This is an archive of the discontinued LLVM Phabricator instance.

Differential D48446

[ubsan] Add support for reporting diagnostics to a monitor process
ClosedPublic

Authored by vsk on Jun 21 2018, 10:58 AM.

Details

Reviewers
kubamracek
vitalybuka
george.karpenkov
delcypher
Commits
rG059d20360a1f: [ubsan] Add support for reporting diagnostics to a monitor process
rL335371: [ubsan] Add support for reporting diagnostics to a monitor process
rCRT335371: [ubsan] Add support for reporting diagnostics to a monitor process
Summary

Add support to the ubsan runtime for reporting diagnostics to a monitor
process (e.g a debugger).

The Xcode IDE uses this by setting a breakpoint on ubsan_on_report and
collecting diagnostic information via ubsan_get_current_report_data,
which it then surfaces to users in the editor UI.

Testing for this functionality already exists in upstream lldb, here:
lldb/packages/Python/lldbsuite/test/functionalities/ubsan

Apart from that, this is ninja check-ubsan clean.

Diff Detail

Event Timeline

vsk created this revision.Jun 21 2018, 10:58 AM
Herald added a subscriber: mgorny. · View Herald TranscriptJun 21 2018, 10:58 AM
vitalybuka added a comment.Jun 21 2018, 11:12 AM

Does check-asan work?

It would be nice to test major xcode/lldb expectations here.

lib/ubsan/ubsan_monitor.cc
54

why do you need this?

kubamracek added reviewers: george.karpenkov, delcypher.Jun 21 2018, 11:15 AM
kubamracek added a comment.Jun 21 2018, 11:20 AM

Thanks, Vedant! This looks good to me.

There's some tests in LLDB, https://github.com/llvm-mirror/lldb/tree/master/packages/Python/lldbsuite/test/functionalities/ubsan that are testing this. But it should be possible to write a test in compiler-rt as well, see https://github.com/llvm-mirror/compiler-rt/blob/master/test/tsan/Darwin/debug_external.cc. But if that turns out to be too much work, I'm okay with just the LLDB test.

vsk updated this revision to Diff 152357.Jun 21 2018, 12:00 PM
In D48446#1139655, @vitalybuka wrote:

Does check-asan work?

Yes.

it should be possible to write a test in compiler-rt as well

I've added test/ubsan/Misc/monitor.cpp.

lib/ubsan/ubsan_monitor.cc
54

This is a relatively noninvasive way of making sure the text of diagnostics can't begin with a lowercase letter. I'll add a comment.

vitalybuka added inline comments.Jun 21 2018, 1:03 PM
lib/ubsan/ubsan_monitor.cc
54

Thanks. That's clear from the code.
I am rather curios why it's important. Is this always upper case for messages from other components passed to monitor?

vsk added inline comments.Jun 21 2018, 1:18 PM
lib/ubsan/ubsan_monitor.cc
54

Oh, good question. I'm not sure how the other sanitizers handle capitalization.

W.r.t ubsan integration into Xcode, I was simply asked to make diagnostics start with proper capitalization during internal review. Because of loose coupling between compiler-rt and Xcode, it was more convenient to do the capitalization here, although it would be cleaner to move this into Xcode.

vitalybuka added inline comments.Jun 21 2018, 5:31 PM
lib/ubsan/ubsan_monitor.h
36

I'd prefer interface consistent with similar one from TSAN:
__tsan_on_report(void *report) {

__tsan_get_report_loc(report.....
__tsan_get_report_loc_object_type(report.....

}

Also this will avoid having state set by RegisterUndefinedBehaviorReport

vsk added inline comments.Jun 21 2018, 5:55 PM
lib/ubsan/ubsan_monitor.h
36

Point taken, it would be a bit simpler this way. However, we can't make this change because it would break debuggability of code compiled with Xcode 9.

vitalybuka added inline comments.Jun 21 2018, 5:58 PM
lib/ubsan/ubsan_monitor.h
36

Does Xcode 9 works for tsan?

vsk added inline comments.Jun 21 2018, 6:07 PM
lib/ubsan/ubsan_monitor.h
36

Are you asking if IDE diagnostics for tsan issues found in a binary compiled with Xcode 9, work when running under Xcode (9+K)? I'm not sure. Generally we try to make it possible to debug old binaries.

vitalybuka added inline comments.Jun 21 2018, 6:12 PM
lib/ubsan/ubsan_monitor.h
36

I am confused. Could you please elaborate why change in non existing yet API will break code compiled with Xcode 9?

To clarify, I propose to have:

__ubsan_on_report(void *report) {
    __ubsan_get_report_loc(report.....
    __ubsan_get_report_other_stuff(report.....
}
...
similar to tsan
kubamracek added inline comments.Jun 21 2018, 6:12 PM
lib/ubsan/ubsan_monitor.h
36

Yes, Xcode 9 supports TSan and UBSan. I think we really need to keep the interface as it is, at least for this initial commit. Changes in the interface should then try to be as compatible as possible. Every time TSan's debugging interface changed, we did that in a backwards-compatible manner (debugging old binaries works), and forwards-compatible way as well (worst case is you'll miss some data in the report).

vitalybuka added inline comments.Jun 21 2018, 6:16 PM
lib/ubsan/ubsan_monitor.h
36

Not sure I understand the answer.
Does Xcode 9 already expects ubsan_on_report and ubsan_get_current_report_data as is?

vsk added inline comments.Jun 21 2018, 6:17 PM
lib/ubsan/ubsan_monitor.h
36

Yes, I'd like to upstream the compiler-rt support. One benefit to the community is that downloadable open-source toolchains will become compatible with Xcode's ubsan support.

vitalybuka accepted this revision.Jun 21 2018, 6:19 PM
vitalybuka added inline comments.
lib/ubsan/ubsan_monitor.h
36

Thanks. I see now.

This revision is now accepted and ready to land.Jun 21 2018, 6:19 PM
Closed by commit rCRT335371: [ubsan] Add support for reporting diagnostics to a monitor process (authored by vedantk). · Explain WhyJun 22 2018, 10:25 AM
This revision was automatically updated to reflect the committed changes.
Herald added a subscriber: Restricted Project. · View Herald TranscriptJun 22 2018, 10:26 AM
cryptoad added a subscriber: cryptoad.Jun 22 2018, 12:30 PM

This seems to have broken the Windows build.
vc:\b\slave\sanitizer-windows\llvm\projects\compiler-rt\lib\ubsan\ubsan_interface.inc(55): error C2065: '__ubsan_on_report': undeclared identifier
http://lab.llvm.org:8011/builders/sanitizer-windows/builds/30528/steps/build%20compiler-rt/logs/stdio

vsk added a comment.Jun 22 2018, 12:55 PM

Taking a look now.

thakis added a subscriber: thakis.Jun 25 2018, 1:46 PM
thakis added inline comments.
test/ubsan/TestCases/Misc/monitor.cpp
3

This test fails on Windows: https://logs.chromium.org/v/?s=chromium%2Fbb%2Ftryserver.chromium.win%2Fwin_upload_clang%2F361%2F%2B%2Frecipes%2Fsteps%2Fpackage_clang%2F0%2Fstdout

$ ":" "RUN: at line 1"
$ "C:/b/rr/tmpnnvph5/w/src/third_party/llvm-bootstrap/./bin/clang.exe" "-w" "-fsanitize=bool" "C:\b\rr\tmpnnvph5\w\src\third_party\llvm\projects\compiler-rt\test\ubsan\TestCases\Misc\monitor.cpp" "-o" "C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.tmp"
# command output:
clang_rt.ubsan_standalone-x86_64.lib(ubsan_monitor.cc.obj) : error LNK2005: __ubsan_on_report already defined in monitor-c1dd53.o
   Creating library C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.lib and object C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.exp
monitor-c1dd53.o : warning LNK4217: locally defined symbol __std_terminate imported in function "int `public: static unsigned __int64 __cdecl std::char_traits<char>::length(char const * const)'::`1'::dtor$2" (?dtor$2@?0??length@?$char_traits@D@std@@SA_KQEBD@Z@4HA)
monitor-c1dd53.o : warning LNK4217: locally defined symbol _CxxThrowException imported in function "public: void __cdecl std::ios_base::clear(int,bool)" (?clear@ios_base@std@@QEAAXH_N@Z)
C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.tmp : fatal error LNK1169: one or more multiply defined symbols found
# command stderr:
clang.exe: error: linker command failed with exit code 1169 (use -v to see invocation)

I'll note that no other ubsan test includes iostream. clang tests at least try to not use system headers; I'm guessing this is probably true for compiler-rt tests as well?

