This is an archive of the discontinued LLVM Phabricator instance.

Differential D411

make asan work with 7fff8000 offset and prelink
ClosedPublic

Authored by kcc on Feb 14 2013, 11:36 PM.

Details

Reviewers
samsonov
Summary

When prelink is installed in the system, prelink-ed
libraries map between 0x003000000000 and 0x004000000000 thus occupying the shadow Gap,
so we need so split the address space even further, like this:
|| [0x10007fff8000, 0x7fffffffffff] || HighMem ||
 || [0x02008fff7000, 0x10007fff7fff] || HighShadow ||
|| [0x004000000000, 0x02008fff6fff] || ShadowGap3 ||
 || [0x003000000000, 0x003fffffffff] || MidMem ||
|| [0x00087fff8000, 0x002fffffffff] || ShadowGap2 ||
 || [0x00067fff8000, 0x00087fff7fff] || MidShadow ||
|| [0x00008fff7000, 0x00067fff7fff] || ShadowGap ||
 || [0x00007fff8000, 0x00008fff6fff] || LowShadow ||
// || [0x000000000000, 0x00007fff7fff] || LowMem ||

Do it only if necessary.

Also added a bit of profiling code to make sure that the
mapping code is efficient.

Added a lit test to simulate prelink-ed libraries.
Unfortunately, this test does not work with binutils-gold linker.
If gold is the default linker the test silently passes.

Also replaced

__has_feature(address_sanitizer)

with
has_feature(address_sanitizer) || defined(SANITIZE_ADDRESS__)
in two places.

Diff Detail

Event Timeline

kcc updated this revision to Unknown Object (????).Feb 15 2013, 12:44 AM

fewer calls to MemoryRangeIsAvailable

kcc updated this revision to Unknown Object (????).Feb 15 2013, 2:59 AM
samsonov accepted this revision.Feb 15 2013, 3:21 AM

LGTM (it's a pity we need all this, though).

include/sanitizer/asan_interface.h
40–41

This should probably go to common_interface_defs.h.
I wonder why eugenis@ didn't needed this macro in msan_interface.h...

lib/asan/asan_internal.h
57

And this can go to lib/sanitizer_common/sanitizer_internal_defs.h

lib/asan/asan_mapping.h
192

Put || on the previous line

lib/asan/asan_rtl.cc
425–426

I'd prefer to factor printing the shadow layout in a separate function.

429

&& on the previous line as well (I think it's adviced by clang-format).

455

ditto

lib/asan/lit_tests/Linux/asan_prelink_test.cc
3

Please add a comment clarifying || exit 0 and lacking support in gold.

kcc updated this revision to Unknown Object (????).Feb 15 2013, 3:54 AM

addressed Alexey's comments.

samsonov added a comment.Feb 15 2013, 3:57 AM

LGTM

Eugene.Zelenko closed this revision.Oct 5 2016, 3:43 PM
Eugene.Zelenko added a subscriber: Eugene.Zelenko.

Committed in rL175263.

Revision Contents

PathSize
include/
sanitizer/
4 lines
5 lines
lib/
asan/
2 lines
102 lines
144 lines
lit_tests/
Linux/
25 lines
sanitizer_common/
2 lines

Diff 997

include/sanitizer/asan_interface.h

Show All 31 Lines#endif
// This memory must be previously allocated by the user program. Accessing // This memory must be previously allocated by the user program. Accessing
// addresses in this region is allowed until this region is poisoned again. // addresses in this region is allowed until this region is poisoned again.
// This function may unpoison a superregion of [addr, addr+size) due to // This function may unpoison a superregion of [addr, addr+size) due to
// ASan alignment restrictions. // ASan alignment restrictions.
// Method is NOT thread-safe in the sense that no two threads can // Method is NOT thread-safe in the sense that no two threads can
// (un)poison memory in the same memory region simultaneously. // (un)poison memory in the same memory region simultaneously.
void __asan_unpoison_memory_region(void const volatile *addr, size_t size); void __asan_unpoison_memory_region(void const volatile *addr, size_t size);
// User code should use macro instead of functions. // User code should use macros instead of functions.
#if __has_feature(address_sanitizer) #if __has_feature(address_sanitizer) || defined(__SANITIZE_ADDRESS__)
samsonovUnsubmitted
Not Done
ReplyInline Actions

This should probably go to common_interface_defs.h.
I wonder why eugenis@ didn't needed this macro in msan_interface.h...

