This is an archive of the discontinued LLVM Phabricator instance.

Differential D81346

[KernelAddressSanitizer] Ensure global array size remains multiple of type-size
AbandonedPublic

Authored by melver on Jun 7 2020, 10:11 AM.

Details

Reviewers
nathanchance
glider
andreyknvl
aaron.ballman
Summary

The kernel expects certain global arrays' size to remain a multiple of
the array type. In particular, for kernel modules some arrays of structs
shared with userspace are sanity-checked by modpost to have a size that
is a multiple of that type:

https://elixir.bootlin.com/linux/latest/source/scripts/mod/file2alias.c#L132

Since the AddressSanitizer takes a global and replaces it with a new one
that has the redzone appended to it, any information about the global as
well as the section size is increased. Therefore, to ensure we retain
the array-size-property required for globals, calculate the redzone size
to be a multiple of the original global's size.

To improve readability, the existing redzone size calculation is
refactored into its own function; no other functional change intended.

Report: https://github.com/ClangBuiltLinux/linux/issues/1045

Diff Detail

Event Timeline

melver created this revision.Jun 7 2020, 10:11 AM
Herald added a reviewer: aaron.ballman. · View Herald TranscriptJun 7 2020, 10:11 AM
Herald added projects: Restricted Project, Restricted Project. · View Herald Transcript
Herald added subscribers: llvm-commits, cfe-commits, hiraditya. · View Herald Transcript
Harbormaster failed remote builds in B59398: Diff 269065!Jun 7 2020, 11:42 AM
nickdesaulniers added a subscriber: nickdesaulniers.Jun 7 2020, 1:24 PM
melver updated this revision to Diff 269078.Jun 7 2020, 2:59 PM

Add 0-size array to test to check redzone calculation does not divide by 0.

Harbormaster failed remote builds in B59408: Diff 269078!Jun 7 2020, 3:59 PM
melver abandoned this revision.Jun 8 2020, 1:37 AM

With an allmodconfig, mostpost still isn't happy because it expects the device_id info to be a certain size. Revert everything while we figure out how to make modpost happy.

melver added a comment.Jul 31 2020, 9:04 AM

Note: We landed globals support for KASAN with https://reviews.llvm.org/rGd3f89314ff20ce1612bd5e09f9f90ff5dd5205a7

Revision Contents

PathSize
clang/
test/
CodeGen/
23 lines
llvm/
lib/
Transforms/
Instrumentation/
53 lines

