This is an archive of the discontinued LLVM Phabricator instance.

Differential D38592

Update sanitizer_allocator to use new API.
ClosedPublic

Authored by flowerhack on Oct 5 2017, 12:25 PM.

Details

Reviewers
alekseyshl
cryptoad
phosek
mcgrathr
dvyukov
Commits
rGc6f0ade6c3fa: Update sanitizer_allocator to use new API.
rCRT317586: Update sanitizer_allocator to use new API.
rL317586: Update sanitizer_allocator to use new API.
Summary

Update sanitizer_allocator to use new API.




Second patch in a series.  First patch https://reviews.llvm.org/D39072






Updates MmapNoAccess / MmapFixed call sites in the saniziter_allocator

to use the new Init/Map APIs instead.
Diff Detail
Event Timeline
flowerhack created this revision.Oct 5 2017, 12:25 PM
Herald added a subscriber: kubamracek.  ·  View Herald TranscriptOct 5 2017, 12:25 PM
mcgrathr added a subscriber: mcgrathr.Oct 5 2017, 3:19 PM
Mostly LGTM
compiler-rt/lib/sanitizer_common/sanitizer_allocator_primary64.h


78
This one should pass the name too.


541
This should be static const char kAllocatorName[], or just drop it and use a string constant at the call site.
flowerhack updated this revision to Diff 119986.Oct 23 2017, 6:26 PM
flowerhack retitled this revision from DO NOT MERGE, WIP: Update sanitizer_allocator to use new API. to Update sanitizer_allocator to use new API..
flowerhack edited the summary of this revision. (Show Details)
flowerhack added reviewers: alekseyshl, cryptoad, phosek, mcgrathr.
alekseyshl added inline comments.Oct 24 2017, 11:12 AM
lib/sanitizer_common/sanitizer_allocator_primary64.h


629 ↗(On Diff #119986)
It should be:



uptr mapped = address_range.Map(beg, size, true /*tolerate_enomem*/);



which got me thinking, to avoid errors like this, maybe it's not that a bad idea to have two members instead of a default parameter:



uptr Map(uptr fixed_addr, uptr size);
uptr MapOrDie(uptr fixed_addr, uptr size);



indeed, we should rename Unmap to UnmapOrDie in this case.



On the other hand, this is the only use of tolerate_enomem, if we get it right right now, I think we'll be fine with the current API.


644 ↗(On Diff #119986)
address_range.Unmap(beg, size)
flowerhack updated this revision to Diff 120323.Oct 25 2017, 2:57 PM
flowerhack marked 2 inline comments as done.
flowerhack added inline comments.
lib/sanitizer_common/sanitizer_allocator_primary64.h


629 ↗(On Diff #119986)
fixed
alekseyshl added inline comments.Oct 25 2017, 3:37 PM
lib/sanitizer_common/sanitizer_fuchsia.cc


272 ↗(On Diff #120323)
Move it above Unmap


lib/sanitizer_common/sanitizer_win.cc


246 ↗(On Diff #120323)
Why do we need MapImpl, why not just inline MapFixed... calls? Same question for other platforms.
flowerhack updated this revision to Diff 120333.Oct 25 2017, 4:03 PM
flowerhack marked 3 inline comments as done.
flowerhack added inline comments.
lib/sanitizer_common/sanitizer_win.cc


246 ↗(On Diff #120323)
good point, done
alekseyshl accepted this revision.Oct 26 2017, 11:02 AM
This revision is now accepted and ready to land.Oct 26 2017, 11:02 AM
flowerhack added a comment.Oct 27 2017, 8:22 AM
Thanks @alekseyshl !



However, https://reviews.llvm.org/D39072 needs to land before this one can be merged.  Have you had a chance to look at that one yet?  Thanks!
flowerhack updated this revision to Diff 121069.Oct 31 2017, 2:59 PM
alekseyshl accepted this revision.Oct 31 2017, 3:12 PM
cryptoad requested changes to this revision.Nov 1 2017, 9:44 AM
I have some local tests failure with this patch. Looking into it, do not submit.
lib/sanitizer_common/sanitizer_fuchsia.cc


268 ↗(On Diff #121069)
Remove the 2 extra empty lines.
This revision now requires changes to proceed.Nov 1 2017, 9:44 AM
cryptoad added a comment.Nov 1 2017, 12:09 PM
SanitizerCommon-tsan-x86_64-Linux :: Linux/decorate_proc_maps.cc appears to consistently fail with that patch.

With error message: ==14973==FATAL: ThreadSanitizer: failed to intercept open
cryptoad added a comment.Nov 1 2017, 12:38 PM
This is due to decorate_proc_maps.

From Initialize, tsan's Init calls InitializeAllocator, which ends up calling MmapFixedNoAccess.

name is not null, so it continues to GetNamedMappingFd, which itself calls shm_open, which calls the open interceptor, and it all dies.
cryptoad added a subscriber: dvyukov.Nov 1 2017, 12:47 PM
So this could go away with AllocatorName returning null, but it's not an actual fix, we would just be pretending the issue is not there.

