This is an archive of the discontinued LLVM Phabricator instance.

Differential D24768

[compiler-rt] Fix Asan build on Android
ClosedPublic

Authored by etienneb on Sep 20 2016, 8:37 AM.

Details

Reviewers
vitalybuka
eugenis
rnk
Commits
rGd34ee76993e0: [compiler-rt] Fix Asan build on Android
rCRT282085: [compiler-rt] Fix Asan build on Android
rL282085: [compiler-rt] Fix Asan build on Android
Summary

The dynamic shadow code is not detected correctly on Android.
The android shadow seems to start at address zero.

The bug is introduced here:

https://reviews.llvm.org/D23363

Started here: https://build.chromium.org/p/chromium.fyi/builders/ClangToTAndroidASan/builds/4029
Likely due to an asan runtime change, filed https://llvm.org/bugs/show_bug.cgi?id=30462

From asan_mapping.h:

#if SANITIZER_WORDSIZE == 32
#  if SANITIZER_ANDROID
#    define SHADOW_OFFSET (0)   <<---- HERE
#  elif defined(__mips__)

Shadow address on android is 0.

From asan_rtl.c:

if (shadow_start == 0) {
  [...]
  shadow_start = FindAvailableMemoryRange(space_size, alignment, granularity);
}

We assumed that 0 is dynamic address.

On windows, the address was determined with:

#  elif SANITIZER_WINDOWS64
#   define SHADOW_OFFSET __asan_shadow_memory_dynamic_address
#  else

and __asan_shadow_memory_dynamic_address is initially zero.

Diff Detail

Event Timeline

etienneb updated this revision to Diff 71942.Sep 20 2016, 8:37 AM
etienneb retitled this revision from to [compiler-rt] Fix Asan build on Android.
etienneb updated this object.
etienneb added a reviewer: rnk.
etienneb added subscribers: chrisha, llvm-commits.
Herald added subscribers: dberris, kubamracek, danalbert, tberghammer. · View Herald TranscriptSep 20 2016, 8:37 AM
etienneb updated this object.Sep 20 2016, 8:39 AM
rnk added inline comments.Sep 20 2016, 8:58 AM
lib/asan/asan_rtl.cc
484–485

I think kcc likes regular if over #if, when possible. Also, isn't this macro undefined usually?

etienneb added a reviewer: vitalybuka.Sep 20 2016, 9:09 AM

Vitaly, could you double check this.

kcc added a reviewer: eugenis.Sep 20 2016, 9:37 AM
vitalybuka added inline comments.Sep 20 2016, 1:54 PM
lib/asan/asan_rtl.cc
484–485

Maybe ~0 instead of 0?

kcc added a subscriber: kcc.Sep 20 2016, 2:00 PM
kcc added inline comments.
lib/asan/asan_rtl.cc
484–485

Correct, kcc has very strong opinion on #ifs.

  1. When you can avoid an #if -- avoid it.
  2. When you can't avoid it, check #1 once more
  3. If desperate, split the files and put a top-level #if on the entire file.
etienneb marked 3 inline comments as done.Sep 21 2016, 7:34 AM
etienneb added inline comments.
lib/asan/asan_rtl.cc
484–485

I do not like #if and worse "nested" #if :)
I'm do not have a strong opinion on the way to solve this.
I just want to fix Android bots that we (ok, I broke).

Maybe ~0 instead of 0?

We can't use ~0 here because we rely on the way macro are expanded.

Initially, the variable is assigned to zero (this is needed):

__asan_shadow_memory_dynamic_address = 0;

Because the following statement is assigned from a macro:

uptr shadow_start = kLowShadowBeg;

That macro is expanded from other macros, ...

#define kLowShadowBeg   SHADOW_OFFSET

And ends up to be "based" on __asan_shadow_memory_dynamic_address which must be zero.

I'm gonna think a something not to ugly.

etienneb updated this revision to Diff 72053.Sep 21 2016, 8:39 AM
etienneb marked an inline comment as done.

fix without #if

etienneb updated this revision to Diff 72056.Sep 21 2016, 8:40 AM

simplify

etienneb added a comment.Sep 21 2016, 8:41 AM

what about this solution?

etienneb updated this revision to Diff 72063.Sep 21 2016, 8:56 AM

fix assert failing

vitalybuka accepted this revision.Sep 21 2016, 9:13 AM
vitalybuka edited edge metadata.

