This is an archive of the discontinued LLVM Phabricator instance.

Differential D64457

[GWP-ASan] Attempt to fix Android/ARM platforms.
AbandonedPublic

Authored by hctim on Jul 9 2019, 5:18 PM.

Details

Reviewers
cryptoad
eugenis
Summary

This patch re-enabled GWP-ASan for Android and other ARM platforms. It does two
things:

  1. Adds -fno-emulated-tls, as the clang driver still default compiles using emulated TLS on Android.
  2. Also uses sanitizer common unwinder on Android, as glibc backtrace() isn't available.

This patch should be monitored closely when submitting. I don't have the ARM32
machines that the patches initially broke to verify that this fixes the
problem, but it's a good attempt.

Diff Detail

Event Timeline

hctim created this revision.Jul 9 2019, 5:18 PM
Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptJul 9 2019, 5:18 PM
Herald added subscribers: llvm-commits, Restricted Project, jfb and 5 others. · View Herald Transcript
Harbormaster completed remote builds in B34660: Diff 208848.Jul 9 2019, 5:19 PM
eugenis added a comment.Jul 9 2019, 5:47 PM

LGTM

This adds sanitizer_common libraries to scudo_minimal (but not to scudo_standalone). Is it OK with you, Kostya?

cryptoad added a comment.Jul 10 2019, 8:11 AM

It's OK with me. Part of the reason for splitting out the symbolizer was some memory overhead as well, which we probably want to look into.
Is COMPILER_RT_HAS_GWP_ASAN going to be true by default for Android? If so we probably should loop in the toolchain team so that there is no surprise on their next toolchain update.

cryptoad added a comment.Nov 27 2019, 12:26 PM

Can this be abandoned? Looks stale.

hctim planned changes to this revision.Nov 27 2019, 12:34 PM
In D64457#1762210, @cryptoad wrote:

Can this be abandoned? Looks stale.

I'll need to take a look and rethink this - is planned changes okay to get it off your dashboard?

cryptoad added a comment.Nov 27 2019, 1:10 PM
In D64457#1762220, @hctim wrote:
In D64457#1762210, @cryptoad wrote:

Can this be abandoned? Looks stale.

I'll need to take a look and rethink this - is planned changes okay to get it off your dashboard?

Works thanks!

hctim updated this revision to Diff 240298.Jan 24 2020, 2:47 PM
  • Updates.
hctim marked an inline comment as done.Jan 24 2020, 2:52 PM

Reviving this a little. check-gwp_asan in my aarch64 crostool now WAI, with some warnings during compilation from ar and ranlib: unsupported GNU_PROPERTY_TYPE (5) type: 0xc0000000. Looks like this is the PAC/BTI properties from D62609, but doesn't really hurt us here.

@cryptoad - I hear through the grapevine that you're having similar initial-exec TLS alignment issues in the linker (as per the inline comment in this patch). Is that what's stopping you from adding scudo_standalone to aarch64/Android on the upstream (LLVM) bots?

compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

This alignment is manually required, as otherwise with my NDK (r18b) the bionic linker complains when running the test that the executable's TLS segment is underaligned: alignment is 8, needs to be at least 64 for ARM64 Bionic. Apparently this is fixed in the new NDKv21, but we can't update our bots to that at this time as the migration is nontrivial :( (NDKv21 breaks other things in standalone compiler-rt).

merge_guards_bot added a subscriber: merge_guards_bot.Jan 24 2020, 3:01 PM

Unit tests: fail. 62146 tests passed, 5 failed and 811 were skipped.

failed: libc++.std/language_support/cmp/cmp_partialord/partialord.pass.cpp
failed: libc++.std/language_support/cmp/cmp_strongeq/cmp.strongeq.pass.cpp
failed: libc++.std/language_support/cmp/cmp_strongord/strongord.pass.cpp
failed: libc++.std/language_support/cmp/cmp_weakeq/cmp.weakeq.pass.cpp
failed: libc++.std/language_support/cmp/cmp_weakord/weakord.pass.cpp

clang-tidy: fail. clang-tidy found 1 errors and 0 warnings. 0 of them are added as review comments below (why?).

clang-format: pass.

Build artifacts: diff.json, clang-tidy.txt, clang-format.patch, CMakeCache.txt, console-log.txt, test-results.xml

Pre-merge checks is in beta. Report issue. Please join beta or enable it for your project.

Harbormaster failed remote builds in B44883: Diff 240298!Jan 24 2020, 3:05 PM
hctim marked an inline comment as done.Jan 30 2020, 10:47 AM
hctim added a subscriber: pcc.
hctim added inline comments.
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

@pcc - do you think this is a reasonable solution to get it to build without pushing the new NDK/API version to the bots?

pcc added inline comments.Jan 30 2020, 11:05 AM
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

I don't recall, did just upgrading the NDK break things or did things only break when you upgraded the API level as well? If the former, maybe you could add --target=aarch64-linux-android30 and so on to cflags/ldflags for the gwp-asan targets?

eugenis added inline comments.Jan 30 2020, 11:22 AM
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

Simply updating the NDK breaks things. It could very well be trivial, I did not look into it at all beyond that fact that the bot turned red.

hctim added inline comments.Feb 5 2020, 7:08 AM
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

Are we happy with this workaround for now folks?

pcc added inline comments.Feb 5 2020, 8:02 AM
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

This is fine for now but please add a comment.

eugenis accepted this revision.Feb 5 2020, 11:29 AM

LGTM

compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

If we pack the thread local variables to put them on the same cacheline, I'd say this change is not only acceptable but even desirable.

