This is an archive of the discontinued LLVM Phabricator instance.

[NFC][MSan] Round up OffsetPtr in PoisonMembers
ClosedPublic

Authored by vitalybuka on Dec 6 2020, 12:09 AM.

Download Raw Diff

Details

Reviewers

morehouse
eugenis

Commits

rG6e614b0c7ed3: [NFC][MSan] Round up OffsetPtr in PoisonMembers

Summary

getFieldOffset(layoutStartOffset) is expected to point to the first trivial
field or the one which follows non-trivial. So it must be byte aligned already.
However this is not obvious without assumptions about callers.
This patch will avoid the need in such assumptions.

Depends on D92727.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

vitalybuka requested review of this revision.Dec 6 2020, 12:09 AM

vitalybuka created this revision.

Herald added a project: Restricted Project. · View Herald TranscriptDec 6 2020, 12:09 AM

Herald added a subscriber: cfe-commits. · View Herald Transcript

Harbormaster completed remote builds in B81222: Diff 309762.Dec 6 2020, 12:54 AM

morehouse added inline comments.Dec 7 2020, 8:14 AM

clang/lib/CodeGen/CGClass.cpp
1742	How does this interact with bit fields?

Don't you want to similarly align down PoisonEnd?

But if this is something that should never happen, as your comment rightly suggests, wouldn't it be better to add an assert()?
The same in the case when PoisonSize < 0 - it should never happen.

vitalybuka retitled this revision from [NFC][MSan] Round up OffsetPtr in PoisonMembersgetFieldOffset(layoutStartOffset) for current calleds is expected topoint to the first trivial field or the one which follows non-trivial.So it must be byte aligned. However this is not obvious... to [NFC][MSan] Round up OffsetPtr in PoisonMembers.Dec 7 2020, 1:42 PM

vitalybuka edited the summary of this revision. (Show Details)

In D92728#2437506, @eugenis wrote:

Don't you want to similarly align down PoisonEnd?

But if this is something that should never happen, as your comment rightly suggests, wouldn't it be better to add an assert()?
The same in the case when PoisonSize < 0 - it should never happen.

clang/lib/CodeGen/CGClass.cpp
1742	I guess existing code work because is bit fields are trivial and the one aligned to the char is going to be layoutStartOffset I assume if we call this function for layoutStartOffset pointing to the bitfield in the middle of char it will poison entire byte which is incorrect. With the patch it will not poison such chars: now it will be either all bits or nothing which I believe better.
1742	toCharUnitsFromBits already down aligns by definition: it's just a bitsoffset/charwidth regarding assert: I am not 100% that this is not possible, maybe some corner-case in language allows that. if so, it's better not to poison partial byte at all than poison it completely.

LGTM

clang/lib/CodeGen/CGClass.cpp
1742	I assume if we call this function for layoutStartOffset pointing to the bitfield in the middle of char it will poison entire byte which is incorrect. Right. We never do this, of course, because the previous non-trivial field can not possibly end in the middle of a char.

This revision is now accepted and ready to land.Dec 7 2020, 2:51 PM

This revision was landed with ongoing or failed builds.Dec 7 2020, 8:19 PM

Closed by commit rG6e614b0c7ed3: [NFC][MSan] Round up OffsetPtr in PoisonMembers (authored by vitalybuka). · Explain Why

This revision was automatically updated to reflect the committed changes.

vitalybuka added a commit: rG6e614b0c7ed3: [NFC][MSan] Round up OffsetPtr in PoisonMembers.

Revision Contents

Path

Size

clang/

lib/

CodeGen/

CGClass.cpp

33 lines

Diff 310080

clang/lib/CodeGen/CGClass.cpp

Show All 12 Lines
#include "CGBlocks.h"		#include "CGBlocks.h"
#include "CGCXXABI.h"		#include "CGCXXABI.h"
#include "CGDebugInfo.h"		#include "CGDebugInfo.h"
#include "CGRecordLayout.h"		#include "CGRecordLayout.h"
#include "CodeGenFunction.h"		#include "CodeGenFunction.h"
#include "TargetInfo.h"		#include "TargetInfo.h"
#include "clang/AST/Attr.h"		#include "clang/AST/Attr.h"
#include "clang/AST/CXXInheritance.h"		#include "clang/AST/CXXInheritance.h"
		#include "clang/AST/CharUnits.h"
#include "clang/AST/DeclTemplate.h"		#include "clang/AST/DeclTemplate.h"
#include "clang/AST/EvaluatedExprVisitor.h"		#include "clang/AST/EvaluatedExprVisitor.h"
#include "clang/AST/RecordLayout.h"		#include "clang/AST/RecordLayout.h"
#include "clang/AST/StmtCXX.h"		#include "clang/AST/StmtCXX.h"
#include "clang/Basic/CodeGenOptions.h"		#include "clang/Basic/CodeGenOptions.h"
#include "clang/Basic/TargetBuiltins.h"		#include "clang/Basic/TargetBuiltins.h"
#include "clang/CodeGen/CGFunctionInfo.h"		#include "clang/CodeGen/CGFunctionInfo.h"
#include "llvm/IR/Intrinsics.h"		#include "llvm/IR/Intrinsics.h"
▲ Show 20 Lines • Show All 1,695 Lines • ▼ Show 20 Lines	public:
}		}