Diff 269078

clang/test/CodeGen/asan-globals.cpp

// RUN: echo "int extra_global;" > %t.extra-source.cpp // RUN: echo "int extra_global;" > %t.extra-source.cpp
// RUN: echo "global:*blacklisted_global*" > %t.blacklist // RUN: echo "global:*blacklisted_global*" > %t.blacklist
// RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=address -fsanitize-blacklist=%t.blacklist -emit-llvm -o - %s | FileCheck %s --check-prefixes=CHECK,ASAN // RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=address -fsanitize-blacklist=%t.blacklist -emit-llvm -o - %s | FileCheck %s --check-prefixes=CHECK,ASAN
// RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=kernel-address -fsanitize-blacklist=%t.blacklist -emit-llvm -o - %s | FileCheck %s --check-prefixes=CHECK,KASAN // RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=kernel-address -fsanitize-blacklist=%t.blacklist -emit-llvm -o - %s | FileCheck %s --check-prefixes=CHECK,KASAN
// The blacklist file uses regexps, so Windows path backslashes. // The blacklist file uses regexps, so Windows path backslashes.
// RUN: echo "src:%s" | sed -e 's/\\/\\\\/g' > %t.blacklist-src // RUN: echo "src:%s" | sed -e 's/\\/\\\\/g' > %t.blacklist-src
// RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=address -fsanitize-blacklist=%t.blacklist-src -emit-llvm -o - %s | FileCheck %s --check-prefix=BLACKLIST-SRC // RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=address -fsanitize-blacklist=%t.blacklist-src -emit-llvm -o - %s | FileCheck %s --check-prefix=BLACKLIST-SRC
// RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=kernel-address -fsanitize-blacklist=%t.blacklist-src -emit-llvm -o - %s | FileCheck %s --check-prefix=BLACKLIST-SRC // RUN: %clang_cc1 -include %t.extra-source.cpp -fsanitize=kernel-address -fsanitize-blacklist=%t.blacklist-src -emit-llvm -o - %s | FileCheck %s --check-prefix=BLACKLIST-SRC
int global; int global;
int dyn_init_global = global; int dyn_init_global = global;
int __attribute__((no_sanitize("address"))) attributed_global; int __attribute__((no_sanitize("address"))) attributed_global;
int blacklisted_global; int blacklisted_global;
int __attribute__ ((section("__DATA, __common"))) sectioned_global; int __attribute__ ((section("__DATA, __common"))) sectioned_global;
char large_array[100];
char zero_size[0]; // Ensure the redzone size calculation can deal with size==0.
void func() { void func() {
static int static_var = 0; static int static_var = 0;
const char *literal = "Hello, world!"; const char *literal = "Hello, world!";
} }
// ASAN-CHECK: @large_array = global { [100 x i8], [60 x i8] }
// KASAN-CHECK: @large_array = global { [100 x i8], [100 x i8] }
// CHECK-LABEL: define internal void @asan.module_ctor // CHECK-LABEL: define internal void @asan.module_ctor
// ASAN-NEXT: call void @__asan_init // ASAN-NEXT: call void @__asan_init
// ASAN-NEXT: call void @__asan_version_mismatch_check // ASAN-NEXT: call void @__asan_version_mismatch_check
// KASAN-NOT: call void @__asan_init // KASAN-NOT: call void @__asan_init
// KASAN-NOT: call void @__asan_version_mismatch_check // KASAN-NOT: call void @__asan_version_mismatch_check