If there's no quick fix, please revert while investigating to get the build back to green for now.

(That bot uses msvc2017; the llvm buildbot bots maybe use something older.)

kubamracek added inline comments.Jun 25 2018, 1:50 PM
test/ubsan/TestCases/Misc/monitor.cpp
3

@vsk, I guess this is because of the weak definition of __ubsan_on_report. Should we just mark the test as UNSUPPORTED: win32?

thakis added inline comments.Jun 25 2018, 5:07 PM
test/ubsan/TestCases/Misc/monitor.cpp
3

Looks like the test got disabled on win in r335523, thanks!

MaskRay mentioned this in D127929: [ubsan][test] Add weak attributes to symbols for dyld weak-def coalescing of Mach-O files.Jun 16 2022, 11:15 AM

Revision Contents

PathSize
lib/
ubsan/
1 line
20 lines
8 lines
90 lines
22 lines
2 lines
49 lines
76 lines
test/
ubsan/
TestCases/
Misc/
37 lines

Diff 152357

lib/ubsan/CMakeLists.txt

# Build for the undefined behavior sanitizer runtime support library. # Build for the undefined behavior sanitizer runtime support library.
set(UBSAN_SOURCES set(UBSAN_SOURCES
ubsan_diag.cc ubsan_diag.cc
ubsan_init.cc ubsan_init.cc
ubsan_flags.cc ubsan_flags.cc
ubsan_handlers.cc ubsan_handlers.cc
ubsan_monitor.cc
ubsan_value.cc ubsan_value.cc
) )
set(UBSAN_STANDALONE_SOURCES set(UBSAN_STANDALONE_SOURCES
ubsan_diag_standalone.cc ubsan_diag_standalone.cc
ubsan_init_standalone.cc ubsan_init_standalone.cc
ubsan_signals_standalone.cc ubsan_signals_standalone.cc
) )
▲ Show 20 LinesShow All 190 LinesShow Last 20 Lines

lib/ubsan/ubsan_diag.h

Show First 20 LinesShow All 115 Lines▼ Show 20 Lines
/// \brief A C++ type name. Really just a strong typedef for 'const char*'. /// \brief A C++ type name. Really just a strong typedef for 'const char*'.
class TypeName { class TypeName {
const char *Name; const char *Name;
public: public:
TypeName(const char *Name) : Name(Name) {} TypeName(const char *Name) : Name(Name) {}
const char *getName() const { return Name; } const char *getName() const { return Name; }
}; };
enum class ErrorType {
#define UBSAN_CHECK(Name, SummaryKind, FSanitizeFlagName) Name,
#include "ubsan_checks.inc"
#undef UBSAN_CHECK
};
/// \brief Representation of an in-flight diagnostic. /// \brief Representation of an in-flight diagnostic.
/// ///
/// Temporary \c Diag instances are created by the handler routines to /// Temporary \c Diag instances are created by the handler routines to
/// accumulate arguments for a diagnostic. The destructor emits the diagnostic /// accumulate arguments for a diagnostic. The destructor emits the diagnostic
/// message. /// message.
class Diag { class Diag {
/// The location at which the problem occurred. /// The location at which the problem occurred.
Location Loc; Location Loc;
/// The diagnostic level. /// The diagnostic level.
DiagLevel Level; DiagLevel Level;
/// The error type.
ErrorType ET;
/// The message which will be emitted, with %0, %1, ... placeholders for /// The message which will be emitted, with %0, %1, ... placeholders for
/// arguments. /// arguments.
const char *Message; const char *Message;
public: public:
/// Kinds of arguments, corresponding to members of \c Arg's union. /// Kinds of arguments, corresponding to members of \c Arg's union.
enum ArgKind { enum ArgKind {
AK_String, ///< A string argument, displayed as-is. AK_String, ///< A string argument, displayed as-is.
▲ Show 20 LinesShow All 48 Lines▼ Show 20 Lines Diag &AddRange(Range A) {
return *this; return *this;
} }
/// \c Diag objects are not copyable. /// \c Diag objects are not copyable.
Diag(const Diag &); // NOT IMPLEMENTED Diag(const Diag &); // NOT IMPLEMENTED
Diag &operator=(const Diag &); Diag &operator=(const Diag &);
public: public:
Diag(Location Loc, DiagLevel Level, const char *Message) Diag(Location Loc, DiagLevel Level, ErrorType ET, const char *Message)
: Loc(Loc), Level(Level), Message(Message), NumArgs(0), NumRanges(0) {} : Loc(Loc), Level(Level), ET(ET), Message(Message), NumArgs(0),
NumRanges(0) {}
~Diag(); ~Diag();
Diag &operator<<(const char *Str) { return AddArg(Str); } Diag &operator<<(const char *Str) { return AddArg(Str); }
Diag &operator<<(TypeName TN) { return AddArg(TN); } Diag &operator<<(TypeName TN) { return AddArg(TN); }
Diag &operator<<(unsigned long long V) { return AddArg(UIntMax(V)); } Diag &operator<<(unsigned long long V) { return AddArg(UIntMax(V)); }
Diag &operator<<(const void *V) { return AddArg(V); } Diag &operator<<(const void *V) { return AddArg(V); }
Diag &operator<<(const TypeDescriptor &V); Diag &operator<<(const TypeDescriptor &V);
Diag &operator<<(const Value &V); Diag &operator<<(const Value &V);
Diag &operator<<(const Range &R) { return AddRange(R); } Diag &operator<<(const Range &R) { return AddRange(R); }
}; };
struct ReportOptions { struct ReportOptions {
// If FromUnrecoverableHandler is specified, UBSan runtime handler is not // If FromUnrecoverableHandler is specified, UBSan runtime handler is not
// expected to return. // expected to return.
bool FromUnrecoverableHandler; bool FromUnrecoverableHandler;
/// pc/bp are used to unwind the stack trace. /// pc/bp are used to unwind the stack trace.
uptr pc; uptr pc;
uptr bp; uptr bp;
}; };
enum class ErrorType {
#define UBSAN_CHECK(Name, SummaryKind, FSanitizeFlagName) Name,
#include "ubsan_checks.inc"
#undef UBSAN_CHECK
};
bool ignoreReport(SourceLocation SLoc, ReportOptions Opts, ErrorType ET); bool ignoreReport(SourceLocation SLoc, ReportOptions Opts, ErrorType ET);
#define GET_REPORT_OPTIONS(unrecoverable_handler) \ #define GET_REPORT_OPTIONS(unrecoverable_handler) \
GET_CALLER_PC_BP; \ GET_CALLER_PC_BP; \
ReportOptions Opts = {unrecoverable_handler, pc, bp} ReportOptions Opts = {unrecoverable_handler, pc, bp}
void GetStackTrace(BufferedStackTrace *stack, uptr max_depth, uptr pc, uptr bp, void GetStackTrace(BufferedStackTrace *stack, uptr max_depth, uptr pc, uptr bp,
void *context, bool fast); void *context, bool fast);
Show All 31 Lines

