySize() { static uptr getRegionInfoArraySize() {

return PrimaryT::getRegionInfoArraySize(); return PrimaryT::getRegionInfoArraySize();

} }

const char *getRingBufferAddress() const { const char *getRingBufferAddress() {

return reinterpret_cast<const char *>(&RingBuffer); initThreadMaybe();

return reinterpret_cast<const char *>(getRingBuffer());

} }

static uptr getRingBufferSize() { return sizeof(RingBuffer); } uptr getRingBufferSize() {

initThreadMaybe();

return ringBufferSizeInBytes(getRingBuffer()->Size);

}

static bool setRingBufferSizeForBuffer(char *Buffer, size_t Size) {

// Need at least one entry.

if (Size < sizeof(AllocationRingBuffer) +

sizeof(typename AllocationRingBuffer::Entry)) {

return false;

}

hctimUnsubmitted

Done

this seems unnecessary, the regular API can be used?

hctim: this seems unnecessary, the regular API can be used?

fmayerAuthorUnsubmitted

Done

See other comment about fuzzer API.

fmayer: See other comment about fuzzer API.

AllocationRingBuffer *RingBuffer =

reinterpret_cast<AllocationRingBuffer *>(Buffer);

RingBuffer->Size = (Size - sizeof(AllocationRingBuffer)) /

sizeof(typename AllocationRingBuffer::Entry);

return true;

}

hctimUnsubmitted

Done

return RingBufferSizeInBytes(RingBuffer->Size);

}

- static void setRingBufferFuzzMode(char *Buffer) {

- AllocationRingBuffer *RingBuffer =

- reinterpret_cast<AllocationRingBuffer *>(Buffer);

- RingBuffer->Size = 2;

+ static void setRingBufferForFuzzing(RingBuffer *RB) {

+ RingBuffer = RB;

}

static uptr getRingBufferSizeForFuzzer() { return RingBufferSizeInBytes(2); }

why not just allow the fuzzer to replace the entire ringbuffer?

hctim: why not just allow the fuzzer to replace the entire ringbuffer?

fmayerAuthorUnsubmitted

Done

No, this is not how this gets used. The fuzzer creates the buffer for itself, and then uses a STATIC method on that. As such, what's in the Allocator object doesn't matter. What does matter is that the Size member of the RingBuffer is consistent with its size, otherwise we will trivially get loads of crashes.

fmayer: No, this is not how this gets used. The fuzzer creates the buffer for itself, and then uses a…

hctimUnsubmitted

Done

yeah, so the fuzzer calls getErrorInfo using a fuzzer-generated ringbuffer.

previously getRingBufferErrorInfo used AllocationRingBuffer::NumEntries to determine the size of the ringbuffer, so that definition was ifdef'd.

now the size of the ringbuffer is dynamic and accessed through RingBuffer->Size.

so why not just allow the fuzzer to control the size AND contentx of the ringbuffer, and just set RingBuffer->Size to the right value?

i assumed that there was some reference during getErrorInfo to the ringbuffer via. the allocator, but if that's not the case, just delete these functions (getRingBufferSizeForFuzzer, setRingBufferForFuzzing)?

hctim: yeah, so the fuzzer calls `getErrorInfo` using a fuzzer-generated ringbuffer. previously…

fmayerAuthorUnsubmitted

Done

I really disagree to leak the structs to the fuzzer (as discussed offline), it's much less neat than providing one function to it to fix up the Size. Either way we are adding an API for the fuzzer: either through two structs and implicit invariants about them, or with one function and the fuzzer can otherwise still treat the RingBuffer as an opaque blob.

The other suggestion is a good point, I allowed the fuzzer to control both the Size and the content.

fmayer: I really disagree to leak the structs to the fuzzer (as discussed offline), it's much less neat…

static const uptr MaxTraceSize = 64; static const uptr MaxTraceSize = 64;

static void collectTraceMaybe(const StackDepot *Depot, static void collectTraceMaybe(const StackDepot *Depot,

uintptr_t (&Trace)[MaxTraceSize], u32 Hash) { uintptr_t (&Trace)[MaxTraceSize], u32 Hash) {

uptr RingPos, Size; uptr RingPos, Size;

if (!Depot->find(Hash, &RingPos, &Size)) if (!Depot->find(Hash, &RingPos, &Size))

return; return;

for (unsigned I = 0; I != Size && I != MaxTraceSize; ++I) for (unsigned I = 0; I != Size && I != MaxTraceSize; ++I)