This revision is now accepted and ready to land.Feb 5 2020, 11:29 AM
hctim marked 6 inline comments as done.Feb 5 2020, 3:26 PM
hctim added inline comments.
compiler-rt/lib/gwp_asan/guarded_pool_allocator.h
258 ↗(On Diff #240298)

We may take up more static TLS space, but given we should probably be part of the initial set anyway, that's not a problem.

smeenai added a subscriber: smeenai.Feb 23 2020, 10:07 PM

Is there anything holding this up?

On our end, we're able to build GWP-ASAN and Scudo for Android with this change. We haven't actually tried running them yet though :D

smeenai added a comment.Feb 24 2020, 9:29 PM

I filed https://bugs.llvm.org/show_bug.cgi?id=45014 for an Android compiler-rt compilation error I ran into for API 29. (I needed to build with API 29 because it's only API 29's libc.so that has __tls_get_addr and __aeabi_read_tp, which are needed for non-emulated TLS.)

hctim abandoned this revision.Jan 12 2021, 1:39 PM
hctim marked an inline comment as done.

(no longer relevant - much fresher patch should be coming soon to do the same thing)

Revision Contents

PathSize
compiler-rt/
cmake/
4 lines
lib/
gwp_asan/
3 lines
scudo/
17 lines

Diff 208848

compiler-rt/cmake/config-ix.cmake

Show First 20 LinesShow All 241 Lines▼ Show 20 Lines
endif() endif()
if(OS_NAME MATCHES "Linux") if(OS_NAME MATCHES "Linux")
set(ALL_FUZZER_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM64}) set(ALL_FUZZER_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM64})
else() else()
set(ALL_FUZZER_SUPPORTED_ARCH ${X86_64} ${ARM64}) set(ALL_FUZZER_SUPPORTED_ARCH ${X86_64} ${ARM64})
endif() endif()
set(ALL_GWP_ASAN_SUPPORTED_ARCH ${X86} ${X86_64}) set(ALL_GWP_ASAN_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM64} ${ARM32})
if(APPLE) if(APPLE)
set(ALL_LSAN_SUPPORTED_ARCH ${X86} ${X86_64} ${MIPS64} ${ARM64}) set(ALL_LSAN_SUPPORTED_ARCH ${X86} ${X86_64} ${MIPS64} ${ARM64})
else() else()
set(ALL_LSAN_SUPPORTED_ARCH ${X86} ${X86_64} ${MIPS64} ${ARM64} ${ARM32} ${PPC64}) set(ALL_LSAN_SUPPORTED_ARCH ${X86} ${X86_64} ${MIPS64} ${ARM64} ${ARM32} ${PPC64})
endif() endif()
set(ALL_MSAN_SUPPORTED_ARCH ${X86_64} ${MIPS64} ${ARM64} ${PPC64}) set(ALL_MSAN_SUPPORTED_ARCH ${X86_64} ${MIPS64} ${ARM64} ${PPC64})
set(ALL_HWASAN_SUPPORTED_ARCH ${X86_64} ${ARM64}) set(ALL_HWASAN_SUPPORTED_ARCH ${X86_64} ${ARM64})
set(ALL_PROFILE_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM32} ${ARM64} ${PPC64} set(ALL_PROFILE_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM32} ${ARM64} ${PPC64}
▲ Show 20 LinesShow All 427 Lines▼ Show 20 Lines
endif() endif()
# Note: Fuchsia and Windows are not currently supported by GWP-ASan. Support # Note: Fuchsia and Windows are not currently supported by GWP-ASan. Support
# is planned for these platforms. Darwin is also not supported due to TLS # is planned for these platforms. Darwin is also not supported due to TLS
# calling malloc on first use. # calling malloc on first use.
# TODO(hctim): Enable this on Android again. Looks like it's causing a SIGSEGV # TODO(hctim): Enable this on Android again. Looks like it's causing a SIGSEGV
# for Scudo and GWP-ASan, further testing needed. # for Scudo and GWP-ASan, further testing needed.
if (COMPILER_RT_HAS_SANITIZER_COMMON AND GWP_ASAN_SUPPORTED_ARCH AND if (COMPILER_RT_HAS_SANITIZER_COMMON AND GWP_ASAN_SUPPORTED_ARCH AND
OS_NAME MATCHES "Linux") OS_NAME MATCHES "Android|Linux")
set(COMPILER_RT_HAS_GWP_ASAN TRUE) set(COMPILER_RT_HAS_GWP_ASAN TRUE)
else() else()
set(COMPILER_RT_HAS_GWP_ASAN FALSE) set(COMPILER_RT_HAS_GWP_ASAN FALSE)
endif() endif()
pythonize_bool(COMPILER_RT_HAS_GWP_ASAN) pythonize_bool(COMPILER_RT_HAS_GWP_ASAN)