samsonov: This should probably go to common_interface_defs.h. I wonder why eugenis@ didn't needed this…
#define ASAN_POISON_MEMORY_REGION(addr, size) \ #define ASAN_POISON_MEMORY_REGION(addr, size) \
__asan_poison_memory_region((addr), (size)) __asan_poison_memory_region((addr), (size))
#define ASAN_UNPOISON_MEMORY_REGION(addr, size) \ #define ASAN_UNPOISON_MEMORY_REGION(addr, size) \
__asan_unpoison_memory_region((addr), (size)) __asan_unpoison_memory_region((addr), (size))
#else #else
#define ASAN_POISON_MEMORY_REGION(addr, size) \ #define ASAN_POISON_MEMORY_REGION(addr, size) \
((void)(addr), (void)(size)) ((void)(addr), (void)(size))
#define ASAN_UNPOISON_MEMORY_REGION(addr, size) \ #define ASAN_UNPOISON_MEMORY_REGION(addr, size) \
▲ Show 20 LinesShow All 88 LinesShow Last 20 Lines

include/sanitizer/common_interface_defs.h

Show All 10 Lines
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef SANITIZER_COMMON_INTERFACE_DEFS_H #ifndef SANITIZER_COMMON_INTERFACE_DEFS_H
#define SANITIZER_COMMON_INTERFACE_DEFS_H #define SANITIZER_COMMON_INTERFACE_DEFS_H
#include <stddef.h> #include <stddef.h>
#include <stdint.h> #include <stdint.h>
// GCC does not understand __has_feature.
#if !defined(__has_feature)
# define __has_feature(x) 0
#endif
#ifdef __cplusplus #ifdef __cplusplus
extern "C" { extern "C" {
#endif #endif
// Tell the tools to write their reports to "path.<pid>" instead of stderr. // Tell the tools to write their reports to "path.<pid>" instead of stderr.
void __sanitizer_set_report_path(const char *path); void __sanitizer_set_report_path(const char *path);
// Tell the tools to write their reports to given file descriptor instead of // Tell the tools to write their reports to given file descriptor instead of
// stderr. // stderr.
Show All 17 Lines

lib/asan/asan_internal.h

Show First 20 LinesShow All 48 Lines▼ Show 20 Lines
# define ASAN_ANDROID 1 # define ASAN_ANDROID 1
#else #else
# define ASAN_ANDROID 0 # define ASAN_ANDROID 0
#endif #endif
#define ASAN_POSIX (ASAN_LINUX || ASAN_MAC) #define ASAN_POSIX (ASAN_LINUX || ASAN_MAC)
#if __has_feature(address_sanitizer) #if __has_feature(address_sanitizer) || defined(__SANITIZE_ADDRESS__)
samsonovUnsubmitted
Not Done
ReplyInline Actions

And this can go to lib/sanitizer_common/sanitizer_internal_defs.h

samsonov: And this can go to lib/sanitizer_common/sanitizer_internal_defs.h
# error "The AddressSanitizer run-time should not be" # error "The AddressSanitizer run-time should not be"
" instrumented by AddressSanitizer" " instrumented by AddressSanitizer"
#endif #endif
// Build-time configuration options. // Build-time configuration options.
// If set, asan will install its own SEGV signal handler. // If set, asan will install its own SEGV signal handler.
#ifndef ASAN_NEEDS_SEGV #ifndef ASAN_NEEDS_SEGV
▲ Show 20 LinesShow All 118 LinesShow Last 20 Lines