▲ Show 20 Lines • Show All 75 Lines • ▼ Show 20 Lines

#ifdef GWP_ASAN_HOOKS #ifdef GWP_ASAN_HOOKS

gwp_asan::GuardedPoolAllocator GuardedAlloc; gwp_asan::GuardedPoolAllocator GuardedAlloc;

uptr GuardedAllocSlotSize = 0; uptr GuardedAllocSlotSize = 0;

#endif // GWP_ASAN_HOOKS #endif // GWP_ASAN_HOOKS

StackDepot Depot; StackDepot Depot;

struct AllocationRingBuffer { struct AllocationRingBuffer {

Chia-hungDuanUnsubmitted

Done

I'm thinking if we do something like the concept in llvm::TrailingObjects, such as

struct TrailingEntries {
  ... GetRingBufferEntry(...);
};

struct AllocationRingBuffer : TrailingEntries {
...
};

Will it look better?

Chia-hungDuan: I'm thinking if we do something like the concept in llvm::TrailingObjects, such as ``` struct…

fmayerAuthorUnsubmitted

Done

I thought about this, but getting this right in a standards-compliant way is a quite subtle exercise. E.g. I think we cannot just use the this pointer from the AllocationRingBuffer, because that would be going over the object boundaries from a C++ standards perspective. This is why I separately retain the RawRingBuffer pointer.

All in all I am not sure it's worth it.

fmayer: I thought about this, but getting this right in a standards-compliant way is a quite subtle…

Chia-hungDuanUnsubmitted

Done

I see. I think casting this to access the memory address before/after it may be safe if we manage the entire raw memory by ourselves. But l agree with you, I'm not so certain if there's any tricky part.

I'm trying to make the allocator(in this combined.h) look simpler so if we can bundle certain functionalities together, the later code restructuring may be easier. That's why I was thinking the trailing structure. But I think it's better to have this first (it reduces the scudo metadata size on certain platforms that don't need a big entry buffer). Thus don't worry about this suggestion, thanks!

Chia-hungDuan: I see. I think casting `this` to access the memory address before/after it may be safe if we…

struct Entry { struct Entry {

atomic_uptr Ptr; atomic_uptr Ptr;

atomic_uptr AllocationSize; atomic_uptr AllocationSize;

atomic_u32 AllocationTrace; atomic_u32 AllocationTrace;

atomic_u32 AllocationTid; atomic_u32 AllocationTid;

atomic_u32 DeallocationTrace; atomic_u32 DeallocationTrace;

atomic_u32 DeallocationTid; atomic_u32 DeallocationTid;

}; };

atomic_uptr Pos; atomic_uptr Pos;

#ifdef SCUDO_FUZZ u32 Size;

static const uptr NumEntries = 2; // An array of Size (at least one) elements of type Entry is immediately

#else // following to this struct.

static const uptr NumEntries = 32768;

#endif

Entry Entries[NumEntries];

}; };

AllocationRingBuffer RingBuffer = {}; // Pointer to memory mapped area starting with AllocationRingBuffer struct,

// and immediately followed by Size elements of type Entry.

char *RawRingBuffer = {};

hctimUnsubmitted

Done

can you have just RingBuffer and not have this raw variant? it seems to be only used in two places (there are more references to the name but they're just from the same-named argument).

the invariant doesn't always hold and seems tricky to maintain. for example, it doesn't hold when fuzzing is under operation.

hctim: can you have just `RingBuffer` and not have this raw variant? it seems to be only used in two…

fmayerAuthorUnsubmitted

Done

This is to be strictly standards compliant (and to retain some convenience). I think what we could do is _only_ keep the RawRingBuffer and cast it for all uses of RingBuffer.

fmayer: This is to be strictly standards compliant (and to retain some convenience). I think what we…

fmayerAuthorUnsubmitted

Done

the invariant doesn't always hold and seems tricky to maintain. for example, it doesn't hold when fuzzing is under operation.

It does always hold. This only gets assigned in one place. Fuzzing is irrelevant because it doesn't use an Allocator object.

fmayer: > the invariant doesn't always hold and seems tricky to maintain. for example, it doesn't hold…

eugenisUnsubmitted

Done

I think what we could do is _only_ keep the RawRingBuffer and cast it for all uses of RingBuffer.

I'd like this. Add an accessor function or something - the current code wastes memory, however little.

eugenis: > I think what we could do is _only_ keep the RawRingBuffer and cast it for all uses of…

// The following might get optimized out by the compiler. // The following might get optimized out by the compiler.

