This is an archive of the discontinued LLVM Phabricator instance.

Differential D63841

[GWP-ASan] Add generic unwinders and structure backtrace output.
ClosedPublic

Authored by hctim on Jun 26 2019, 1:43 PM.

Details

Reviewers
eugenis
vlad.tsyrklevich
Commits
rG7339ca278c3f: [GWP-ASan] Add generic unwinders and structure backtrace output.
rL364941: [GWP-ASan] Add generic unwinders and structure backtrace output.
rCRT364941: [GWP-ASan] Add generic unwinders and structure backtrace output.
Summary

Adds two flavours of generic unwinder and all the supporting cruft. If the
supporting allocator is okay with bringing in sanitizer_common, they can use
the fast frame-pointer based unwinder from sanitizer_common. Otherwise, we also
provide the backtrace() libc-based unwinder as well. Of course, the allocator
can always specify its own unwinder and unwinder-symbolizer.

The slightly changed output format is exemplified in the first comment on this
patch. It now better incorporates backtrace information, and displays
allocation details on the second line.

Diff Detail

Repository
rL LLVM

Event Timeline

hctim created this revision.Jun 26 2019, 1:43 PM
Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptJun 26 2019, 1:43 PM
Herald added subscribers: llvm-commits, Restricted Project, cryptoad and 2 others. · View Herald Transcript
Harbormaster completed remote builds in B33971: Diff 206740.Jun 26 2019, 1:43 PM
hctim added a comment.Jun 26 2019, 1:45 PM

The new output format using the libc based unwinder is below. The report can be symbolized properly by using addr2line, but we don't really want to fork/exec during crash handling for obvious reasons. The libc generic unwinder provides either a function offset or a binary offset, so they can be happily symbolized offline.

The sanitizer unwinder does a better job of symbolizing online.

*** GWP-ASan detected a memory error ***
Use after free at 0xf7f22ff0 (0 bytes into a 10-byte allocation at 0xf7f22ff0) by thread 171092 here:
  #0 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(_ZN8gwp_asan20GuardedPoolAllocator19reportErrorInternalEjNS0_5ErrorE+0x3c8) [0x5660a4b8]
  #1 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(_ZN8gwp_asan20GuardedPoolAllocator11reportErrorEjNS0_5ErrorE+0x2a) [0x5660a03a]
  #2 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(+0x1877e) [0x5660977e]
  #3 linux-gate.so.1(__kernel_rt_sigreturn+0) [0xf7f4b0a0]
  #4 /lib/i386-linux-gnu/libc.so.6(__libc_start_main+0xf1) [0xf7a8d4f1]

0xf7f22ff0 was allocated by thread 171092 here:
  #0 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(_ZN8gwp_asan20GuardedPoolAllocator8allocateEj+0x1b9) [0x56609ce9]
  #1 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(+0x27c8e) [0x56618c8e]
  #2 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(+0x278ed) [0x566188ed]
  #3 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(malloc+0x20) [0x5661bee0]
  #4 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(main+0x2b) [0x5661de6b]
  #5 /lib/i386-linux-gnu/libc.so.6(__libc_start_main+0xf1) [0xf7a8d4f1]

0xf7f22ff0 was deallocated by thread 171092 here:
  #0 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(_ZN8gwp_asan20GuardedPoolAllocator10deallocateEPv+0xb6) [0x56609f16]
  #1 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(+0x27f91) [0x56618f91]
  #2 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(+0x27e1e) [0x56618e1e]
  #3 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(cfree+0x1f) [0x5661beaf]
  #4 ./projects/compiler-rt/test/gwp_asan/I386LinuxConfig/Output/use_after_free.cpp.tmp(main+0x65) [0x5661dea5]
  #5 /lib/i386-linux-gnu/libc.so.6(__libc_start_main+0xf1) [0xf7a8d4f1]

*** End GWP-ASan report ***
vlad.tsyrklevich added a comment.Jun 27 2019, 1:26 PM

I'm not very familiar with the compiler-rt build-side of this change, eugenis can speak to that better than I can.

compiler-rt/lib/gwp_asan/guarded_pool_allocator.cpp
114 ↗(On Diff #206740)

Instead of doing if (PrintBacktrace) {} else {} checks everywhere why not just set it to the default value here if it's null?

compiler-rt/lib/gwp_asan/optional/backtrace_sanitizer_common.cpp
32 ↗(On Diff #206740)

Why not std::min() instead of assert(), otherwise all backtrace implementations are beholden to __sanitizer::kStackTraceMax

eugenis added a comment.Jun 27 2019, 1:57 PM

We will need something different for out-of-process unwinding, which is AFAIK a requirement both in android and chrome.

compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

That's a lot of libraries. We need at most two - one standalone implementation for testing, and one "plugin" for the actual users.

compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
44 ↗(On Diff #206740)

update the comment

hctim marked 4 inline comments as done.Jun 28 2019, 10:41 AM
In D63841#1561393, @eugenis wrote:

We will need something different for out-of-process unwinding, which is AFAIK a requirement both in android and chrome.

It looks like malloc_debug in Android uses in-process unwinding, based on libunwindstack. My assumption was that we would happily do it in-process there. Chromium also unwinds in-process AFAICT.

Out-of-process crash handling will be platform dependent, but we will likely have to provide some hooks at a later date to support this.

compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

The only problem here is that I'd expect people to mix-and-match these.

For example, Scudo is currently using the options parser, and the libc unwinder. Soon enough they'll be using the libc unwinder and providing their own options parser. I think we need to keep them decoupled to allow people to pick what they need (hence the optional dir).

compiler-rt/lib/gwp_asan/optional/backtrace_sanitizer_common.cpp
32 ↗(On Diff #206740)

Done, with the caveat that we don't have c++ headers so have to do this ourselves ;)

hctim updated this revision to Diff 207097.Jun 28 2019, 10:42 AM
hctim marked an inline comment as done.
  • Updated with Vlad and Evgenii's comments.
Harbormaster completed remote builds in B34078: Diff 207097.Jun 28 2019, 10:43 AM
eugenis added inline comments.Jun 28 2019, 10:57 AM
compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

Right, but they don't need libclang_rt.* libraries. Those are for the driver to link with user binaries. Scudo would link RTGwpAsanxxxx statically.

hctim marked 4 inline comments as done.Jun 28 2019, 11:08 AM
hctim added inline comments.
compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

Ah, I see. Have removed the libclang_rt varaints for most of these and made a unified sanitizer_common-based support library.

hctim updated this revision to Diff 207109.Jun 28 2019, 11:08 AM
hctim marked an inline comment as done.
  • Removed lots of libclang_rt libs and added a unified support library.
Harbormaster completed remote builds in B34082: Diff 207109.Jun 28 2019, 11:08 AM
eugenis added inline comments.Jun 28 2019, 12:31 PM
compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

The library should be used in tests. Add at least a sanity test for stack trace printing.

compiler-rt/lib/gwp_asan/guarded_pool_allocator.cpp
364 ↗(On Diff #207109)

Let's avoid printing incomplete lines. Android logcat, for example, adds a line break after every print.

hctim updated this revision to Diff 207154.Jun 28 2019, 3:07 PM
hctim marked 3 inline comments as done.
  • Added proper backtrace death unittests with unwinding checks.
Herald added a subscriber: srhines. · View Herald TranscriptJun 28 2019, 3:07 PM
hctim added inline comments.Jun 28 2019, 3:07 PM
compiler-rt/lib/gwp_asan/CMakeLists.txt
140 ↗(On Diff #206740)

I've added a sanity test for this. Slight caveat - we can't really link against libclang_rt runtimes without adding -fsanitize=gwp_asan to the clang driver (which is how ASan checks itself against libclang_rt.ASan), which I'd rather not do as this mostly for tests only. Instead, I link the unittests against RTGwpAsan/RTGwpAsanOptionsParser/RTGwpAsanBacktraceSanitizerCommon which should provide sufficient coverage and ensure that backtracing is correct for the sanitizer common variant.

