This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
lld/wasm/
-
wasm/
1/1
MapFile.cpp

Differential D88369

[lld][WebAssembly] Fix segfault in map file support
ClosedPublic

Authored by tlively on Sep 26 2020, 4:33 PM.

Download Raw Diff

Details

Reviewers

sbc100

Commits

rG067f005500af: [lld][WebAssembly] Fix segfault in map file support

Summary

The code previously assumed that getChunk would return a non-null pointer for
every symbol, but in fact it only returns non-null pointers for DefinedFunction
and DefinedData symbols. This patch fixes the segfault by checking whether
getChunk returns a null for each symbol and skipping the mapping output for
any symbols for which it does.

Diff Detail

Repository: rG LLVM Github Monorepo

Unit TestsFailed

	Time	Test
	24,450 ms	linux > LLVM.Bindings/Go::go.test

Event Timeline

tlively created this revision.Sep 26 2020, 4:33 PM

Herald added a project: Restricted Project. · View Herald TranscriptSep 26 2020, 4:33 PM

Herald added subscribers: llvm-commits, ecnelises, sunfish and 2 others. · View Herald Transcript

tlively requested review of this revision.Sep 26 2020, 4:33 PM

Herald added a subscriber: aheejin. · View Herald TranscriptSep 26 2020, 4:33 PM

Harbormaster completed remote builds in B73072: Diff 294524.Sep 26 2020, 4:39 PM

Can you update the mapfile test to tickle this?

I'm not actually sure how to do that in the .s format, since I found this on a real-world project. Do you know what I should add to the test?

Do you know that symbol type that causes the crash?

Herald added a subscriber: wingo. · View Herald TranscriptNov 4 2020, 11:20 AM

Maybe a DefinedGlobal would do it? You can define wasm globals in .s files (see lld/test/wasm/globals.s).

sbc100 added inline comments.Nov 4 2020, 11:23 AM

lld/wasm/MapFile.cpp
83	How about if we just have fileOffset default to 0 if `chunk` is null? I think we still want to include all symbols in the map.

Same issue? https://bugs.llvm.org/show_bug.cgi?id=48972

Yes, almost certainly. I actually ran into another null pointer dereference and had to add another workaround to my local branch as well. I haven't pursued this patch upstream because I still have not been able to create a test case :(

Can we get this landed? Did adding a defined global to a .s file work? (I think maybe you can just add a defined global to lld/test/wasm/map-file.s?

Trying again now, but last time I tried that (a while ago) I couldn't reproduce the issue.

Add test with wasm global, try to print it

Ok, I was able to reproduce one of the issues by using a wasm global this time. However, I'm having trouble figuring out how to fit printing the global to the map file in with the current infrastructure. Comments would be very appreciated.

tlively marked an inline comment as done.Feb 1 2021, 6:11 PM

Harbormaster completed remote builds in B87460: Diff 320656.Feb 1 2021, 7:48 PM

Seems reasonable to me. Our map file format is relatively arbitrary AFAICT. Its mostly about conveying the final contents of the linked binary IIUC.

This revision is now accepted and ready to land.Feb 2 2021, 10:14 AM

Is this good to go now?

Clean up

Yes, I think so. I changed this back to skipping symbols without chunks in the because we don't need to demangle global symbols.

sbc100 accepted this revision.Feb 9 2021, 2:39 PM

This revision was landed with ongoing or failed builds.Feb 9 2021, 2:43 PM

Closed by commit rG067f005500af: [lld][WebAssembly] Fix segfault in map file support (authored by tlively). · Explain Why

This revision was automatically updated to reflect the committed changes.

tlively added a commit: rG067f005500af: [lld][WebAssembly] Fix segfault in map file support.

Harbormaster completed remote builds in B88522: Diff 322506.Feb 9 2021, 3:06 PM

Revision Contents

Path

Size

lld/

wasm/

MapFile.cpp

7 lines

Diff 294524

lld/wasm/MapFile.cpp

	Show First 20 Lines • Show All 70 Lines • ▼ Show 20 Lines
	// Construct a map from symbols to their stringified representations.			// Construct a map from symbols to their stringified representations.
	// Demangling symbols (which is what toString() does) is slow, so			// Demangling symbols (which is what toString() does) is slow, so
	// we do that in batch using parallel-for.			// we do that in batch using parallel-for.
	static DenseMap<Symbol *, std::string>			static DenseMap<Symbol *, std::string>
	getSymbolStrings(ArrayRef<Symbol *> syms) {			getSymbolStrings(ArrayRef<Symbol *> syms) {
	std::vector<std::string> str(syms.size());			std::vector<std::string> str(syms.size());
	parallelForEachN(0, syms.size(), [&](size_t i) {			parallelForEachN(0, syms.size(), [&](size_t i) {
	raw_string_ostream os(str[i]);			raw_string_ostream os(str[i]);
	auto &chunk = *syms[i]->getChunk();			auto *chunk = syms[i]->getChunk();
	uint64_t fileOffset = chunk.outputSec->getOffset() + chunk.outputOffset;			// TODO: Handle symbol types besides DefinedFunction and DefinedData
				if (!chunk)
				return;
				uint64_t fileOffset = chunk->outputSec->getOffset() + chunk->outputOffset;
				sbc100Unsubmitted Done Reply Inline Actions How about if we just have fileOffset default to 0 if `chunk` is null? I think we still want to include all symbols in the map. sbc100: How about if we just have fileOffset default to 0 if `chunk` is null? I think we still want to…
	uint64_t vma = -1;			uint64_t vma = -1;
	uint64_t size = 0;			uint64_t size = 0;
	if (auto *DD = dyn_cast<DefinedData>(syms[i])) {			if (auto *DD = dyn_cast<DefinedData>(syms[i])) {
	vma = DD->getVirtualAddress();			vma = DD->getVirtualAddress();
	size = DD->getSize();			size = DD->getSize();
	fileOffset += DD->offset;			fileOffset += DD->offset;
	}			}
	if (auto *DF = dyn_cast<DefinedFunction>(syms[i])) {			if (auto *DF = dyn_cast<DefinedFunction>(syms[i])) {
	▲ Show 20 Lines • Show All 60 Lines • Show Last 20 Lines