NOINLINE void performSanityChecks() { NOINLINE void performSanityChecks() {

// Verify that the header offset field can hold the maximum offset. In the // Verify that the header offset field can hold the maximum offset. In the

// case of the Secondary allocator, it takes care of alignment and the // case of the Secondary allocator, it takes care of alignment and the

// offset will always be small. In the case of the Primary, the worst case // offset will always be small. In the case of the Primary, the worst case

// scenario happens in the last size class, when the backend allocation // scenario happens in the last size class, when the backend allocation

// would already be aligned on the requested alignment, which would happen // would already be aligned on the requested alignment, which would happen

// to be the maximum alignment that would fit in that size class. As a // to be the maximum alignment that would fit in that size class. As a

▲ Show 20 Lines • Show All 179 Lines • ▼ Show 20 Lines void storePrimaryAllocationStackMaybe(Options Options, void *Ptr) {

auto *Ptr32 = reinterpret_cast<u32 *>(Ptr); auto *Ptr32 = reinterpret_cast<u32 *>(Ptr);

Ptr32[MemTagAllocationTraceIndex] = collectStackTrace(); Ptr32[MemTagAllocationTraceIndex] = collectStackTrace();

Ptr32[MemTagAllocationTidIndex] = getThreadID(); Ptr32[MemTagAllocationTidIndex] = getThreadID();

} }

void storeRingBufferEntry(void *Ptr, u32 AllocationTrace, u32 AllocationTid, void storeRingBufferEntry(void *Ptr, u32 AllocationTrace, u32 AllocationTid,

uptr AllocationSize, u32 DeallocationTrace, uptr AllocationSize, u32 DeallocationTrace,

u32 DeallocationTid) { u32 DeallocationTid) {

uptr Pos = atomic_fetch_add(&RingBuffer.Pos, 1, memory_order_relaxed); uptr Pos = atomic_fetch_add(&getRingBuffer()->Pos, 1, memory_order_relaxed);

typename AllocationRingBuffer::Entry *Entry = typename AllocationRingBuffer::Entry *Entry =

&RingBuffer.Entries[Pos % AllocationRingBuffer::NumEntries]; getRingBufferEntry(RawRingBuffer, Pos % getRingBuffer()->Size);

shafikUnsubmitted

Not Done

On my local build I am seeing the following diagnostic:

combined.h:1267:47: error: conversion from ‘scudo::uptr’ {aka ‘long unsigned int’} to ‘scudo::u32’ {aka ‘unsigned int’} may change value [-Werror=conversion]
         getRingBufferEntry(RawRingBuffer, Pos % getRingBuffer()->Size);
                                           ~~~~^~~~~~~~~~~~~~~~~~~~~~~

shafik: On my local build I am seeing the following diagnostic: ``` combined.h:1267:47: error…

fmayerAuthorUnsubmitted

Done

Sorry, should be fixed in rGed864f0a09d1fc7eae96faa4eb35b33880e6c478

fmayer: Sorry, should be fixed in rGed864f0a09d1fc7eae96faa4eb35b33880e6c478

// First invalidate our entry so that we don't attempt to interpret a // First invalidate our entry so that we don't attempt to interpret a

// partially written state in getSecondaryErrorInfo(). The fences below // partially written state in getSecondaryErrorInfo(). The fences below

// ensure that the compiler does not move the stores to Ptr in between the // ensure that the compiler does not move the stores to Ptr in between the

// stores to the other fields. // stores to the other fields.

atomic_store_relaxed(&Entry->Ptr, 0); atomic_store_relaxed(&Entry->Ptr, 0);

__atomic_signal_fence(__ATOMIC_SEQ_CST); __atomic_signal_fence(__ATOMIC_SEQ_CST);

▲ Show 20 Lines • Show All 127 Lines • ▼ Show 20 Lines #endif // GWP_ASAN_HOOKS

static void getRingBufferErrorInfo(struct scudo_error_info *ErrorInfo, static void getRingBufferErrorInfo(struct scudo_error_info *ErrorInfo,

size_t &NextErrorReport, size_t &NextErrorReport,

uintptr_t FaultAddr, uintptr_t FaultAddr,

const StackDepot *Depot, const StackDepot *Depot,

const char *RingBufferPtr) { const char *RingBufferPtr) {

auto *RingBuffer = auto *RingBuffer =

reinterpret_cast<const AllocationRingBuffer *>(RingBufferPtr); reinterpret_cast<const AllocationRingBuffer *>(RingBufferPtr);

if (!RingBuffer)

return; // just in case; called before init

uptr Pos = atomic_load_relaxed(&RingBuffer->Pos); uptr Pos = atomic_load_relaxed(&RingBuffer->Pos);

for (uptr I = Pos - 1; I != Pos - 1 - AllocationRingBuffer::NumEntries && for (uptr I = Pos - 1;

