This is an archive of the discontinued LLVM Phabricator instance.

Differential D91617

[sanitizer_common][test] Disable CompactRingBuffer.int64 on Solaris/sparcv9
AbandonedPublic

Authored by ro on Nov 17 2020, 4:42 AM.

Details

Reviewers
eugenis
vitalybuka
Summary

Even after D91615, CompactRingBuffer.int64 continues to FAIL on Solaris/sparcv9: it SEGVs here:

Thread 2 received signal SIGSEGV, Segmentation fault.
[Switching to Thread 1 (LWP 1)]
0x00000001001b4598 in __sanitizer::CompactRingBuffer<long>::push (this=0x101420250, t=0) at /vol/llvm/src/llvm-project/local/compiler-rt/lib/sanitizer_common/sanitizer_ring_buffer.h:136
136	    *next = t;
(gdb) p next
$1 = (long *) 0xffffff7f59a000

The problem is that this address is unmapped:CompactRingBuffer uses the top 8 bits of the address for its own purposes (cf. kNextMask). However, Solaris/sparcv9 uses the full 64-bit address space, so this masking breaks the test, which needs to be disabled.

Diff Detail

Event Timeline

ro created this revision.Nov 17 2020, 4:42 AM
Herald added subscribers: Restricted Project, fedor.sergeev, jyknight. · View Herald TranscriptNov 17 2020, 4:42 AM
ro requested review of this revision.Nov 17 2020, 4:42 AM
Harbormaster completed remote builds in B79094: Diff 305740.Nov 17 2020, 5:29 AM
vitalybuka added a reviewer: eugenis.Nov 17 2020, 2:45 PM
eugenis added a comment.Nov 17 2020, 3:40 PM

Does it mean CompactRingBuffer is broken, or just the test?
Is this ADI? I don't understand why bits 52-56 (and below) are 0xff in your example.
Could you tell me more about the 64-bit address space in solaris/sparcv9?

Would it work to

  • mask off the top bits of "storage" in Init
  • somehow disable tag checking when storing through the truncated pointer?
ro added a comment.Nov 18 2020, 6:58 AM
In D91617#2401121, @eugenis wrote:

Does it mean CompactRingBuffer is broken, or just the test?

Hard for me to tell given that this is the only test using it. Besides, hwasan is the only user which isn't supported on SPARC, so I didn't look at the test very hard.

Is this ADI? I don't understand why bits 52-56 (and below) are 0xff in your example.

No, while the machine I use for my tests (a Netra SPARC S7-2) is ADI-capable, it needs to be enabled explicitly.

When I look at the processes' address space with pmap -x, I find (among many others)

[...]
FFFFFFFF7F59A000     16     -     -    - rw-----  [ anon ]

while the faulting address is

mapping	        FFFFFFFF7F59A000
next		  ffffff7f59a000

i.e. 8 bits masked.

Could you tell me more about the 64-bit address space in solaris/sparcv9?

The layout can be seen here. There's a large virtual address hole in the middle, the exact location of which cannot be determined programmatically (yet) and depends on the exact hardware used. This obviously creates problems for a future Solaris/sparcv9 ASan port, too. Solaris/amd64 used to be the same, but they changed the layout during the large-scale rewrite of the VM system in Solaris 11.2.

Would it work to

  • mask off the top bits of "storage" in Init
  • somehow disable tag checking when storing through the truncated pointer?

I can't tell for certain, but at first blush it doesn't look like it would.

eugenis added a comment.Nov 18 2020, 12:19 PM

Very interesting, thank you for the explanation.
It looks like this can be fixed by applying sign extension to the masked address?

ro added a comment.Nov 19 2020, 2:07 AM
In D91617#2403618, @eugenis wrote:

Very interesting, thank you for the explanation.
It looks like this can be fixed by applying sign extension to the masked address?