compiler-rt/lib/gwp_asan/CMakeLists.txt

Show All 15 Linesset(GWP_ASAN_HEADERS
options.h options.h
options.inc options.inc
random.h random.h
) )
# Ensure that GWP-ASan meets the delegated requirements of some supporting # Ensure that GWP-ASan meets the delegated requirements of some supporting
# allocators. Some supporting allocators (e.g. scudo standalone) cannot use any # allocators. Some supporting allocators (e.g. scudo standalone) cannot use any
# parts of the C++ standard library. # parts of the C++ standard library.
set(GWP_ASAN_CFLAGS -fno-rtti -fno-exceptions -nostdinc++ -pthread) set(GWP_ASAN_CFLAGS -fno-rtti -fno-exceptions -nostdinc++ -pthread
-fno-emulated-tls)
append_list_if(COMPILER_RT_HAS_FPIC_FLAG -fPIC GWP_ASAN_CFLAGS) append_list_if(COMPILER_RT_HAS_FPIC_FLAG -fPIC GWP_ASAN_CFLAGS)
append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG -fno-omit-frame-pointer append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG -fno-omit-frame-pointer
GWP_ASAN_CFLAGS) GWP_ASAN_CFLAGS)
append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG append_list_if(COMPILER_RT_HAS_OMIT_FRAME_POINTER_FLAG
-mno-omit-leaf-frame-pointer GWP_ASAN_CFLAGS) -mno-omit-leaf-frame-pointer GWP_ASAN_CFLAGS)
# Remove -stdlib= which is unused when passing -nostdinc++. # Remove -stdlib= which is unused when passing -nostdinc++.
string(REGEX REPLACE "-stdlib=[a-zA-Z+]*" "" CMAKE_CXX_FLAGS ${CMAKE_CXX_FLAGS}) string(REGEX REPLACE "-stdlib=[a-zA-Z+]*" "" CMAKE_CXX_FLAGS ${CMAKE_CXX_FLAGS})
▲ Show 20 LinesShow All 73 LinesShow Last 20 Lines

compiler-rt/lib/scudo/CMakeLists.txt

Show All 35 Linesset(SCUDO_MINIMAL_OBJECT_LIBS
RTSanitizerCommonNoTermination RTSanitizerCommonNoTermination
RTSanitizerCommonLibc RTSanitizerCommonLibc
RTInterception) RTInterception)
if (COMPILER_RT_HAS_GWP_ASAN) if (COMPILER_RT_HAS_GWP_ASAN)
# Currently, Scudo uses the GwpAsan flag parser. This backs onto the flag # Currently, Scudo uses the GwpAsan flag parser. This backs onto the flag
# parsing mechanism of sanitizer_common. Once Scudo has its own flag parsing, # parsing mechanism of sanitizer_common. Once Scudo has its own flag parsing,
# and parses GwpAsan options, you can remove this dependency. # and parses GwpAsan options, you can remove this dependency.
list(APPEND SCUDO_MINIMAL_OBJECT_LIBS RTGwpAsan RTGwpAsanOptionsParser list(APPEND SCUDO_MINIMAL_OBJECT_LIBS RTGwpAsan RTGwpAsanOptionsParser)
RTGwpAsanBacktraceLibc)
list(APPEND SCUDO_CFLAGS -DGWP_ASAN_HOOKS) # Install GWP-ASan stubs. Also, ensure that TLS is not emulated on this
# platform (Android still compiles with emulated TLS by default).
list(APPEND SCUDO_CFLAGS -DGWP_ASAN_HOOKS -fno-emulated-tls)
# Android does not have the libc backtrace() support (from execinfo.h). In
# this case, we use the sanitizer common variant.
if (ANDROID)
list(APPEND SCUDO_MINIMAL_OBJECT_LIBS RTGwpAsanBacktraceSanitizerCommon
RTSanitizerCommonSymbolizer)
else()
list(APPEND SCUDO_MINIMAL_OBJECT_LIBS RTGwpAsanBacktraceLibc)
endif()
endif() endif()
set(SCUDO_OBJECT_LIBS ${SCUDO_MINIMAL_OBJECT_LIBS}) set(SCUDO_OBJECT_LIBS ${SCUDO_MINIMAL_OBJECT_LIBS})
set(SCUDO_DYNAMIC_LIBS ${SCUDO_MINIMAL_DYNAMIC_LIBS}) set(SCUDO_DYNAMIC_LIBS ${SCUDO_MINIMAL_DYNAMIC_LIBS})
if (FUCHSIA) if (FUCHSIA)
list(APPEND SCUDO_CFLAGS -nostdinc++) list(APPEND SCUDO_CFLAGS -nostdinc++)
list(APPEND SCUDO_DYNAMIC_LINK_FLAGS -nostdlib++) list(APPEND SCUDO_DYNAMIC_LINK_FLAGS -nostdlib++)
▲ Show 20 LinesShow All 104 LinesShow Last 20 Lines