This is an archive of the discontinued LLVM Phabricator instance.

[msan] Intercept __getrlimit.
ClosedPublic

Authored by eugenis on Sep 27 2019, 4:15 PM.

Download Raw Diff

Details

Reviewers

vitalybuka
pcc

Commits

rG72131161a419: [msan] Intercept __getrlimit.
rCRT373239: [msan] Intercept __getrlimit.
rL373239: [msan] Intercept __getrlimit.

Summary

This interceptor is useful on its own, but the main purpose of this
change is to intercept libpthread initialization on linux/glibc in
order to run __msan_init before any .preinit_array constructors.

We used to trigger on pthread_initialize_minimal -> getrlimit(), but
that call has changed to __getrlimit at some point.

Diff Detail

Repository: rL LLVM

Event Timeline

eugenis created this revision.Sep 27 2019, 4:15 PM

Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptSep 27 2019, 4:15 PM

Herald added subscribers: Restricted Project, jfb. · View Herald Transcript

Harbormaster completed remote builds in B38694: Diff 222263.Sep 27 2019, 4:15 PM

vitalybuka added inline comments.Sep 27 2019, 7:30 PM

compiler-rt/lib/msan/msan_interceptors.cpp
770 ↗	(On Diff #222263)	why not sanitizer_common? looks like races and use-after free are possible here

Oh, because other are already there.
Consider to move them into common in a separate patch.

This revision is now accepted and ready to land.Sep 27 2019, 7:32 PM

Closed by commit rL373239: [msan] Intercept __getrlimit. (authored by eugenis). · Explain WhySep 30 2019, 10:48 AM

This revision was automatically updated to reflect the committed changes.

Herald added a subscriber: delcypher. · View Herald TranscriptSep 30 2019, 10:48 AM

Revision Contents

Path

Size

compiler-rt/

trunk/

lib/

msan/

msan_interceptors.cpp

24 lines

test/

msan/

preinit_array.cpp

16 lines

Diff 222460

compiler-rt/trunk/lib/msan/msan_interceptors.cpp

Show First 20 Lines • Show All 759 Lines • ▼ Show 20 Lines	if (res)
__msan_unpoison(s, REAL(strlen)(s) + 1);		__msan_unpoison(s, REAL(strlen)(s) + 1);
return res;		return res;
}		}
#define MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED INTERCEPT_FUNCTION(fgets_unlocked)		#define MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED INTERCEPT_FUNCTION(fgets_unlocked)
#else		#else
#define MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED		#define MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED
#endif		#endif

		#define INTERCEPTOR_GETRLIMIT_BODY(func, resource, rlim) \
		if (msan_init_is_running) \
		return REAL(getrlimit)(resource, rlim); \
		ENSURE_MSAN_INITED(); \
		int res = REAL(func)(resource, rlim); \
		if (!res) \
		__msan_unpoison(rlim, __sanitizer::struct_rlimit_sz); \
		return res

INTERCEPTOR(int, getrlimit, int resource, void *rlim) {		INTERCEPTOR(int, getrlimit, int resource, void *rlim) {
if (msan_init_is_running)		INTERCEPTOR_GETRLIMIT_BODY(getrlimit, resource, rlim);
return REAL(getrlimit)(resource, rlim);
ENSURE_MSAN_INITED();
int res = REAL(getrlimit)(resource, rlim);
if (!res)
__msan_unpoison(rlim, __sanitizer::struct_rlimit_sz);
return res;
}		}

#if !SANITIZER_FREEBSD && !SANITIZER_NETBSD		#if !SANITIZER_FREEBSD && !SANITIZER_NETBSD
		INTERCEPTOR(int, __getrlimit, int resource, void *rlim) {
		INTERCEPTOR_GETRLIMIT_BODY(__getrlimit, resource, rlim);
		}

INTERCEPTOR(int, getrlimit64, int resource, void *rlim) {		INTERCEPTOR(int, getrlimit64, int resource, void *rlim) {
if (msan_init_is_running) return REAL(getrlimit64)(resource, rlim);		if (msan_init_is_running) return REAL(getrlimit64)(resource, rlim);
ENSURE_MSAN_INITED();		ENSURE_MSAN_INITED();
int res = REAL(getrlimit64)(resource, rlim);		int res = REAL(getrlimit64)(resource, rlim);
if (!res) __msan_unpoison(rlim, __sanitizer::struct_rlimit64_sz);		if (!res) __msan_unpoison(rlim, __sanitizer::struct_rlimit64_sz);
return res;		return res;
}		}