I guess so, yes. Any guidance on where to apply this much appreciated ;-)

eugenis added a comment.Nov 19 2020, 3:38 PM

D91827 should do it, but I can't test it on high addresses
It does not update the compiler side, but that one would need to be sparc-specific anyway to avoid adding an extra instruction on aarch64

vitalybuka resigned from this revision.Feb 17 2021, 1:46 PM
eugenis mentioned this in D91827: EXPERIMENTAL sign-extend addresses in CompactRingBuffer.Apr 27 2021, 10:22 AM
ro mentioned this in D118024: [sanitizer_common] Use atomic builtin in sanitizer_atomic_clang.h.Jan 27 2022, 5:18 AM
ro abandoned this revision.Feb 4 2022, 4:03 AM

Superceded by the combination of D91615 and D91827.

Revision Contents

PathSize
compiler-rt/
lib/
sanitizer_common/
tests/
3 lines

Diff 305740

compiler-rt/lib/sanitizer_common/tests/sanitizer_ring_buffer_test.cpp

//===-- sanitizer_vector_test.cpp -----------------------------------------===// //===-- sanitizer_vector_test.cpp -----------------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file is a part of *Sanitizer runtime. // This file is a part of *Sanitizer runtime.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_common/sanitizer_ring_buffer.h" #include "sanitizer_common/sanitizer_ring_buffer.h"
#include "gtest/gtest.h" #include "gtest/gtest.h"
Lint: Pre-merge checks
Inline Actions

clang-tidy: error: 'gtest/gtest.h' file not found [clang-diagnostic-error]
not useful

Lint: Pre-merge checks: clang-tidy: error: 'gtest/gtest.h' file not found [clang-diagnostic-error] [[https://github.
namespace __sanitizer { namespace __sanitizer {
struct LargeStruct { struct LargeStruct {
int64_t v; int64_t v;
int64_t extra[3]; int64_t extra[3];
explicit LargeStruct(int64_t v) : v(v) {} explicit LargeStruct(int64_t v) : v(v) {}
▲ Show 20 LinesShow All 47 Lines▼ Show 20 Lines
TEST(RingBuffer, int64) { TEST(RingBuffer, int64) {
TestRB<int64_t>(); TestRB<int64_t>();
} }
TEST(RingBuffer, LargeStruct) { TEST(RingBuffer, LargeStruct) {
TestRB<LargeStruct>(); TestRB<LargeStruct>();
} }
// Solaris/sparcv9 uses the full 64-bit address space.
#if !(SANITIZER_SOLARIS && defined(__sparcv9))
template<typename T> template<typename T>
CompactRingBuffer<T> *AllocCompactRingBuffer(size_t count) { CompactRingBuffer<T> *AllocCompactRingBuffer(size_t count) {
size_t sz = sizeof(T) * count; size_t sz = sizeof(T) * count;
EXPECT_EQ(0ULL, sz % 4096); EXPECT_EQ(0ULL, sz % 4096);
void *p = MmapAlignedOrDieOnFatalError(sz, sz * 2, "CompactRingBuffer"); void *p = MmapAlignedOrDieOnFatalError(sz, sz * 2, "CompactRingBuffer");
return new CompactRingBuffer<T>(p, sz); return new CompactRingBuffer<T>(p, sz);
} }
TEST(CompactRingBuffer, int64) { TEST(CompactRingBuffer, int64) {
const size_t page_sizes[] = {1, 2, 4, 128}; const size_t page_sizes[] = {1, 2, 4, 128};
for (size_t pages : page_sizes) { for (size_t pages : page_sizes) {
size_t count = 4096 * pages / sizeof(int64_t); size_t count = 4096 * pages / sizeof(int64_t);
auto R = AllocCompactRingBuffer<int64_t>(count); auto R = AllocCompactRingBuffer<int64_t>(count);
int64_t top = count * 3 + 13; int64_t top = count * 3 + 13;
for (int64_t i = 0; i < top; ++i) R->push(i); for (int64_t i = 0; i < top; ++i) R->push(i);
for (int64_t i = 0; i < (int64_t)count; ++i) for (int64_t i = 0; i < (int64_t)count; ++i)
EXPECT_EQ(top - i - 1, (*R)[i]); EXPECT_EQ(top - i - 1, (*R)[i]);
} }
} }
#endif // !(SANITIZER_SOLARIS && __sparcv9)
#endif #endif
} // namespace __sanitizer } // namespace __sanitizer