Adding @dvyukov for input.
cryptoad added a reviewer: dvyukov.Nov 1 2017, 12:47 PM
cryptoad added a comment.Nov 1 2017, 2:29 PM
So to be clearer, this is a problem for every sanitizer intercepting open and using a map with a name and decorate_proc_maps=1 during the init.

esan seems to be the only other (than tsan) that does that. So when running the libc-intercept.c test case with decorate_proc_maps=1, it also segfaults.
dvyukov edited edge metadata.Nov 3 2017, 3:29 AM


In D38592#912999, @cryptoad wrote:


So this could go away with AllocatorName returning null, but it's not an actual fix, we would just be pretending the issue is not there.

Adding @dvyukov for input.





I don't fully understand what's the problem. Aleksey, can you please help with this?
flowerhack updated this revision to Diff 121548.Nov 3 2017, 2:16 PM
flowerhack edited edge metadata.
flowerhack marked an inline comment as done.
The root bug is that, if you have decorate_proc_maps enabled, *and* actually use a named mapping, *and* are using a sanitizer intercepting open (just TSAN and ESAN), then we'll get an explosion during initialization.



I've updated this CL with what seems like a reasonable fix to me: change ReservedAddressRange::Init to not use name on POSIX, since that's where the problem happens (Fuchsia is fine with names).



I can file a bug for allowing named mappings can be used everywhere more easily (the fix may involve e.g. porting shm_open s.t. it's not invoking open, which is what's causing the problem), if that's desired?



Please let me know if this minor change is satisfactory so I can go ahead with it, thanks~
flowerhack updated this revision to Diff 121551.Nov 3 2017, 2:17 PM
alekseyshl accepted this revision.Nov 3 2017, 5:07 PM


In D38592#915616, @flowerhack wrote:


The root bug is that, if you have decorate_proc_maps enabled, *and* actually use a named mapping, *and* are using a sanitizer intercepting open (just TSAN and ESAN), then we'll get an explosion during initialization.



I've updated this CL with what seems like a reasonable fix to me: change ReservedAddressRange::Init to not use name on POSIX, since that's where the problem happens (Fuchsia is fine with names).



I can file a bug for allowing named mappings can be used everywhere more easily (the fix may involve e.g. porting shm_open s.t. it's not invoking open, which is what's causing the problem), if that's desired?



Please let me know if this minor change is satisfactory so I can go ahead with it, thanks~





Looks like a perfectly acceptable fix to me, we never named these mappings. Please add a comment with TODO there explaining why we're not passing name down (pretty much what cryptoad@ said).
flowerhack updated this revision to Diff 121790.Nov 6 2017, 2:35 PM
cryptoad accepted this revision.Nov 6 2017, 3:17 PM
cryptoad added inline comments.
lib/sanitizer_common/sanitizer_posix_libcdep.cc


346 ↗(On Diff #121790)
I think you can skip the possible solution part.

If not, at least s/ccomplain/complain/ :)
This revision is now accepted and ready to land.Nov 6 2017, 3:17 PM
flowerhack updated this revision to Diff 121820.Nov 6 2017, 5:10 PM
flowerhack marked an inline comment as done.
cryptoad closed this revision.Nov 7 2017, 8:19 AM
Revision Contents
PathSize
compiler-rt/
lib/
sanitizer_common/
14 lines
Diff 117864
compiler-rt/lib/sanitizer_common/sanitizer_allocator_primary64.h
Show First 20 LinesShow All 66 Lines▼ Show 20 Lines public:

  }
  }

  uptr CompactPtrToPointer(uptr base, CompactPtrT ptr32) const {
  uptr CompactPtrToPointer(uptr base, CompactPtrT ptr32) const {

    return base + (static_cast<uptr>(ptr32) << kCompactPtrScale);
    return base + (static_cast<uptr>(ptr32) << kCompactPtrScale);

  }
  }




  void Init(s32 release_to_os_interval_ms) {
  void Init(s32 release_to_os_interval_ms) {

    uptr TotalSpaceSize = kSpaceSize + AdditionalSize();
    uptr TotalSpaceSize = kSpaceSize + AdditionalSize();

    if (kUsingConstantSpaceBeg) {
    if (kUsingConstantSpaceBeg) {

      CHECK_EQ(kSpaceBeg, reinterpret_cast<uptr>(
      CHECK_EQ(kSpaceBeg,

                              MmapFixedNoAccess(kSpaceBeg, TotalSpaceSize)));
               address_range.Init(TotalSpaceSize, kAllocatorName, kSpaceBeg));

