This is an archive of the discontinued LLVM Phabricator instance.

Differential D81702

[WASM] Avoid passing uninit section indices when not creating code or data sections
ClosedPublic

Authored by guiand on Jun 11 2020, 5:26 PM.

Details

Reviewers
sbc100
Commits
rGe49584a34a12: [WebAssembly] Fix for use of uninitialized member in WasmObjectWriter.cpp
Summary

Currently, section indices may be passed uninitialized by value if writing the section fails. Removes section indices form class initialization and returns them from the write{Code,Data}Section function calls instead.

Diff Detail

Event Timeline

guiand created this revision.Jun 11 2020, 5:26 PM
Herald added a project: Restricted Project. · View Herald TranscriptJun 11 2020, 5:26 PM
Herald added subscribers: llvm-commits, sunfish, aheejin, hiraditya. · View Herald Transcript
Harbormaster failed remote builds in B60050: Diff 270266!Jun 11 2020, 6:11 PM
sbc100 added a comment.Jun 11 2020, 6:43 PM

How about one of these two options:

  1. initialing CodeSectionIndex and DataSectionIndex to 0 in the class declaration? (and in reset() I guess too?). You can treat 0 as invalid for both of them.
  1. Remove CodeSectionIndex and DataSectionIndex completely from the class and just return the index value from writeCodeSection and writeDataSection (again with 0 meaning none).

Either of those I think would be fine.

sbc100 added a comment.EditedJun 11 2020, 6:44 PM

Did you see this happening in practice? Did msan catch it?

guiand added a comment.Jun 11 2020, 6:51 PM

The second option sounds good to me! I'll make the change tomorrow.

I've been working on stricter msan checks to flag uninit data crossing function boundaries (as it's UB in C++). You can find that change pending at https://reviews.llvm.org/D81699.

guiand updated this revision to Diff 270435.Jun 12 2020, 9:51 AM
guiand edited the summary of this revision. (Show Details)

Updated with returning the indices from the writeSection functions.

sbc100 accepted this revision.Jun 12 2020, 10:34 AM

Thanks!

This revision is now accepted and ready to land.Jun 12 2020, 10:34 AM
sbc100 added a comment.Jun 12 2020, 10:35 AM

I guess its not easy to write a test for this since its a use of uninitialized data which can be non-deterministic?

Harbormaster failed remote builds in B60135: Diff 270435!Jun 12 2020, 10:53 AM
guiand added a comment.Jun 12 2020, 10:58 AM

Yeah, but I think the current check-clang tests (under msan once the changes go through) will be useful for that.

sbc100 added a comment.Jun 23 2020, 1:30 PM

This change should be ready to land. Do you have commit access to llvm?

guiand added a comment.Jun 23 2020, 2:02 PM

Ah, no I don't have commit access yet. Would you mind helping me land this? Thanks so much!

Closed by commit rGe49584a34a12: [WebAssembly] Fix for use of uninitialized member in WasmObjectWriter.cpp (authored by sbc100). · Explain WhyJun 23 2020, 3:39 PM
This revision was automatically updated to reflect the committed changes.
guiand added a comment.Jun 23 2020, 3:41 PM

Thanks, Sam!