lib/ubsan/ubsan_diag.cc

Show All 10 Lines
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "ubsan_platform.h" #include "ubsan_platform.h"
#if CAN_SANITIZE_UB #if CAN_SANITIZE_UB
#include "ubsan_diag.h" #include "ubsan_diag.h"
#include "ubsan_init.h" #include "ubsan_init.h"
#include "ubsan_flags.h" #include "ubsan_flags.h"
#include "ubsan_monitor.h"
#include "sanitizer_common/sanitizer_placement_new.h" #include "sanitizer_common/sanitizer_placement_new.h"
#include "sanitizer_common/sanitizer_report_decorator.h" #include "sanitizer_common/sanitizer_report_decorator.h"
#include "sanitizer_common/sanitizer_stacktrace.h" #include "sanitizer_common/sanitizer_stacktrace.h"
#include "sanitizer_common/sanitizer_stacktrace_printer.h" #include "sanitizer_common/sanitizer_stacktrace_printer.h"
#include "sanitizer_common/sanitizer_suppressions.h" #include "sanitizer_common/sanitizer_suppressions.h"
#include "sanitizer_common/sanitizer_symbolizer.h" #include "sanitizer_common/sanitizer_symbolizer.h"
#include <stdio.h> #include <stdio.h>
▲ Show 20 LinesShow All 308 Lines▼ Show 20 Lines
} }
Diag::~Diag() { Diag::~Diag() {
// All diagnostics should be printed under report mutex. // All diagnostics should be printed under report mutex.
ScopedReport::CheckLocked(); ScopedReport::CheckLocked();
Decorator Decor; Decorator Decor;
InternalScopedString Buffer(1024); InternalScopedString Buffer(1024);
// Prepare a report that a monitor process can inspect.
if (Level == DL_Error) {
RenderText(&Buffer, Message, Args);
UndefinedBehaviorReport UBR{ConvertTypeToString(ET), Loc, Buffer};
Buffer.clear();
}
Buffer.append(Decor.Bold()); Buffer.append(Decor.Bold());
RenderLocation(&Buffer, Loc); RenderLocation(&Buffer, Loc);
Buffer.append(":"); Buffer.append(":");
switch (Level) { switch (Level) {
case DL_Error: case DL_Error:
Buffer.append("%s runtime error: %s%s", Decor.Warning(), Decor.Default(), Buffer.append("%s runtime error: %s%s", Decor.Warning(), Decor.Default(),
Decor.Bold()); Decor.Bold());
▲ Show 20 LinesShow All 78 LinesShow Last 20 Lines