LGTM

This revision is now accepted and ready to land.Sep 21 2016, 9:13 AM
vitalybuka added inline comments.Sep 21 2016, 9:18 AM
lib/asan/asan_rtl.cc
472

How kLowShadowBeg can be 0 if it's kDefaultShadowSentinel

vitalybuka added inline comments.Sep 21 2016, 9:20 AM
lib/asan/asan_rtl.cc
472

I see

etienneb updated this revision to Diff 72070.Sep 21 2016, 9:22 AM
etienneb edited edge metadata.

add comment

vitalybuka added a comment.Sep 21 2016, 9:23 AM

Please land it if it fixes the bot.

etienneb added a comment.Sep 21 2016, 9:30 AM

Tests are fine on linux:

~/llvm/build$ ninja check-asan
[36/37] Running the AddressSanitizer tests
Testing Time: 89.23s

Expected Passes    : 1398
Expected Failures  : 3
Unsupported Tests  : 425
etienneb added a comment.Sep 21 2016, 9:40 AM

Tests on windows win7 64-bits are fine:

-- Testing: 543 tests, 16 threads --
Testing: 0 .. 10.. 20.. 30.. 40.. 50.. 60.. 70.. 80.. 90..
Testing Time: 309.71s
  Expected Passes    : 373
  Passes With Retry  : 3
  Expected Failures  : 16
  Unsupported Tests  : 151

Landing...

etienneb closed this revision.Sep 21 2016, 9:40 AM
thakis added a subscriber: thakis.Sep 21 2016, 11:29 AM

this went in at r282085

Revision Contents

PathSize
lib/
asan/
1 line
14 lines

Diff 72070

lib/asan/asan_mapping.h

Show First 20 LinesShow All 119 Lines▼ Show 20 Lines
// on WoW64, /LARGEADDRESSAWARE, etc). // on WoW64, /LARGEADDRESSAWARE, etc).
// || `[0x50000000, 0xffffffff]` || HighMem || // || `[0x50000000, 0xffffffff]` || HighMem ||
// || `[0x3a000000, 0x4fffffff]` || HighShadow || // || `[0x3a000000, 0x4fffffff]` || HighShadow ||
// || `[0x36000000, 0x39ffffff]` || ShadowGap || // || `[0x36000000, 0x39ffffff]` || ShadowGap ||
// || `[0x30000000, 0x35ffffff]` || LowShadow || // || `[0x30000000, 0x35ffffff]` || LowShadow ||
// || `[0x00000000, 0x2fffffff]` || LowMem || // || `[0x00000000, 0x2fffffff]` || LowMem ||
static const u64 kDefaultShadowScale = 3; static const u64 kDefaultShadowScale = 3;
static const u64 kDefaultShadowSentinel = ~(uptr)0;
static const u64 kDefaultShadowOffset32 = 1ULL << 29; // 0x20000000 static const u64 kDefaultShadowOffset32 = 1ULL << 29; // 0x20000000
static const u64 kDefaultShadowOffset64 = 1ULL << 44; static const u64 kDefaultShadowOffset64 = 1ULL << 44;
static const u64 kDefaultShort64bitShadowOffset = 0x7FFF8000; // < 2G. static const u64 kDefaultShort64bitShadowOffset = 0x7FFF8000; // < 2G.
static const u64 kIosShadowOffset32 = 1ULL << 30; // 0x40000000 static const u64 kIosShadowOffset32 = 1ULL << 30; // 0x40000000
static const u64 kIosShadowOffset64 = 0x120200000; static const u64 kIosShadowOffset64 = 0x120200000;
static const u64 kIosSimShadowOffset32 = 1ULL << 30; static const u64 kIosSimShadowOffset32 = 1ULL << 30;
static const u64 kIosSimShadowOffset64 = kDefaultShadowOffset64; static const u64 kIosSimShadowOffset64 = kDefaultShadowOffset64;
static const u64 kAArch64_ShadowOffset64 = 1ULL << 36; static const u64 kAArch64_ShadowOffset64 = 1ULL << 36;
▲ Show 20 LinesShow All 200 LinesShow Last 20 Lines