Revision Contents

PathSize
llvm/
lib/
MC/
29 lines

Diff 272851

llvm/lib/MC/WasmObjectWriter.cpp

Show First 20 LinesShow All 218 Lines▼ Show 20 Lines
class WasmObjectWriter : public MCObjectWriter { class WasmObjectWriter : public MCObjectWriter {
support::endian::Writer W; support::endian::Writer W;
/// The target specific Wasm writer instance. /// The target specific Wasm writer instance.
std::unique_ptr<MCWasmObjectTargetWriter> TargetObjectWriter; std::unique_ptr<MCWasmObjectTargetWriter> TargetObjectWriter;
// Relocations for fixing up references in the code section. // Relocations for fixing up references in the code section.
std::vector<WasmRelocationEntry> CodeRelocations; std::vector<WasmRelocationEntry> CodeRelocations;
uint32_t CodeSectionIndex;
// Relocations for fixing up references in the data section. // Relocations for fixing up references in the data section.
std::vector<WasmRelocationEntry> DataRelocations; std::vector<WasmRelocationEntry> DataRelocations;
uint32_t DataSectionIndex;
// Index values to use for fixing up call_indirect type indices. // Index values to use for fixing up call_indirect type indices.
// Maps function symbols to the index of the type of the function // Maps function symbols to the index of the type of the function
DenseMap<const MCSymbolWasm *, uint32_t> TypeIndices; DenseMap<const MCSymbolWasm *, uint32_t> TypeIndices;
// Maps function symbols to the table element index space. Used // Maps function symbols to the table element index space. Used
// for TABLE_INDEX relocation types (i.e. address taken functions). // for TABLE_INDEX relocation types (i.e. address taken functions).
DenseMap<const MCSymbolWasm *, uint32_t> TableIndices; DenseMap<const MCSymbolWasm *, uint32_t> TableIndices;
// Maps function/global symbols to the function/global/event/section index // Maps function/global symbols to the function/global/event/section index
▲ Show 20 LinesShow All 90 Lines▼ Show 20 Linesprivate:
void writeTypeSection(ArrayRef<WasmSignature> Signatures); void writeTypeSection(ArrayRef<WasmSignature> Signatures);
void writeImportSection(ArrayRef<wasm::WasmImport> Imports, uint32_t DataSize, void writeImportSection(ArrayRef<wasm::WasmImport> Imports, uint32_t DataSize,
uint32_t NumElements); uint32_t NumElements);
void writeFunctionSection(ArrayRef<WasmFunction> Functions); void writeFunctionSection(ArrayRef<WasmFunction> Functions);
void writeExportSection(ArrayRef<wasm::WasmExport> Exports); void writeExportSection(ArrayRef<wasm::WasmExport> Exports);
void writeElemSection(ArrayRef<uint32_t> TableElems); void writeElemSection(ArrayRef<uint32_t> TableElems);
void writeDataCountSection(); void writeDataCountSection();
void writeCodeSection(const MCAssembler &Asm, const MCAsmLayout &Layout, uint32_t writeCodeSection(const MCAssembler &Asm, const MCAsmLayout &Layout,
ArrayRef<WasmFunction> Functions); ArrayRef<WasmFunction> Functions);
void writeDataSection(const MCAsmLayout &Layout); uint32_t writeDataSection(const MCAsmLayout &Layout);
void writeEventSection(ArrayRef<wasm::WasmEventType> Events); void writeEventSection(ArrayRef<wasm::WasmEventType> Events);
void writeGlobalSection(ArrayRef<wasm::WasmGlobal> Globals); void writeGlobalSection(ArrayRef<wasm::WasmGlobal> Globals);
void writeRelocSection(uint32_t SectionIndex, StringRef Name, void writeRelocSection(uint32_t SectionIndex, StringRef Name,
std::vector<WasmRelocationEntry> &Relocations); std::vector<WasmRelocationEntry> &Relocations);
void writeLinkingMetaDataSection( void writeLinkingMetaDataSection(
ArrayRef<wasm::WasmSymbolInfo> SymbolInfos, ArrayRef<wasm::WasmSymbolInfo> SymbolInfos,
ArrayRef<std::pair<uint16_t, uint32_t>> InitFuncs, ArrayRef<std::pair<uint16_t, uint32_t>> InitFuncs,
const std::map<StringRef, std::vector<WasmComdatEntry>> &Comdats); const std::map<StringRef, std::vector<WasmComdatEntry>> &Comdats);
▲ Show 20 LinesShow All 540 Lines▼ Show 20 Lines if (DataSegments.empty())
return; return;
SectionBookkeeping Section; SectionBookkeeping Section;
startSection(Section, wasm::WASM_SEC_DATACOUNT); startSection(Section, wasm::WASM_SEC_DATACOUNT);
encodeULEB128(DataSegments.size(), W.OS); encodeULEB128(DataSegments.size(), W.OS);
endSection(Section); endSection(Section);
} }
void WasmObjectWriter::writeCodeSection(const MCAssembler &Asm, uint32_t WasmObjectWriter::writeCodeSection(const MCAssembler &Asm,
const MCAsmLayout &Layout, const MCAsmLayout &Layout,
ArrayRef<WasmFunction> Functions) { ArrayRef<WasmFunction> Functions) {
if (Functions.empty()) if (Functions.empty())
return; return 0;
SectionBookkeeping Section; SectionBookkeeping Section;
startSection(Section, wasm::WASM_SEC_CODE); startSection(Section, wasm::WASM_SEC_CODE);
CodeSectionIndex = Section.Index;
encodeULEB128(Functions.size(), W.OS); encodeULEB128(Functions.size(), W.OS);
for (const WasmFunction &Func : Functions) { for (const WasmFunction &Func : Functions) {