NextErrorReport != NumErrorReports; I != Pos - 1 - RingBuffer->Size && NextErrorReport != NumErrorReports;

--I) { --I) {

auto *Entry = &RingBuffer->Entries[I % AllocationRingBuffer::NumEntries]; auto *Entry = getRingBufferEntry(RingBufferPtr, I % RingBuffer->Size);

uptr EntryPtr = atomic_load_relaxed(&Entry->Ptr); uptr EntryPtr = atomic_load_relaxed(&Entry->Ptr);

if (!EntryPtr) if (!EntryPtr)

continue; continue;

uptr UntaggedEntryPtr = untagPointer(EntryPtr); uptr UntaggedEntryPtr = untagPointer(EntryPtr);

uptr EntrySize = atomic_load_relaxed(&Entry->AllocationSize); uptr EntrySize = atomic_load_relaxed(&Entry->AllocationSize);

u32 AllocationTrace = atomic_load_relaxed(&Entry->AllocationTrace); u32 AllocationTrace = atomic_load_relaxed(&Entry->AllocationTrace);

u32 AllocationTid = atomic_load_relaxed(&Entry->AllocationTid); u32 AllocationTid = atomic_load_relaxed(&Entry->AllocationTid);

▲ Show 20 Lines • Show All 48 Lines • ▼ Show 20 Lines #endif // GWP_ASAN_HOOKS

} }

uptr getStats(ScopedString *Str) { uptr getStats(ScopedString *Str) {

Primary.getStats(Str); Primary.getStats(Str);

Secondary.getStats(Str); Secondary.getStats(Str);

Quarantine.getStats(Str); Quarantine.getStats(Str);

return Str->length(); return Str->length();

} }

static typename AllocationRingBuffer::Entry *

getRingBufferEntry(char *RawRingBuffer, u32 N) {

return &reinterpret_cast<typename AllocationRingBuffer::Entry *>(

&RawRingBuffer[sizeof(AllocationRingBuffer)])[N];

}

static const typename AllocationRingBuffer::Entry *

getRingBufferEntry(const char *RawRingBuffer, u32 N) {

return &reinterpret_cast<const typename AllocationRingBuffer::Entry *>(

&RawRingBuffer[sizeof(AllocationRingBuffer)])[N];

}

void initRingBuffer() {

u32 AllocationRingBufferSize =

static_cast<u32>(getFlags()->allocation_ring_buffer_size);

// Have at least one entry so we don't need to special case.

if (AllocationRingBufferSize < 1)

AllocationRingBufferSize = 1;

MapPlatformData Data = {};

RawRingBuffer = static_cast<char *>(

map(/*Addr=*/nullptr, ringBufferSizeInBytes(AllocationRingBufferSize),

"AllocatorRingBuffer", /*Flags=*/0, &Data));

auto *RingBuffer = reinterpret_cast<AllocationRingBuffer *>(RawRingBuffer);

RingBuffer->Size = AllocationRingBufferSize;

static_assert(sizeof(AllocationRingBuffer) %

alignof(typename AllocationRingBuffer::Entry) ==

"invalid alignment");

}

static constexpr u32 ringBufferSizeInBytes(u32 AllocationRingBufferSize) {

return sizeof(AllocationRingBuffer) +

AllocationRingBufferSize *

sizeof(typename AllocationRingBuffer::Entry);

}

inline AllocationRingBuffer *getRingBuffer() {

return reinterpret_cast<AllocationRingBuffer *>(RawRingBuffer);

}

}; };

} // namespace scudo } // namespace scudo

#endif // SCUDO_COMBINED_H_ #endif // SCUDO_COMBINED_H_

compiler-rt/lib/scudo/standalone/flags.inc

	Show First 20 Lines • Show All 48 Lines • ▼ Show 20 Lines
	SCUDO_FLAG(int, hard_rss_limit_mb, 0,			SCUDO_FLAG(int, hard_rss_limit_mb, 0,
	"Hard RSS Limit in Mb. If non-zero, once the limit is achieved, "			"Hard RSS Limit in Mb. If non-zero, once the limit is achieved, "
	"abort the process")			"abort the process")

	SCUDO_FLAG(int, soft_rss_limit_mb, 0,			SCUDO_FLAG(int, soft_rss_limit_mb, 0,
	"Soft RSS Limit in Mb. If non-zero, once the limit is reached, all "			"Soft RSS Limit in Mb. If non-zero, once the limit is reached, all "
	"subsequent calls will fail or return NULL until the RSS goes below "			"subsequent calls will fail or return NULL until the RSS goes below "
	"the soft limit")			"the soft limit")

