This is an archive of the discontinued LLVM Phabricator instance.

[MSan] fix the types of RegSaveAreaPtrPtr and OverflowArgAreaPtrPtr
ClosedPublic

Authored by glider on Mar 15 2018, 8:00 AM.

Download Raw Diff

Details

Reviewers

dvyukov
vitalybuka
eugenis

Commits

rGfa0217276a3d: [MSan] fix the types of RegSaveAreaPtrPtr and OverflowArgAreaPtrPtr
rL327830: [MSan] fix the types of RegSaveAreaPtrPtr and OverflowArgAreaPtrPtr

Summary

Despite their names, RegSaveAreaPtrPtr and OverflowArgAreaPtrPtr used to be i8* instead of i8**.
This is important, because these pointers are dereferenced twice (first in CreateLoad(), then in getShadowOriginPtr()), but for some reason MSan allowed this - most certainly because it was possible to optimize getShadowOriginPtr() away at compile time.

Diff Detail

Repository: rL LLVM

Event Timeline

glider created this revision.Mar 15 2018, 8:00 AM

Herald added a subscriber: llvm-commits. · View Herald TranscriptMar 15 2018, 8:00 AM

eugenis accepted this revision.Mar 16 2018, 4:15 PM

This revision is now accepted and ready to land.Mar 16 2018, 4:15 PM

Closed by commit rL327830: [MSan] fix the types of RegSaveAreaPtrPtr and OverflowArgAreaPtrPtr (authored by glider). · Explain WhyMar 19 2018, 3:11 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents

Path

Size

llvm/

trunk/

lib/

Transforms/

Instrumentation/

MemorySanitizer.cpp

12 lines

Diff 138887

llvm/trunk/lib/Transforms/Instrumentation/MemorySanitizer.cpp

Show First 20 Lines • Show All 3,218 Lines • ▼ Show 20 Lines	void finalizeInstrumentation() override {
for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {		for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {
CallInst *OrigInst = VAStartInstrumentationList[i];		CallInst *OrigInst = VAStartInstrumentationList[i];
IRBuilder<> IRB(OrigInst->getNextNode());		IRBuilder<> IRB(OrigInst->getNextNode());
Value *VAListTag = OrigInst->getArgOperand(0);		Value *VAListTag = OrigInst->getArgOperand(0);

Value *RegSaveAreaPtrPtr = IRB.CreateIntToPtr(		Value *RegSaveAreaPtrPtr = IRB.CreateIntToPtr(
IRB.CreateAdd(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),		IRB.CreateAdd(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),
ConstantInt::get(MS.IntptrTy, 16)),		ConstantInt::get(MS.IntptrTy, 16)),
Type::getInt64PtrTy(*MS.C));		PointerType::get(Type::getInt64PtrTy(*MS.C), 0));
Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);		Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);
Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;		Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;
unsigned Alignment = 16;		unsigned Alignment = 16;
std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =		std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =
MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),		MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),
Alignment);		Alignment);
IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,		IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,
AMD64FpEndOffset);		AMD64FpEndOffset);
Value *OverflowArgAreaPtrPtr = IRB.CreateIntToPtr(		Value *OverflowArgAreaPtrPtr = IRB.CreateIntToPtr(
IRB.CreateAdd(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),		IRB.CreateAdd(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),
ConstantInt::get(MS.IntptrTy, 8)),		ConstantInt::get(MS.IntptrTy, 8)),
Type::getInt64PtrTy(*MS.C));		PointerType::get(Type::getInt64PtrTy(*MS.C), 0));
Value *OverflowArgAreaPtr = IRB.CreateLoad(OverflowArgAreaPtrPtr);		Value *OverflowArgAreaPtr = IRB.CreateLoad(OverflowArgAreaPtrPtr);
Value OverflowArgAreaShadowPtr, OverflowArgAreaOriginPtr;		Value OverflowArgAreaShadowPtr, OverflowArgAreaOriginPtr;
std::tie(OverflowArgAreaShadowPtr, OverflowArgAreaOriginPtr) =		std::tie(OverflowArgAreaShadowPtr, OverflowArgAreaOriginPtr) =
MSV.getShadowOriginPtr(OverflowArgAreaPtr, IRB, IRB.getInt8Ty(),		MSV.getShadowOriginPtr(OverflowArgAreaPtr, IRB, IRB.getInt8Ty(),
Alignment);		Alignment);
Value *SrcPtr = IRB.CreateConstGEP1_32(IRB.getInt8Ty(), VAArgTLSCopy,		Value *SrcPtr = IRB.CreateConstGEP1_32(IRB.getInt8Ty(), VAArgTLSCopy,
AMD64FpEndOffset);		AMD64FpEndOffset);
IRB.CreateMemCpy(OverflowArgAreaShadowPtr, Alignment, SrcPtr, Alignment,		IRB.CreateMemCpy(OverflowArgAreaShadowPtr, Alignment, SrcPtr, Alignment,
▲ Show 20 Lines • Show All 93 Lines • ▼ Show 20 Lines	void finalizeInstrumentation() override {