// ASAN-NEXT: call void @__asan_register_globals({{.*}}, i{{32|64}} 6) // ASAN-NEXT: call void @__asan_register_globals({{.*}}, i{{32|64}} 8)
// KASAN-NEXT: call void @__asan_register_globals({{.*}}, i{{32|64}} 5) // KASAN-NEXT: call void @__asan_register_globals({{.*}}, i{{32|64}} 7)
// CHECK-NEXT: ret void // CHECK-NEXT: ret void
// CHECK-LABEL: define internal void @asan.module_dtor // CHECK-LABEL: define internal void @asan.module_dtor
// CHECK-NEXT: call void @__asan_unregister_globals // CHECK-NEXT: call void @__asan_unregister_globals
// CHECK-NEXT: ret void // CHECK-NEXT: ret void
// CHECK: !llvm.asan.globals = !{![[EXTRA_GLOBAL:[0-9]+]], ![[GLOBAL:[0-9]+]], ![[DYN_INIT_GLOBAL:[0-9]+]], ![[ATTR_GLOBAL:[0-9]+]], ![[BLACKLISTED_GLOBAL:[0-9]+]], ![[SECTIONED_GLOBAL:[0-9]+]], ![[STATIC_VAR:[0-9]+]], ![[LITERAL:[0-9]+]]} // CHECK: !llvm.asan.globals = !{![[EXTRA_GLOBAL:[0-9]+]], ![[GLOBAL:[0-9]+]], ![[DYN_INIT_GLOBAL:[0-9]+]], ![[ATTR_GLOBAL:[0-9]+]], ![[BLACKLISTED_GLOBAL:[0-9]+]], ![[SECTIONED_GLOBAL:[0-9]+]], ![[LARGE_ARRAY:[0-9]+]], ![[ZERO_SIZE:[0-9]+]], ![[STATIC_VAR:[0-9]+]], ![[LITERAL:[0-9]+]]}
// CHECK: ![[EXTRA_GLOBAL]] = !{{{.*}} ![[EXTRA_GLOBAL_LOC:[0-9]+]], !"extra_global", i1 false, i1 false} // CHECK: ![[EXTRA_GLOBAL]] = !{{{.*}} ![[EXTRA_GLOBAL_LOC:[0-9]+]], !"extra_global", i1 false, i1 false}
// CHECK: ![[EXTRA_GLOBAL_LOC]] = !{!"{{.*}}extra-source.cpp", i32 1, i32 5} // CHECK: ![[EXTRA_GLOBAL_LOC]] = !{!"{{.*}}extra-source.cpp", i32 1, i32 5}
// CHECK: ![[GLOBAL]] = !{{{.*}} ![[GLOBAL_LOC:[0-9]+]], !"global", i1 false, i1 false} // CHECK: ![[GLOBAL]] = !{{{.*}} ![[GLOBAL_LOC:[0-9]+]], !"global", i1 false, i1 false}
// CHECK: ![[GLOBAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 10, i32 5} // CHECK: ![[GLOBAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 10, i32 5}
// CHECK: ![[DYN_INIT_GLOBAL]] = !{{{.*}} ![[DYN_INIT_LOC:[0-9]+]], !"dyn_init_global", i1 true, i1 false} // CHECK: ![[DYN_INIT_GLOBAL]] = !{{{.*}} ![[DYN_INIT_LOC:[0-9]+]], !"dyn_init_global", i1 true, i1 false}
// CHECK: ![[DYN_INIT_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 11, i32 5} // CHECK: ![[DYN_INIT_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 11, i32 5}
// CHECK: ![[ATTR_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true} // CHECK: ![[ATTR_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true}
// CHECK: ![[BLACKLISTED_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true} // CHECK: ![[BLACKLISTED_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true}
// CHECK: ![[SECTIONED_GLOBAL]] = !{{{.*}} ![[SECTIONED_GLOBAL_LOC:[0-9]+]], !"sectioned_global", i1 false, i1 false} // CHECK: ![[SECTIONED_GLOBAL]] = !{{{.*}} ![[SECTIONED_GLOBAL_LOC:[0-9]+]], !"sectioned_global", i1 false, i1 false}
// CHECK: ![[SECTIONED_GLOBAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 14, i32 51} // CHECK: ![[SECTIONED_GLOBAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 14, i32 51}
// CHECK: ![[LARGE_ARRAY]] = !{{{.*}} ![[LARGE_ARRAY_LOC:[0-9]+]], !"large_array", i1 false, i1 false}
