This is an archive of the discontinued LLVM Phabricator instance.

Differential D143792

[lldb] Fix image lookup crash
ClosedPublic

Authored by bulbazord on Feb 10 2023, 4:13 PM.

Details

Reviewers
JDevlieghere
mib
jingham
Commits
rGf841c4af5f5e: [lldb] Fix image lookup crash
Summary

lldb may crash when performing image lookup --verbose --address $ADDR.
The ExecutionContext that gets passed into DWARFExpression::Evaluate may
be valid but unpopulated. However, in one specific case, we were
assuming that it has a valid Target and using it without checking first.

We reach this codepath when we attempt to get information about an
address that doesn't map to a CompileUnit in the module containing the
requested address. lldb then checks to see if it maps to a global
variable, so lldb has to evaluate the location of each global variable
in the module. If a location expression contains DW_OP_deref_size that
uses a FileAddress, we hit this code path. The simplest test case is to
take a module that has a global variable with DW_OP_deref_size in its
location expression, attempt to read an address that doesn't map to a
CompileUnit (e.g. 0x0) and ensure we don't crash.

rdar://105220281

Diff Detail

Event Timeline

bulbazord created this revision.Feb 10 2023, 4:13 PM
Herald added a project: Restricted Project. · View Herald TranscriptFeb 10 2023, 4:13 PM
bulbazord requested review of this revision.Feb 10 2023, 4:13 PM
Herald added a project: Restricted Project. · View Herald TranscriptFeb 10 2023, 4:13 PM
Herald added a subscriber: lldb-commits. · View Herald Transcript
Harbormaster completed remote builds in B213170: Diff 496624.Feb 10 2023, 4:17 PM
Herald added a subscriber: Michael137. · View Herald TranscriptFeb 10 2023, 4:17 PM
bulbazord edited the summary of this revision. (Show Details)Feb 10 2023, 4:33 PM
mib accepted this revision.Feb 10 2023, 4:40 PM

LGTM!

This revision is now accepted and ready to land.Feb 10 2023, 4:40 PM
JDevlieghere accepted this revision.Feb 10 2023, 5:02 PM
Closed by commit rGf841c4af5f5e: [lldb] Fix image lookup crash (authored by bulbazord). · Explain WhyFeb 13 2023, 10:55 AM
This revision was automatically updated to reflect the committed changes.
bulbazord added a commit: rGf841c4af5f5e: [lldb] Fix image lookup crash.

Revision Contents

PathSize
lldb/
source/
Expression/
6 lines
test/
Shell/
SymbolFile/
DWARF/
x86/
18 lines

Diff 497049

lldb/source/Expression/DWARFExpression.cpp

Show First 20 LinesShow All 1,134 Lines▼ Show 20 Lines case DW_OP_deref_size: {
return false; return false;
addr_t load_addr = *maybe_load_addr; addr_t load_addr = *maybe_load_addr;
if (load_addr == LLDB_INVALID_ADDRESS && so_addr.IsSectionOffset()) { if (load_addr == LLDB_INVALID_ADDRESS && so_addr.IsSectionOffset()) {
uint8_t addr_bytes[8]; uint8_t addr_bytes[8];
Status error; Status error;
if (exe_ctx->GetTargetRef().ReadMemory( if (target &&
so_addr, &addr_bytes, size, error, target->ReadMemory(so_addr, &addr_bytes, size, error,
/*force_live_memory=*/false) == size) { /*force_live_memory=*/false) == size) {
ObjectFile *objfile = module_sp->GetObjectFile(); ObjectFile *objfile = module_sp->GetObjectFile();
stack.back().GetScalar() = DerefSizeExtractDataHelper( stack.back().GetScalar() = DerefSizeExtractDataHelper(
addr_bytes, size, objfile->GetByteOrder(), size); addr_bytes, size, objfile->GetByteOrder(), size);
stack.back().ClearContext(); stack.back().ClearContext();
break; break;
} else { } else {
if (error_ptr) if (error_ptr)
▲ Show 20 LinesShow All 1,582 LinesShow Last 20 Lines

lldb/test/Shell/SymbolFile/DWARF/x86/DW_OP_deref_size_static_var.s

# RUN: llvm-mc -filetype=obj -o %t -triple x86_64-apple-macosx10.15.0 %s # RUN: llvm-mc -filetype=obj -o %t -triple x86_64-apple-macosx10.15.0 %s
# RUN: %lldb %t -o "target variable ug" -b | FileCheck %s # RUN: %lldb %t -o "target variable ug" -b \
# RUN: | FileCheck --check-prefix=TARGET-VARIABLE %s
# RUN: %lldb %t -o "image lookup --verbose --address 0x0" -b \
# RUN: | FileCheck --check-prefix=IMAGE-LOOKUP %s
# CHECK: (lldb) target variable ug # TARGET-VARIABLE: (lldb) target variable ug
# CHECK: (U) ug = { # TARGET-VARIABLE: (U) ug = {
# CHECK: raw = 0 # TARGET-VARIABLE: raw = 0
# CHECK: = (a = 0, b = 0, c = 0, d = 0, e = 0, f = 0) # TARGET-VARIABLE: = (a = 0, b = 0, c = 0, d = 0, e = 0, f = 0)
# CHECK: } # TARGET-VARIABLE: }
# IMAGE-LOOKUP: Summary:
# IMAGE-LOOKUP: Module: file =
# We are testing how DWARFExpression::Evaluate(...) in the case of # We are testing how DWARFExpression::Evaluate(...) in the case of
# DW_OP_deref_size deals with static variable. # DW_OP_deref_size deals with static variable.
# #
# The address will be a ValueType::FileAddress type which we will not be able # The address will be a ValueType::FileAddress type which we will not be able
# to turn into a load address but it is a section offset. We should be able to # to turn into a load address but it is a section offset. We should be able to
# use Target::ReadMemory(...) to read the data in this case. # use Target::ReadMemory(...) to read the data in this case.
# Compiling at -O1 allows us to capture this case and test it. # Compiling at -O1 allows us to capture this case and test it.
▲ Show 20 LinesShow All 300 LinesShow Last 20 Lines