lib/ubsan/ubsan_handlers.cc

Show All 9 Lines
// Error logging entry points for the UBSan runtime. // Error logging entry points for the UBSan runtime.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "ubsan_platform.h" #include "ubsan_platform.h"
#if CAN_SANITIZE_UB #if CAN_SANITIZE_UB
#include "ubsan_handlers.h" #include "ubsan_handlers.h"
#include "ubsan_diag.h" #include "ubsan_diag.h"
#include "ubsan_monitor.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
using namespace __sanitizer; using namespace __sanitizer;
using namespace __ubsan; using namespace __ubsan;
namespace __ubsan { namespace __ubsan {
bool ignoreReport(SourceLocation SLoc, ReportOptions Opts, ErrorType ET) { bool ignoreReport(SourceLocation SLoc, ReportOptions Opts, ErrorType ET) {
Show All 39 Lines if (Data->Loc.isInvalid()) {
FallbackLoc.reset(getCallerLocation(Opts.pc)); FallbackLoc.reset(getCallerLocation(Opts.pc));
Loc = FallbackLoc; Loc = FallbackLoc;
} }
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
switch (ET) { switch (ET) {
case ErrorType::NullPointerUse: case ErrorType::NullPointerUse:
Diag(Loc, DL_Error, "%0 null pointer of type %1") Diag(Loc, DL_Error, ET, "%0 null pointer of type %1")
<< TypeCheckKinds[Data->TypeCheckKind] << Data->Type; << TypeCheckKinds[Data->TypeCheckKind] << Data->Type;
break; break;
case ErrorType::MisalignedPointerUse: case ErrorType::MisalignedPointerUse:
Diag(Loc, DL_Error, "%0 misaligned address %1 for type %3, " Diag(Loc, DL_Error, ET, "%0 misaligned address %1 for type %3, "
"which requires %2 byte alignment") "which requires %2 byte alignment")
<< TypeCheckKinds[Data->TypeCheckKind] << (void *)Pointer << Alignment << TypeCheckKinds[Data->TypeCheckKind] << (void *)Pointer << Alignment
<< Data->Type; << Data->Type;
break; break;
case ErrorType::InsufficientObjectSize: case ErrorType::InsufficientObjectSize:
Diag(Loc, DL_Error, "%0 address %1 with insufficient space " Diag(Loc, DL_Error, ET, "%0 address %1 with insufficient space "
"for an object of type %2") "for an object of type %2")
<< TypeCheckKinds[Data->TypeCheckKind] << (void *)Pointer << Data->Type; << TypeCheckKinds[Data->TypeCheckKind] << (void *)Pointer << Data->Type;
break; break;
default: default:
UNREACHABLE("unexpected error type!"); UNREACHABLE("unexpected error type!");
} }
if (Pointer) if (Pointer)
Diag(Pointer, DL_Note, "pointer points here"); Diag(Pointer, DL_Note, ET, "pointer points here");
} }
void __ubsan::__ubsan_handle_type_mismatch_v1(TypeMismatchData *Data, void __ubsan::__ubsan_handle_type_mismatch_v1(TypeMismatchData *Data,
ValueHandle Pointer) { ValueHandle Pointer) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleTypeMismatchImpl(Data, Pointer, Opts); handleTypeMismatchImpl(Data, Pointer, Opts);
} }
void __ubsan::__ubsan_handle_type_mismatch_v1_abort(TypeMismatchData *Data, void __ubsan::__ubsan_handle_type_mismatch_v1_abort(TypeMismatchData *Data,
Show All 13 Linesstatic void handleIntegerOverflowImpl(OverflowData *Data, ValueHandle LHS,
ErrorType ET = IsSigned ? ErrorType::SignedIntegerOverflow ErrorType ET = IsSigned ? ErrorType::SignedIntegerOverflow
: ErrorType::UnsignedIntegerOverflow; : ErrorType::UnsignedIntegerOverflow;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, "%0 integer overflow: " Diag(Loc, DL_Error, ET, "%0 integer overflow: "
"%1 %2 %3 cannot be represented in type %4") "%1 %2 %3 cannot be represented in type %4")
<< (IsSigned ? "signed" : "unsigned") << (IsSigned ? "signed" : "unsigned") << Value(Data->Type, LHS)
<< Value(Data->Type, LHS) << Operator << RHS << Data->Type; << Operator << RHS << Data->Type;
} }
#define UBSAN_OVERFLOW_HANDLER(handler_name, op, unrecoverable) \ #define UBSAN_OVERFLOW_HANDLER(handler_name, op, unrecoverable) \
void __ubsan::handler_name(OverflowData *Data, ValueHandle LHS, \ void __ubsan::handler_name(OverflowData *Data, ValueHandle LHS, \
ValueHandle RHS) { \ ValueHandle RHS) { \
GET_REPORT_OPTIONS(unrecoverable); \ GET_REPORT_OPTIONS(unrecoverable); \
handleIntegerOverflowImpl(Data, LHS, op, Value(Data->Type, RHS), Opts); \ handleIntegerOverflowImpl(Data, LHS, op, Value(Data->Type, RHS), Opts); \
if (unrecoverable) \ if (unrecoverable) \
Show All 15 Lines ErrorType ET = IsSigned ? ErrorType::SignedIntegerOverflow
: ErrorType::UnsignedIntegerOverflow; : ErrorType::UnsignedIntegerOverflow;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
if (IsSigned) if (IsSigned)
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"negation of %0 cannot be represented in type %1; " "negation of %0 cannot be represented in type %1; "
"cast to an unsigned type to negate this value to itself") "cast to an unsigned type to negate this value to itself")
<< Value(Data->Type, OldVal) << Data->Type; << Value(Data->Type, OldVal) << Data->Type;
else else
Diag(Loc, DL_Error, "negation of %0 cannot be represented in type %1") Diag(Loc, DL_Error, ET, "negation of %0 cannot be represented in type %1")
<< Value(Data->Type, OldVal) << Data->Type; << Value(Data->Type, OldVal) << Data->Type;
} }
void __ubsan::__ubsan_handle_negate_overflow(OverflowData *Data, void __ubsan::__ubsan_handle_negate_overflow(OverflowData *Data,
ValueHandle OldVal) { ValueHandle OldVal) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleNegateOverflowImpl(Data, OldVal, Opts); handleNegateOverflowImpl(Data, OldVal, Opts);
} }
Show All 20 Linesstatic void handleDivremOverflowImpl(OverflowData *Data, ValueHandle LHS,
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
switch (ET) { switch (ET) {
case ErrorType::SignedIntegerOverflow: case ErrorType::SignedIntegerOverflow:
Diag(Loc, DL_Error, "division of %0 by -1 cannot be represented in type %1") Diag(Loc, DL_Error, ET,
"division of %0 by -1 cannot be represented in type %1")
<< LHSVal << Data->Type; << LHSVal << Data->Type;
break; break;
default: default:
Diag(Loc, DL_Error, "division by zero"); Diag(Loc, DL_Error, ET, "division by zero");
break; break;
} }
} }
void __ubsan::__ubsan_handle_divrem_overflow(OverflowData *Data, void __ubsan::__ubsan_handle_divrem_overflow(OverflowData *Data,
ValueHandle LHS, ValueHandle RHS) { ValueHandle LHS, ValueHandle RHS) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleDivremOverflowImpl(Data, LHS, RHS, Opts); handleDivremOverflowImpl(Data, LHS, RHS, Opts);
Show All 22 Linesstatic void handleShiftOutOfBoundsImpl(ShiftOutOfBoundsData *Data,
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
if (ET == ErrorType::InvalidShiftExponent) { if (ET == ErrorType::InvalidShiftExponent) {
if (RHSVal.isNegative()) if (RHSVal.isNegative())
Diag(Loc, DL_Error, "shift exponent %0 is negative") << RHSVal; Diag(Loc, DL_Error, ET, "shift exponent %0 is negative") << RHSVal;
else else
Diag(Loc, DL_Error, "shift exponent %0 is too large for %1-bit type %2") Diag(Loc, DL_Error, ET,
"shift exponent %0 is too large for %1-bit type %2")
<< RHSVal << Data->LHSType.getIntegerBitWidth() << Data->LHSType; << RHSVal << Data->LHSType.getIntegerBitWidth() << Data->LHSType;
} else { } else {
if (LHSVal.isNegative()) if (LHSVal.isNegative())
Diag(Loc, DL_Error, "left shift of negative value %0") << LHSVal; Diag(Loc, DL_Error, ET, "left shift of negative value %0") << LHSVal;
else else
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"left shift of %0 by %1 places cannot be represented in type %2") "left shift of %0 by %1 places cannot be represented in type %2")
<< LHSVal << RHSVal << Data->LHSType; << LHSVal << RHSVal << Data->LHSType;
} }
} }
void __ubsan::__ubsan_handle_shift_out_of_bounds(ShiftOutOfBoundsData *Data, void __ubsan::__ubsan_handle_shift_out_of_bounds(ShiftOutOfBoundsData *Data,
ValueHandle LHS, ValueHandle LHS,
ValueHandle RHS) { ValueHandle RHS) {
Show All 15 Linesstatic void handleOutOfBoundsImpl(OutOfBoundsData *Data, ValueHandle Index,
ErrorType ET = ErrorType::OutOfBoundsIndex; ErrorType ET = ErrorType::OutOfBoundsIndex;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Value IndexVal(Data->IndexType, Index); Value IndexVal(Data->IndexType, Index);
Diag(Loc, DL_Error, "index %0 out of bounds for type %1") Diag(Loc, DL_Error, ET, "index %0 out of bounds for type %1")
<< IndexVal << Data->ArrayType; << IndexVal << Data->ArrayType;
} }
void __ubsan::__ubsan_handle_out_of_bounds(OutOfBoundsData *Data, void __ubsan::__ubsan_handle_out_of_bounds(OutOfBoundsData *Data,
ValueHandle Index) { ValueHandle Index) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleOutOfBoundsImpl(Data, Index, Opts); handleOutOfBoundsImpl(Data, Index, Opts);
} }
void __ubsan::__ubsan_handle_out_of_bounds_abort(OutOfBoundsData *Data, void __ubsan::__ubsan_handle_out_of_bounds_abort(OutOfBoundsData *Data,
ValueHandle Index) { ValueHandle Index) {
GET_REPORT_OPTIONS(true); GET_REPORT_OPTIONS(true);
handleOutOfBoundsImpl(Data, Index, Opts); handleOutOfBoundsImpl(Data, Index, Opts);
Die(); Die();
} }
static void handleBuiltinUnreachableImpl(UnreachableData *Data, static void handleBuiltinUnreachableImpl(UnreachableData *Data,
ReportOptions Opts) { ReportOptions Opts) {
ScopedReport R(Opts, Data->Loc, ErrorType::UnreachableCall); ErrorType ET = ErrorType::UnreachableCall;
Diag(Data->Loc, DL_Error, "execution reached an unreachable program point"); ScopedReport R(Opts, Data->Loc, ET);
Diag(Data->Loc, DL_Error, ET,
"execution reached an unreachable program point");
} }
void __ubsan::__ubsan_handle_builtin_unreachable(UnreachableData *Data) { void __ubsan::__ubsan_handle_builtin_unreachable(UnreachableData *Data) {
GET_REPORT_OPTIONS(true); GET_REPORT_OPTIONS(true);
handleBuiltinUnreachableImpl(Data, Opts); handleBuiltinUnreachableImpl(Data, Opts);
Die(); Die();
} }
static void handleMissingReturnImpl(UnreachableData *Data, ReportOptions Opts) { static void handleMissingReturnImpl(UnreachableData *Data, ReportOptions Opts) {
ScopedReport R(Opts, Data->Loc, ErrorType::MissingReturn); ErrorType ET = ErrorType::MissingReturn;
Diag(Data->Loc, DL_Error, ScopedReport R(Opts, Data->Loc, ET);
Diag(Data->Loc, DL_Error, ET,
"execution reached the end of a value-returning function " "execution reached the end of a value-returning function "