lib/asan/asan_mapping.h

Show All 12 Lines
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef ASAN_MAPPING_H #ifndef ASAN_MAPPING_H
#define ASAN_MAPPING_H #define ASAN_MAPPING_H
#include "asan_internal.h" #include "asan_internal.h"
// The full explanation of the memory mapping could be found here: // The full explanation of the memory mapping could be found here:
// http://code.google.com/p/address-sanitizer/wiki/AddressSanitizerAlgorithm // http://code.google.com/p/address-sanitizer/wiki/AddressSanitizerAlgorithm
//
// Typical shadow mapping on Linux/x86_64 with SHADOW_OFFSET == 0x00007fff8000:
// || `[0x10007fff8000, 0x7fffffffffff]` || HighMem ||
// || `[0x02008fff7000, 0x10007fff7fff]` || HighShadow ||
// || `[0x00008fff7000, 0x02008fff6fff]` || ShadowGap ||
// || `[0x00007fff8000, 0x00008fff6fff]` || LowShadow ||
// || `[0x000000000000, 0x00007fff7fff]` || LowMem ||
//
// When SHADOW_OFFSET is zero (-pie):
// || `[0x100000000000, 0x7fffffffffff]` || HighMem ||
// || `[0x020000000000, 0x0fffffffffff]` || HighShadow ||
// || `[0x000000040000, 0x01ffffffffff]` || ShadowGap ||
//
// Special case when something is already mapped between
// 0x003000000000 and 0x004000000000 (e.g. when prelink is installed):
// || `[0x10007fff8000, 0x7fffffffffff]` || HighMem ||
// || `[0x02008fff7000, 0x10007fff7fff]` || HighShadow ||
// || `[0x004000000000, 0x02008fff6fff]` || ShadowGap3 ||
// || `[0x003000000000, 0x003fffffffff]` || MidMem ||
// || `[0x00087fff8000, 0x002fffffffff]` || ShadowGap2 ||
// || `[0x00067fff8000, 0x00087fff7fff]` || MidShadow ||
// || `[0x00008fff7000, 0x00067fff7fff]` || ShadowGap ||
// || `[0x00007fff8000, 0x00008fff6fff]` || LowShadow ||
// || `[0x000000000000, 0x00007fff7fff]` || LowMem ||
//
// Default Linux/i386 mapping:
// || `[0x40000000, 0xffffffff]` || HighMem ||
// || `[0x28000000, 0x3fffffff]` || HighShadow ||
// || `[0x24000000, 0x27ffffff]` || ShadowGap ||
// || `[0x20000000, 0x23ffffff]` || LowShadow ||
// || `[0x00000000, 0x1fffffff]` || LowMem ||
#if ASAN_FLEXIBLE_MAPPING_AND_OFFSET == 1 #if ASAN_FLEXIBLE_MAPPING_AND_OFFSET == 1
extern SANITIZER_INTERFACE_ATTRIBUTE uptr __asan_mapping_scale; extern SANITIZER_INTERFACE_ATTRIBUTE uptr __asan_mapping_scale;
extern SANITIZER_INTERFACE_ATTRIBUTE uptr __asan_mapping_offset; extern SANITIZER_INTERFACE_ATTRIBUTE uptr __asan_mapping_offset;
# define SHADOW_SCALE (__asan_mapping_scale) # define SHADOW_SCALE (__asan_mapping_scale)
# define SHADOW_OFFSET (__asan_mapping_offset) # define SHADOW_OFFSET (__asan_mapping_offset)
#else #else
# if ASAN_ANDROID # if ASAN_ANDROID
Show All 27 Lines
#define kLowShadowBeg SHADOW_OFFSET #define kLowShadowBeg SHADOW_OFFSET
#define kLowShadowEnd MEM_TO_SHADOW(kLowMemEnd) #define kLowShadowEnd MEM_TO_SHADOW(kLowMemEnd)
#define kHighMemBeg (MEM_TO_SHADOW(kHighMemEnd) + 1) #define kHighMemBeg (MEM_TO_SHADOW(kHighMemEnd) + 1)
#define kHighShadowBeg MEM_TO_SHADOW(kHighMemBeg) #define kHighShadowBeg MEM_TO_SHADOW(kHighMemBeg)
#define kHighShadowEnd MEM_TO_SHADOW(kHighMemEnd) #define kHighShadowEnd MEM_TO_SHADOW(kHighMemEnd)
# define kMidShadowBeg MEM_TO_SHADOW(kMidMemBeg)
# define kMidShadowEnd MEM_TO_SHADOW(kMidMemEnd)
// With the zero shadow base we can not actually map pages starting from 0. // With the zero shadow base we can not actually map pages starting from 0.
// This constant is somewhat arbitrary. // This constant is somewhat arbitrary.
#define kZeroBaseShadowStart (1 << 18) #define kZeroBaseShadowStart (1 << 18)