// CHECK: ![[LARGE_ARRAY_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 15, i32 6}
// CHECK: ![[ZERO_SIZE]] = !{{{.*}} ![[ZERO_SIZE_LOC:[0-9]+]], !"zero_size", i1 false, i1 false}
// CHECK: ![[ZERO_SIZE_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 16, i32 6}
// CHECK: ![[STATIC_VAR]] = !{{{.*}} ![[STATIC_LOC:[0-9]+]], !"static_var", i1 false, i1 false} // CHECK: ![[STATIC_VAR]] = !{{{.*}} ![[STATIC_LOC:[0-9]+]], !"static_var", i1 false, i1 false}
// CHECK: ![[STATIC_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 17, i32 14} // CHECK: ![[STATIC_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 19, i32 14}
// CHECK: ![[LITERAL]] = !{{{.*}} ![[LITERAL_LOC:[0-9]+]], !"<string literal>", i1 false, i1 false} // CHECK: ![[LITERAL]] = !{{{.*}} ![[LITERAL_LOC:[0-9]+]], !"<string literal>", i1 false, i1 false}
// CHECK: ![[LITERAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 18, i32 25} // CHECK: ![[LITERAL_LOC]] = !{!"{{.*}}asan-globals.cpp", i32 20, i32 25}
// BLACKLIST-SRC: !llvm.asan.globals = !{![[EXTRA_GLOBAL:[0-9]+]], ![[GLOBAL:[0-9]+]], ![[DYN_INIT_GLOBAL:[0-9]+]], ![[ATTR_GLOBAL:[0-9]+]], ![[BLACKLISTED_GLOBAL:[0-9]+]], ![[SECTIONED_GLOBAL:[0-9]+]], ![[STATIC_VAR:[0-9]+]], ![[LITERAL:[0-9]+]]} // BLACKLIST-SRC: !llvm.asan.globals = !{![[EXTRA_GLOBAL:[0-9]+]], ![[GLOBAL:[0-9]+]], ![[DYN_INIT_GLOBAL:[0-9]+]], ![[ATTR_GLOBAL:[0-9]+]], ![[BLACKLISTED_GLOBAL:[0-9]+]], ![[SECTIONED_GLOBAL:[0-9]+]], ![[LARGE_ARRAY:[0-9]+]], ![[ZERO_SIZE:[0-9]+]], ![[STATIC_VAR:[0-9]+]], ![[LITERAL:[0-9]+]]}
// BLACKLIST-SRC: ![[EXTRA_GLOBAL]] = !{{{.*}} ![[EXTRA_GLOBAL_LOC:[0-9]+]], !"extra_global", i1 false, i1 false} // BLACKLIST-SRC: ![[EXTRA_GLOBAL]] = !{{{.*}} ![[EXTRA_GLOBAL_LOC:[0-9]+]], !"extra_global", i1 false, i1 false}
// BLACKLIST-SRC: ![[EXTRA_GLOBAL_LOC]] = !{!"{{.*}}extra-source.cpp", i32 1, i32 5} // BLACKLIST-SRC: ![[EXTRA_GLOBAL_LOC]] = !{!"{{.*}}extra-source.cpp", i32 1, i32 5}
// BLACKLIST-SRC: ![[GLOBAL]] = !{{{.*}} null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[GLOBAL]] = !{{{.*}} null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[DYN_INIT_GLOBAL]] = !{{{.*}} null, null, i1 true, i1 true} // BLACKLIST-SRC: ![[DYN_INIT_GLOBAL]] = !{{{.*}} null, null, i1 true, i1 true}
// BLACKLIST-SRC: ![[ATTR_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[ATTR_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[BLACKLISTED_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[BLACKLISTED_GLOBAL]] = !{{{.*}}, null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[SECTIONED_GLOBAL]] = !{{{.*}} null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[SECTIONED_GLOBAL]] = !{{{.*}} null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[LARGE_ARRAY]] = !{{{.*}} null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[ZERO_SIZE]] = !{{{.*}} null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[STATIC_VAR]] = !{{{.*}} null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[STATIC_VAR]] = !{{{.*}} null, null, i1 false, i1 true}
// BLACKLIST-SRC: ![[LITERAL]] = !{{{.*}} null, null, i1 false, i1 true} // BLACKLIST-SRC: ![[LITERAL]] = !{{{.*}} null, null, i1 false, i1 true}