// Instrument va_start.		// Instrument va_start.
// Copy va_list shadow from the backup copy of the TLS contents.		// Copy va_list shadow from the backup copy of the TLS contents.
for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {		for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {
CallInst *OrigInst = VAStartInstrumentationList[i];		CallInst *OrigInst = VAStartInstrumentationList[i];
IRBuilder<> IRB(OrigInst->getNextNode());		IRBuilder<> IRB(OrigInst->getNextNode());
Value *VAListTag = OrigInst->getArgOperand(0);		Value *VAListTag = OrigInst->getArgOperand(0);
Value *RegSaveAreaPtrPtr =		Value *RegSaveAreaPtrPtr =
IRB.CreateIntToPtr(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),		IRB.CreateIntToPtr(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),
Type::getInt64PtrTy(*MS.C));		PointerType::get(Type::getInt64PtrTy(*MS.C), 0));
Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);		Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);
Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;		Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;
unsigned Alignment = 8;		unsigned Alignment = 8;
std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =		std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =
MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),		MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),
Alignment);		Alignment);
IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,		IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,
CopySize);		CopySize);
▲ Show 20 Lines • Show All 403 Lines • ▼ Show 20 Lines	void finalizeInstrumentation() override {

// Instrument va_start.		// Instrument va_start.
// Copy va_list shadow from the backup copy of the TLS contents.		// Copy va_list shadow from the backup copy of the TLS contents.
for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {		for (size_t i = 0, n = VAStartInstrumentationList.size(); i < n; i++) {
CallInst *OrigInst = VAStartInstrumentationList[i];		CallInst *OrigInst = VAStartInstrumentationList[i];
IRBuilder<> IRB(OrigInst->getNextNode());		IRBuilder<> IRB(OrigInst->getNextNode());
Value *VAListTag = OrigInst->getArgOperand(0);		Value *VAListTag = OrigInst->getArgOperand(0);
Value *RegSaveAreaPtrPtr =		Value *RegSaveAreaPtrPtr =
IRB.CreateIntToPtr(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),		IRB.CreateIntToPtr(IRB.CreatePtrToInt(VAListTag, MS.IntptrTy),
Type::getInt64PtrTy(*MS.C));		PointerType::get(Type::getInt64PtrTy(*MS.C), 0));
Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);		Value *RegSaveAreaPtr = IRB.CreateLoad(RegSaveAreaPtrPtr);
Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;		Value RegSaveAreaShadowPtr, RegSaveAreaOriginPtr;
unsigned Alignment = 8;		unsigned Alignment = 8;
std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =		std::tie(RegSaveAreaShadowPtr, RegSaveAreaOriginPtr) =
MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),		MSV.getShadowOriginPtr(RegSaveAreaPtr, IRB, IRB.getInt8Ty(),
Alignment);		Alignment);
IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,		IRB.CreateMemCpy(RegSaveAreaShadowPtr, Alignment, VAArgTLSCopy, Alignment,
CopySize);		CopySize);
▲ Show 20 Lines • Show All 52 Lines • Show Last 20 Lines