#define kShadowGapBeg (kLowShadowEnd ? kLowShadowEnd + 1 \ #define kShadowGapBeg (kLowShadowEnd ? kLowShadowEnd + 1 \
: kZeroBaseShadowStart) : kZeroBaseShadowStart)
#define kShadowGapEnd (kHighShadowBeg - 1) #define kShadowGapEnd ((kMidMemBeg ? kMidShadowBeg : kHighShadowBeg) - 1)
#define kShadowGap2Beg (kMidMemBeg ? kMidShadowEnd + 1 : 0)
#define kShadowGap2End (kMidMemBeg ? kMidMemBeg - 1 : 0)
#define kShadowGap3Beg (kMidMemBeg ? kMidMemEnd + 1 : 0)
#define kShadowGap3End (kMidMemBeg ? kHighShadowBeg - 1 : 0)
#define DO_ASAN_MAPPING_PROFILE 0 // Set to 1 to profile the functions below.
#if DO_ASAN_MAPPING_PROFILE
# define PROFILE_ASAN_MAPPING() AsanMappingProfile[__LINE__]++;
#else
# define PROFILE_ASAN_MAPPING()
#endif
// If 1, all shadow boundaries are constants.
// Don't set to 1 other than for testing.
#define ASAN_FIXED_MAPPING 0
namespace __asan { namespace __asan {
extern uptr AsanMappingProfile[];
#if ASAN_FIXED_MAPPING
// Fixed mapping for 64-bit Linux. Mostly used for performance comparison
// with non-fixed mapping. As of r175253 (Feb 2013) the performance
// difference between fixed and non-fixed mapping is below the noise level.
static uptr kHighMemEnd = 0x7fffffffffffULL;
static uptr kMidMemBeg = 0x3000000000ULL;
static uptr kMidMemEnd = 0x3fffffffffULL;
#else
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
extern uptr kHighMemEnd; // Initialized in __asan_init. extern uptr kHighMemEnd, kMidMemBeg, kMidMemEnd; // Initialized in __asan_init.
#endif
static inline bool AddrIsInLowMem(uptr a) { static inline bool AddrIsInLowMem(uptr a) {
PROFILE_ASAN_MAPPING();
return a < kLowMemEnd; return a < kLowMemEnd;
} }
static inline bool AddrIsInLowShadow(uptr a) { static inline bool AddrIsInLowShadow(uptr a) {
PROFILE_ASAN_MAPPING();
return a >= kLowShadowBeg && a <= kLowShadowEnd; return a >= kLowShadowBeg && a <= kLowShadowEnd;
} }
static inline bool AddrIsInHighMem(uptr a) { static inline bool AddrIsInHighMem(uptr a) {
PROFILE_ASAN_MAPPING();
return a >= kHighMemBeg && a <= kHighMemEnd; return a >= kHighMemBeg && a <= kHighMemEnd;
} }
static inline bool AddrIsInMidMem(uptr a) {
PROFILE_ASAN_MAPPING();
return kMidMemBeg && a >= kMidMemBeg && a <= kMidMemEnd;
}
static inline bool AddrIsInMem(uptr a) { static inline bool AddrIsInMem(uptr a) {
return AddrIsInLowMem(a) || AddrIsInHighMem(a); PROFILE_ASAN_MAPPING();
return AddrIsInLowMem(a) || AddrIsInMidMem(a) || AddrIsInHighMem(a);
} }
static inline uptr MemToShadow(uptr p) { static inline uptr MemToShadow(uptr p) {
PROFILE_ASAN_MAPPING();
CHECK(AddrIsInMem(p)); CHECK(AddrIsInMem(p));
return MEM_TO_SHADOW(p); return MEM_TO_SHADOW(p);
} }
static inline bool AddrIsInHighShadow(uptr a) { static inline bool AddrIsInHighShadow(uptr a) {
PROFILE_ASAN_MAPPING();
return a >= kHighShadowBeg && a <= kHighMemEnd; return a >= kHighShadowBeg && a <= kHighMemEnd;
} }
static inline bool AddrIsInMidShadow(uptr a) {
PROFILE_ASAN_MAPPING();
return kMidMemBeg && a >= kMidShadowBeg && a <= kMidMemEnd;
}
static inline bool AddrIsInShadow(uptr a) { static inline bool AddrIsInShadow(uptr a) {
return AddrIsInLowShadow(a) || AddrIsInHighShadow(a); PROFILE_ASAN_MAPPING();
return AddrIsInLowShadow(a) || AddrIsInMidShadow(a) || AddrIsInHighShadow(a);
} }
static inline bool AddrIsInShadowGap(uptr a) { static inline bool AddrIsInShadowGap(uptr a) {
PROFILE_ASAN_MAPPING();
if (kMidMemBeg) {
if (a <= kShadowGapEnd)
return SHADOW_OFFSET == 0 || a >= kShadowGapBeg;
return (a >= kShadowGap2Beg && a <= kShadowGap2End) ||
(a >= kShadowGap3Beg && a <= kShadowGap3End);
samsonovUnsubmitted
Not Done
ReplyInline Actions