Harbormaster completed remote builds in B34096: Diff 207154.Jun 28 2019, 3:14 PM
hctim updated this revision to Diff 207181.Jun 28 2019, 5:25 PM
  • Use intermediate strings and individual buffers (with snprintf()) instead of sprintf().
  • Flip order of deallocation/allocation stack traces.
Harbormaster completed remote builds in B34102: Diff 207181.Jun 28 2019, 5:29 PM
eugenis accepted this revision.Jun 28 2019, 5:51 PM

LGTM

This revision is now accepted and ready to land.Jun 28 2019, 5:51 PM
vlad.tsyrklevich accepted this revision.Jun 29 2019, 10:58 AM
Closed by commit rL364941: [GWP-ASan] Add generic unwinders and structure backtrace output. (authored by hctim). · Explain WhyJul 2 2019, 9:05 AM
This revision was automatically updated to reflect the committed changes.
Herald added a subscriber: delcypher. · View Herald TranscriptJul 2 2019, 9:05 AM

Revision Contents

Diff 207577

compiler-rt/trunk/lib/gwp_asan/CMakeLists.txt

Show All 17 Linesset(GWP_ASAN_HEADERS
random.h random.h
) )
# Ensure that GWP-ASan meets the delegated requirements of some supporting # Ensure that GWP-ASan meets the delegated requirements of some supporting
# allocators. Some supporting allocators (e.g. scudo standalone) cannot use any # allocators. Some supporting allocators (e.g. scudo standalone) cannot use any
# parts of the C++ standard library. # parts of the C++ standard library.
set(GWP_ASAN_CFLAGS -fno-rtti -fno-exceptions -nostdinc++ -pthread) set(GWP_ASAN_CFLAGS -fno-rtti -fno-exceptions -nostdinc++ -pthread)
append_list_if(COMPILER_RT_HAS_FPIC_FLAG -fPIC GWP_ASAN_CFLAGS) append_list_if(COMPILER_RT_HAS_FPIC_FLAG -fPIC GWP_ASAN_CFLAGS)
append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG -fno-omit-frame-pointer
GWP_ASAN_CFLAGS)
append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG
-mno-omit-leaf-frame-pointer GWP_ASAN_CFLAGS)
# Remove -stdlib= which is unused when passing -nostdinc++. # Remove -stdlib= which is unused when passing -nostdinc++.
string(REGEX REPLACE "-stdlib=[a-zA-Z+]*" "" CMAKE_CXX_FLAGS ${CMAKE_CXX_FLAGS}) string(REGEX REPLACE "-stdlib=[a-zA-Z+]*" "" CMAKE_CXX_FLAGS ${CMAKE_CXX_FLAGS})
# Options parsing support is optional. GwpAsan is totally independent of # Options parsing support is optional. GwpAsan is totally independent of
# sanitizer_common, the options parser is not. This is an optional library # sanitizer_common, the options parser is not. This is an optional library
# that can be used by an allocator to automatically parse GwpAsan options from # that can be used by an allocator to automatically parse GwpAsan options from
# the environment variable GWP_ASAN_FLAGS, but the allocator can choose to # the environment variable GWP_ASAN_FLAGS, but the allocator can choose to
# implement its own options parsing and populate the Options struct itself. # implement its own options parsing and populate the Options struct itself.
set(GWP_ASAN_OPTIONS_PARSER_SOURCES set(GWP_ASAN_OPTIONS_PARSER_SOURCES
optional/options_parser.cpp optional/options_parser.cpp
) )
set(GWP_ASAN_OPTIONS_PARSER_HEADERS set(GWP_ASAN_OPTIONS_PARSER_HEADERS
optional/options_parser.h optional/options_parser.h
options.h options.h
options.inc options.inc
) )
set(GWP_ASAN_BACKTRACE_HEADERS
optional/backtrace.h
options.h
options.inc
)
set(GWP_ASAN_OPTIONS_PARSER_CFLAGS set(GWP_ASAN_OPTIONS_PARSER_CFLAGS
${GWP_ASAN_CFLAGS} ${GWP_ASAN_CFLAGS}
${SANITIZER_COMMON_CFLAGS}) ${SANITIZER_COMMON_CFLAGS})
set(GWP_ASAN_OPTIONS_PARSER_OBJECT_LIBS set(GWP_ASAN_OPTIONS_PARSER_OBJECT_LIBS
RTSanitizerCommon RTSanitizerCommon
RTSanitizerCommonNoLibc) RTSanitizerCommonNoLibc)
if (COMPILER_RT_HAS_GWP_ASAN) if (COMPILER_RT_HAS_GWP_ASAN)
Show All 12 Linesif (COMPILER_RT_HAS_GWP_ASAN)
add_compiler_rt_object_libraries(RTGwpAsan add_compiler_rt_object_libraries(RTGwpAsan
ARCHS ${GWP_ASAN_SUPPORTED_ARCH} ARCHS ${GWP_ASAN_SUPPORTED_ARCH}
SOURCES ${GWP_ASAN_SOURCES} SOURCES ${GWP_ASAN_SOURCES}
ADDITIONAL_HEADERS ${GWP_ASAN_HEADERS} ADDITIONAL_HEADERS ${GWP_ASAN_HEADERS}
CFLAGS ${GWP_ASAN_CFLAGS}) CFLAGS ${GWP_ASAN_CFLAGS})
# Note: If you choose to add this as an object library, ensure you also # Note: If you choose to add this as an object library, ensure you also
# include the sanitizer_common flag parsing object lib (generally # include the sanitizer_common flag parsing object lib (generally
# 'RTSanitizerCommonNoTermination'). # 'RTSanitizerCommonNoTermination'). Also, you'll need to either implement
# your own backtrace support (see optional/backtrace.h), or choose between one
# of the pre-implemented backtrace support options (see below).
add_compiler_rt_object_libraries(RTGwpAsanOptionsParser add_compiler_rt_object_libraries(RTGwpAsanOptionsParser
ARCHS ${GWP_ASAN_SUPPORTED_ARCH} ARCHS ${GWP_ASAN_SUPPORTED_ARCH}
SOURCES ${GWP_ASAN_OPTIONS_PARSER_SOURCES} SOURCES ${GWP_ASAN_OPTIONS_PARSER_SOURCES}
ADDITIONAL_HEADERS ${GWP_ASAN_OPTIONS_PARSER_HEADERS} ADDITIONAL_HEADERS ${GWP_ASAN_OPTIONS_PARSER_HEADERS}
CFLAGS ${GWP_ASAN_OPTIONS_PARSER_CFLAGS}) CFLAGS ${GWP_ASAN_OPTIONS_PARSER_CFLAGS})
# Ensure that the build for the options parser succeeds, as # As above, build the pre-implemented optional backtrace support libraries.
# 'RTGwpAsanOptionsParser' may not be built if it's not needed. This library add_compiler_rt_object_libraries(RTGwpAsanBacktraceLibc
# has only a very small amount of logic, all of the testable components are ARCHS ${GWP_ASAN_SUPPORTED_ARCH}
# exercised in the sanitizer_common test suite. SOURCES optional/backtrace_linux_libc.cpp
foreach(arch ${GWP_ASAN_SUPPORTED_ARCH}) ADDITIONAL_HEADERS ${GWP_ASAN_BACKTRACE_HEADERS}
add_compiler_rt_runtime( CFLAGS ${GWP_ASAN_CFLAGS})
clang_rt.gwp_asan_options_parser add_compiler_rt_object_libraries(RTGwpAsanBacktraceSanitizerCommon
STATIC ARCHS ${GWP_ASAN_SUPPORTED_ARCH}
ARCHS ${arch} SOURCES optional/backtrace_sanitizer_common.cpp
SOURCES ${GWP_ASAN_OPTIONS_PARSER_SOURCES} ADDITIONAL_HEADERS ${GWP_ASAN_BACKTRACE_HEADERS}
ADDITIONAL_HEADERS ${GWP_ASAN_OPTIONS_PARSER_HEADERS} CFLAGS ${GWP_ASAN_CFLAGS} ${SANITIZER_COMMON_CFLAGS})
CFLAGS ${GWP_ASAN_OPTIONS_PARSER_CFLAGS}
OBJECT_LIBS ${GWP_ASAN_OPTIONS_PARSER_OBJECT_LIBS}
PARENT_TARGET gwp_asan
)
endforeach()
endif() endif()
if(COMPILER_RT_INCLUDE_TESTS) if(COMPILER_RT_INCLUDE_TESTS)
add_subdirectory(tests) add_subdirectory(tests)
endif() endif()