"without returning a value"); "without returning a value");
} }
void __ubsan::__ubsan_handle_missing_return(UnreachableData *Data) { void __ubsan::__ubsan_handle_missing_return(UnreachableData *Data) {
GET_REPORT_OPTIONS(true); GET_REPORT_OPTIONS(true);
handleMissingReturnImpl(Data, Opts); handleMissingReturnImpl(Data, Opts);
Die(); Die();
} }
static void handleVLABoundNotPositive(VLABoundData *Data, ValueHandle Bound, static void handleVLABoundNotPositive(VLABoundData *Data, ValueHandle Bound,
ReportOptions Opts) { ReportOptions Opts) {
SourceLocation Loc = Data->Loc.acquire(); SourceLocation Loc = Data->Loc.acquire();
ErrorType ET = ErrorType::NonPositiveVLAIndex; ErrorType ET = ErrorType::NonPositiveVLAIndex;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, "variable length array bound evaluates to " Diag(Loc, DL_Error, ET, "variable length array bound evaluates to "
"non-positive value %0") "non-positive value %0")
<< Value(Data->Type, Bound); << Value(Data->Type, Bound);
} }
void __ubsan::__ubsan_handle_vla_bound_not_positive(VLABoundData *Data, void __ubsan::__ubsan_handle_vla_bound_not_positive(VLABoundData *Data,
ValueHandle Bound) { ValueHandle Bound) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleVLABoundNotPositive(Data, Bound, Opts); handleVLABoundNotPositive(Data, Bound, Opts);
} }
void __ubsan::__ubsan_handle_vla_bound_not_positive_abort(VLABoundData *Data, void __ubsan::__ubsan_handle_vla_bound_not_positive_abort(VLABoundData *Data,
▲ Show 20 LinesShow All 41 Lines▼ Show 20 Lines if (ignoreReport(SLoc, Opts, ET))
return; return;
Loc = SLoc; Loc = SLoc;
FromType = &Data->FromType; FromType = &Data->FromType;
ToType = &Data->ToType; ToType = &Data->ToType;
} }
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"%0 is outside the range of representable values of type %2") "%0 is outside the range of representable values of type %2")
<< Value(*FromType, From) << *FromType << *ToType; << Value(*FromType, From) << *FromType << *ToType;
} }
void __ubsan::__ubsan_handle_float_cast_overflow(void *Data, ValueHandle From) { void __ubsan::__ubsan_handle_float_cast_overflow(void *Data, ValueHandle From) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleFloatCastOverflow(Data, From, Opts); handleFloatCastOverflow(Data, From, Opts);
} }
Show All 14 Linesstatic void handleLoadInvalidValue(InvalidValueData *Data, ValueHandle Val,
ErrorType ET = ErrorType ET =
IsBool ? ErrorType::InvalidBoolLoad : ErrorType::InvalidEnumLoad; IsBool ? ErrorType::InvalidBoolLoad : ErrorType::InvalidEnumLoad;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"load of value %0, which is not a valid value for type %1") "load of value %0, which is not a valid value for type %1")
<< Value(Data->Type, Val) << Data->Type; << Value(Data->Type, Val) << Data->Type;
} }
void __ubsan::__ubsan_handle_load_invalid_value(InvalidValueData *Data, void __ubsan::__ubsan_handle_load_invalid_value(InvalidValueData *Data,
ValueHandle Val) { ValueHandle Val) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleLoadInvalidValue(Data, Val, Opts); handleLoadInvalidValue(Data, Val, Opts);
} }
void __ubsan::__ubsan_handle_load_invalid_value_abort(InvalidValueData *Data, void __ubsan::__ubsan_handle_load_invalid_value_abort(InvalidValueData *Data,
ValueHandle Val) { ValueHandle Val) {
GET_REPORT_OPTIONS(true); GET_REPORT_OPTIONS(true);
handleLoadInvalidValue(Data, Val, Opts); handleLoadInvalidValue(Data, Val, Opts);
Die(); Die();
} }
static void handleInvalidBuiltin(InvalidBuiltinData *Data, ReportOptions Opts) { static void handleInvalidBuiltin(InvalidBuiltinData *Data, ReportOptions Opts) {
SourceLocation Loc = Data->Loc.acquire(); SourceLocation Loc = Data->Loc.acquire();
ErrorType ET = ErrorType::InvalidBuiltin; ErrorType ET = ErrorType::InvalidBuiltin;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"passing zero to %0, which is not a valid argument") "passing zero to %0, which is not a valid argument")
<< ((Data->Kind == BCK_CTZPassedZero) ? "ctz()" : "clz()"); << ((Data->Kind == BCK_CTZPassedZero) ? "ctz()" : "clz()");
} }
void __ubsan::__ubsan_handle_invalid_builtin(InvalidBuiltinData *Data) { void __ubsan::__ubsan_handle_invalid_builtin(InvalidBuiltinData *Data) {
GET_REPORT_OPTIONS(true); GET_REPORT_OPTIONS(true);
handleInvalidBuiltin(Data, Opts); handleInvalidBuiltin(Data, Opts);
} }
Show All 14 Linesstatic void handleFunctionTypeMismatch(FunctionTypeMismatchData *Data,
ScopedReport R(Opts, CallLoc, ET); ScopedReport R(Opts, CallLoc, ET);
SymbolizedStackHolder FLoc(getSymbolizedLocation(Function)); SymbolizedStackHolder FLoc(getSymbolizedLocation(Function));
const char *FName = FLoc.get()->info.function; const char *FName = FLoc.get()->info.function;
if (!FName) if (!FName)
FName = "(unknown)"; FName = "(unknown)";
Diag(CallLoc, DL_Error, Diag(CallLoc, DL_Error, ET,
"call to function %0 through pointer to incorrect function type %1") "call to function %0 through pointer to incorrect function type %1")
<< FName << Data->Type; << FName << Data->Type;
Diag(FLoc, DL_Note, "%0 defined here") << FName; Diag(FLoc, DL_Note, ET, "%0 defined here") << FName;
} }
void void
__ubsan::__ubsan_handle_function_type_mismatch(FunctionTypeMismatchData *Data, __ubsan::__ubsan_handle_function_type_mismatch(FunctionTypeMismatchData *Data,
ValueHandle Function) { ValueHandle Function) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleFunctionTypeMismatch(Data, Function, Opts); handleFunctionTypeMismatch(Data, Function, Opts);
} }
Show All 13 Linesstatic void handleNonNullReturn(NonNullReturnData *Data, SourceLocation *LocPtr,
SourceLocation Loc = LocPtr->acquire(); SourceLocation Loc = LocPtr->acquire();
ErrorType ET = ErrorType::InvalidNullReturn; ErrorType ET = ErrorType::InvalidNullReturn;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, "null pointer returned from function declared to never " Diag(Loc, DL_Error, ET,
"return null"); "null pointer returned from function declared to never return null");
if (!Data->AttrLoc.isInvalid()) if (!Data->AttrLoc.isInvalid())
Diag(Data->AttrLoc, DL_Note, "%0 specified here") Diag(Data->AttrLoc, DL_Note, ET, "%0 specified here")
<< (IsAttr ? "returns_nonnull attribute" << (IsAttr ? "returns_nonnull attribute"
: "_Nonnull return type annotation"); : "_Nonnull return type annotation");
} }
void __ubsan::__ubsan_handle_nonnull_return_v1(NonNullReturnData *Data, void __ubsan::__ubsan_handle_nonnull_return_v1(NonNullReturnData *Data,
SourceLocation *LocPtr) { SourceLocation *LocPtr) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleNonNullReturn(Data, LocPtr, Opts, true); handleNonNullReturn(Data, LocPtr, Opts, true);
Show All 24 Linesstatic void handleNonNullArg(NonNullArgData *Data, ReportOptions Opts,
SourceLocation Loc = Data->Loc.acquire(); SourceLocation Loc = Data->Loc.acquire();
ErrorType ET = ErrorType::InvalidNullArgument; ErrorType ET = ErrorType::InvalidNullArgument;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"null pointer passed as argument %0, which is declared to " "null pointer passed as argument %0, which is declared to "
"never be null") "never be null")
<< Data->ArgIndex; << Data->ArgIndex;
if (!Data->AttrLoc.isInvalid()) if (!Data->AttrLoc.isInvalid())
Diag(Data->AttrLoc, DL_Note, "%0 specified here") Diag(Data->AttrLoc, DL_Note, ET, "%0 specified here")
<< (IsAttr ? "nonnull attribute" : "_Nonnull type annotation"); << (IsAttr ? "nonnull attribute" : "_Nonnull type annotation");
} }
void __ubsan::__ubsan_handle_nonnull_arg(NonNullArgData *Data) { void __ubsan::__ubsan_handle_nonnull_arg(NonNullArgData *Data) {
GET_REPORT_OPTIONS(false); GET_REPORT_OPTIONS(false);
handleNonNullArg(Data, Opts, true); handleNonNullArg(Data, Opts, true);
} }
Show All 23 Linesstatic void handlePointerOverflowImpl(PointerOverflowData *Data,
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
if ((sptr(Base) >= 0) == (sptr(Result) >= 0)) { if ((sptr(Base) >= 0) == (sptr(Result) >= 0)) {
if (Base > Result) if (Base > Result)
Diag(Loc, DL_Error, "addition of unsigned offset to %0 overflowed to %1") Diag(Loc, DL_Error, ET,
"addition of unsigned offset to %0 overflowed to %1")
<< (void *)Base << (void *)Result; << (void *)Base << (void *)Result;
else else
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"subtraction of unsigned offset from %0 overflowed to %1") "subtraction of unsigned offset from %0 overflowed to %1")
<< (void *)Base << (void *)Result; << (void *)Base << (void *)Result;
} else { } else {
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"pointer index expression with base %0 overflowed to %1") "pointer index expression with base %0 overflowed to %1")
<< (void *)Base << (void *)Result; << (void *)Base << (void *)Result;
} }
} }
void __ubsan::__ubsan_handle_pointer_overflow(PointerOverflowData *Data, void __ubsan::__ubsan_handle_pointer_overflow(PointerOverflowData *Data,
ValueHandle Base, ValueHandle Base,
ValueHandle Result) { ValueHandle Result) {
Show All 17 Linesstatic void handleCFIBadIcall(CFICheckFailData *Data, ValueHandle Function,
SourceLocation Loc = Data->Loc.acquire(); SourceLocation Loc = Data->Loc.acquire();
ErrorType ET = ErrorType::CFIBadType; ErrorType ET = ErrorType::CFIBadType;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return; return;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, "control flow integrity check for type %0 failed during " Diag(Loc, DL_Error, ET,
"control flow integrity check for type %0 failed during "
"indirect function call") "indirect function call")
<< Data->Type; << Data->Type;
SymbolizedStackHolder FLoc(getSymbolizedLocation(Function)); SymbolizedStackHolder FLoc(getSymbolizedLocation(Function));
const char *FName = FLoc.get()->info.function; const char *FName = FLoc.get()->info.function;
if (!FName) if (!FName)
FName = "(unknown)"; FName = "(unknown)";
Diag(FLoc, DL_Note, "%0 defined here") << FName; Diag(FLoc, DL_Note, ET, "%0 defined here") << FName;
} }
namespace __ubsan { namespace __ubsan {
#ifdef UBSAN_CAN_USE_CXXABI #ifdef UBSAN_CAN_USE_CXXABI
#ifdef _WIN32 #ifdef _WIN32
▲ Show 20 LinesShow All 45 LinesShow Last 20 Lines