Put || on the previous line

samsonov: Put || on the previous line
}
// In zero-based shadow mode we treat addresses near zero as addresses // In zero-based shadow mode we treat addresses near zero as addresses
// in shadow gap as well. // in shadow gap as well.
if (SHADOW_OFFSET == 0) if (SHADOW_OFFSET == 0)
return a <= kShadowGapEnd; return a <= kShadowGapEnd;
return a >= kShadowGapBeg && a <= kShadowGapEnd; return a >= kShadowGapBeg && a <= kShadowGapEnd;
} }
static inline bool AddrIsAlignedByGranularity(uptr a) { static inline bool AddrIsAlignedByGranularity(uptr a) {
PROFILE_ASAN_MAPPING();
return (a & (SHADOW_GRANULARITY - 1)) == 0; return (a & (SHADOW_GRANULARITY - 1)) == 0;
} }
static inline bool AddressIsPoisoned(uptr a) { static inline bool AddressIsPoisoned(uptr a) {
PROFILE_ASAN_MAPPING();
const uptr kAccessSize = 1; const uptr kAccessSize = 1;
u8 *shadow_address = (u8*)MemToShadow(a); u8 *shadow_address = (u8*)MemToShadow(a);
s8 shadow_value = *shadow_address; s8 shadow_value = *shadow_address;
if (shadow_value) { if (shadow_value) {
u8 last_accessed_byte = (a & (SHADOW_GRANULARITY - 1)) u8 last_accessed_byte = (a & (SHADOW_GRANULARITY - 1))
+ kAccessSize - 1; + kAccessSize - 1;
return (last_accessed_byte >= shadow_value); return (last_accessed_byte >= shadow_value);
} }
return false; return false;
} }
// Must be after all calls to PROFILE_ASAN_MAPPING().
static const uptr kAsanMappingProfileSize = __LINE__;
} // namespace __asan } // namespace __asan
#endif // ASAN_MAPPING_H #endif // ASAN_MAPPING_H

