This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
compiler-rt/lib/sanitizer_common/
-
lib/
-
sanitizer_common/
-
sanitizer_symbolizer_mac.cpp

Differential D78525

Unbreak ASan runtime in the simulators.
ClosedPublic

Authored by delcypher on Apr 20 2020, 5:32 PM.

Download Raw Diff

Details

Reviewers

kubamracek
yln

Commits

rGe8a928d0b547: Unbreak ASan runtime in the simulators.
rG7039773b240b: Unbreak ASan runtime in the simulators.

Summary

861b69faee5df8d4e13ef316c7474a10e4069e81 (rdar://problem/58789439) while
fixing symbolization for TSan completely broke ASan's runtime for the
simulators.

The problem with the previous patch is that the memory passed to
putenv() was poisoned and when passed to putenv() it tripped
an interceptor for strchr() which saw the memory was poisoned and
raised an ASan issue.

The memory was poisoned because AtosSymbolizerProcess objects
are created using ASan's internal allocator. Memory from this
allocator gets poisoned with kAsanInternalHeapMagic.

To workaround this, this patch makes the memory for the environment
variable entry a global variable that isn't poisoned.

This pass also adds a DCHECK(getenv(K_ATOS_ENV_VAR)) because the
following DCHECK would crash because internal_strcmp() doesn't
work on nullptr.

rdar://problem/62067724

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

delcypher created this revision.Apr 20 2020, 5:32 PM

Herald added a project: Restricted Project. · View Herald TranscriptApr 20 2020, 5:33 PM

Herald added a subscriber: Restricted Project. · View Herald Transcript

Harbormaster completed remote builds in B54025: Diff 258874.Apr 20 2020, 5:55 PM

kubamracek accepted this revision.Apr 20 2020, 6:05 PM

This revision is now accepted and ready to land.Apr 20 2020, 6:05 PM

yln accepted this revision.Apr 20 2020, 6:19 PM

Closed by commit rG7039773b240b: Unbreak ASan runtime in the simulators. (authored by delcypher). · Explain WhyApr 20 2020, 7:32 PM

This revision was automatically updated to reflect the committed changes.

yln mentioned this in D115767: [Darwin] Remove workaround for symbolication in iOS simulator runtimes.Dec 14 2021, 4:40 PM

yln mentioned this in rGa7cbe198cea4: [Darwin] Remove workaround for symbolication in iOS simulator runtimes.Dec 15 2021, 5:23 PM

Revision Contents

Path

Size

compiler-rt/

lib/

sanitizer_common/

sanitizer_symbolizer_mac.cpp

19 lines

Diff 258887

compiler-rt/lib/sanitizer_common/sanitizer_symbolizer_mac.cpp

Show First 20 Lines • Show All 47 Lines • ▼ Show 20 Lines	bool DlAddrSymbolizer::SymbolizeData(uptr addr, DataInfo *datainfo) {
const char *demangled = DemangleSwiftAndCXX(info.dli_sname);		const char *demangled = DemangleSwiftAndCXX(info.dli_sname);
datainfo->name = internal_strdup(demangled);		datainfo->name = internal_strdup(demangled);
datainfo->start = (uptr)info.dli_saddr;		datainfo->start = (uptr)info.dli_saddr;
return true;		return true;
}		}

#define K_ATOS_ENV_VAR "__check_mach_ports_lookup"		#define K_ATOS_ENV_VAR "__check_mach_ports_lookup"

		// This cannot live in `AtosSymbolizerProcess` because instances of that object
		// are allocated by the internal allocator which under ASan is poisoned with
		// kAsanInternalHeapMagic.
		static char kAtosMachPortEnvEntry[] = K_ATOS_ENV_VAR "=000000000000000";

class AtosSymbolizerProcess : public SymbolizerProcess {		class AtosSymbolizerProcess : public SymbolizerProcess {
public:		public:
explicit AtosSymbolizerProcess(const char *path)		explicit AtosSymbolizerProcess(const char *path)
: SymbolizerProcess(path, /use_posix_spawn/ true) {		: SymbolizerProcess(path, /use_posix_spawn/ true) {
pid_str_[0] = '\0';		pid_str_[0] = '\0';
}		}