compiler-rt/trunk/lib/gwp_asan/guarded_pool_allocator.h

Show All 35 Lines enum class Error {
INVALID_FREE, INVALID_FREE,
BUFFER_OVERFLOW, BUFFER_OVERFLOW,
BUFFER_UNDERFLOW BUFFER_UNDERFLOW
}; };
struct AllocationMetadata { struct AllocationMetadata {
// Maximum number of stack trace frames to collect for allocations + frees. // Maximum number of stack trace frames to collect for allocations + frees.
// TODO(hctim): Implement stack frame compression, a-la Chromium. // TODO(hctim): Implement stack frame compression, a-la Chromium.
// Currently the maximum stack frames is one, as we don't collect traces. static constexpr size_t kMaximumStackFrames = 64;
static constexpr size_t kMaximumStackFrames = 1;
// Records the given allocation metadata into this struct. In the future, // Records the given allocation metadata into this struct.
// this will collect the allocation trace as well. void RecordAllocation(uintptr_t Addr, size_t Size,
void RecordAllocation(uintptr_t Addr, size_t Size); options::Backtrace_t Backtrace);
// Record that this allocation is now deallocated. In future, this will // Record that this allocation is now deallocated.
// collect the deallocation trace as well. void RecordDeallocation(options::Backtrace_t Backtrace);
void RecordDeallocation();
struct CallSiteInfo { struct CallSiteInfo {
// The backtrace to the allocation/deallocation. If the first value is // The backtrace to the allocation/deallocation. If the first value is
// zero, we did not collect a trace. // zero, we did not collect a trace.
uintptr_t Trace[kMaximumStackFrames] = {}; uintptr_t Trace[kMaximumStackFrames] = {};
// The thread ID for this trace, or kInvalidThreadID if not available. // The thread ID for this trace, or kInvalidThreadID if not available.
uint64_t ThreadID = kInvalidThreadID; uint64_t ThreadID = kInvalidThreadID;
}; };
▲ Show 20 LinesShow All 167 Lines▼ Show 20 Linesprivate:
// See options.{h, inc} for more information. // See options.{h, inc} for more information.
bool PerfectlyRightAlign = false; bool PerfectlyRightAlign = false;
// Printf function supplied by the implementing allocator. We can't (in // Printf function supplied by the implementing allocator. We can't (in
// general) use printf() from the cstdlib as it may malloc(), causing infinite // general) use printf() from the cstdlib as it may malloc(), causing infinite
// recursion. // recursion.
options::Printf_t Printf = nullptr; options::Printf_t Printf = nullptr;
options::Backtrace_t Backtrace = nullptr;
options::PrintBacktrace_t PrintBacktrace = nullptr;
// The adjusted sample rate for allocation sampling. Default *must* be // The adjusted sample rate for allocation sampling. Default *must* be
// nonzero, as dynamic initialisation may call malloc (e.g. from libstdc++) // nonzero, as dynamic initialisation may call malloc (e.g. from libstdc++)
// before GPA::init() is called. This would cause an error in shouldSample(), // before GPA::init() is called. This would cause an error in shouldSample(),
// where we would calculate modulo zero. This value is set UINT32_MAX, as when // where we would calculate modulo zero. This value is set UINT32_MAX, as when
// GWP-ASan is disabled, we wish to never spend wasted cycles recalculating // GWP-ASan is disabled, we wish to never spend wasted cycles recalculating
// the sample rate. // the sample rate.
uint32_t AdjustedSampleRate = UINT32_MAX; uint32_t AdjustedSampleRate = UINT32_MAX;
Show All 21 Lines