lib/asan/asan_rtl.cc

Show All 21 Lines
#include "asan_thread_registry.h" #include "asan_thread_registry.h"
#include "sanitizer_common/sanitizer_atomic.h" #include "sanitizer_common/sanitizer_atomic.h"
#include "sanitizer_common/sanitizer_flags.h" #include "sanitizer_common/sanitizer_flags.h"
#include "sanitizer_common/sanitizer_libc.h" #include "sanitizer_common/sanitizer_libc.h"
#include "sanitizer_common/sanitizer_symbolizer.h" #include "sanitizer_common/sanitizer_symbolizer.h"
namespace __asan { namespace __asan {
uptr AsanMappingProfile[kAsanMappingProfileSize];
static void AsanDie() { static void AsanDie() {
static atomic_uint32_t num_calls; static atomic_uint32_t num_calls;
if (atomic_fetch_add(&num_calls, 1, memory_order_relaxed) != 0) { if (atomic_fetch_add(&num_calls, 1, memory_order_relaxed) != 0) {
// Don't die twice - run a busy loop. // Don't die twice - run a busy loop.
while (1) { } while (1) { }
} }
if (flags()->sleep_before_dying) { if (flags()->sleep_before_dying) {
Report("Sleeping for %d second(s)\n", flags()->sleep_before_dying); Report("Sleeping for %d second(s)\n", flags()->sleep_before_dying);
SleepForSeconds(flags()->sleep_before_dying); SleepForSeconds(flags()->sleep_before_dying);
} }
if (flags()->unmap_shadow_on_exit) if (flags()->unmap_shadow_on_exit) {
if (kMidMemBeg) {
UnmapOrDie((void*)kLowShadowBeg, kMidMemBeg - kLowShadowBeg);
UnmapOrDie((void*)kMidMemEnd, kHighShadowEnd - kMidMemEnd);
} else {
UnmapOrDie((void*)kLowShadowBeg, kHighShadowEnd - kLowShadowBeg); UnmapOrDie((void*)kLowShadowBeg, kHighShadowEnd - kLowShadowBeg);
}
}
if (death_callback) if (death_callback)
death_callback(); death_callback();
if (flags()->abort_on_error) if (flags()->abort_on_error)
Abort(); Abort();
Exit(flags()->exitcode); Exit(flags()->exitcode);
} }
static void AsanCheckFailed(const char *file, int line, const char *cond, static void AsanCheckFailed(const char *file, int line, const char *cond,
▲ Show 20 LinesShow All 108 Lines▼ Show 20 Linesvoid InitializeFlags(Flags *f, const char *env) {
// Override from command line. // Override from command line.
ParseFlagsFromString(f, env); ParseFlagsFromString(f, env);
} }
// -------------------------- Globals --------------------- {{{1 // -------------------------- Globals --------------------- {{{1
int asan_inited; int asan_inited;
bool asan_init_is_running; bool asan_init_is_running;
void (*death_callback)(void); void (*death_callback)(void);
uptr kHighMemEnd;
#if !ASAN_FIXED_MAPPING
uptr kHighMemEnd, kMidMemBeg, kMidMemEnd;
#endif
// -------------------------- Misc ---------------- {{{1 // -------------------------- Misc ---------------- {{{1
void ShowStatsAndAbort() { void ShowStatsAndAbort() {
__asan_print_accumulated_stats(); __asan_print_accumulated_stats();
Die(); Die();
} }
// ---------------------- mmap -------------------- {{{1 // ---------------------- mmap -------------------- {{{1
▲ Show 20 LinesShow All 81 Lines▼ Show 20 Lines switch (fake_condition) {
case 34: __asan_region_is_poisoned(0, 0); break; case 34: __asan_region_is_poisoned(0, 0); break;
case 35: __asan_describe_address(0); break; case 35: __asan_describe_address(0); break;
} }
} }
static void asan_atexit() { static void asan_atexit() {
Printf("AddressSanitizer exit stats:\n"); Printf("AddressSanitizer exit stats:\n");
__asan_print_accumulated_stats(); __asan_print_accumulated_stats();
// Print AsanMappingProfile.
for (uptr i = 0; i < kAsanMappingProfileSize; i++) {
if (AsanMappingProfile[i] == 0) continue;
Printf("asan_mapping.h:%zd -- %zd\n", i, AsanMappingProfile[i]);
}
} }
static void InitializeHighMemEnd() { static void InitializeHighMemEnd() {
#if !ASAN_FIXED_MAPPING
#if SANITIZER_WORDSIZE == 64 #if SANITIZER_WORDSIZE == 64
# if defined(__powerpc64__) # if defined(__powerpc64__)
// FIXME: // FIXME:
// On PowerPC64 we have two different address space layouts: 44- and 46-bit. // On PowerPC64 we have two different address space layouts: 44- and 46-bit.
// We somehow need to figure our which one we are using now and choose // We somehow need to figure our which one we are using now and choose
// one of 0x00000fffffffffffUL and 0x00003fffffffffffUL. // one of 0x00000fffffffffffUL and 0x00003fffffffffffUL.
// Note that with 'ulimit -s unlimited' the stack is moved away from the top // Note that with 'ulimit -s unlimited' the stack is moved away from the top
// of the address space, so simply checking the stack address is not enough. // of the address space, so simply checking the stack address is not enough.
kHighMemEnd = (1ULL << 44) - 1; // 0x00000fffffffffffUL kHighMemEnd = (1ULL << 44) - 1; // 0x00000fffffffffffUL
# else # else
kHighMemEnd = (1ULL << 47) - 1; // 0x00007fffffffffffUL; kHighMemEnd = (1ULL << 47) - 1; // 0x00007fffffffffffUL;
# endif # endif
#else // SANITIZER_WORDSIZE == 32 #else // SANITIZER_WORDSIZE == 32
kHighMemEnd = (1ULL << 32) - 1; // 0xffffffff; kHighMemEnd = (1ULL << 32) - 1; // 0xffffffff;
#endif // SANITIZER_WORDSIZE #endif // SANITIZER_WORDSIZE
#endif // !ASAN_FIXED_MAPPING
}
static void ProtectGap(uptr a, uptr size) {
CHECK_EQ(a, (uptr)Mprotect(a, size));
}
static void PrintAddressSpaceLayout() {
Printf("|| `[%p, %p]` || HighMem ||\n",
(void*)kHighMemBeg, (void*)kHighMemEnd);
Printf("|| `[%p, %p]` || HighShadow ||\n",
(void*)kHighShadowBeg, (void*)kHighShadowEnd);
if (kMidMemBeg) {
Printf("|| `[%p, %p]` || ShadowGap3 ||\n",
(void*)kShadowGap3Beg, (void*)kShadowGap3End);
Printf("|| `[%p, %p]` || MidMem ||\n",
(void*)kMidMemBeg, (void*)kMidMemEnd);
Printf("|| `[%p, %p]` || ShadowGap2 ||\n",
(void*)kShadowGap2Beg, (void*)kShadowGap2End);
Printf("|| `[%p, %p]` || MidShadow ||\n",
(void*)kMidShadowBeg, (void*)kMidShadowEnd);
}
Printf("|| `[%p, %p]` || ShadowGap ||\n",
(void*)kShadowGapBeg, (void*)kShadowGapEnd);
if (kLowShadowBeg) {
Printf("|| `[%p, %p]` || LowShadow ||\n",
(void*)kLowShadowBeg, (void*)kLowShadowEnd);
Printf("|| `[%p, %p]` || LowMem ||\n",
(void*)kLowMemBeg, (void*)kLowMemEnd);
}
Printf("MemToShadow(shadow): %p %p %p %p",
(void*)MEM_TO_SHADOW(kLowShadowBeg),
(void*)MEM_TO_SHADOW(kLowShadowEnd),
(void*)MEM_TO_SHADOW(kHighShadowBeg),
(void*)MEM_TO_SHADOW(kHighShadowEnd));
if (kMidMemBeg) {
Printf(" %p %p",
(void*)MEM_TO_SHADOW(kMidShadowBeg),
(void*)MEM_TO_SHADOW(kMidShadowEnd));
}
Printf("\n");
Printf("red_zone=%zu\n", (uptr)flags()->redzone);
Printf("malloc_context_size=%zu\n", (uptr)flags()->malloc_context_size);
Printf("SHADOW_SCALE: %zx\n", (uptr)SHADOW_SCALE);
Printf("SHADOW_GRANULARITY: %zx\n", (uptr)SHADOW_GRANULARITY);
Printf("SHADOW_OFFSET: %zx\n", (uptr)SHADOW_OFFSET);
CHECK(SHADOW_SCALE >= 3 && SHADOW_SCALE <= 7);
if (kMidMemBeg)
CHECK(kMidShadowBeg > kLowShadowEnd &&
kMidMemBeg > kMidShadowEnd &&
kHighShadowBeg > kMidMemEnd);
} }
} // namespace __asan } // namespace __asan
// ---------------------- Interface ---------------- {{{1 // ---------------------- Interface ---------------- {{{1
using namespace __asan; // NOLINT using namespace __asan; // NOLINT
#if !SANITIZER_SUPPORTS_WEAK_HOOKS #if !SANITIZER_SUPPORTS_WEAK_HOOKS
▲ Show 20 LinesShow All 58 Lines▼ Show 20 Lines if (flags()->atexit) {
Atexit(asan_atexit); Atexit(asan_atexit);
} }
// interceptors // interceptors
InitializeAsanInterceptors(); InitializeAsanInterceptors();
ReplaceSystemMalloc(); ReplaceSystemMalloc();
ReplaceOperatorsNewAndDelete(); ReplaceOperatorsNewAndDelete();
if (flags()->verbosity) { uptr shadow_start = kLowShadowBeg;
samsonovUnsubmitted
Not Done
ReplyInline Actions