    } else {
    } else {

      NonConstSpaceBeg =
      NonConstSpaceBeg = address_range.Init(TotalSpaceSize);

mcgrathrUnsubmitted
Not Done
ReplyInline Actions
This one should pass the name too.
mcgrathr: This one should pass the name too.
          reinterpret_cast<uptr>(MmapNoAccess(TotalSpaceSize));

      CHECK_NE(NonConstSpaceBeg, ~(uptr)0);
      CHECK_NE(NonConstSpaceBeg, ~(uptr)0);

    }
    }

    SetReleaseToOSIntervalMs(release_to_os_interval_ms);
    SetReleaseToOSIntervalMs(release_to_os_interval_ms);

    MapWithCallbackOrDie(SpaceEnd(), AdditionalSize());
    MapWithCallbackOrDie(SpaceEnd(), AdditionalSize());

  }
  }




  s32 ReleaseToOSIntervalMs() const {
  s32 ReleaseToOSIntervalMs() const {

    return atomic_load(&release_to_os_interval_ms_, memory_order_relaxed);
    return atomic_load(&release_to_os_interval_ms_, memory_order_relaxed);

▲ Show 20 LinesShow All 445 Lines▼ Show 20 Lines    if (same_chunk_count_per_page) {

      }
      }

    }
    }

    range_tracker.Done();
    range_tracker.Done();

  }
  }




 private:
 private:

  friend class MemoryMapper;
  friend class MemoryMapper;




  ReservedAddressRange address_range;

  const char kAllocatorName[20] = "sanitizer_allocator";

mcgrathrUnsubmitted
Not Done
ReplyInline Actions
This should be static const char kAllocatorName[], or just drop it and use a string constant at the call site.
mcgrathr: This should be static const char kAllocatorName[], or just drop it and use a string constant at…


  static const uptr kRegionSize = kSpaceSize / kNumClassesRounded;
  static const uptr kRegionSize = kSpaceSize / kNumClassesRounded;

  // FreeArray is the array of free-d chunks (stored as 4-byte offsets).
  // FreeArray is the array of free-d chunks (stored as 4-byte offsets).

  // In the worst case it may reguire kRegionSize/SizeClassMap::kMinSize
  // In the worst case it may reguire kRegionSize/SizeClassMap::kMinSize

  // elements, but in reality this will not happen. For simplicity we
  // elements, but in reality this will not happen. For simplicity we

  // dedicate 1/8 of the region's virtual space to FreeArray.
  // dedicate 1/8 of the region's virtual space to FreeArray.

  static const uptr kFreeArraySize = kRegionSize / 8;
  static const uptr kFreeArraySize = kRegionSize / 8;




  static const bool kUsingConstantSpaceBeg = kSpaceBeg != ~(uptr)0;
  static const bool kUsingConstantSpaceBeg = kSpaceBeg != ~(uptr)0;

▲ Show 20 LinesShow All 76 Lines▼ Show 20 Lines  uptr GetChunkIdx(uptr chunk, uptr size) const {

    return (u32)offset / (u32)size;
    return (u32)offset / (u32)size;

  }
  }




  CompactPtrT *GetFreeArray(uptr region_beg) const {
  CompactPtrT *GetFreeArray(uptr region_beg) const {

    return reinterpret_cast<CompactPtrT *>(GetMetadataEnd(region_beg));
    return reinterpret_cast<CompactPtrT *>(GetMetadataEnd(region_beg));

  }
  }




  bool MapWithCallback(uptr beg, uptr size) {
  bool MapWithCallback(uptr beg, uptr size) {

    uptr mapped = reinterpret_cast<uptr>(MmapFixedOrDieOnFatalError(beg, size));
    uptr mapped = address_range.Map(beg, size);

    if (UNLIKELY(!mapped))
    if (UNLIKELY(!mapped))

      return false;
      return false;

    CHECK_EQ(beg, mapped);
    CHECK_EQ(beg, mapped);

    MapUnmapCallback().OnMap(beg, size);
    MapUnmapCallback().OnMap(beg, size);

    return true;
    return true;

  }
  }




  void MapWithCallbackOrDie(uptr beg, uptr size) {
  void MapWithCallbackOrDie(uptr beg, uptr size) {

    CHECK_EQ(beg, reinterpret_cast<uptr>(MmapFixedOrDie(beg, size)));
    CHECK_EQ(beg, address_range.Map(beg, size));

    MapUnmapCallback().OnMap(beg, size);
    MapUnmapCallback().OnMap(beg, size);

  }
  }




  void UnmapWithCallbackOrDie(uptr beg, uptr size) {
  void UnmapWithCallbackOrDie(uptr beg, uptr size) {

    MapUnmapCallback().OnUnmap(beg, size);
    MapUnmapCallback().OnUnmap(beg, size);

    UnmapOrDie(reinterpret_cast<void *>(beg), size);
    UnmapOrDie(reinterpret_cast<void *>(beg), size);

  }
  }




▲ Show 20 LinesShow All 171 LinesShow Last 20 Lines