llvm/lib/Transforms/Instrumentation/AddressSanitizer.cpp

//===- AddressSanitizer.cpp - memory error detector -----------------------===// //===- AddressSanitizer.cpp - memory error detector -----------------------===//
Lint: Lint
Inline Actions

clang-format suggested style edits found:

Lint: Lint: clang-format suggested style edits found:
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file is a part of AddressSanitizer, an address sanity checker. // This file is a part of AddressSanitizer, an address sanity checker.
▲ Show 20 LinesShow All 781 Lines▼ Show 20 Lines void SetComdatForGlobalMetadata(GlobalVariable *G, GlobalVariable *Metadata,
StringRef InternalSuffix); StringRef InternalSuffix);
Instruction *CreateAsanModuleDtor(Module &M); Instruction *CreateAsanModuleDtor(Module &M);
bool ShouldInstrumentGlobal(GlobalVariable *G); bool ShouldInstrumentGlobal(GlobalVariable *G);
bool ShouldUseMachOGlobalsSection() const; bool ShouldUseMachOGlobalsSection() const;
StringRef getGlobalMetadataSection() const; StringRef getGlobalMetadataSection() const;
void poisonOneInitializer(Function &GlobalInit, GlobalValue *ModuleName); void poisonOneInitializer(Function &GlobalInit, GlobalValue *ModuleName);
void createInitializerPoisonCalls(Module &M, GlobalValue *ModuleName); void createInitializerPoisonCalls(Module &M, GlobalValue *ModuleName);
size_t MinRedzoneSizeForGlobal() const { uint64_t getMinRedzoneSizeForGlobal() const {
return RedzoneSizeForScale(Mapping.Scale); return RedzoneSizeForScale(Mapping.Scale);
} }
uint64_t getRedzoneSizeForGlobal(uint64_t SizeInBytes) const;
int GetAsanVersion(const Module &M) const; int GetAsanVersion(const Module &M) const;
const GlobalsMetadata &GlobalsMD; const GlobalsMetadata &GlobalsMD;
bool CompileKernel; bool CompileKernel;
bool Recover; bool Recover;
bool UseGlobalsGC; bool UseGlobalsGC;
bool UsePrivateAlias; bool UsePrivateAlias;
bool UseOdrIndicator; bool UseOdrIndicator;
▲ Show 20 LinesShow All 992 Lines▼ Show 20 Linesbool ModuleAddressSanitizer::ShouldInstrumentGlobal(GlobalVariable *G) {
// Only instrument globals of default address spaces // Only instrument globals of default address spaces
if (G->getAddressSpace()) return false; if (G->getAddressSpace()) return false;
if (GlobalWasGeneratedByCompiler(G)) return false; // Our own globals. if (GlobalWasGeneratedByCompiler(G)) return false; // Our own globals.
// Two problems with thread-locals: // Two problems with thread-locals:
// - The address of the main thread's copy can't be computed at link-time. // - The address of the main thread's copy can't be computed at link-time.
// - Need to poison all copies, not just the main thread's one. // - Need to poison all copies, not just the main thread's one.
if (G->isThreadLocal()) return false; if (G->isThreadLocal()) return false;
// For now, just ignore this Global if the alignment is large. // For now, just ignore this Global if the alignment is large.
if (G->getAlignment() > MinRedzoneSizeForGlobal()) return false; if (G->getAlignment() > getMinRedzoneSizeForGlobal()) return false;
// For non-COFF targets, only instrument globals known to be defined by this // For non-COFF targets, only instrument globals known to be defined by this
// TU. // TU.
// FIXME: We can instrument comdat globals on ELF if we are using the // FIXME: We can instrument comdat globals on ELF if we are using the
// GC-friendly metadata scheme. // GC-friendly metadata scheme.
if (!TargetTriple.isOSBinFormatCOFF()) { if (!TargetTriple.isOSBinFormatCOFF()) {
if (!G->hasExactDefinition() || G->hasComdat()) if (!G->hasExactDefinition() || G->hasComdat())