void LateInitialize() {		void LateInitialize() {
if (SANITIZER_IOSSIM) {		if (SANITIZER_IOSSIM) {
// `putenv()` may call malloc/realloc so it is only safe to do this		// `putenv()` may call malloc/realloc so it is only safe to do this
// during LateInitialize() or later (i.e. we can't do this in the		// during LateInitialize() or later (i.e. we can't do this in the
// constructor). We also can't do this in `StartSymbolizerSubprocess()`		// constructor). We also can't do this in `StartSymbolizerSubprocess()`
// because in TSan we switch allocators when we're symbolizing.		// because in TSan we switch allocators when we're symbolizing.
// We use `putenv()` rather than `setenv()` so that we can later directly		// We use `putenv()` rather than `setenv()` so that we can later directly
// write into the storage without LibC getting involved to change what the		// write into the storage without LibC getting involved to change what the
// variable is set to		// variable is set to
int result = putenv(mach_port_env_var_entry_);		int result = putenv(kAtosMachPortEnvEntry);
CHECK_EQ(result, 0);		CHECK_EQ(result, 0);
}		}
}		}

private:		private:
bool StartSymbolizerSubprocess() override {		bool StartSymbolizerSubprocess() override {
// Configure sandbox before starting atos process.		// Configure sandbox before starting atos process.

Show All 9 Lines	if (SANITIZER_IOSSIM) {
kern_return_t ret =		kern_return_t ret =
mach_ports_register(mach_task_self(), ports, /count=/1);		mach_ports_register(mach_task_self(), ports, /count=/1);
CHECK_EQ(ret, KERN_SUCCESS);		CHECK_EQ(ret, KERN_SUCCESS);

// Set environment variable that signals to `atos` that it should look		// Set environment variable that signals to `atos` that it should look
// for our task port. We can't call `setenv()` here because it might call		// for our task port. We can't call `setenv()` here because it might call
// malloc/realloc. To avoid that we instead update the		// malloc/realloc. To avoid that we instead update the
// `mach_port_env_var_entry_` variable with our current PID.		// `mach_port_env_var_entry_` variable with our current PID.
uptr count = internal_snprintf(mach_port_env_var_entry_,		uptr count = internal_snprintf(kAtosMachPortEnvEntry,
sizeof(mach_port_env_var_entry_),		sizeof(kAtosMachPortEnvEntry),
K_ATOS_ENV_VAR "=%s", pid_str_);		K_ATOS_ENV_VAR "=%s", pid_str_);
CHECK_GE(count, sizeof(K_ATOS_ENV_VAR) + internal_strlen(pid_str_));		CHECK_GE(count, sizeof(K_ATOS_ENV_VAR) + internal_strlen(pid_str_));
// Document our assumption but without calling `getenv()` in normal		// Document our assumption but without calling `getenv()` in normal
// builds.		// builds.
		DCHECK(getenv(K_ATOS_ENV_VAR));
DCHECK_EQ(internal_strcmp(getenv(K_ATOS_ENV_VAR), pid_str_), 0);		DCHECK_EQ(internal_strcmp(getenv(K_ATOS_ENV_VAR), pid_str_), 0);
}		}

return SymbolizerProcess::StartSymbolizerSubprocess();		return SymbolizerProcess::StartSymbolizerSubprocess();
}		}

bool ReachedEndOfOutput(const char *buffer, uptr length) const override {		bool ReachedEndOfOutput(const char *buffer, uptr length) const override {
return (length >= 1 && buffer[length - 1] == '\n');		return (length >= 1 && buffer[length - 1] == '\n');
Show All 10 Lines	if (GetMacosVersion() == MACOS_VERSION_MAVERICKS) {
// passing -d. The warning isn't present on other OSX versions, even the		// passing -d. The warning isn't present on other OSX versions, even the
// newer ones.		// newer ones.
argv[i++] = "-d";		argv[i++] = "-d";
}		}
argv[i++] = nullptr;		argv[i++] = nullptr;
}		}

char pid_str_[16];		char pid_str_[16];
// Space for `\0` in `kAtosEnvVar_` is reused for `=`.		// Space for `\0` in `K_ATOS_ENV_VAR` is reused for `=`.
char mach_port_env_var_entry_[sizeof(K_ATOS_ENV_VAR) + sizeof(pid_str_)] =		static_assert(sizeof(kAtosMachPortEnvEntry) ==
K_ATOS_ENV_VAR "=0";		(sizeof(K_ATOS_ENV_VAR) + sizeof(pid_str_)),
		"sizes should match");
};		};

#undef K_ATOS_ENV_VAR		#undef K_ATOS_ENV_VAR

static bool ParseCommandOutput(const char str, uptr addr, char *out_name,		static bool ParseCommandOutput(const char str, uptr addr, char *out_name,
char out_module, char out_file, uptr *line,		char out_module, char out_file, uptr *line,
uptr *start_address) {		uptr *start_address) {
// Trim ending newlines.		// Trim ending newlines.
▲ Show 20 Lines • Show All 102 Lines • Show Last 20 Lines