This is an archive of the discontinued LLVM Phabricator instance.

Differential D150909

sanitizer_common: guard the wcslen interceptor code with SANITIZER_INTERCEPT_WCSLEN
ClosedPublic

Authored by thurston on May 18 2023, 2:30 PM.

Details

Reviewers
vitalybuka
Commits
rG016e604f6e16: sanitizer_common: guard the wcslen interceptor code with…
Summary

This patch adds the #if SANITIZER_INTERCEPT_ guard for wcslen, similarly to how all the other
functions are guarded. It was the only missing SANITIZER_INTERCEPT_ guard [1].

This missing guard was discovered while investigating the stage2/hwasan check failure of https://reviews.llvm.org/D150708 ("hwasan: lay groundwork for importing subset of sanitizer_common interceptors [NFC]"), that was seen in https://lab.llvm.org/buildbot/#/builders/236/builds/4069. llvm_build_hwasan/unittests/ADT/./ADTTests had crashed with a backtrace of:
#0 0x0000000000000000 in ?? ()
#1 0x0000aaaaab20e058 in constexpr_wcslen () at /home/thurston/scratch_dir/libcxx_build_hwasan/include/c++/v1/cwchar:195
#2 length () at /home/thurston/scratch_dir/libcxx_build_hwasan/include/c++/v1/string/char_traits.h:311
#3 basic_string<0> () at /home/thurston/scratch_dir/libcxx_build_hwasan/include/c++/v1/string:904
#4 0x0000aaaaab20d800 in TestBody () at /home/thurston/scratch_dir/llvm-project/llvm/unittests/ADT/HashingTest.cpp:125
...
A disassembly of the binary showed that wcslen interception was present (since it was not guarded by SANITIZER_INTERCEPT_WCSLEN); howver, since INIT_WCSLEN was not called, REAL(wcslen) was null, resulting in the null pointer dereference.

[1] I checked this using "egrep '^#[ ]*define[ ]+(INIT_.*)' sanitizer_common_interceptors.inc | tr -s ' ' | sed -r 's/^# /#/' | cut -d ' ' -f 2 | sort | uniq -c | grep -v '^[ ]*2[ ]'"
The other matches are {INIT_PTHREAD_SETNAME_NP, INIT_QSORT, INIT_SHA2_INTECEPTORS(LEN), INIT_TLS_GET_ADDR, INIT_WAIT4}, which all have good reasons for not having exactly two cases.

Diff Detail

Event Timeline

thurston created this revision.May 18 2023, 2:30 PM
Herald added a project: Restricted Project. · View Herald TranscriptMay 18 2023, 2:30 PM
Herald added a subscriber: Enna1. · View Herald Transcript
thurston requested review of this revision.May 18 2023, 2:30 PM
Herald added a project: Restricted Project. · View Herald TranscriptMay 18 2023, 2:30 PM
Herald added a subscriber: Restricted Project. · View Herald Transcript
thurston edited the summary of this revision. (Show Details)May 18 2023, 2:38 PM
thurston added a reviewer: vitalybuka.
thurston added a subscriber: pcc.
thurston retitled this revision from sanitizer_common: guard the wcslen interceptor code with SANITIZER_INTERCEPTOR_WCSLEN to sanitizer_common: guard the wcslen interceptor code with SANITIZER_INTERCEPT_WCSLEN.May 18 2023, 2:45 PM
thurston edited the summary of this revision. (Show Details)
Harbormaster completed remote builds in B233016: Diff 523564.May 18 2023, 2:52 PM
vitalybuka accepted this revision.May 18 2023, 9:06 PM
This revision is now accepted and ready to land.May 18 2023, 9:06 PM
This revision was landed with ongoing or failed builds.May 18 2023, 11:44 PM
Closed by commit rG016e604f6e16: sanitizer_common: guard the wcslen interceptor code with… (authored by thurston). · Explain Why
This revision was automatically updated to reflect the committed changes.
thurston added a commit: rG016e604f6e16: sanitizer_common: guard the wcslen interceptor code with….
thurston mentioned this in rGffb368d650c2: sanitizer_common: fix buildbot by restoring wcslen semantics.May 18 2023, 11:56 PM
thurston mentioned this in D150977: hwasan: Reland "hwasan: lay groundwork for importing subset of sanitizer_common interceptors [NFC]" with fixes.May 19 2023, 9:06 AM
thurston mentioned this in D151000: sanitizer_common: add test that calls wcslen.May 19 2023, 2:32 PM
thurston mentioned this in D150708: hwasan: lay groundwork for importing subset of sanitizer_common interceptors [NFC].May 19 2023, 4:38 PM
thurston mentioned this in rG8a8c2b2ea54b: sanitizer_common: add test that calls wcslen.May 24 2023, 12:37 PM