lib/ubsan/ubsan_handlers_cxx.cc

Show First 20 LinesShow All 44 Lines▼ Show 20 Linesstatic bool HandleDynamicTypeCacheMiss(
SourceLocation Loc = Data->Loc.acquire(); SourceLocation Loc = Data->Loc.acquire();
ErrorType ET = ErrorType::DynamicTypeMismatch; ErrorType ET = ErrorType::DynamicTypeMismatch;
if (ignoreReport(Loc, Opts, ET)) if (ignoreReport(Loc, Opts, ET))
return false; return false;
ScopedReport R(Opts, Loc, ET); ScopedReport R(Opts, Loc, ET);
Diag(Loc, DL_Error, Diag(Loc, DL_Error, ET,
"%0 address %1 which does not point to an object of type %2") "%0 address %1 which does not point to an object of type %2")
<< TypeCheckKinds[Data->TypeCheckKind] << (void*)Pointer << Data->Type; << TypeCheckKinds[Data->TypeCheckKind] << (void*)Pointer << Data->Type;
// If possible, say what type it actually points to. // If possible, say what type it actually points to.
if (!DTI.isValid()) { if (!DTI.isValid()) {
if (DTI.getOffset() < -VptrMaxOffsetToTop || DTI.getOffset() > VptrMaxOffsetToTop) { if (DTI.getOffset() < -VptrMaxOffsetToTop || DTI.getOffset() > VptrMaxOffsetToTop) {
Diag(Pointer, DL_Note, "object has a possibly invalid vptr: abs(offset to top) too big") Diag(Pointer, DL_Note, ET,
"object has a possibly invalid vptr: abs(offset to top) too big")
<< TypeName(DTI.getMostDerivedTypeName()) << TypeName(DTI.getMostDerivedTypeName())
<< Range(Pointer, Pointer + sizeof(uptr), "possibly invalid vptr"); << Range(Pointer, Pointer + sizeof(uptr), "possibly invalid vptr");
} else { } else {
Diag(Pointer, DL_Note, "object has invalid vptr") Diag(Pointer, DL_Note, ET, "object has invalid vptr")
<< TypeName(DTI.getMostDerivedTypeName()) << TypeName(DTI.getMostDerivedTypeName())
<< Range(Pointer, Pointer + sizeof(uptr), "invalid vptr"); << Range(Pointer, Pointer + sizeof(uptr), "invalid vptr");
} }
} else if (!DTI.getOffset()) } else if (!DTI.getOffset())
Diag(Pointer, DL_Note, "object is of type %0") Diag(Pointer, DL_Note, ET, "object is of type %0")
<< TypeName(DTI.getMostDerivedTypeName()) << TypeName(DTI.getMostDerivedTypeName())
<< Range(Pointer, Pointer + sizeof(uptr), "vptr for %0"); << Range(Pointer, Pointer + sizeof(uptr), "vptr for %0");
else else
// FIXME: Find the type at the specified offset, and include that // FIXME: Find the type at the specified offset, and include that
// in the note. // in the note.
Diag(Pointer - DTI.getOffset(), DL_Note, Diag(Pointer - DTI.getOffset(), DL_Note, ET,
"object is base class subobject at offset %0 within object of type %1") "object is base class subobject at offset %0 within object of type %1")
<< DTI.getOffset() << TypeName(DTI.getMostDerivedTypeName()) << DTI.getOffset() << TypeName(DTI.getMostDerivedTypeName())
<< TypeName(DTI.getSubobjectTypeName()) << TypeName(DTI.getSubobjectTypeName())
<< Range(Pointer, Pointer + sizeof(uptr), << Range(Pointer, Pointer + sizeof(uptr),
"vptr for %2 base class of %1"); "vptr for %2 base class of %1");
return true; return true;
} }
Show All 37 Lines case CFITCK_DerivedCast:
break; break;
case CFITCK_UnrelatedCast: case CFITCK_UnrelatedCast:
CheckKindStr = "cast to unrelated type"; CheckKindStr = "cast to unrelated type";
break; break;
case CFITCK_ICall: case CFITCK_ICall:
Die(); Die();
} }
Diag(Loc, DL_Error, "control flow integrity check for type %0 failed during " Diag(Loc, DL_Error, ET,
"control flow integrity check for type %0 failed during "
"%1 (vtable address %2)") "%1 (vtable address %2)")
<< Data->Type << CheckKindStr << (void *)Vtable; << Data->Type << CheckKindStr << (void *)Vtable;
// If possible, say what type it actually points to. // If possible, say what type it actually points to.
if (!DTI.isValid()) { if (!DTI.isValid()) {
const char *module = Symbolizer::GetOrInit()->GetModuleNameForPc(Vtable); const char *module = Symbolizer::GetOrInit()->GetModuleNameForPc(Vtable);
if (module) if (module)
Diag(Vtable, DL_Note, "invalid vtable in module %0") << module; Diag(Vtable, DL_Note, ET, "invalid vtable in module %0") << module;
else else
Diag(Vtable, DL_Note, "invalid vtable"); Diag(Vtable, DL_Note, ET, "invalid vtable");
} else { } else {
Diag(Vtable, DL_Note, "vtable is of type %0") Diag(Vtable, DL_Note, ET, "vtable is of type %0")
<< TypeName(DTI.getMostDerivedTypeName()); << TypeName(DTI.getMostDerivedTypeName());
} }
} }
} // namespace __ubsan } // namespace __ubsan
#endif // CAN_SANITIZE_UB #endif // CAN_SANITIZE_UB

