This is an archive of the discontinued LLVM Phabricator instance.

[HWASAN] Prevent crashes on thread exit
ClosedPublic

Authored by vitalybuka on May 11 2023, 2:30 PM.

Download Raw Diff

Details

Reviewers

fmayer
thurston
eugenis
Enna1

Commits

rG2eda2e013830: [HWASAN] Prevent crashes on thread exit

Summary

I can't figure out how to reproduce this for test, but I see the case on
random binaries.

The known issue is with GLIBC, others may have a workaround, e.g. Bionic,
https://cs.android.com/android/platform/superproject/+/master:bionic/libc/bionic/pthread_exit.cpp;l=149
see signals blocked above.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

vitalybuka created this revision.May 11 2023, 2:30 PM

Herald added a project: Restricted Project. · View Herald TranscriptMay 11 2023, 2:30 PM

Herald added a subscriber: Enna1. · View Herald Transcript

vitalybuka requested review of this revision.May 11 2023, 2:30 PM

Herald added a project: Restricted Project. · View Herald TranscriptMay 11 2023, 2:30 PM

Herald added a subscriber: Restricted Project. · View Herald Transcript

vitalybuka added a reviewer: fmayer.May 11 2023, 2:31 PM

vitalybuka added reviewers: thurston, eugenis, Enna1.

vitalybuka edited the summary of this revision. (Show Details)May 11 2023, 2:33 PM

Harbormaster completed remote builds in B231447: Diff 521450.May 11 2023, 2:49 PM

I do not understand the bionic issue. __hwasan_thread_exit is called very late (as the last thing in that function), while the signals are blocked. Why do thread cleanup functions matter?

vitalybuka edited the summary of this revision. (Show Details)May 11 2023, 3:22 PM

GLIBC only

In D150401#4336141, @eugenis wrote:

I do not understand the bionic issue. __hwasan_thread_exit is called very late (as the last thing in that function), while the signals are blocked. Why do thread cleanup functions matter?

fixed

typo

LGTM

This revision is now accepted and ready to land.May 11 2023, 3:55 PM

Harbormaster completed remote builds in B231466: Diff 521478.May 11 2023, 4:13 PM

Closed by commit rG2eda2e013830: [HWASAN] Prevent crashes on thread exit (authored by vitalybuka). · Explain WhyMay 11 2023, 4:15 PM

This revision was automatically updated to reflect the committed changes.

vitalybuka added a commit: rG2eda2e013830: [HWASAN] Prevent crashes on thread exit.

Revision Contents

Path

Size

compiler-rt/

lib/

hwasan/

hwasan_linux.cpp

7 lines

Diff 521450

compiler-rt/lib/hwasan/hwasan_linux.cpp

	Show First 20 Lines • Show All 296 Lines • ▼ Show 20 Lines
	extern "C" void __hwasan_thread_enter() {			extern "C" void __hwasan_thread_enter() {
	hwasanThreadList().CreateCurrentThread()->EnsureRandomStateInited();			hwasanThreadList().CreateCurrentThread()->EnsureRandomStateInited();
	}			}

	extern "C" void __hwasan_thread_exit() {			extern "C" void __hwasan_thread_exit() {
	Thread *t = GetCurrentThread();			Thread *t = GetCurrentThread();
	// Make sure that signal handler can not see a stale current thread pointer.			// Make sure that signal handler can not see a stale current thread pointer.
	atomic_signal_fence(memory_order_seq_cst);			atomic_signal_fence(memory_order_seq_cst);
	if (t)			if (t) {
				// Block async signals on the thread as the handler can be instrumented.
				// After this point instrumented code can't access essential data from TLS
				// and will crash.
				BlockSignals();
	hwasanThreadList().ReleaseThread(t);			hwasanThreadList().ReleaseThread(t);
	}			}
				}

	# if HWASAN_WITH_INTERCEPTORS			# if HWASAN_WITH_INTERCEPTORS
	static pthread_key_t tsd_key;			static pthread_key_t tsd_key;
	static bool tsd_key_inited = false;			static bool tsd_key_inited = false;

	void HwasanTSDThreadInit() {			void HwasanTSDThreadInit() {
	if (tsd_key_inited)			if (tsd_key_inited)
	CHECK_EQ(0, pthread_setspecific(tsd_key,			CHECK_EQ(0, pthread_setspecific(tsd_key,
	▲ Show 20 Lines • Show All 242 Lines • Show Last 20 Lines