I'd prefer to factor printing the shadow layout in a separate function.

samsonov: I'd prefer to factor printing the shadow layout in a separate function.
Printf("|| `[%p, %p]` || HighMem ||\n", if (kLowShadowBeg) shadow_start -= GetMmapGranularity();
(void*)kHighMemBeg, (void*)kHighMemEnd); uptr shadow_end = kHighShadowEnd;
Printf("|| `[%p, %p]` || HighShadow ||\n", bool full_shadow_is_available =
samsonovUnsubmitted
Not Done
ReplyInline Actions

&& on the previous line as well (I think it's adviced by clang-format).

samsonov: && on the previous line as well (I think it's adviced by clang-format).
(void*)kHighShadowBeg, (void*)kHighShadowEnd); MemoryRangeIsAvailable(shadow_start, shadow_end);
Printf("|| `[%p, %p]` || ShadowGap ||\n",
(void*)kShadowGapBeg, (void*)kShadowGapEnd);
Printf("|| `[%p, %p]` || LowShadow ||\n",
(void*)kLowShadowBeg, (void*)kLowShadowEnd);
Printf("|| `[%p, %p]` || LowMem ||\n",
(void*)kLowMemBeg, (void*)kLowMemEnd);
Printf("MemToShadow(shadow): %p %p %p %p\n",
(void*)MEM_TO_SHADOW(kLowShadowBeg),
(void*)MEM_TO_SHADOW(kLowShadowEnd),
(void*)MEM_TO_SHADOW(kHighShadowBeg),
(void*)MEM_TO_SHADOW(kHighShadowEnd));
Printf("red_zone=%zu\n", (uptr)flags()->redzone);
Printf("malloc_context_size=%zu\n", (uptr)flags()->malloc_context_size);
Printf("SHADOW_SCALE: %zx\n", (uptr)SHADOW_SCALE); #if ASAN_LINUX && defined(__x86_64__) && !ASAN_FIXED_MAPPING
Printf("SHADOW_GRANULARITY: %zx\n", (uptr)SHADOW_GRANULARITY); if (!full_shadow_is_available) {
Printf("SHADOW_OFFSET: %zx\n", (uptr)SHADOW_OFFSET); kMidMemBeg = kLowMemEnd < 0x3000000000ULL ? 0x3000000000ULL : 0;
CHECK(SHADOW_SCALE >= 3 && SHADOW_SCALE <= 7); kMidMemEnd = kLowMemEnd < 0x3000000000ULL ? 0x3fffffffffULL : 0;
} }
#endif
if (flags()->verbosity)
PrintAddressSpaceLayout();
if (flags()->disable_core) { if (flags()->disable_core) {
DisableCoreDumper(); DisableCoreDumper();
} }
uptr shadow_start = kLowShadowBeg; if (full_shadow_is_available) {
if (kLowShadowBeg > 0) shadow_start -= GetMmapGranularity(); // mmap the low shadow plus at least one page at the left.
uptr shadow_end = kHighShadowEnd; if (kLowShadowBeg)
if (MemoryRangeIsAvailable(shadow_start, shadow_end)) { ReserveShadowMemoryRange(shadow_start, kLowShadowEnd);
if (kLowShadowBeg != kLowShadowEnd) { // mmap the high shadow.
// mmap the low shadow plus at least one page. ReserveShadowMemoryRange(kHighShadowBeg, kHighShadowEnd);
ReserveShadowMemoryRange(kLowShadowBeg - GetMmapGranularity(), // protect the gap.
kLowShadowEnd); ProtectGap(kShadowGapBeg, kShadowGapEnd - kShadowGapBeg + 1);
} } else if (kMidMemBeg &&
MemoryRangeIsAvailable(shadow_start, kMidMemBeg - 1) &&
samsonovUnsubmitted
Not Done
ReplyInline Actions