auto &FuncSection = static_cast<MCSectionWasm &>(Func.Sym->getSection()); auto &FuncSection = static_cast<MCSectionWasm &>(Func.Sym->getSection());
int64_t Size = 0; int64_t Size = 0;
if (!Func.Sym->getSize()->evaluateAsAbsolute(Size, Layout)) if (!Func.Sym->getSize()->evaluateAsAbsolute(Size, Layout))
report_fatal_error(".size expression must be evaluatable"); report_fatal_error(".size expression must be evaluatable");
encodeULEB128(Size, W.OS); encodeULEB128(Size, W.OS);
FuncSection.setSectionOffset(W.OS.tell() - Section.ContentsOffset); FuncSection.setSectionOffset(W.OS.tell() - Section.ContentsOffset);
Asm.writeSectionData(W.OS, &FuncSection, Layout); Asm.writeSectionData(W.OS, &FuncSection, Layout);
} }
// Apply fixups. // Apply fixups.
applyRelocations(CodeRelocations, Section.ContentsOffset, Layout); applyRelocations(CodeRelocations, Section.ContentsOffset, Layout);
endSection(Section); endSection(Section);
return Section.Index;
} }
void WasmObjectWriter::writeDataSection(const MCAsmLayout &Layout) { uint32_t WasmObjectWriter::writeDataSection(const MCAsmLayout &Layout) {
if (DataSegments.empty()) if (DataSegments.empty())
return; return 0;
SectionBookkeeping Section; SectionBookkeeping Section;
startSection(Section, wasm::WASM_SEC_DATA); startSection(Section, wasm::WASM_SEC_DATA);
DataSectionIndex = Section.Index;
encodeULEB128(DataSegments.size(), W.OS); // count encodeULEB128(DataSegments.size(), W.OS); // count
for (const WasmDataSegment &Segment : DataSegments) { for (const WasmDataSegment &Segment : DataSegments) {
encodeULEB128(Segment.InitFlags, W.OS); // flags encodeULEB128(Segment.InitFlags, W.OS); // flags
if (Segment.InitFlags & wasm::WASM_SEGMENT_HAS_MEMINDEX) if (Segment.InitFlags & wasm::WASM_SEGMENT_HAS_MEMINDEX)
encodeULEB128(0, W.OS); // memory index encodeULEB128(0, W.OS); // memory index
if ((Segment.InitFlags & wasm::WASM_SEGMENT_IS_PASSIVE) == 0) { if ((Segment.InitFlags & wasm::WASM_SEGMENT_IS_PASSIVE) == 0) {
W.OS << char(wasm::WASM_OPCODE_I32_CONST); W.OS << char(wasm::WASM_OPCODE_I32_CONST);
encodeSLEB128(Segment.Offset, W.OS); // offset encodeSLEB128(Segment.Offset, W.OS); // offset
W.OS << char(wasm::WASM_OPCODE_END); W.OS << char(wasm::WASM_OPCODE_END);
} }
encodeULEB128(Segment.Data.size(), W.OS); // size encodeULEB128(Segment.Data.size(), W.OS); // size
Segment.Section->setSectionOffset(W.OS.tell() - Section.ContentsOffset); Segment.Section->setSectionOffset(W.OS.tell() - Section.ContentsOffset);
W.OS << Segment.Data; // data W.OS << Segment.Data; // data
} }
// Apply fixups. // Apply fixups.
applyRelocations(DataRelocations, Section.ContentsOffset, Layout); applyRelocations(DataRelocations, Section.ContentsOffset, Layout);
endSection(Section); endSection(Section);
return Section.Index;
} }
void WasmObjectWriter::writeRelocSection( void WasmObjectWriter::writeRelocSection(
uint32_t SectionIndex, StringRef Name, uint32_t SectionIndex, StringRef Name,
std::vector<WasmRelocationEntry> &Relocs) { std::vector<WasmRelocationEntry> &Relocs) {
// See: https://github.com/WebAssembly/tool-conventions/blob/master/Linking.md // See: https://github.com/WebAssembly/tool-conventions/blob/master/Linking.md
// for descriptions of the reloc sections. // for descriptions of the reloc sections.
▲ Show 20 LinesShow All 730 Lines▼ Show 20 Linesuint64_t WasmObjectWriter::writeObject(MCAssembler &Asm,
writeFunctionSection(Functions); writeFunctionSection(Functions);
// Skip the "table" section; we import the table instead. // Skip the "table" section; we import the table instead.
// Skip the "memory" section; we import the memory instead. // Skip the "memory" section; we import the memory instead.
writeEventSection(Events); writeEventSection(Events);
writeGlobalSection(Globals); writeGlobalSection(Globals);
writeExportSection(Exports); writeExportSection(Exports);
writeElemSection(TableElems); writeElemSection(TableElems);
writeDataCountSection(); writeDataCountSection();
writeCodeSection(Asm, Layout, Functions); uint32_t CodeSectionIndex = writeCodeSection(Asm, Layout, Functions);
writeDataSection(Layout); uint32_t DataSectionIndex = writeDataSection(Layout);
for (auto &CustomSection : CustomSections) for (auto &CustomSection : CustomSections)
writeCustomSection(CustomSection, Asm, Layout); writeCustomSection(CustomSection, Asm, Layout);
writeLinkingMetaDataSection(SymbolInfos, InitFuncs, Comdats); writeLinkingMetaDataSection(SymbolInfos, InitFuncs, Comdats);
writeRelocSection(CodeSectionIndex, "CODE", CodeRelocations); writeRelocSection(CodeSectionIndex, "CODE", CodeRelocations);
writeRelocSection(DataSectionIndex, "DATA", DataRelocations); writeRelocSection(DataSectionIndex, "DATA", DataRelocations);
writeCustomRelocSections(); writeCustomRelocSections();
if (ProducersSection) if (ProducersSection)
writeCustomSection(*ProducersSection, Asm, Layout); writeCustomSection(*ProducersSection, Asm, Layout);
Show All 12 Lines