lib/ubsan/ubsan_interface.inc

Show First 20 LinesShow All 46 Lines▼ Show 20 Lines
INTERFACE_FUNCTION(__ubsan_handle_shift_out_of_bounds_abort) INTERFACE_FUNCTION(__ubsan_handle_shift_out_of_bounds_abort)
INTERFACE_FUNCTION(__ubsan_handle_sub_overflow) INTERFACE_FUNCTION(__ubsan_handle_sub_overflow)
INTERFACE_FUNCTION(__ubsan_handle_sub_overflow_abort) INTERFACE_FUNCTION(__ubsan_handle_sub_overflow_abort)
INTERFACE_FUNCTION(__ubsan_handle_type_mismatch_v1) INTERFACE_FUNCTION(__ubsan_handle_type_mismatch_v1)
INTERFACE_FUNCTION(__ubsan_handle_type_mismatch_v1_abort) INTERFACE_FUNCTION(__ubsan_handle_type_mismatch_v1_abort)
INTERFACE_FUNCTION(__ubsan_handle_vla_bound_not_positive) INTERFACE_FUNCTION(__ubsan_handle_vla_bound_not_positive)
INTERFACE_FUNCTION(__ubsan_handle_vla_bound_not_positive_abort) INTERFACE_FUNCTION(__ubsan_handle_vla_bound_not_positive_abort)
INTERFACE_WEAK_FUNCTION(__ubsan_default_options) INTERFACE_WEAK_FUNCTION(__ubsan_default_options)
INTERFACE_WEAK_FUNCTION(__ubsan_on_report)
INTERFACE_FUNCTION(__ubsan_get_current_report_data)

lib/ubsan/ubsan_monitor.h

  • This file was added.
//===-- ubsan_monitor.h -----------------------------------------*- C++ -*-===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
//
// Hooks which allow a monitor process to inspect UBSan's diagnostics.
//
//===----------------------------------------------------------------------===//
#ifndef UBSAN_MONITOR_H
#define UBSAN_MONITOR_H
#include "ubsan_diag.h"
#include "ubsan_value.h"
namespace __ubsan {
struct UndefinedBehaviorReport {
const char *IssueKind;
Location &Loc;
InternalScopedString Buffer;
UndefinedBehaviorReport(const char *IssueKind, Location &Loc,
InternalScopedString &Msg);
};
SANITIZER_INTERFACE_ATTRIBUTE void
RegisterUndefinedBehaviorReport(UndefinedBehaviorReport *UBR);
/// Called after a report is prepared. This serves to alert monitor processes
/// that a UB report is available.
extern "C" SANITIZER_INTERFACE_ATTRIBUTE void __ubsan_on_report(void);
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

I'd prefer interface consistent with similar one from TSAN:
__tsan_on_report(void *report) {

__tsan_get_report_loc(report.....
__tsan_get_report_loc_object_type(report.....

}

Also this will avoid having state set by RegisterUndefinedBehaviorReport

vitalybuka: I'd prefer interface consistent with similar one from TSAN: __tsan_on_report(void *report) {…
vskAuthorUnsubmitted
Not Done
ReplyInline Actions

Point taken, it would be a bit simpler this way. However, we can't make this change because it would break debuggability of code compiled with Xcode 9.

vsk: Point taken, it would be a bit simpler this way. However, we can't make this change because it…
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

Does Xcode 9 works for tsan?

vitalybuka: Does Xcode 9 works for tsan?
vskAuthorUnsubmitted
Not Done
ReplyInline Actions

Are you asking if IDE diagnostics for tsan issues found in a binary compiled with Xcode 9, work when running under Xcode (9+K)? I'm not sure. Generally we try to make it possible to debug old binaries.

vsk: Are you asking if IDE diagnostics for tsan issues found in a binary compiled with Xcode 9, work…
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

I am confused. Could you please elaborate why change in non existing yet API will break code compiled with Xcode 9?

To clarify, I propose to have:

__ubsan_on_report(void *report) {
    __ubsan_get_report_loc(report.....
    __ubsan_get_report_other_stuff(report.....
}
...
similar to tsan
vitalybuka: I am confused. Could you please elaborate why change in non existing yet API will break code…
kubamracekUnsubmitted
Not Done
ReplyInline Actions

Yes, Xcode 9 supports TSan and UBSan. I think we really need to keep the interface as it is, at least for this initial commit. Changes in the interface should then try to be as compatible as possible. Every time TSan's debugging interface changed, we did that in a backwards-compatible manner (debugging old binaries works), and forwards-compatible way as well (worst case is you'll miss some data in the report).

kubamracek: Yes, Xcode 9 supports TSan and UBSan. I think we really need to keep the interface as it is, at…
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

Not sure I understand the answer.
Does Xcode 9 already expects ubsan_on_report and ubsan_get_current_report_data as is?

vitalybuka: Not sure I understand the answer. Does Xcode 9 already expects __ubsan_on_report and…
vskAuthorUnsubmitted
Not Done
ReplyInline Actions

Yes, I'd like to upstream the compiler-rt support. One benefit to the community is that downloadable open-source toolchains will become compatible with Xcode's ubsan support.

vsk: Yes, I'd like to upstream the compiler-rt support. One benefit to the community is that…
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

Thanks. I see now.