Revision Contents

PathSize
compiler-rt/
lib/
sanitizer_common/
4 lines
1 line

Diff 523666

compiler-rt/lib/sanitizer_common/sanitizer_common_interceptors.inc

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 7,170 Lines▼ Show 20 LinesINTERCEPTOR(int, mcheck_pedantic, void (*abortfunc)(int mstatus)) {
return 0; return 0;
} }
INTERCEPTOR(int, mprobe, void *ptr) { INTERCEPTOR(int, mprobe, void *ptr) {
return 0; return 0;
} }
#endif #endif
#if SANITIZER_INTERCEPT_WCSLEN
INTERCEPTOR(SIZE_T, wcslen, const wchar_t *s) { INTERCEPTOR(SIZE_T, wcslen, const wchar_t *s) {
void *ctx; void *ctx;
COMMON_INTERCEPTOR_ENTER(ctx, wcslen, s); COMMON_INTERCEPTOR_ENTER(ctx, wcslen, s);
SIZE_T res = REAL(wcslen)(s); SIZE_T res = REAL(wcslen)(s);
COMMON_INTERCEPTOR_READ_RANGE(ctx, s, sizeof(wchar_t) * (res + 1)); COMMON_INTERCEPTOR_READ_RANGE(ctx, s, sizeof(wchar_t) * (res + 1));
return res; return res;
} }
INTERCEPTOR(SIZE_T, wcsnlen, const wchar_t *s, SIZE_T n) { INTERCEPTOR(SIZE_T, wcsnlen, const wchar_t *s, SIZE_T n) {
void *ctx; void *ctx;
COMMON_INTERCEPTOR_ENTER(ctx, wcsnlen, s, n); COMMON_INTERCEPTOR_ENTER(ctx, wcsnlen, s, n);
SIZE_T res = REAL(wcsnlen)(s, n); SIZE_T res = REAL(wcsnlen)(s, n);
COMMON_INTERCEPTOR_READ_RANGE(ctx, s, sizeof(wchar_t) * Min(res + 1, n)); COMMON_INTERCEPTOR_READ_RANGE(ctx, s, sizeof(wchar_t) * Min(res + 1, n));
return res; return res;
} }
#define INIT_WCSLEN \ #define INIT_WCSLEN \
COMMON_INTERCEPT_FUNCTION(wcslen); \ COMMON_INTERCEPT_FUNCTION(wcslen); \
COMMON_INTERCEPT_FUNCTION(wcsnlen); COMMON_INTERCEPT_FUNCTION(wcsnlen);
#else
#define INIT_WCSLEN
#endif
#if SANITIZER_INTERCEPT_WCSCAT #if SANITIZER_INTERCEPT_WCSCAT
INTERCEPTOR(wchar_t *, wcscat, wchar_t *dst, const wchar_t *src) { INTERCEPTOR(wchar_t *, wcscat, wchar_t *dst, const wchar_t *src) {
void *ctx; void *ctx;
COMMON_INTERCEPTOR_ENTER(ctx, wcscat, dst, src); COMMON_INTERCEPTOR_ENTER(ctx, wcscat, dst, src);
SIZE_T src_size = internal_wcslen(src); SIZE_T src_size = internal_wcslen(src);
SIZE_T dst_size = internal_wcslen(dst); SIZE_T dst_size = internal_wcslen(dst);
COMMON_INTERCEPTOR_READ_RANGE(ctx, src, (src_size + 1) * sizeof(wchar_t)); COMMON_INTERCEPTOR_READ_RANGE(ctx, src, (src_size + 1) * sizeof(wchar_t));
▲ Show 20 LinesShow All 3,477 LinesShow Last 20 Lines