compiler-rt/trunk/lib/gwp_asan/guarded_pool_allocator.cpp

//===-- guarded_pool_allocator.cpp ------------------------------*- C++ -*-===// //===-- guarded_pool_allocator.cpp ------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "gwp_asan/guarded_pool_allocator.h" #include "gwp_asan/guarded_pool_allocator.h"
#include "gwp_asan/options.h" #include "gwp_asan/options.h"
#include <assert.h> #include <assert.h>
#include <inttypes.h>
#include <stdio.h>
#include <stdlib.h> #include <stdlib.h>
#include <string.h> #include <string.h>
#include <time.h> #include <time.h>
using AllocationMetadata = gwp_asan::GuardedPoolAllocator::AllocationMetadata; using AllocationMetadata = gwp_asan::GuardedPoolAllocator::AllocationMetadata;
using Error = gwp_asan::GuardedPoolAllocator::Error; using Error = gwp_asan::GuardedPoolAllocator::Error;
namespace gwp_asan { namespace gwp_asan {
namespace { namespace {
// Forward declare the pointer to the singleton version of this class. // Forward declare the pointer to the singleton version of this class.
// Instantiated during initialisation, this allows the signal handler // Instantiated during initialisation, this allows the signal handler
// to find this class in order to deduce the root cause of failures. Must not be // to find this class in order to deduce the root cause of failures. Must not be
// referenced by users outside this translation unit, in order to avoid // referenced by users outside this translation unit, in order to avoid
// init-order-fiasco. // init-order-fiasco.
GuardedPoolAllocator *SingletonPtr = nullptr; GuardedPoolAllocator *SingletonPtr = nullptr;
class ScopedBoolean {
public:
ScopedBoolean(bool &B) : Bool(B) { Bool = true; }
~ScopedBoolean() { Bool = false; }
private:
bool &Bool;
};
void defaultPrintStackTrace(uintptr_t *Trace, options::Printf_t Printf) {
if (Trace[0] == 0)
Printf(" <unknown (does your allocator support backtracing?)>\n");
for (size_t i = 0; Trace[i] != 0; ++i) {
Printf(" #%zu 0x%zx in <unknown>\n", i, Trace[i]);
}
Printf("\n");
}
} // anonymous namespace } // anonymous namespace
// Gets the singleton implementation of this class. Thread-compatible until // Gets the singleton implementation of this class. Thread-compatible until
// init() is called, thread-safe afterwards. // init() is called, thread-safe afterwards.
GuardedPoolAllocator *getSingleton() { return SingletonPtr; } GuardedPoolAllocator *getSingleton() { return SingletonPtr; }
void GuardedPoolAllocator::AllocationMetadata::RecordAllocation( void GuardedPoolAllocator::AllocationMetadata::RecordAllocation(
uintptr_t AllocAddr, size_t AllocSize) { uintptr_t AllocAddr, size_t AllocSize, options::Backtrace_t Backtrace) {
Addr = AllocAddr; Addr = AllocAddr;
Size = AllocSize; Size = AllocSize;
IsDeallocated = false; IsDeallocated = false;
// TODO(hctim): Implement stack trace collection.
// TODO(hctim): Ask the caller to provide the thread ID, so we don't waste // TODO(hctim): Ask the caller to provide the thread ID, so we don't waste
// other thread's time getting the thread ID under lock. // other thread's time getting the thread ID under lock.
AllocationTrace.ThreadID = getThreadID(); AllocationTrace.ThreadID = getThreadID();
DeallocationTrace.ThreadID = kInvalidThreadID; DeallocationTrace.ThreadID = kInvalidThreadID;
if (Backtrace)
Backtrace(AllocationTrace.Trace, kMaximumStackFrames);
else
AllocationTrace.Trace[0] = 0; AllocationTrace.Trace[0] = 0;
DeallocationTrace.Trace[0] = 0; DeallocationTrace.Trace[0] = 0;
} }
void GuardedPoolAllocator::AllocationMetadata::RecordDeallocation() { void GuardedPoolAllocator::AllocationMetadata::RecordDeallocation(
options::Backtrace_t Backtrace) {
IsDeallocated = true; IsDeallocated = true;
// TODO(hctim): Implement stack trace collection. Ensure that the unwinder is // Ensure that the unwinder is not called if the recursive flag is set,
// not called if we have our recursive flag called, otherwise non-reentrant // otherwise non-reentrant unwinders may deadlock.
// unwinders may deadlock. if (Backtrace && !ThreadLocals.RecursiveGuard) {
ScopedBoolean B(ThreadLocals.RecursiveGuard);
Backtrace(DeallocationTrace.Trace, kMaximumStackFrames);
} else {
DeallocationTrace.Trace[0] = 0;
}
DeallocationTrace.ThreadID = getThreadID(); DeallocationTrace.ThreadID = getThreadID();
} }
void GuardedPoolAllocator::init(const options::Options &Opts) { void GuardedPoolAllocator::init(const options::Options &Opts) {
// Note: We return from the constructor here if GWP-ASan is not available. // Note: We return from the constructor here if GWP-ASan is not available.
// This will stop heap-allocation of class members, as well as mmap() of the // This will stop heap-allocation of class members, as well as mmap() of the
// guarded slots. // guarded slots.
if (!Opts.Enabled || Opts.SampleRate == 0 || if (!Opts.Enabled || Opts.SampleRate == 0 ||
Show All 25 Linesvoid GuardedPoolAllocator::init(const options::Options &Opts) {
SingletonPtr = this; SingletonPtr = this;
MaxSimultaneousAllocations = Opts.MaxSimultaneousAllocations; MaxSimultaneousAllocations = Opts.MaxSimultaneousAllocations;
PageSize = getPlatformPageSize(); PageSize = getPlatformPageSize();
PerfectlyRightAlign = Opts.PerfectlyRightAlign; PerfectlyRightAlign = Opts.PerfectlyRightAlign;
Printf = Opts.Printf; Printf = Opts.Printf;
Backtrace = Opts.Backtrace;
if (Opts.PrintBacktrace)
PrintBacktrace = Opts.PrintBacktrace;
else
PrintBacktrace = defaultPrintStackTrace;
size_t PoolBytesRequired = size_t PoolBytesRequired =
PageSize * (1 + MaxSimultaneousAllocations) + PageSize * (1 + MaxSimultaneousAllocations) +
MaxSimultaneousAllocations * maximumAllocationSize(); MaxSimultaneousAllocations * maximumAllocationSize();
void *GuardedPoolMemory = mapMemory(PoolBytesRequired); void *GuardedPoolMemory = mapMemory(PoolBytesRequired);
size_t BytesRequired = MaxSimultaneousAllocations * sizeof(*Metadata); size_t BytesRequired = MaxSimultaneousAllocations * sizeof(*Metadata);
Metadata = reinterpret_cast<AllocationMetadata *>(mapMemory(BytesRequired)); Metadata = reinterpret_cast<AllocationMetadata *>(mapMemory(BytesRequired));
Show All 17 Linesvoid GuardedPoolAllocator::init(const options::Options &Opts) {
// Ensure that signal handlers are installed as late as possible, as the class // Ensure that signal handlers are installed as late as possible, as the class
// is not thread-safe until init() is finished, and thus a SIGSEGV may cause a // is not thread-safe until init() is finished, and thus a SIGSEGV may cause a
// race to members if recieved during init(). // race to members if recieved during init().
if (Opts.InstallSignalHandlers) if (Opts.InstallSignalHandlers)
installSignalHandlers(); installSignalHandlers();
} }
namespace {
class ScopedBoolean {
public:
ScopedBoolean(bool &B) : Bool(B) { Bool = true; }
~ScopedBoolean() { Bool = false; }
private:
bool &Bool;
};
} // anonymous namespace
void *GuardedPoolAllocator::allocate(size_t Size) { void *GuardedPoolAllocator::allocate(size_t Size) {
// GuardedPagePoolEnd == 0 when GWP-ASan is disabled. If we are disabled, fall // GuardedPagePoolEnd == 0 when GWP-ASan is disabled. If we are disabled, fall
// back to the supporting allocator. // back to the supporting allocator.
if (GuardedPagePoolEnd == 0) if (GuardedPagePoolEnd == 0)
return nullptr; return nullptr;
// Protect against recursivity. // Protect against recursivity.
if (ThreadLocals.RecursiveGuard) if (ThreadLocals.RecursiveGuard)
Show All 16 Linesvoid *GuardedPoolAllocator::allocate(size_t Size) {
Ptr += allocationSlotOffset(Size); Ptr += allocationSlotOffset(Size);
AllocationMetadata *Meta = addrToMetadata(Ptr); AllocationMetadata *Meta = addrToMetadata(Ptr);
// If a slot is multiple pages in size, and the allocation takes up a single // If a slot is multiple pages in size, and the allocation takes up a single
// page, we can improve overflow detection by leaving the unused pages as // page, we can improve overflow detection by leaving the unused pages as
// unmapped. // unmapped.
markReadWrite(reinterpret_cast<void *>(getPageAddr(Ptr)), Size); markReadWrite(reinterpret_cast<void *>(getPageAddr(Ptr)), Size);
Meta->RecordAllocation(Ptr, Size); Meta->RecordAllocation(Ptr, Size, Backtrace);
return reinterpret_cast<void *>(Ptr); return reinterpret_cast<void *>(Ptr);
} }
void GuardedPoolAllocator::deallocate(void *Ptr) { void GuardedPoolAllocator::deallocate(void *Ptr) {
assert(pointerIsMine(Ptr) && "Pointer is not mine!"); assert(pointerIsMine(Ptr) && "Pointer is not mine!");
uintptr_t UPtr = reinterpret_cast<uintptr_t>(Ptr); uintptr_t UPtr = reinterpret_cast<uintptr_t>(Ptr);
uintptr_t SlotStart = slotToAddr(addrToSlot(UPtr)); uintptr_t SlotStart = slotToAddr(addrToSlot(UPtr));
Show All 10 Lines // pool during the expensive markInaccessible() call.
if (Meta->IsDeallocated) { if (Meta->IsDeallocated) {
reportError(UPtr, Error::DOUBLE_FREE); reportError(UPtr, Error::DOUBLE_FREE);
exit(EXIT_FAILURE); exit(EXIT_FAILURE);
} }
// Ensure that the deallocation is recorded before marking the page as // Ensure that the deallocation is recorded before marking the page as
// inaccessible. Otherwise, a racy use-after-free will have inconsistent // inaccessible. Otherwise, a racy use-after-free will have inconsistent
// metadata. // metadata.
Meta->RecordDeallocation(); Meta->RecordDeallocation(Backtrace);
} }
markInaccessible(reinterpret_cast<void *>(SlotStart), markInaccessible(reinterpret_cast<void *>(SlotStart),
maximumAllocationSize()); maximumAllocationSize());
// And finally, lock again to release the slot back into the pool. // And finally, lock again to release the slot back into the pool.
ScopedLock L(PoolMutex); ScopedLock L(PoolMutex);
freeSlot(addrToSlot(UPtr)); freeSlot(addrToSlot(UPtr));
▲ Show 20 LinesShow All 115 Lines▼ Show 20 LinesError GuardedPoolAllocator::diagnoseUnknownError(uintptr_t AccessPtr,
AllocationMetadata *SlotMeta = addrToMetadata(AccessPtr); AllocationMetadata *SlotMeta = addrToMetadata(AccessPtr);
if (SlotMeta->IsDeallocated) { if (SlotMeta->IsDeallocated) {
*Meta = SlotMeta; *Meta = SlotMeta;
return Error::USE_AFTER_FREE; return Error::USE_AFTER_FREE;
} }
// If we have reached here, the error is still unknown. There is no metadata // If we have reached here, the error is still unknown. There is no metadata
// available. // available.
*Meta = nullptr;
return Error::UNKNOWN; return Error::UNKNOWN;
} }
// Prints the provided error and metadata information. Returns true if there is namespace {
// additional context that can be provided, false otherwise (i.e. returns false // Prints the provided error and metadata information.
// if Error == {UNKNOWN, INVALID_FREE without metadata}). void printErrorType(Error E, uintptr_t AccessPtr, AllocationMetadata *Meta,
bool printErrorType(Error E, uintptr_t AccessPtr, AllocationMetadata *Meta, options::Printf_t Printf, uint64_t ThreadID) {
options::Printf_t Printf) { // Print using intermediate strings. Platforms like Android don't like when
// you print multiple times to the same line, as there may be a newline
// appended to a log file automatically per Printf() call.
const char *ErrorString;
switch (E) { switch (E) {
case Error::UNKNOWN: case Error::UNKNOWN:
Printf("GWP-ASan couldn't automatically determine the source of the " ErrorString = "GWP-ASan couldn't automatically determine the source of "
"memory error when accessing 0x%zx. It was likely caused by a wild " "the memory error. It was likely caused by a wild memory "
"memory access into the GWP-ASan pool.\n", "access into the GWP-ASan pool. The error occured";
AccessPtr); break;
return false;
case Error::USE_AFTER_FREE: case Error::USE_AFTER_FREE:
Printf("Use after free occurred when accessing memory at: 0x%zx\n", ErrorString = "Use after free";
AccessPtr);
break; break;
case Error::DOUBLE_FREE: case Error::DOUBLE_FREE:
Printf("Double free occurred when trying to free memory at: 0x%zx\n", ErrorString = "Double free";
AccessPtr);
break; break;
case Error::INVALID_FREE: case Error::INVALID_FREE:
Printf( ErrorString = "Invalid (wild) free";
"Invalid (wild) free occurred when trying to free memory at: 0x%zx\n",
AccessPtr);
// It's possible for an invalid free to fall onto a slot that has never been
// allocated. If this is the case, there is no valid metadata.
if (Meta == nullptr)
return false;
break; break;
case Error::BUFFER_OVERFLOW: case Error::BUFFER_OVERFLOW:
Printf("Buffer overflow occurred when accessing memory at: 0x%zx\n", ErrorString = "Buffer overflow";
AccessPtr);
break; break;
case Error::BUFFER_UNDERFLOW: case Error::BUFFER_UNDERFLOW:
Printf("Buffer underflow occurred when accessing memory at: 0x%zx\n", ErrorString = "Buffer underflow";
AccessPtr);
break; break;
} }
Printf("0x%zx is ", AccessPtr); constexpr size_t kDescriptionBufferLen = 128;
if (AccessPtr < Meta->Addr) char DescriptionBuffer[kDescriptionBufferLen];
Printf("located %zu bytes to the left of a %zu-byte allocation located at " if (Meta) {
"0x%zx\n", if (E == Error::USE_AFTER_FREE) {
Meta->Addr - AccessPtr, Meta->Size, Meta->Addr); snprintf(DescriptionBuffer, kDescriptionBufferLen,
else if (AccessPtr > Meta->Addr) "(%zu byte%s into a %zu-byte allocation at 0x%zx)",
Printf("located %zu bytes to the right of a %zu-byte allocation located at " AccessPtr - Meta->Addr, (AccessPtr - Meta->Addr == 1) ? "" : "s",
"0x%zx\n", Meta->Size, Meta->Addr);
AccessPtr - Meta->Addr, Meta->Size, Meta->Addr); } else if (AccessPtr < Meta->Addr) {
else snprintf(DescriptionBuffer, kDescriptionBufferLen,
Printf("a %zu-byte allocation\n", Meta->Size); "(%zu byte%s to the left of a %zu-byte allocation at 0x%zx)",
return true; Meta->Addr - AccessPtr, (Meta->Addr - AccessPtr == 1) ? "" : "s",
Meta->Size, Meta->Addr);
} else if (AccessPtr > Meta->Addr) {
snprintf(DescriptionBuffer, kDescriptionBufferLen,
"(%zu byte%s to the right of a %zu-byte allocation at 0x%zx)",
AccessPtr - Meta->Addr, (AccessPtr - Meta->Addr == 1) ? "" : "s",
Meta->Size, Meta->Addr);
} else {
snprintf(DescriptionBuffer, kDescriptionBufferLen,
"(a %zu-byte allocation)", Meta->Size);
}
} }
void printThreadInformation(Error E, uintptr_t AccessPtr, // Possible number of digits of a 64-bit number: ceil(log10(2^64)) == 20. Add
AllocationMetadata *Meta, // a null terminator, and round to the nearest 8-byte boundary.
options::Printf_t Printf) { constexpr size_t kThreadBufferLen = 24;
Printf("0x%zx was allocated by thread ", AccessPtr); char ThreadBuffer[kThreadBufferLen];
if (Meta->AllocationTrace.ThreadID == UINT64_MAX) if (ThreadID == GuardedPoolAllocator::kInvalidThreadID)
Printf("UNKNOWN.\n"); snprintf(ThreadBuffer, kThreadBufferLen, "<unknown>");
else else
Printf("%zu.\n", Meta->AllocationTrace.ThreadID); snprintf(ThreadBuffer, kThreadBufferLen, "%" PRIu64, ThreadID);
Printf("%s at 0x%zx %s by thread %s here:\n", ErrorString, AccessPtr,
DescriptionBuffer, ThreadBuffer);
}
if (E == Error::USE_AFTER_FREE || E == Error::DOUBLE_FREE) { void printAllocDeallocTraces(uintptr_t AccessPtr, AllocationMetadata *Meta,
Printf("0x%zx was freed by thread ", AccessPtr); options::Printf_t Printf,
if (Meta->AllocationTrace.ThreadID == UINT64_MAX) options::PrintBacktrace_t PrintBacktrace) {
Printf("UNKNOWN.\n"); assert(Meta != nullptr && "Metadata is non-null for printAllocDeallocTraces");
if (Meta->IsDeallocated) {
if (Meta->DeallocationTrace.ThreadID ==
GuardedPoolAllocator::kInvalidThreadID)
Printf("0x%zx was deallocated by thread <unknown> here:\n", AccessPtr);
else else
Printf("%zu.\n", Meta->AllocationTrace.ThreadID); Printf("0x%zx was deallocated by thread %zu here:\n", AccessPtr,
Meta->DeallocationTrace.ThreadID);
PrintBacktrace(Meta->DeallocationTrace.Trace, Printf);
} }
if (Meta->AllocationTrace.ThreadID == GuardedPoolAllocator::kInvalidThreadID)
Printf("0x%zx was allocated by thread <unknown> here:\n", Meta->Addr);
else
Printf("0x%zx was allocated by thread %zu here:\n", Meta->Addr,
Meta->AllocationTrace.ThreadID);
PrintBacktrace(Meta->AllocationTrace.Trace, Printf);
} }
struct ScopedEndOfReportDecorator { struct ScopedEndOfReportDecorator {
ScopedEndOfReportDecorator(options::Printf_t Printf) : Printf(Printf) {} ScopedEndOfReportDecorator(options::Printf_t Printf) : Printf(Printf) {}
~ScopedEndOfReportDecorator() { Printf("*** End GWP-ASan report ***\n"); } ~ScopedEndOfReportDecorator() { Printf("*** End GWP-ASan report ***\n"); }
options::Printf_t Printf; options::Printf_t Printf;
}; };
} // anonymous namespace
void GuardedPoolAllocator::reportErrorInternal(uintptr_t AccessPtr, Error E) { void GuardedPoolAllocator::reportErrorInternal(uintptr_t AccessPtr, Error E) {
if (!pointerIsMine(reinterpret_cast<void *>(AccessPtr))) { if (!pointerIsMine(reinterpret_cast<void *>(AccessPtr))) {
return; return;
} }
// Attempt to prevent races to re-use the same slot that triggered this error. // Attempt to prevent races to re-use the same slot that triggered this error.
// This does not guarantee that there are no races, because another thread can // This does not guarantee that there are no races, because another thread can
Show All 11 Linesvoid GuardedPoolAllocator::reportErrorInternal(uintptr_t AccessPtr, Error E) {
} else { } else {
size_t Slot = getNearestSlot(AccessPtr); size_t Slot = getNearestSlot(AccessPtr);
Meta = addrToMetadata(slotToAddr(Slot)); Meta = addrToMetadata(slotToAddr(Slot));
// Ensure that this slot has been previously allocated. // Ensure that this slot has been previously allocated.
if (!Meta->Addr) if (!Meta->Addr)
Meta = nullptr; Meta = nullptr;
} }
// Print the error information, and if there is no valid metadata, stop here. // Print the error information.
if (!printErrorType(E, AccessPtr, Meta, Printf)) { uint64_t ThreadID = getThreadID();
return; printErrorType(E, AccessPtr, Meta, Printf, ThreadID);
} if (Backtrace) {
static constexpr unsigned kMaximumStackFramesForCrashTrace = 128;
uintptr_t Trace[kMaximumStackFramesForCrashTrace];
Backtrace(Trace, kMaximumStackFramesForCrashTrace);
// Ensure that we have a valid metadata pointer from this point forward. PrintBacktrace(Trace, Printf);
if (Meta == nullptr) { } else {
Printf("GWP-ASan internal unreachable error. Metadata is not null.\n"); Printf(" <unknown (does your allocator support backtracing?)>\n\n");
return;
} }
printThreadInformation(E, AccessPtr, Meta, Printf); if (Meta)
// TODO(hctim): Implement stack unwinding here. Ask the caller to provide us printAllocDeallocTraces(AccessPtr, Meta, Printf, PrintBacktrace);
// with the base pointer, and we unwind the stack to give a stack trace for
// the access.
// TODO(hctim): Implement dumping here of allocation/deallocation traces.
} }
TLS_INITIAL_EXEC TLS_INITIAL_EXEC
GuardedPoolAllocator::ThreadLocalPackedVariables GuardedPoolAllocator::ThreadLocalPackedVariables
GuardedPoolAllocator::ThreadLocals; GuardedPoolAllocator::ThreadLocals;
} // namespace gwp_asan } // namespace gwp_asan