vitalybuka: Thanks. I see now.
/// Used by the monitor process to extract information from a UB report. The
/// data is only available until the next time __ubsan_on_report is called. The
/// caller is responsible for copying and preserving the data if needed.
extern "C" SANITIZER_INTERFACE_ATTRIBUTE void
__ubsan_get_current_report_data(const char **OutIssueKind,
const char **OutMessage,
const char **OutFilename, unsigned *OutLine,
unsigned *OutCol, char **OutMemoryAddr);
} // end namespace __ubsan
#endif // UBSAN_MONITOR_H

lib/ubsan/ubsan_monitor.cc

  • This file was added.
//===-- ubsan_monitor.cc ----------------------------------------*- C++ -*-===//
//
// The LLVM Compiler Infrastructure
//
// This file is distributed under the University of Illinois Open Source
// License. See LICENSE.TXT for details.
//
//===----------------------------------------------------------------------===//
//
// Hooks which allow a monitor process to inspect UBSan's diagnostics.
//
//===----------------------------------------------------------------------===//
#include "ubsan_monitor.h"
using namespace __ubsan;
UndefinedBehaviorReport::UndefinedBehaviorReport(const char *IssueKind,
Location &Loc,
InternalScopedString &Msg)
: IssueKind(IssueKind), Loc(Loc), Buffer(Msg.length() + 1) {
// We have the common sanitizer reporting lock, so it's safe to register a
// new UB report.
RegisterUndefinedBehaviorReport(this);
// Make a copy of the diagnostic.
Buffer.append("%s", Msg.data());
// Let the monitor know that a report is available.
__ubsan_on_report();
}
static UndefinedBehaviorReport *CurrentUBR;
void __ubsan::RegisterUndefinedBehaviorReport(UndefinedBehaviorReport *UBR) {
CurrentUBR = UBR;
}
SANITIZER_WEAK_DEFAULT_IMPL
void __ubsan::__ubsan_on_report(void) {}
void __ubsan::__ubsan_get_current_report_data(const char **OutIssueKind,
const char **OutMessage,
const char **OutFilename,
unsigned *OutLine,
unsigned *OutCol,
char **OutMemoryAddr) {
if (!OutIssueKind || !OutMessage || !OutFilename || !OutLine || !OutCol ||
!OutMemoryAddr)
UNREACHABLE("Invalid arguments passed to __ubsan_get_current_report_data");
InternalScopedString &Buf = CurrentUBR->Buffer;
// Ensure that the first character of the diagnostic text can't start with a
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

why do you need this?

vitalybuka: why do you need this?
vskAuthorUnsubmitted
Not Done
ReplyInline Actions

This is a relatively noninvasive way of making sure the text of diagnostics can't begin with a lowercase letter. I'll add a comment.

vsk: This is a relatively noninvasive way of making sure the text of diagnostics can't begin with a…
vitalybukaUnsubmitted
Not Done
ReplyInline Actions

Thanks. That's clear from the code.
I am rather curios why it's important. Is this always upper case for messages from other components passed to monitor?

vitalybuka: Thanks. That's clear from the code. I am rather curios why it's important. Is this always upper…
vskAuthorUnsubmitted
Not Done
ReplyInline Actions

Oh, good question. I'm not sure how the other sanitizers handle capitalization.

W.r.t ubsan integration into Xcode, I was simply asked to make diagnostics start with proper capitalization during internal review. Because of loose coupling between compiler-rt and Xcode, it was more convenient to do the capitalization here, although it would be cleaner to move this into Xcode.

vsk: Oh, good question. I'm not sure how the other sanitizers handle capitalization. W.r.t ubsan…
// lowercase letter.
char FirstChar = Buf.data()[0];
if (FirstChar >= 'a' && FirstChar <= 'z')
Buf.data()[0] = FirstChar - 'a' + 'A';
*OutIssueKind = CurrentUBR->IssueKind;
*OutMessage = Buf.data();
if (!CurrentUBR->Loc.isSourceLocation()) {
*OutFilename = "<unknown>";
*OutLine = *OutCol = 0;
} else {
SourceLocation SL = CurrentUBR->Loc.getSourceLocation();
*OutFilename = SL.getFilename();
*OutLine = SL.getLine();
*OutCol = SL.getColumn();
}
if (CurrentUBR->Loc.isMemoryLocation())
*OutMemoryAddr = (char *)CurrentUBR->Loc.getMemoryLocation();
else
*OutMemoryAddr = nullptr;
}

test/ubsan/TestCases/Misc/monitor.cpp

  • This file was added.
// RUN: %clangxx -w -fsanitize=bool %s -o %t
// RUN: %run %t 2>&1 | FileCheck %s
thakisUnsubmitted
Not Done
ReplyInline Actions

This test fails on Windows: https://logs.chromium.org/v/?s=chromium%2Fbb%2Ftryserver.chromium.win%2Fwin_upload_clang%2F361%2F%2B%2Frecipes%2Fsteps%2Fpackage_clang%2F0%2Fstdout

$ ":" "RUN: at line 1"
$ "C:/b/rr/tmpnnvph5/w/src/third_party/llvm-bootstrap/./bin/clang.exe" "-w" "-fsanitize=bool" "C:\b\rr\tmpnnvph5\w\src\third_party\llvm\projects\compiler-rt\test\ubsan\TestCases\Misc\monitor.cpp" "-o" "C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.tmp"
# command output:
clang_rt.ubsan_standalone-x86_64.lib(ubsan_monitor.cc.obj) : error LNK2005: __ubsan_on_report already defined in monitor-c1dd53.o
   Creating library C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.lib and object C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.exp
monitor-c1dd53.o : warning LNK4217: locally defined symbol __std_terminate imported in function "int `public: static unsigned __int64 __cdecl std::char_traits<char>::length(char const * const)'::`1'::dtor$2" (?dtor$2@?0??length@?$char_traits@D@std@@SA_KQEBD@Z@4HA)
monitor-c1dd53.o : warning LNK4217: locally defined symbol _CxxThrowException imported in function "public: void __cdecl std::ios_base::clear(int,bool)" (?clear@ios_base@std@@QEAAXH_N@Z)
C:\b\rr\tmpnnvph5\w\src\third_party\llvm-bootstrap\projects\compiler-rt\test\ubsan\Standalone-x86_64\TestCases\Misc\Output\monitor.cpp.tmp : fatal error LNK1169: one or more multiply defined symbols found
# command stderr:
clang.exe: error: linker command failed with exit code 1169 (use -v to see invocation)

I'll note that no other ubsan test includes iostream. clang tests at least try to not use system headers; I'm guessing this is probably true for compiler-rt tests as well?

If there's no quick fix, please revert while investigating to get the build back to green for now.

(That bot uses msvc2017; the llvm buildbot bots maybe use something older.)

thakis: This test fails on Windows: https://logs.chromium.org/v/?s=chromium%2Fbb%2Ftryserver.chromium.
kubamracekUnsubmitted
Not Done
ReplyInline Actions

@vsk, I guess this is because of the weak definition of __ubsan_on_report. Should we just mark the test as UNSUPPORTED: win32?

kubamracek: @vsk, I guess this is because of the weak definition of `__ubsan_on_report`. Should we just…
thakisUnsubmitted
Not Done
ReplyInline Actions

Looks like the test got disabled on win in r335523, thanks!

thakis: Looks like the test got disabled on win in r335523, thanks!
#include <iostream>
extern "C" {
void __ubsan_get_current_report_data(const char **OutIssueKind,
const char **OutMessage,
const char **OutFilename,
unsigned *OutLine, unsigned *OutCol,
char **OutMemoryAddr);
// Override the weak definition of __ubsan_on_report from the runtime, just
// for testing purposes.
void __ubsan_on_report(void) {
const char *IssueKind, *Message, *Filename;
unsigned Line, Col;
char *Addr;
__ubsan_get_current_report_data(&IssueKind, &Message, &Filename, &Line, &Col,
&Addr);
std::cout << "Issue: " << IssueKind << "\n"
<< "Location: " << Filename << ":" << Line << ":" << Col << "\n"
<< "Message: " << Message << std::endl;
(void)Addr;
}
}
int main() {
char C = 3;
bool B = *(bool *)&C;
// CHECK: Issue: invalid-bool-load
// CHECK-NEXT: Location: {{.*}}monitor.cpp:[[@LINE-2]]:12
// CHECK-NEXT: Message: Load of value 3, which is not a valid value for type 'bool'
return 0;
}