				SCUDO_FLAG(int, allocation_ring_buffer_size, 32768,
				"Entries to keep in the allocation ring buffer for scudo.")

compiler-rt/lib/scudo/standalone/fuzz/get_error_info_fuzzer.cpp

Show All 40 Lines	std::string RegionInfoBytes =
FDP.ConsumeRandomLengthString(FDP.remaining_bytes());		FDP.ConsumeRandomLengthString(FDP.remaining_bytes());
std::vector<char> RegionInfo(AllocatorT::getRegionInfoArraySize(), 0);		std::vector<char> RegionInfo(AllocatorT::getRegionInfoArraySize(), 0);
for (size_t i = 0; i < RegionInfoBytes.length() && i < RegionInfo.size();		for (size_t i = 0; i < RegionInfoBytes.length() && i < RegionInfo.size();
++i) {		++i) {
RegionInfo[i] = RegionInfoBytes[i];		RegionInfo[i] = RegionInfoBytes[i];
}		}

std::string RingBufferBytes = FDP.ConsumeRemainingBytesAsString();		std::string RingBufferBytes = FDP.ConsumeRemainingBytesAsString();
std::vector<char> RingBuffer(AllocatorT::getRingBufferSize(), 0);		// RingBuffer is too short.
for (size_t i = 0; i < RingBufferBytes.length() && i < RingBuffer.size();		if (!AllocatorT::setRingBufferSizeForBuffer(RingBufferBytes.data(),
++i) {		RingBufferBytes.size()))
RingBuffer[i] = RingBufferBytes[i];		return 0;
}

scudo_error_info ErrorInfo;		scudo_error_info ErrorInfo;
AllocatorT::getErrorInfo(&ErrorInfo, FaultAddr, StackDepot.data(),		AllocatorT::getErrorInfo(&ErrorInfo, FaultAddr, StackDepot.data(),
RegionInfo.data(), RingBuffer.data(), Memory,		RegionInfo.data(), RingBufferBytes.data(), Memory,
MemoryTags, MemoryAddr, MemorySize);		MemoryTags, MemoryAddr, MemorySize);
return 0;		return 0;
}		}

compiler-rt/lib/scudo/standalone/tests/combined_test.cpp

Show First 20 Lines • Show All 696 Lines • ▼ Show 20 Lines	for (int i = 0; i < nPtrs; ++i) {
Ptrs.push_back(P);		Ptrs.push_back(P);
}		}

for (int i = 0; i < nPtrs; ++i)		for (int i = 0; i < nPtrs; ++i)
Allocator->deallocate(Ptrs[i], Origin);		Allocator->deallocate(Ptrs[i], Origin);
}		}
}		}

		SCUDO_TYPED_TEST(ScudoCombinedTest, RingBufferSize) {
		auto *Allocator = this->Allocator.get();
		auto Size = Allocator->getRingBufferSize();
		ASSERT_GT(Size, 0);
		EXPECT_EQ(Allocator->getRingBufferAddress()[Size - 1], '\0');
		}

		SCUDO_TYPED_TEST(ScudoCombinedTest, RingBufferAddress) {
		auto *Allocator = this->Allocator.get();
		auto *Addr = Allocator->getRingBufferAddress();
		EXPECT_NE(Addr, nullptr);
		EXPECT_EQ(Addr, Allocator->getRingBufferAddress());
		}

#if SCUDO_CAN_USE_PRIMARY64		#if SCUDO_CAN_USE_PRIMARY64
#if SCUDO_TRUSTY		#if SCUDO_TRUSTY

// TrustyConfig is designed for a domain-specific allocator. Add a basic test		// TrustyConfig is designed for a domain-specific allocator. Add a basic test
// which covers only simple operations and ensure the configuration is able to		// which covers only simple operations and ensure the configuration is able to
// compile.		// compile.
TEST(ScudoCombinedTest, BasicTrustyConfig) {		TEST(ScudoCombinedTest, BasicTrustyConfig) {
using AllocatorT = scudo::Allocator<scudo::TrustyConfig>;		using AllocatorT = scudo::Allocator<scudo::TrustyConfig>;
▲ Show 20 Lines • Show All 59 Lines • Show Last 20 Lines

This is an archive of the discontinued LLVM Phabricator instance.

Dynamically allocate scudo allocation buffer.ClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 488410

compiler-rt/lib/scudo/standalone/combined.h

compiler-rt/lib/scudo/standalone/flags.inc

compiler-rt/lib/scudo/standalone/fuzz/get_error_info_fuzzer.cpp

compiler-rt/lib/scudo/standalone/tests/combined_test.cpp

Dynamically allocate scudo allocation buffer.
ClosedPublic