compiler-rt/trunk/lib/gwp_asan/optional/backtrace.h

//===-- backtrace.h ---------------------------------------------*- C++ -*-===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
#ifndef GWP_ASAN_OPTIONAL_BACKTRACE_H_
#define GWP_ASAN_OPTIONAL_BACKTRACE_H_
#include "gwp_asan/options.h"
namespace gwp_asan {
namespace options {
// Functions to get the platform-specific and implementation-specific backtrace
// and backtrace printing functions.
Backtrace_t getBacktraceFunction();
PrintBacktrace_t getPrintBacktraceFunction();
} // namespace options
} // namespace gwp_asan
#endif // GWP_ASAN_OPTIONAL_BACKTRACE_H_

compiler-rt/trunk/lib/gwp_asan/optional/backtrace_linux_libc.cpp

//===-- backtrace_linux_libc.cpp --------------------------------*- C++ -*-===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
#include <assert.h>
#include <execinfo.h>
#include <stddef.h>
#include <stdint.h>
#include <stdlib.h>
#include <string.h>
#include "gwp_asan/optional/backtrace.h"
#include "gwp_asan/options.h"
namespace {
void Backtrace(uintptr_t *TraceBuffer, size_t Size) {
// Grab (what seems to be) one more trace than we need. TraceBuffer needs to
// be null-terminated, but we wish to remove the frame of this function call.
static_assert(sizeof(uintptr_t) == sizeof(void *), "uintptr_t is not void*");
int NumTraces =
backtrace(reinterpret_cast<void **>(TraceBuffer), Size);
// Now shift the entire trace one place to the left and null-terminate.
memmove(TraceBuffer, TraceBuffer + 1, NumTraces * sizeof(void *));
TraceBuffer[NumTraces - 1] = 0;
}
static void PrintBacktrace(uintptr_t *Trace,
gwp_asan::options::Printf_t Printf) {
size_t NumTraces = 0;
for (; Trace[NumTraces] != 0; ++NumTraces) {
}
if (NumTraces == 0) {
Printf(" <not found (does your allocator support backtracing?)>\n\n");
return;
}
char **BacktraceSymbols =
backtrace_symbols(reinterpret_cast<void **>(Trace), NumTraces);
for (size_t i = 0; i < NumTraces; ++i) {
if (!BacktraceSymbols)
Printf(" #%zu %p\n", i, Trace[i]);
else
Printf(" #%zu %s\n", i, BacktraceSymbols[i]);
}
Printf("\n");
if (BacktraceSymbols)
free(BacktraceSymbols);
}
} // anonymous namespace
namespace gwp_asan {
namespace options {
Backtrace_t getBacktraceFunction() { return Backtrace; }
PrintBacktrace_t getPrintBacktraceFunction() { return PrintBacktrace; }
} // namespace options
} // namespace gwp_asan