return false; return false;
▲ Show 20 LinesShow All 452 Lines▼ Show 20 Linesbool ModuleAddressSanitizer::InstrumentGlobals(IRBuilder<> &IRB, Module &M,
bool HasDynamicallyInitializedGlobals = false; bool HasDynamicallyInitializedGlobals = false;
// We shouldn't merge same module names, as this string serves as unique // We shouldn't merge same module names, as this string serves as unique
// module ID in runtime. // module ID in runtime.
GlobalVariable *ModuleName = createPrivateGlobalForString( GlobalVariable *ModuleName = createPrivateGlobalForString(
M, M.getModuleIdentifier(), /*AllowMerging*/ false, kAsanGenPrefix); M, M.getModuleIdentifier(), /*AllowMerging*/ false, kAsanGenPrefix);
for (size_t i = 0; i < n; i++) { for (size_t i = 0; i < n; i++) {
static const uint64_t kMaxGlobalRedzone = 1 << 18;
GlobalVariable *G = GlobalsToChange[i]; GlobalVariable *G = GlobalsToChange[i];
// FIXME: Metadata should be attched directly to the global directly instead // FIXME: Metadata should be attched directly to the global directly instead
// of being added to llvm.asan.globals. // of being added to llvm.asan.globals.
auto MD = GlobalsMD.get(G); auto MD = GlobalsMD.get(G);
StringRef NameForGlobal = G->getName(); StringRef NameForGlobal = G->getName();
// Create string holding the global name (use global name from metadata // Create string holding the global name (use global name from metadata
// if it's available, otherwise just write the name of global variable). // if it's available, otherwise just write the name of global variable).
GlobalVariable *Name = createPrivateGlobalForString( GlobalVariable *Name = createPrivateGlobalForString(
M, MD.Name.empty() ? NameForGlobal : MD.Name, M, MD.Name.empty() ? NameForGlobal : MD.Name,
/*AllowMerging*/ true, kAsanGenPrefix); /*AllowMerging*/ true, kAsanGenPrefix);
Type *Ty = G->getValueType(); Type *Ty = G->getValueType();
uint64_t SizeInBytes = DL.getTypeAllocSize(Ty); const uint64_t SizeInBytes = DL.getTypeAllocSize(Ty);
uint64_t MinRZ = MinRedzoneSizeForGlobal(); const uint64_t RightRedzoneSize = getRedzoneSizeForGlobal(SizeInBytes);
// MinRZ <= RZ <= kMaxGlobalRedzone
// and trying to make RZ to be ~ 1/4 of SizeInBytes.
uint64_t RZ = std::max(
MinRZ, std::min(kMaxGlobalRedzone, (SizeInBytes / MinRZ / 4) * MinRZ));
uint64_t RightRedzoneSize = RZ;
// Round up to MinRZ
if (SizeInBytes % MinRZ) RightRedzoneSize += MinRZ - (SizeInBytes % MinRZ);
assert(((RightRedzoneSize + SizeInBytes) % MinRZ) == 0);
Type *RightRedZoneTy = ArrayType::get(IRB.getInt8Ty(), RightRedzoneSize); Type *RightRedZoneTy = ArrayType::get(IRB.getInt8Ty(), RightRedzoneSize);
StructType *NewTy = StructType::get(Ty, RightRedZoneTy); StructType *NewTy = StructType::get(Ty, RightRedZoneTy);
Constant *NewInitializer = ConstantStruct::get( Constant *NewInitializer = ConstantStruct::get(
NewTy, G->getInitializer(), Constant::getNullValue(RightRedZoneTy)); NewTy, G->getInitializer(), Constant::getNullValue(RightRedZoneTy));
// Create a new global variable with enough space for a redzone. // Create a new global variable with enough space for a redzone.
GlobalValue::LinkageTypes Linkage = G->getLinkage(); GlobalValue::LinkageTypes Linkage = G->getLinkage();
if (G->isConstant() && Linkage == GlobalValue::PrivateLinkage) if (G->isConstant() && Linkage == GlobalValue::PrivateLinkage)
Linkage = GlobalValue::InternalLinkage; Linkage = GlobalValue::InternalLinkage;
GlobalVariable *NewGlobal = GlobalVariable *NewGlobal =
new GlobalVariable(M, NewTy, G->isConstant(), Linkage, NewInitializer, new GlobalVariable(M, NewTy, G->isConstant(), Linkage, NewInitializer,