compiler-rt/lib/sanitizer_common/sanitizer_platform_interceptors.h

Show First 20 LinesShow All 488 Lines▼ Show 20 Lines
#define SANITIZER_INTERCEPT_MEMALIGN (!SI_FREEBSD && !SI_MAC && !SI_NETBSD) #define SANITIZER_INTERCEPT_MEMALIGN (!SI_FREEBSD && !SI_MAC && !SI_NETBSD)
#define SANITIZER_INTERCEPT___LIBC_MEMALIGN SI_GLIBC #define SANITIZER_INTERCEPT___LIBC_MEMALIGN SI_GLIBC
#define SANITIZER_INTERCEPT_PVALLOC (SI_GLIBC || SI_ANDROID) #define SANITIZER_INTERCEPT_PVALLOC (SI_GLIBC || SI_ANDROID)
#define SANITIZER_INTERCEPT_CFREE (SI_GLIBC && !SANITIZER_RISCV64) #define SANITIZER_INTERCEPT_CFREE (SI_GLIBC && !SANITIZER_RISCV64)
#define SANITIZER_INTERCEPT_REALLOCARRAY SI_POSIX #define SANITIZER_INTERCEPT_REALLOCARRAY SI_POSIX
#define SANITIZER_INTERCEPT_ALIGNED_ALLOC (!SI_MAC) #define SANITIZER_INTERCEPT_ALIGNED_ALLOC (!SI_MAC)
#define SANITIZER_INTERCEPT_MALLOC_USABLE_SIZE (!SI_MAC && !SI_NETBSD) #define SANITIZER_INTERCEPT_MALLOC_USABLE_SIZE (!SI_MAC && !SI_NETBSD)
#define SANITIZER_INTERCEPT_MCHECK_MPROBE SI_LINUX_NOT_ANDROID #define SANITIZER_INTERCEPT_MCHECK_MPROBE SI_LINUX_NOT_ANDROID
#define SANITIZER_INTERCEPT_WCSLEN SI_POSIX
#define SANITIZER_INTERCEPT_WCSCAT SI_POSIX #define SANITIZER_INTERCEPT_WCSCAT SI_POSIX
#define SANITIZER_INTERCEPT_WCSDUP SI_POSIX #define SANITIZER_INTERCEPT_WCSDUP SI_POSIX
#define SANITIZER_INTERCEPT_SIGNAL_AND_SIGACTION (!SI_WINDOWS && SI_NOT_FUCHSIA) #define SANITIZER_INTERCEPT_SIGNAL_AND_SIGACTION (!SI_WINDOWS && SI_NOT_FUCHSIA)
#define SANITIZER_INTERCEPT_BSD_SIGNAL SI_ANDROID #define SANITIZER_INTERCEPT_BSD_SIGNAL SI_ANDROID
#define SANITIZER_INTERCEPT_ACCT (SI_NETBSD || SI_FREEBSD) #define SANITIZER_INTERCEPT_ACCT (SI_NETBSD || SI_FREEBSD)
#define SANITIZER_INTERCEPT_USER_FROM_UID SI_NETBSD #define SANITIZER_INTERCEPT_USER_FROM_UID SI_NETBSD
#define SANITIZER_INTERCEPT_UID_FROM_USER SI_NETBSD #define SANITIZER_INTERCEPT_UID_FROM_USER SI_NETBSD
▲ Show 20 LinesShow All 114 LinesShow Last 20 Lines