compiler-rt/trunk/lib/gwp_asan/optional/backtrace_sanitizer_common.cpp

//===-- backtrace_sanitizer_common.cpp --------------------------*- C++ -*-===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
#include <assert.h>
#include <stddef.h>
#include <stdint.h>
#include <string.h>
#include "gwp_asan/optional/backtrace.h"
#include "gwp_asan/options.h"
#include "sanitizer_common/sanitizer_stacktrace.h"
void __sanitizer::BufferedStackTrace::UnwindImpl(uptr pc, uptr bp,
void *context,
bool request_fast,
u32 max_depth) {
if (!StackTrace::WillUseFastUnwind(request_fast)) {
return Unwind(max_depth, pc, bp, context, 0, 0, request_fast);
}
Unwind(max_depth, pc, 0, context, 0, 0, false);
}
namespace {
void Backtrace(uintptr_t *TraceBuffer, size_t Size) {
__sanitizer::BufferedStackTrace Trace;
Trace.Reset();
if (Size > __sanitizer::kStackTraceMax)
Size = __sanitizer::kStackTraceMax;
Trace.Unwind((__sanitizer::uptr)__builtin_return_address(0),
(__sanitizer::uptr)__builtin_frame_address(0),
/* ucontext */ nullptr,
/* fast unwind */ true, Size - 1);
memcpy(TraceBuffer, Trace.trace, Trace.size * sizeof(uintptr_t));
TraceBuffer[Trace.size] = 0;
}
static void PrintBacktrace(uintptr_t *Trace,
gwp_asan::options::Printf_t Printf) {
__sanitizer::StackTrace StackTrace;
StackTrace.trace = reinterpret_cast<__sanitizer::uptr *>(Trace);
for (StackTrace.size = 0; StackTrace.size < __sanitizer::kStackTraceMax;
++StackTrace.size) {
if (Trace[StackTrace.size] == 0)
break;
}
if (StackTrace.size == 0) {
Printf(" <unknown (does your allocator support backtracing?)>\n\n");
return;
}
StackTrace.Print();
}
} // anonymous namespace
namespace gwp_asan {
namespace options {
Backtrace_t getBacktraceFunction() { return Backtrace; }
PrintBacktrace_t getPrintBacktraceFunction() { return PrintBacktrace; }
} // namespace options
} // namespace gwp_asan

compiler-rt/trunk/lib/gwp_asan/optional/options_parser.h

//===-- options_parser.h ----------------------------------------*- C++ -*-===// //===-- options_parser.h ----------------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_ #ifndef GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_
#define GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_ #define GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_
#include "gwp_asan/optional/backtrace.h"
#include "gwp_asan/options.h" #include "gwp_asan/options.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
namespace gwp_asan { namespace gwp_asan {
namespace options { namespace options {
// Parse the options from the GWP_ASAN_FLAGS environment variable. // Parse the options from the GWP_ASAN_FLAGS environment variable.
void initOptions(); void initOptions();
// Returns a pointer to the initialised options. Call initOptions() prior to // Returns the initialised options. Call initOptions() prior to calling this
// calling this function. // function.
const Options &getOptions(); Options &getOptions();
} // namespace options } // namespace options
} // namespace gwp_asan } // namespace gwp_asan
extern "C" { extern "C" {
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_WEAK_ATTRIBUTE const char * SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_WEAK_ATTRIBUTE const char *
__gwp_asan_default_options(); __gwp_asan_default_options();
} }
#endif // GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_ #endif // GWP_ASAN_OPTIONAL_OPTIONS_PARSER_H_

compiler-rt/trunk/lib/gwp_asan/optional/options_parser.cpp

Show First 20 LinesShow All 41 Lines▼ Show 20 Lines
Options *getOptionsInternal() { Options *getOptionsInternal() {
static Options GwpAsanFlags; static Options GwpAsanFlags;
return &GwpAsanFlags; return &GwpAsanFlags;
} }
} // anonymous namespace } // anonymous namespace
void initOptions() { void initOptions() {
__sanitizer::SetCommonFlagsDefaults();
Options *o = getOptionsInternal(); Options *o = getOptionsInternal();
o->setDefaults(); o->setDefaults();
__sanitizer::FlagParser Parser; __sanitizer::FlagParser Parser;
registerGwpAsanFlags(&Parser, o); registerGwpAsanFlags(&Parser, o);
// Override from compile definition. // Override from compile definition.
Parser.ParseString(getCompileDefinitionGwpAsanDefaultOptions()); Parser.ParseString(getCompileDefinitionGwpAsanDefaultOptions());
Show All 22 Lines if (o->SampleRate < 1) {
__sanitizer::Printf( __sanitizer::Printf(
"GWP-ASan ERROR: SampleRate must be > 0 when GWP-ASan is enabled.\n"); "GWP-ASan ERROR: SampleRate must be > 0 when GWP-ASan is enabled.\n");
exit(EXIT_FAILURE); exit(EXIT_FAILURE);
} }
o->Printf = __sanitizer::Printf; o->Printf = __sanitizer::Printf;
} }
const Options &getOptions() { return *getOptionsInternal(); } Options &getOptions() { return *getOptionsInternal(); }
} // namespace options } // namespace options
} // namespace gwp_asan } // namespace gwp_asan

compiler-rt/trunk/lib/gwp_asan/options.h

//===-- options.h -----------------------------------------------*- C++ -*-===// //===-- options.h -----------------------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef GWP_ASAN_OPTIONS_H_ #ifndef GWP_ASAN_OPTIONS_H_
#define GWP_ASAN_OPTIONS_H_ #define GWP_ASAN_OPTIONS_H_
#include <stddef.h>
#include <stdint.h>
namespace gwp_asan { namespace gwp_asan {
namespace options { namespace options {
// The function pointer type for printf(). Follows the standard format from the // The function pointer type for printf(). Follows the standard format from the
// sanitizers library. If the supported allocator exposes printing via a // sanitizers library. If the supported allocator exposes printing via a
// different function signature, please provide a wrapper which has this // different function signature, please provide a wrapper which has this
// printf() signature, and pass the wrapper instead. // printf() signature, and pass the wrapper instead.
typedef void (*Printf_t)(const char *Format, ...); typedef void (*Printf_t)(const char *Format, ...);
// The function pointer type for backtrace information. Required to be
// implemented by the supporting allocator. The callee should elide itself and
// all frames below itself from TraceBuffer, i.e. the caller's frame should be
// in TraceBuffer[0], and subsequent frames 1..n into TraceBuffer[1..n], where a
// maximum of `MaximumDepth - 1` frames are stored. TraceBuffer should be
// nullptr-terminated (i.e. if there are 5 frames; TraceBuffer[5] == nullptr).
// If the allocator cannot supply backtrace information, it should set
// TraceBuffer[0] == nullptr.
typedef void (*Backtrace_t)(uintptr_t *TraceBuffer, size_t Size);
typedef void (*PrintBacktrace_t)(uintptr_t *TraceBuffer, Printf_t Print);
struct Options { struct Options {
Printf_t Printf = nullptr; Printf_t Printf = nullptr;
Backtrace_t Backtrace = nullptr;
PrintBacktrace_t PrintBacktrace = nullptr;
// Read the options from the included definitions file. // Read the options from the included definitions file.
#define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \ #define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \
Type Name = DefaultValue; Type Name = DefaultValue;
#include "gwp_asan/options.inc" #include "gwp_asan/options.inc"
#undef GWP_ASAN_OPTION #undef GWP_ASAN_OPTION
void setDefaults() { void setDefaults() {
#define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \ #define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \
Name = DefaultValue; Name = DefaultValue;
#include "gwp_asan/options.inc" #include "gwp_asan/options.inc"
#undef GWP_ASAN_OPTION #undef GWP_ASAN_OPTION
Printf = nullptr; Printf = nullptr;
Backtrace = nullptr;
PrintBacktrace = nullptr;
} }
}; };
} // namespace options } // namespace options
} // namespace gwp_asan } // namespace gwp_asan
#endif // GWP_ASAN_OPTIONS_H_ #endif // GWP_ASAN_OPTIONS_H_