Show All 14 Lines	if (msan_init_is_running)
return REAL(prlimit64)(pid, resource, new_rlimit, old_rlimit);		return REAL(prlimit64)(pid, resource, new_rlimit, old_rlimit);
ENSURE_MSAN_INITED();		ENSURE_MSAN_INITED();
CHECK_UNPOISONED(new_rlimit, __sanitizer::struct_rlimit64_sz);		CHECK_UNPOISONED(new_rlimit, __sanitizer::struct_rlimit64_sz);
int res = REAL(prlimit64)(pid, resource, new_rlimit, old_rlimit);		int res = REAL(prlimit64)(pid, resource, new_rlimit, old_rlimit);
if (!res) __msan_unpoison(old_rlimit, __sanitizer::struct_rlimit64_sz);		if (!res) __msan_unpoison(old_rlimit, __sanitizer::struct_rlimit64_sz);
return res;		return res;
}		}

		#define MSAN_MAYBE_INTERCEPT___GETRLIMIT INTERCEPT_FUNCTION(__getrlimit)
#define MSAN_MAYBE_INTERCEPT_GETRLIMIT64 INTERCEPT_FUNCTION(getrlimit64)		#define MSAN_MAYBE_INTERCEPT_GETRLIMIT64 INTERCEPT_FUNCTION(getrlimit64)
#define MSAN_MAYBE_INTERCEPT_PRLIMIT INTERCEPT_FUNCTION(prlimit)		#define MSAN_MAYBE_INTERCEPT_PRLIMIT INTERCEPT_FUNCTION(prlimit)
#define MSAN_MAYBE_INTERCEPT_PRLIMIT64 INTERCEPT_FUNCTION(prlimit64)		#define MSAN_MAYBE_INTERCEPT_PRLIMIT64 INTERCEPT_FUNCTION(prlimit64)
#else		#else
		#define MSAN_MAYBE_INTERCEPT___GETRLIMIT
#define MSAN_MAYBE_INTERCEPT_GETRLIMIT64		#define MSAN_MAYBE_INTERCEPT_GETRLIMIT64
#define MSAN_MAYBE_INTERCEPT_PRLIMIT		#define MSAN_MAYBE_INTERCEPT_PRLIMIT
#define MSAN_MAYBE_INTERCEPT_PRLIMIT64		#define MSAN_MAYBE_INTERCEPT_PRLIMIT64
#endif		#endif

#if SANITIZER_FREEBSD		#if SANITIZER_FREEBSD
// FreeBSD's <sys/utsname.h> define uname() as		// FreeBSD's <sys/utsname.h> define uname() as
// static __inline int uname(struct utsname *name) {		// static __inline int uname(struct utsname *name) {
▲ Show 20 Lines • Show All 852 Lines • ▼ Show 20 Lines	#endif
MSAN_INTERCEPT_FSTATAT;		MSAN_INTERCEPT_FSTATAT;
MSAN_MAYBE_INTERCEPT___FXSTAT64;		MSAN_MAYBE_INTERCEPT___FXSTAT64;
MSAN_MAYBE_INTERCEPT___FXSTATAT64;		MSAN_MAYBE_INTERCEPT___FXSTATAT64;
INTERCEPT_FUNCTION(pipe);		INTERCEPT_FUNCTION(pipe);
INTERCEPT_FUNCTION(pipe2);		INTERCEPT_FUNCTION(pipe2);
INTERCEPT_FUNCTION(socketpair);		INTERCEPT_FUNCTION(socketpair);
MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED;		MSAN_MAYBE_INTERCEPT_FGETS_UNLOCKED;
INTERCEPT_FUNCTION(getrlimit);		INTERCEPT_FUNCTION(getrlimit);
		MSAN_MAYBE_INTERCEPT___GETRLIMIT;
MSAN_MAYBE_INTERCEPT_GETRLIMIT64;		MSAN_MAYBE_INTERCEPT_GETRLIMIT64;
MSAN_MAYBE_INTERCEPT_PRLIMIT;		MSAN_MAYBE_INTERCEPT_PRLIMIT;
MSAN_MAYBE_INTERCEPT_PRLIMIT64;		MSAN_MAYBE_INTERCEPT_PRLIMIT64;
MSAN_INTERCEPT_UNAME;		MSAN_INTERCEPT_UNAME;
INTERCEPT_FUNCTION(gethostname);		INTERCEPT_FUNCTION(gethostname);
MSAN_MAYBE_INTERCEPT_EPOLL_WAIT;		MSAN_MAYBE_INTERCEPT_EPOLL_WAIT;
MSAN_MAYBE_INTERCEPT_EPOLL_PWAIT;		MSAN_MAYBE_INTERCEPT_EPOLL_PWAIT;
INTERCEPT_FUNCTION(dladdr);		INTERCEPT_FUNCTION(dladdr);
Show All 26 Lines

compiler-rt/trunk/test/msan/preinit_array.cpp

				// RUN: %clangxx_msan -O0 %s -o %t && %run %t

				#include <sanitizer/msan_interface.h>

				volatile int global;
				static void pre_ctor() {
				volatile int local;
				global = 42;
				local = 42;
				}

				__attribute__((section(".preinit_array"), used)) void(*__local_pre_ctor)(void) = pre_ctor;

				int main(void) {
				return 0;
				}