This is an archive of the discontinued LLVM Phabricator instance.

Differential D75110

Avoid dangling reference when indexing sections
ClosedPublic

Authored by serge-sans-paille on Feb 25 2020, 4:10 AM.

Details

Reviewers
grimar
bkramer
nickdesaulniers
lhames
Commits
rGcb06571a441c: Avoid dangling reference on SectionList
Summary

Bug spotted by https://cookieplmonster.github.io/2020/02/01/emulator-bug-llvm-bug/

The blog post proposes a simple solution (using a std::deque instead of a smallvector to store section entries). They also propose an alternative, namely to avoid taking any section reference at all. This patch enforces the latter using a proxy class. I'm totally fine with the dequeue approach too, and will gladly update the patch if needed.

Diff Detail

Event Timeline

serge-sans-paille created this revision.Feb 25 2020, 4:10 AM
Herald added a project: Restricted Project. · View Herald TranscriptFeb 25 2020, 4:10 AM
Herald added subscribers: llvm-commits, arphaman, atanasyan and 3 others. · View Herald Transcript
Harbormaster failed remote builds in B47199: Diff 246411!Feb 25 2020, 4:33 AM
bkramer added a reviewer: lhames.Feb 25 2020, 4:43 AM
nickdesaulniers added a comment.Feb 25 2020, 10:54 AM

Drive by code review, no comment on the bug or proposed solution.

llvm/lib/ExecutionEngine/RuntimeDyld/RuntimeDyld.cpp
83 ↗(On Diff #246411)

How come SectionEntryProxy is sometimes passed by reference, but other times passed by value to different functions in this CL?

llvm/lib/ExecutionEngine/RuntimeDyld/RuntimeDyldELF.h
105 ↗(On Diff #246411)

Every time I see Sections[] in RuntimeDyldELF.cpp, I think "This should be using getSection()."

llvm/lib/ExecutionEngine/RuntimeDyld/RuntimeDyldMachO.h
134 ↗(On Diff #246411)

If this is the same between MachO and ELF (and I suspect all other derived classes), can it be a method on a shared base class?

llvm/lib/ExecutionEngine/RuntimeDyld/Targets/RuntimeDyldELFMips.cpp
33 ↗(On Diff #246411)

Why not a &? Won't this result in a copy-assignment?

lhames added a comment.Feb 25 2020, 11:19 AM

Thanks very much for this Serge!

Is the std::deque fix a one-liner? This shouldn't be very performance sensitive, so I'd be inclined to go with that.

serge-sans-paille added a comment.Feb 25 2020, 2:45 PM
In D75110#1891890, @lhames wrote:

Thanks very much for this Serge!

Is the std::deque fix a one-liner? This shouldn't be very performance sensitive, so I'd be inclined to go with that.

It is! Compared to this patch, which was a pleasure to write nonetheless, I'd go for the <dequeue> approach ;-)

serge-sans-paille updated this revision to Diff 246631.Feb 25 2020, 11:16 PM

Use the <deque> approach

serge-sans-paille updated this revision to Diff 246632.Feb 25 2020, 11:25 PM

Fix include order

Harbormaster failed remote builds in B47270: Diff 246631!Feb 25 2020, 11:30 PM
Harbormaster failed remote builds in B47271: Diff 246632!Feb 25 2020, 11:39 PM
serge-sans-paille added a comment.Feb 27 2020, 1:07 AM

@lhames is that okay like this?

lhames accepted this revision.Mar 4 2020, 10:17 AM

Looks good to me. Thanks Serge!

This revision is now accepted and ready to land.Mar 4 2020, 10:17 AM
grimar accepted this revision.Mar 4 2020, 11:54 PM

Nasty bug. LGTM too.

llvm/lib/ExecutionEngine/RuntimeDyld/RuntimeDyldImpl.h
257

LLVM code usually uses "std::" prefix before STL containers names and algorithms.
(See std::map below and other variables).

serge-sans-paille added a comment.Mar 5 2020, 12:44 AM

@grimar ok, change added to the commit.

Closed by commit rGcb06571a441c: Avoid dangling reference on SectionList (authored by serge-sans-paille). · Explain WhyMar 5 2020, 1:09 AM
This revision was automatically updated to reflect the committed changes.

Revision Contents

PathSize
llvm/
lib/
ExecutionEngine/
RuntimeDyld/
5 lines

Diff 248406

llvm/lib/ExecutionEngine/RuntimeDyld/RuntimeDyldImpl.h

Show All 20 Lines
#include "llvm/ExecutionEngine/RuntimeDyldChecker.h" #include "llvm/ExecutionEngine/RuntimeDyldChecker.h"
#include "llvm/Object/ObjectFile.h" #include "llvm/Object/ObjectFile.h"
#include "llvm/Support/Debug.h" #include "llvm/Support/Debug.h"
#include "llvm/Support/ErrorHandling.h" #include "llvm/Support/ErrorHandling.h"
#include "llvm/Support/Format.h" #include "llvm/Support/Format.h"
#include "llvm/Support/Host.h" #include "llvm/Support/Host.h"
#include "llvm/Support/Mutex.h" #include "llvm/Support/Mutex.h"
#include "llvm/Support/SwapByteOrder.h" #include "llvm/Support/SwapByteOrder.h"
#include <deque>
#include <map> #include <map>
#include <system_error> #include <system_error>
#include <unordered_map> #include <unordered_map>
using namespace llvm; using namespace llvm;
using namespace llvm::object; using namespace llvm::object;
namespace llvm { namespace llvm {
▲ Show 20 LinesShow All 209 Lines▼ Show 20 Linesprotected:
// The MemoryManager to load objects into. // The MemoryManager to load objects into.
RuntimeDyld::MemoryManager &MemMgr; RuntimeDyld::MemoryManager &MemMgr;
// The symbol resolver to use for external symbols. // The symbol resolver to use for external symbols.
JITSymbolResolver &Resolver; JITSymbolResolver &Resolver;
// A list of all sections emitted by the dynamic linker. These sections are // A list of all sections emitted by the dynamic linker. These sections are
// referenced in the code by means of their index in this list - SectionID. // referenced in the code by means of their index in this list - SectionID.
typedef SmallVector<SectionEntry, 64> SectionList; // Because references may be kept while the list grows, use a container that
// guarantees reference stability.
typedef std::deque<SectionEntry> SectionList;
grimarUnsubmitted
Not Done
ReplyInline Actions

LLVM code usually uses "std::" prefix before STL containers names and algorithms.
(See std::map below and other variables).

grimar: LLVM code usually uses "std::" prefix before STL containers names and algorithms. (See `std…
SectionList Sections; SectionList Sections;
typedef unsigned SID; // Type for SectionIDs typedef unsigned SID; // Type for SectionIDs
#define RTDYLD_INVALID_SECTION_ID ((RuntimeDyldImpl::SID)(-1)) #define RTDYLD_INVALID_SECTION_ID ((RuntimeDyldImpl::SID)(-1))
// Keep a map of sections from object file to the SectionID which // Keep a map of sections from object file to the SectionID which
// references it. // references it.
typedef std::map<SectionRef, unsigned> ObjSectionToIDMap; typedef std::map<SectionRef, unsigned> ObjSectionToIDMap;
▲ Show 20 LinesShow All 324 LinesShow Last 20 Lines