compiler-rt/trunk/lib/gwp_asan/tests/CMakeLists.txt

include(CompilerRTCompile) include(CompilerRTCompile)
set(GWP_ASAN_UNITTEST_CFLAGS set(GWP_ASAN_UNITTEST_CFLAGS
${COMPILER_RT_UNITTEST_CFLAGS} ${COMPILER_RT_UNITTEST_CFLAGS}
${COMPILER_RT_GTEST_CFLAGS} ${COMPILER_RT_GTEST_CFLAGS}
-I${COMPILER_RT_SOURCE_DIR}/lib/ -I${COMPILER_RT_SOURCE_DIR}/lib/
-O2) -O2
-g)
file(GLOB GWP_ASAN_HEADERS ../*.h) file(GLOB GWP_ASAN_HEADERS ../*.h)
file(GLOB GWP_ASAN_UNITTESTS *.cpp) file(GLOB GWP_ASAN_UNITTESTS *.cpp)
set(GWP_ASAN_UNIT_TEST_HEADERS set(GWP_ASAN_UNIT_TEST_HEADERS
${GWP_ASAN_HEADERS} ${GWP_ASAN_HEADERS}
harness.h) harness.h)
add_custom_target(GwpAsanUnitTests) add_custom_target(GwpAsanUnitTests)
set_target_properties(GwpAsanUnitTests PROPERTIES FOLDER "Compiler-RT Tests") set_target_properties(GwpAsanUnitTests PROPERTIES FOLDER "Compiler-RT Tests")
set(GWP_ASAN_UNITTEST_LINK_FLAGS ${COMPILER_RT_UNITTEST_LINK_FLAGS}) set(GWP_ASAN_UNITTEST_LINK_FLAGS ${COMPILER_RT_UNITTEST_LINK_FLAGS} -ldl)
list(APPEND GWP_ASAN_UNITTEST_LINK_FLAGS --driver-mode=g++) list(APPEND GWP_ASAN_UNITTEST_LINK_FLAGS --driver-mode=g++)
if(NOT WIN32) if(NOT WIN32)
list(APPEND GWP_ASAN_UNITTEST_LINK_FLAGS -pthread) list(APPEND GWP_ASAN_UNITTEST_LINK_FLAGS -pthread)
endif() endif()
if(COMPILER_RT_DEFAULT_TARGET_ARCH IN_LIST GWP_ASAN_SUPPORTED_ARCH) if(COMPILER_RT_DEFAULT_TARGET_ARCH IN_LIST GWP_ASAN_SUPPORTED_ARCH)
# GWP-ASan unit tests are only run on the host machine. # GWP-ASan unit tests are only run on the host machine.
set(arch ${COMPILER_RT_DEFAULT_TARGET_ARCH}) set(arch ${COMPILER_RT_DEFAULT_TARGET_ARCH})
set(GWP_ASAN_TEST_RUNTIME RTGwpAsanTest.${arch}) set(GWP_ASAN_TEST_RUNTIME RTGwpAsanTest.${arch})
# RTSanitizerCommonNoTermination(NoLibc) required for __sanitizer::Printf. # RTSanitizerCommonNoTermination(NoLibc) required for __sanitizer::Printf.
set(GWP_ASAN_TEST_RUNTIME_OBJECTS set(GWP_ASAN_TEST_RUNTIME_OBJECTS
$<TARGET_OBJECTS:RTGwpAsan.${arch}> $<TARGET_OBJECTS:RTGwpAsan.${arch}>
$<TARGET_OBJECTS:RTGwpAsanBacktraceSanitizerCommon.${arch}>
$<TARGET_OBJECTS:RTGwpAsanOptionsParser.${arch}>
$<TARGET_OBJECTS:RTSanitizerCommon.${arch}> $<TARGET_OBJECTS:RTSanitizerCommon.${arch}>
$<TARGET_OBJECTS:RTSanitizerCommonNoLibc.${arch}>) $<TARGET_OBJECTS:RTSanitizerCommonLibc.${arch}>
$<TARGET_OBJECTS:RTSanitizerCommonSymbolizer.${arch}>)
add_library(${GWP_ASAN_TEST_RUNTIME} STATIC add_library(${GWP_ASAN_TEST_RUNTIME} STATIC
${GWP_ASAN_TEST_RUNTIME_OBJECTS}) ${GWP_ASAN_TEST_RUNTIME_OBJECTS})
set_target_properties(${GWP_ASAN_TEST_RUNTIME} PROPERTIES set_target_properties(${GWP_ASAN_TEST_RUNTIME} PROPERTIES
ARCHIVE_OUTPUT_DIRECTORY ${CMAKE_CURRENT_BINARY_DIR} ARCHIVE_OUTPUT_DIRECTORY ${CMAKE_CURRENT_BINARY_DIR}
FOLDER "Compiler-RT Runtime tests") FOLDER "Compiler-RT Runtime tests")
Show All 11 Lines

compiler-rt/trunk/lib/gwp_asan/tests/backtrace.cpp

//===-- backtrace.cc --------------------------------------------*- C++ -*-===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
#include <string>
#include "gwp_asan/tests/harness.h"
TEST_F(BacktraceGuardedPoolAllocator, DoubleFree) {
void *Ptr = GPA.allocate(1);
GPA.deallocate(Ptr);
std::string DeathRegex = "Double free.*";
DeathRegex.append("backtrace\\.cpp:25.*");
DeathRegex.append("was deallocated.*");
DeathRegex.append("backtrace\\.cpp:15.*");
DeathRegex.append("was allocated.*");
DeathRegex.append("backtrace\\.cpp:14.*");
ASSERT_DEATH(GPA.deallocate(Ptr), DeathRegex);
}
TEST_F(BacktraceGuardedPoolAllocator, UseAfterFree) {
char *Ptr = static_cast<char *>(GPA.allocate(1));
GPA.deallocate(Ptr);
std::string DeathRegex = "Use after free.*";
DeathRegex.append("backtrace\\.cpp:40.*");
DeathRegex.append("was deallocated.*");
DeathRegex.append("backtrace\\.cpp:30.*");
DeathRegex.append("was allocated.*");
DeathRegex.append("backtrace\\.cpp:29.*");
ASSERT_DEATH({ *Ptr = 7; }, DeathRegex);
}

compiler-rt/trunk/lib/gwp_asan/tests/harness.h

Show All 11 Lines
#include "gtest/gtest.h" #include "gtest/gtest.h"
// Include sanitizer_common first as gwp_asan/guarded_pool_allocator.h // Include sanitizer_common first as gwp_asan/guarded_pool_allocator.h
// transiently includes definitions.h, which overwrites some of the definitions // transiently includes definitions.h, which overwrites some of the definitions
// in sanitizer_common. // in sanitizer_common.
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
#include "gwp_asan/guarded_pool_allocator.h" #include "gwp_asan/guarded_pool_allocator.h"
#include "gwp_asan/optional/backtrace.h"
#include "gwp_asan/optional/options_parser.h"
#include "gwp_asan/options.h" #include "gwp_asan/options.h"
class DefaultGuardedPoolAllocator : public ::testing::Test { class DefaultGuardedPoolAllocator : public ::testing::Test {
public: public:
DefaultGuardedPoolAllocator() { DefaultGuardedPoolAllocator() {
gwp_asan::options::Options Opts; gwp_asan::options::Options Opts;
Opts.setDefaults(); Opts.setDefaults();
MaxSimultaneousAllocations = Opts.MaxSimultaneousAllocations; MaxSimultaneousAllocations = Opts.MaxSimultaneousAllocations;
Show All 24 Linespublic:
} }
protected: protected:
gwp_asan::GuardedPoolAllocator GPA; gwp_asan::GuardedPoolAllocator GPA;
decltype(gwp_asan::options::Options::MaxSimultaneousAllocations) decltype(gwp_asan::options::Options::MaxSimultaneousAllocations)
MaxSimultaneousAllocations; MaxSimultaneousAllocations;
}; };
class BacktraceGuardedPoolAllocator : public ::testing::Test {
public:
BacktraceGuardedPoolAllocator() {
// Call initOptions to initialise the internal sanitizer_common flags. These
// flags are referenced by the sanitizer_common unwinder, and if left
// uninitialised, they'll unintentionally crash the program.
gwp_asan::options::initOptions();
gwp_asan::options::Options Opts;
Opts.setDefaults();
Opts.Printf = __sanitizer::Printf;
Opts.Backtrace = gwp_asan::options::getBacktraceFunction();
Opts.PrintBacktrace = gwp_asan::options::getPrintBacktraceFunction();
GPA.init(Opts);
}
protected:
gwp_asan::GuardedPoolAllocator GPA;
};
#endif // GWP_ASAN_TESTS_HARNESS_H_ #endif // GWP_ASAN_TESTS_HARNESS_H_

