This is an archive of the discontinued LLVM Phabricator instance.

Differential D150231

[libFuzzer] always install signal handler with SA_ONSTACK
AcceptedPublic

Authored by randall77 on May 9 2023, 3:54 PM.

Details

Reviewers
sebastianpoeplau
morehouse
Summary

SA_ONSTACK is required for certain runtimes that use small stacks, for instance the Go runtime.
See https://github.com/golang/go/issues/49075
SA_ONSTACK is a no-op unless someone also calls sigaltstack.

Diff Detail

Event Timeline

randall77 created this revision.May 9 2023, 3:54 PM
Herald added a project: Restricted Project. · View Herald TranscriptMay 9 2023, 3:54 PM
Herald added a subscriber: Enna1. · View Herald Transcript
randall77 requested review of this revision.May 9 2023, 3:54 PM
Harbormaster completed remote builds in B230986: Diff 520849.May 9 2023, 4:13 PM
sebastianpoeplau added a comment.May 10 2023, 2:40 AM

Looks good to me in principle. I'm wondering whether there could be situations where a signal stack has been established with sigaltstack but it's intended for some specific signal(s) only - if we were to set SA_ONSTACK uncontitionally, we would run all of the fuzzer's signal handlers on the signal stack. That said, none of the handlers seem to require a lot of stack space, so it's probably fine.

randall77 added a comment.May 19 2023, 10:26 AM

I agree there is a possibility of a problem if signal handlers need more stack than provided by sigaltstack. That seems like a pretty hypothetical problem, however. In contrast, there is a current real problem with executing signals on user's stacks.

randall77 added a comment.Oct 24 2023, 1:59 PM

Ping. Can we get this in?

sebastianpoeplau accepted this revision.Oct 25 2023, 1:22 AM

Since nobody has objected thus far let's get it in. I don't know if approval from me is enough to be able to merge, but let's try...

This revision is now accepted and ready to land.Oct 25 2023, 1:22 AM
randall77 added a comment.Tue, Nov 28, 2:30 PM

Is there something I need to do to actually get this landed?

Revision Contents

PathSize
compiler-rt/
lib/
fuzzer/
12 lines

Diff 520849

compiler-rt/lib/fuzzer/FuzzerUtilPosix.cpp

Context not available.
} }
struct sigaction new_sigact = {}; struct sigaction new_sigact = {};
// Address sanitizer needs SA_ONSTACK (causing the signal handler to run on a // SA_ONSTACK is required for certain runtimes that use small stacks, for
// dedicated stack) in order to be able to detect stack overflows; keep the // instance the Go runtime.
// flag if it's set. // See https://github.com/golang/go/issues/49075
new_sigact.sa_flags = SA_SIGINFO | (sigact.sa_flags & SA_ONSTACK); // Address sanitizer also wants SA_ONSTACK, and the fuzzer and sanitizer
// often run together.
// SA_ONSTACK is a no-op unless someone also calls sigaltstack. That is left
// up to code that needs it.
new_sigact.sa_flags = SA_SIGINFO | SA_ONSTACK;
new_sigact.sa_sigaction = callback; new_sigact.sa_sigaction = callback;
if (sigaction(signum, &new_sigact, nullptr)) { if (sigaction(signum, &new_sigact, nullptr)) {
Printf("libFuzzer: sigaction failed with %d\n", errno); Printf("libFuzzer: sigaction failed with %d\n", errno);
Context not available.