ditto

samsonov: ditto
MemoryRangeIsAvailable(kMidMemEnd + 1, shadow_end)) {
CHECK(kLowShadowBeg != kLowShadowEnd);
// mmap the low shadow plus at least one page at the left.
ReserveShadowMemoryRange(shadow_start, kLowShadowEnd);
// mmap the mid shadow.
ReserveShadowMemoryRange(kMidShadowBeg, kMidShadowEnd);
// mmap the high shadow. // mmap the high shadow.
ReserveShadowMemoryRange(kHighShadowBeg, kHighShadowEnd); ReserveShadowMemoryRange(kHighShadowBeg, kHighShadowEnd);
// protect the gap // protect the gaps.
void *prot = Mprotect(kShadowGapBeg, kShadowGapEnd - kShadowGapBeg + 1); ProtectGap(kShadowGapBeg, kShadowGapEnd - kShadowGapBeg + 1);
CHECK(prot == (void*)kShadowGapBeg); ProtectGap(kShadowGap2Beg, kShadowGap2End - kShadowGap2Beg + 1);
ProtectGap(kShadowGap3Beg, kShadowGap3End - kShadowGap3Beg + 1);
} else { } else {
Report("Shadow memory range interleaves with an existing memory mapping. " Report("Shadow memory range interleaves with an existing memory mapping. "
"ASan cannot proceed correctly. ABORTING.\n"); "ASan cannot proceed correctly. ABORTING.\n");
DumpProcessMap(); DumpProcessMap();
Die(); Die();
} }
InstallSignalHandlers(); InstallSignalHandlers();
Show All 37 Lines

lib/asan/lit_tests/Linux/asan_prelink_test.cc

// Test if asan works with prelink.
// It does not actually use prelink, but relies on ld's flag -Ttext-segment.
// This flag is not present in GNU gold, so if the link command line fails
samsonovUnsubmitted
Not Done
ReplyInline Actions

Please add a comment clarifying || exit 0 and lacking support in gold.

samsonov: Please add a comment clarifying || exit 0 and lacking support in gold.
// we just exit 0.
//
// RUN: %clangxx_asan -m64 -c %s -o %t.o
// RUN: %clangxx_asan -m64 -DBUILD_SO=1 -fPIC -shared %s -o %t.so -Wl,-Ttext-segment=0x3600000000 || exit 0
// RUN: %clangxx_asan -m64 %t.o %t.so -Wl,-R. -o %t
// RUN: ASAN_OPTIONS=verbosity=1 %t 2>&1 | FileCheck %s
#if BUILD_SO
int G;
int *getG() {
return &G;
}
#else
#include <stdio.h>
extern int *getG();
int main(int argc, char **argv) {
long p = (long)getG();
printf("SO mapped at %lx\n", p & ~0xffffffffUL);
*getG() = 0;
}
#endif
// CHECK: 0x003000000000, 0x003fffffffff{{.*}} MidMem
// CHECK: SO mapped at 3600000000

lib/sanitizer_common/sanitizer_internal_defs.h

Show All 25 Lines
#endif #endif
#ifdef __linux__ #ifdef __linux__
# define SANITIZER_SUPPORTS_WEAK_HOOKS 1 # define SANITIZER_SUPPORTS_WEAK_HOOKS 1
#else #else
# define SANITIZER_SUPPORTS_WEAK_HOOKS 0 # define SANITIZER_SUPPORTS_WEAK_HOOKS 0
#endif #endif
// __has_feature // GCC does not understand __has_feature
#if !defined(__has_feature) #if !defined(__has_feature)
# define __has_feature(x) 0 # define __has_feature(x) 0
#endif #endif
// For portability reasons we do not include stddef.h, stdint.h or any other // For portability reasons we do not include stddef.h, stdint.h or any other
// system header, but we do need some basic types that are not defined // system header, but we do need some basic types that are not defined
// in a portable way by the language itself. // in a portable way by the language itself.
namespace __sanitizer { namespace __sanitizer {
▲ Show 20 LinesShow All 228 LinesShow Last 20 Lines