"", G, G->getThreadLocalMode()); "", G, G->getThreadLocalMode());
NewGlobal->copyAttributesFrom(G); NewGlobal->copyAttributesFrom(G);
NewGlobal->setComdat(G->getComdat()); NewGlobal->setComdat(G->getComdat());
NewGlobal->setAlignment(MaybeAlign(MinRZ)); NewGlobal->setAlignment(MaybeAlign(getMinRedzoneSizeForGlobal()));
// Don't fold globals with redzones. ODR violation detector and redzone // Don't fold globals with redzones. ODR violation detector and redzone
// poisoning implicitly creates a dependence on the global's address, so it // poisoning implicitly creates a dependence on the global's address, so it
// is no longer valid for it to be marked unnamed_addr. // is no longer valid for it to be marked unnamed_addr.
NewGlobal->setUnnamedAddr(GlobalValue::UnnamedAddr::None); NewGlobal->setUnnamedAddr(GlobalValue::UnnamedAddr::None);
// Move null-terminated C strings to "__asan_cstring" section on Darwin. // Move null-terminated C strings to "__asan_cstring" section on Darwin.
if (TargetTriple.isOSBinFormatMachO() && !G->hasSection() && if (TargetTriple.isOSBinFormatMachO() && !G->hasSection() &&
G->isConstant()) { G->isConstant()) {
▲ Show 20 LinesShow All 105 Lines▼ Show 20 Linesbool ModuleAddressSanitizer::InstrumentGlobals(IRBuilder<> &IRB, Module &M,
// Create calls for poisoning before initializers run and unpoisoning after. // Create calls for poisoning before initializers run and unpoisoning after.
if (HasDynamicallyInitializedGlobals) if (HasDynamicallyInitializedGlobals)
createInitializerPoisonCalls(M, ModuleName); createInitializerPoisonCalls(M, ModuleName);
LLVM_DEBUG(dbgs() << M); LLVM_DEBUG(dbgs() << M);
return true; return true;
} }
uint64_t
ModuleAddressSanitizer::getRedzoneSizeForGlobal(uint64_t SizeInBytes) const {
const uint64_t MinRZ = getMinRedzoneSizeForGlobal();
// Limit redzone size when compiling the kernel.
const uint64_t MaxRZ = CompileKernel ? MinRZ * 2 : 1 << 18;
// Calculate RZ, where MinRZ <= RZ <= MaxRZ, and RZ ~ 1/4 * SizeInBytes.
uint64_t RZ =
std::max(MinRZ, std::min(MaxRZ, (SizeInBytes / MinRZ / 4) * MinRZ));
// Round up to multiple of MinRZ.
if (SizeInBytes % MinRZ)
RZ += MinRZ - (SizeInBytes % MinRZ);
assert((RZ + SizeInBytes) % MinRZ == 0);
if (CompileKernel && SizeInBytes && RZ % SizeInBytes) {
// When compiling the Linux kernel, ensure that the size of global+redzone
// has the same divisors as before. For certain arrays, the kernel expects
// that the global's size remains a multiple of the type's size.
//
// For example, in kernel modules certain arrays of structs shared with
// userspace are checked to be a multiple of sizeof(shared struct). These
// checks happen on the final binary.
//
// We can ensure the checks do not fail by ensuring that the array's size
// remains a multiple of the original size.
RZ += SizeInBytes - (RZ % SizeInBytes);
assert((RZ + SizeInBytes) % SizeInBytes == 0);
}
return RZ;
}
int ModuleAddressSanitizer::GetAsanVersion(const Module &M) const { int ModuleAddressSanitizer::GetAsanVersion(const Module &M) const {
int LongSize = M.getDataLayout().getPointerSizeInBits(); int LongSize = M.getDataLayout().getPointerSizeInBits();
bool isAndroid = Triple(M.getTargetTriple()).isAndroid(); bool isAndroid = Triple(M.getTargetTriple()).isAndroid();
int Version = 8; int Version = 8;
// 32-bit Android is one version ahead because of the switch to dynamic // 32-bit Android is one version ahead because of the switch to dynamic
// shadow. // shadow.
Version += (LongSize == 32 && isAndroid); Version += (LongSize == 32 && isAndroid);
return Version; return Version;
▲ Show 20 LinesShow All 993 LinesShow Last 20 Lines