lib/asan/asan_rtl.cc

Show First 20 LinesShow All 455 Lines▼ Show 20 Linesstatic void AsanInitInternal() {
// Enable system log ("adb logcat") on Android. // Enable system log ("adb logcat") on Android.
// Doing this before interceptors are initialized crashes in: // Doing this before interceptors are initialized crashes in:
// AsanInitInternal -> android_log_write -> __interceptor_strcmp // AsanInitInternal -> android_log_write -> __interceptor_strcmp
AndroidLogInit(); AndroidLogInit();
ReplaceSystemMalloc(); ReplaceSystemMalloc();
__asan_shadow_memory_dynamic_address = 0; // Set the shadow memory address to uninitialized.
__asan_shadow_memory_dynamic_address = kDefaultShadowSentinel;
uptr shadow_start = kLowShadowBeg; uptr shadow_start = kLowShadowBeg;
if (shadow_start == 0) { // Detect if a dynamic shadow address must used and find a available location
// when necessary. When dynamic address is used, the macro |kLowShadowBeg|
// expands to |__asan_shadow_memory_dynamic_address| which is
// |kDefaultShadowSentinel|.
if (shadow_start == kDefaultShadowSentinel) {
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

How kLowShadowBeg can be 0 if it's kDefaultShadowSentinel

vitalybuka: How kLowShadowBeg can be 0 if it's kDefaultShadowSentinel
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

I see

vitalybuka: I see
__asan_shadow_memory_dynamic_address = 0;
CHECK_EQ(0, kLowShadowBeg);
uptr granularity = GetMmapGranularity(); uptr granularity = GetMmapGranularity();
uptr alignment = 8 * granularity; uptr alignment = 8 * granularity;
uptr left_padding = granularity; uptr left_padding = granularity;
uptr space_size = kHighShadowEnd + left_padding; uptr space_size = kHighShadowEnd + left_padding;
shadow_start = FindAvailableMemoryRange(space_size, alignment, granularity); shadow_start = FindAvailableMemoryRange(space_size, alignment, granularity);
CHECK_NE((uptr)0, shadow_start); CHECK_NE((uptr)0, shadow_start);
CHECK(IsAligned(shadow_start, alignment)); CHECK(IsAligned(shadow_start, alignment));
} }
// Update the shadow memory address (potentially) used by instrumentation.
rnkUnsubmitted
Done
ReplyInline Actions

I think kcc likes regular if over #if, when possible. Also, isn't this macro undefined usually?

rnk: I think kcc likes regular if over #if, when possible. Also, isn't this macro undefined usually?
vitalybukaUnsubmitted
Done
ReplyInline Actions

Maybe ~0 instead of 0?

vitalybuka: Maybe ~0 instead of 0?
kccUnsubmitted
Done
ReplyInline Actions

Correct, kcc has very strong opinion on #ifs.

  1. When you can avoid an #if -- avoid it.
  2. When you can't avoid it, check #1 once more
  3. If desperate, split the files and put a top-level #if on the entire file.
kcc: Correct, kcc has very strong opinion on #ifs. 1. When you can avoid an #if -- avoid it. 2.
etiennebAuthorUnsubmitted
Not Done
ReplyInline Actions

I do not like #if and worse "nested" #if :)
I'm do not have a strong opinion on the way to solve this.
I just want to fix Android bots that we (ok, I broke).

Maybe ~0 instead of 0?

We can't use ~0 here because we rely on the way macro are expanded.

Initially, the variable is assigned to zero (this is needed):

__asan_shadow_memory_dynamic_address = 0;

Because the following statement is assigned from a macro:

uptr shadow_start = kLowShadowBeg;

That macro is expanded from other macros, ...

#define kLowShadowBeg   SHADOW_OFFSET

And ends up to be "based" on __asan_shadow_memory_dynamic_address which must be zero.

I'm gonna think a something not to ugly.

etienneb: I do not like #if and worse "nested" #if :) I'm do not have a strong opinion on the way to…
__asan_shadow_memory_dynamic_address = shadow_start; __asan_shadow_memory_dynamic_address = shadow_start;
if (kLowShadowBeg) if (kLowShadowBeg)
shadow_start -= GetMmapGranularity(); shadow_start -= GetMmapGranularity();
bool full_shadow_is_available = bool full_shadow_is_available =
MemoryRangeIsAvailable(shadow_start, kHighShadowEnd); MemoryRangeIsAvailable(shadow_start, kHighShadowEnd);
#if SANITIZER_LINUX && defined(__x86_64__) && defined(_LP64) && \ #if SANITIZER_LINUX && defined(__x86_64__) && defined(_LP64) && \
▲ Show 20 LinesShow All 188 LinesShow Last 20 Lines