compiler-rt/trunk/test/gwp_asan/double_delete.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: not %run %t 2>&1 | FileCheck %s // RUN: not %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Double free occurred when trying to free memory at: // CHECK: Double free at 0x{{[a-f0-9]+}} (a 1-byte allocation)
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = new char; char *Ptr = new char;
delete Ptr; delete Ptr;
delete Ptr; delete Ptr;
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/double_deletea.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: not %run %t 2>&1 | FileCheck %s // RUN: not %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Double free occurred when trying to free memory at: // CHECK: Double free at 0x{{[a-f0-9]+}} (a 50-byte allocation)
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = new char[50]; char *Ptr = new char[50];
delete[] Ptr; delete[] Ptr;
delete[] Ptr; delete[] Ptr;
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/double_free.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: not %run %t 2>&1 | FileCheck %s // RUN: not %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error
// CHECK: Double free occurred when trying to free memory at:
#include <cstdlib> #include <cstdlib>
int main() { int main() {
// CHECK: GWP-ASan detected a memory error
// CHECK: Double free at 0x{{[a-f0-9]+}} (a 10-byte allocation)
void *Ptr = malloc(10); void *Ptr = malloc(10);
free(Ptr); free(Ptr);
free(Ptr); free(Ptr);
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/heap_buffer_overflow.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: %expect_crash %run %t 2>&1 | FileCheck %s // RUN: %expect_crash %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Buffer overflow occurred when accessing memory at: // CHECK: Buffer overflow at 0x{{[a-f0-9]+}} ({{[1-9][0-9]*}} bytes to the right
// CHECK: is located {{[0-9]+}} bytes to the right // CHECK-SAME: of a {{[1-9][0-9]*}}-byte allocation
#include <cstdlib> #include <cstdlib>
#include "page_size.h" #include "page_size.h"
int main() { int main() {
char *Ptr = char *Ptr =
reinterpret_cast<char *>(malloc(pageSize())); reinterpret_cast<char *>(malloc(pageSize()));
volatile char x = *(Ptr + pageSize()); volatile char x = *(Ptr + pageSize());
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/heap_buffer_underflow.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: %expect_crash %run %t 2>&1 | FileCheck %s // RUN: %expect_crash %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Buffer underflow occurred when accessing memory at: // CHECK: Buffer underflow at 0x{{[a-f0-9]+}} (1 byte to the left
// CHECK: is located 1 bytes to the left // CHECK-SAME: of a {{[1-9][0-9]*}}-byte allocation
#include <cstdlib> #include <cstdlib>
#include "page_size.h" #include "page_size.h"
int main() { int main() {
char *Ptr = char *Ptr =
reinterpret_cast<char *>(malloc(pageSize())); reinterpret_cast<char *>(malloc(pageSize()));
volatile char x = *(Ptr - 1); volatile char x = *(Ptr - 1);
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/invalid_free_left.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: not %run %t 2>&1 | FileCheck %s // RUN: not %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Invalid (wild) free occurred when trying to free memory at: // CHECK: Invalid (wild) free at 0x{{[a-f0-9]+}} (1 byte to the left of a
// CHECK: is located 1 bytes to the left of // CHECK-SAME: 1-byte allocation
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = char *Ptr =
reinterpret_cast<char *>(malloc(1)); reinterpret_cast<char *>(malloc(1));
free(Ptr - 1); free(Ptr - 1);
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/invalid_free_right.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: not %run %t 2>&1 | FileCheck %s // RUN: not %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Invalid (wild) free occurred when trying to free memory at: // CHECK: Invalid (wild) free at 0x{{[a-f0-9]+}} (1 byte to the right of a
// CHECK: is located 1 bytes to the right // CHECK-SAME: 1-byte allocation
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = char *Ptr =
reinterpret_cast<char *>(malloc(1)); reinterpret_cast<char *>(malloc(1));
free(Ptr + 1); free(Ptr + 1);
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/lit.cfg.py

Show All 14 Lines
c_flags = ([config.target_cflags]) c_flags = ([config.target_cflags])
# Android doesn't want -lrt. # Android doesn't want -lrt.
if not config.android: if not config.android:
c_flags += ["-lrt"] c_flags += ["-lrt"]
cxx_flags = (c_flags + config.cxx_mode_flags + ["-std=c++11"]) cxx_flags = (c_flags + config.cxx_mode_flags + ["-std=c++11"])
gwp_asan_flags = ["-fsanitize=scudo"] gwp_asan_flags = ["-fsanitize=scudo", "-g", "-fno-omit-frame-pointer",
"-mno-omit-leaf-frame-pointer"]
def build_invocation(compile_flags): def build_invocation(compile_flags):
return " " + " ".join([config.clang] + compile_flags) + " " return " " + " ".join([config.clang] + compile_flags) + " "
# Add substitutions. # Add substitutions.
config.substitutions.append(("%clang ", build_invocation(c_flags))) config.substitutions.append(("%clang ", build_invocation(c_flags)))
config.substitutions.append(("%clang_gwp_asan ", build_invocation(c_flags + gwp_asan_flags))) config.substitutions.append(("%clang_gwp_asan ", build_invocation(c_flags + gwp_asan_flags)))
config.substitutions.append(("%clangxx_gwp_asan ", build_invocation(cxx_flags + gwp_asan_flags))) config.substitutions.append(("%clangxx_gwp_asan ", build_invocation(cxx_flags + gwp_asan_flags)))
Show All 13 Lines

compiler-rt/trunk/test/gwp_asan/realloc.cpp

Show All 17 Lines
#if defined(TEST_MALLOC) #if defined(TEST_MALLOC)
// realloc(nullptr, size) is equivalent to malloc(size). // realloc(nullptr, size) is equivalent to malloc(size).
char *Ptr = reinterpret_cast<char *>(realloc(nullptr, 1)); char *Ptr = reinterpret_cast<char *>(realloc(nullptr, 1));
*Ptr = 0; *Ptr = 0;
// Trigger an INVALID_FREE to the right. // Trigger an INVALID_FREE to the right.
free(Ptr + 1); free(Ptr + 1);
// CHECK-MALLOC: GWP-ASan detected a memory error // CHECK-MALLOC: GWP-ASan detected a memory error
// CHECK-MALLOC: Invalid (wild) free occurred when trying to free memory at: // CHECK-MALLOC: Invalid (wild) free at 0x{{[a-f0-9]+}} (1 byte to the right
// CHECK-MALLOC: is located 1 bytes to the right of a 1-byte allocation // CHECK-MALLOC-SAME: of a 1-byte allocation
#elif defined(TEST_FREE) #elif defined(TEST_FREE)
char *Ptr = (char *) malloc(1); char *Ptr = (char *) malloc(1);
// realloc(ptr, 0) is equivalent to free(ptr) and must return nullptr. Note // realloc(ptr, 0) is equivalent to free(ptr) and must return nullptr. Note
// that this is only the specification in C++98 and C. // that this is only the specification in C++98 and C.
if (realloc(Ptr, 0) != NULL) { if (realloc(Ptr, 0) != NULL) {
} }
// Trigger a USE_AFTER_FREE. // Trigger a USE_AFTER_FREE.
*Ptr = 0; *Ptr = 0;
// CHECK-FREE: GWP-ASan detected a memory error // CHECK-FREE: GWP-ASan detected a memory error
// CHECK-FREE: Use after free occurred when accessing memory at: // CHECK-FREE: Use after free at 0x{{[a-f0-9]+}} (0 bytes into a 1-byte
// CHECK-FREE: is a 1-byte allocation // CHECK-FREE-SAME: allocation
#endif #endif
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/use_after_delete.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: %expect_crash %run %t 2>&1 | FileCheck %s // RUN: %expect_crash %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Use after free occurred when accessing memory at: // CHECK: Use after free at 0x{{[a-f0-9]+}} (0 bytes into a 1-byte allocation
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = new char; char *Ptr = new char;
*Ptr = 0x0; *Ptr = 0x0;
delete Ptr; delete Ptr;
volatile char x = *Ptr; volatile char x = *Ptr;
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/use_after_deletea.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: %expect_crash %run %t 2>&1 | FileCheck %s // RUN: %expect_crash %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Use after free occurred when accessing memory at: // CHECK: Use after free at 0x{{[a-f0-9]+}} (0 bytes into a 10-byte allocation
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = new char[10]; char *Ptr = new char[10];
for (unsigned i = 0; i < 10; ++i) { for (unsigned i = 0; i < 10; ++i) {
*(Ptr + i) = 0x0; *(Ptr + i) = 0x0;
} }
delete[] Ptr; delete[] Ptr;
volatile char x = *Ptr; volatile char x = *Ptr;
return 0; return 0;
} }

compiler-rt/trunk/test/gwp_asan/use_after_free.cpp

// REQUIRES: gwp_asan // REQUIRES: gwp_asan
// RUN: %clangxx_gwp_asan %s -o %t // RUN: %clangxx_gwp_asan %s -o %t
// RUN: %expect_crash %run %t 2>&1 | FileCheck %s // RUN: %expect_crash %run %t 2>&1 | FileCheck %s
// CHECK: GWP-ASan detected a memory error // CHECK: GWP-ASan detected a memory error
// CHECK: Use after free occurred when accessing memory at: // CHECK: Use after free at 0x{{[a-f0-9]+}} (0 bytes into a 10-byte allocation
#include <cstdlib> #include <cstdlib>
int main() { int main() {
char *Ptr = reinterpret_cast<char *>(malloc(10)); char *Ptr = reinterpret_cast<char *>(malloc(10));
for (unsigned i = 0; i < 10; ++i) { for (unsigned i = 0; i < 10; ++i) {
*(Ptr + i) = 0x0; *(Ptr + i) = 0x0;
} }
free(Ptr); free(Ptr);
volatile char x = *Ptr; volatile char x = *Ptr;
return 0; return 0;
} }