This is an archive of the discontinued LLVM Phabricator instance.

Differential D57489

[ASan] Do not instrument other runtime functions with `__asan_handle_no_return`
ClosedPublic

Authored by yln on Jan 30 2019, 4:45 PM.

Details

Reviewers
dcoughlin
delcypher
kcc
eugenis
cryptoad
vsk
morehouse
Commits
rGf82d8924ef7f: [ASan] Do not instrument other runtime functions with `__asan_handle_no_return`
rL352948: [ASan] Do not instrument other runtime functions with `__asan_handle_no_return`
rC352948: [ASan] Do not instrument other runtime functions with `__asan_handle_no_return`
Summary

Currently, ASan inserts a call to __asan_handle_no_return before every
noreturn function call/invoke. This is unnecessary for calls to other
runtime funtions. This patch changes ASan to skip instrumentation for
functions calls marked with !nosanitize metadata.

Diff Detail

Repository
rC Clang

Event Timeline

yln created this revision.Jan 30 2019, 4:45 PM
Herald added a subscriber: hiraditya. · View Herald TranscriptJan 30 2019, 4:45 PM
Harbormaster completed remote builds in B27517: Diff 184410.Jan 30 2019, 4:46 PM
yln added reviewers: dcoughlin, delcypher, kcc, eugenis, cryptoad, vsk.Jan 30 2019, 4:49 PM
yln set the repository for this revision to rL LLVM.
yln added a project: Restricted Project.
yln added a subscriber: llvm-commits.
mcgov added a subscriber: mcgov.Jan 30 2019, 4:57 PM
kcc added a reviewer: morehouse.Jan 31 2019, 11:01 AM
vsk added a comment.Jan 31 2019, 11:04 AM

Looks reasonable to me.

llvm/test/Instrumentation/AddressSanitizer/instrument-no-return.ll
3 ↗(On Diff #184410)

Could you make this more specific? E.g. 'noreturn calls that aren't inserted by sanitizers'.

eugenis added a comment.Jan 31 2019, 4:35 PM

Do we have a test that at most one __asan_handle_no_return call is inserted before a [[noreturn]] call?

Herald added a project: Restricted Project. · View Herald TranscriptJan 31 2019, 4:35 PM
Herald added a subscriber: Restricted Project. · View Herald Transcript
yln updated this revision to Diff 184648.Jan 31 2019, 5:17 PM

Improve comments.
Use CHECK-NEXT in test to ensure we insert exactly one handler call.

Herald added a project: Restricted Project. · View Herald TranscriptJan 31 2019, 5:17 PM
Harbormaster completed remote builds in B27582: Diff 184648.Jan 31 2019, 5:17 PM
yln marked an inline comment as done.Jan 31 2019, 5:17 PM
eugenis accepted this revision.Jan 31 2019, 6:20 PM

LGTM

This revision is now accepted and ready to land.Jan 31 2019, 6:20 PM
yln added a comment.Feb 1 2019, 11:38 AM

@vsk Any more comments?

vsk accepted this revision.Feb 1 2019, 12:38 PM

Thanks, lgtm!

Closed by commit rC352948: [ASan] Do not instrument other runtime functions with `__asan_handle_no_return` (authored by yln). · Explain WhyFeb 1 2019, 6:05 PM
This revision was automatically updated to reflect the committed changes.
Herald added a subscriber: cfe-commits. · View Herald TranscriptFeb 1 2019, 6:05 PM

Revision Contents

PathSize
lib/
CodeGen/
4 lines
test/
CodeGen/
3 lines

Diff 184878

lib/CodeGen/CGCall.cpp

Show First 20 LinesShow All 4,388 Lines▼ Show 20 Lines#endif
// insertion point; this allows the rest of IRGen to discard // insertion point; this allows the rest of IRGen to discard
// unreachable code. // unreachable code.
if (CI->doesNotReturn()) { if (CI->doesNotReturn()) {
if (UnusedReturnSizePtr) if (UnusedReturnSizePtr)
PopCleanupBlock(); PopCleanupBlock();
// Strip away the noreturn attribute to better diagnose unreachable UB. // Strip away the noreturn attribute to better diagnose unreachable UB.
if (SanOpts.has(SanitizerKind::Unreachable)) { if (SanOpts.has(SanitizerKind::Unreachable)) {
// Also remove from function since CI->hasFnAttr(..) also checks attributes // Also remove from function since CallBase::hasFnAttr additionally checks
// of the called function. // attributes of the called function.
if (auto *F = CI->getCalledFunction()) if (auto *F = CI->getCalledFunction())
F->removeFnAttr(llvm::Attribute::NoReturn); F->removeFnAttr(llvm::Attribute::NoReturn);
CI->removeAttribute(llvm::AttributeList::FunctionIndex, CI->removeAttribute(llvm::AttributeList::FunctionIndex,
llvm::Attribute::NoReturn); llvm::Attribute::NoReturn);
// Avoid incompatibility with ASan which relies on the `noreturn` // Avoid incompatibility with ASan which relies on the `noreturn`
// attribute to insert handler calls. // attribute to insert handler calls.
if (SanOpts.has(SanitizerKind::Address)) { if (SanOpts.has(SanitizerKind::Address)) {
▲ Show 20 LinesShow All 179 LinesShow Last 20 Lines

test/CodeGen/ubsan-asan-noreturn.c

// Ensure compatiblity of UBSan unreachable with ASan in the presence of // Ensure compatiblity of UBSan unreachable with ASan in the presence of
// noreturn functions. // noreturn functions.
// RUN: %clang_cc1 -fsanitize=unreachable,address -triple x86_64-linux -emit-llvm -o - %s | FileCheck %s // RUN: %clang_cc1 -fsanitize=unreachable,address -triple x86_64-linux -emit-llvm -o - %s | FileCheck %s
void my_longjmp(void) __attribute__((noreturn)); void my_longjmp(void) __attribute__((noreturn));
// CHECK-LABEL: define void @calls_noreturn() // CHECK-LABEL: define void @calls_noreturn()
void calls_noreturn() { void calls_noreturn() {
my_longjmp(); my_longjmp();
// CHECK: @__asan_handle_no_return{{.*}} !nosanitize // CHECK: @__asan_handle_no_return{{.*}} !nosanitize
// CHECK-NEXT: @my_longjmp(){{[^#]*}} // CHECK-NEXT: @my_longjmp(){{[^#]*}}
// CHECK: @__asan_handle_no_return() // CHECK: @__ubsan_handle_builtin_unreachable{{.*}} !nosanitize
// CHECK-NEXT: @__ubsan_handle_builtin_unreachable{{.*}} !nosanitize
// CHECK-NEXT: unreachable // CHECK-NEXT: unreachable
} }
// CHECK: declare void @my_longjmp() [[FN_ATTR:#[0-9]+]] // CHECK: declare void @my_longjmp() [[FN_ATTR:#[0-9]+]]
// CHECK: declare void @__asan_handle_no_return() // CHECK: declare void @__asan_handle_no_return()
// CHECK-LABEL: attributes // CHECK-LABEL: attributes
// CHECK-NOT: [[FN_ATTR]] = { {{.*noreturn.*}} } // CHECK-NOT: [[FN_ATTR]] = { {{.*noreturn.*}} }