private:		private:
/// \param layoutStartOffset index of the ASTRecordLayout field to		/// \param layoutStartOffset index of the ASTRecordLayout field to
/// start poisoning (inclusive)		/// start poisoning (inclusive)
/// \param layoutEndOffset index of the ASTRecordLayout field to		/// \param layoutEndOffset index of the ASTRecordLayout field to
/// end poisoning (exclusive)		/// end poisoning (exclusive)
void PoisonMembers(CodeGenFunction &CGF, unsigned layoutStartOffset,		void PoisonMembers(CodeGenFunction &CGF, unsigned layoutStartOffset,
unsigned layoutEndOffset) {		unsigned layoutEndOffset) {
ASTContext &Context = CGF.getContext();		ASTContext &Context = CGF.getContext();
const ASTRecordLayout &Layout =		const ASTRecordLayout &Layout =
Context.getASTRecordLayout(Dtor->getParent());		Context.getASTRecordLayout(Dtor->getParent());

llvm::ConstantInt *OffsetSizePtr = llvm::ConstantInt::get(		// It's a first trivia field so it should be at the begining of char,
CGF.SizeTy,		// still round up start offset just in case.
Context.toCharUnitsFromBits(Layout.getFieldOffset(layoutStartOffset))		CharUnits PoisonStart =
.getQuantity());		Context.toCharUnitsFromBits(Layout.getFieldOffset(layoutStartOffset) +
		Context.getCharWidth() - 1);
		morehouseUnsubmitted Not Done Reply Inline Actions How does this interact with bit fields? morehouse: How does this interact with bit fields?
		vitalybukaAuthorUnsubmitted Done Reply Inline Actions I guess existing code work because is bit fields are trivial and the one aligned to the char is going to be layoutStartOffset I assume if we call this function for layoutStartOffset pointing to the bitfield in the middle of char it will poison entire byte which is incorrect. With the patch it will not poison such chars: now it will be either all bits or nothing which I believe better. vitalybuka: I guess existing code work because is bit fields are trivial and the one aligned to the char is…
		eugenisUnsubmitted Not Done Reply Inline Actions I assume if we call this function for layoutStartOffset pointing to the bitfield in the middle of char it will poison entire byte which is incorrect. Right. We never do this, of course, because the previous non-trivial field can not possibly end in the middle of a char. eugenis: > I assume if we call this function for layoutStartOffset pointing to the bitfield in the…
		vitalybukaAuthorUnsubmitted Done Reply Inline Actions toCharUnitsFromBits already down aligns by definition: it's just a bitsoffset/charwidth regarding assert: I am not 100% that this is not possible, maybe some corner-case in language allows that. if so, it's better not to poison partial byte at all than poison it completely. vitalybuka: toCharUnitsFromBits already down aligns by definition: it's just a bitsoffset/charwidth…
		llvm::ConstantInt *OffsetSizePtr =
		llvm::ConstantInt::get(CGF.SizeTy, PoisonStart.getQuantity());

llvm::Value *OffsetPtr = CGF.Builder.CreateGEP(		llvm::Value *OffsetPtr = CGF.Builder.CreateGEP(
CGF.Builder.CreateBitCast(CGF.LoadCXXThis(), CGF.Int8PtrTy),		CGF.Builder.CreateBitCast(CGF.LoadCXXThis(), CGF.Int8PtrTy),
OffsetSizePtr);		OffsetSizePtr);

CharUnits::QuantityType PoisonSize;		CharUnits PoisonEnd;
if (layoutEndOffset >= Layout.getFieldCount()) {		if (layoutEndOffset >= Layout.getFieldCount()) {
PoisonSize = Layout.getNonVirtualSize().getQuantity() -		PoisonEnd = Layout.getNonVirtualSize();
Context.toCharUnitsFromBits(
Layout.getFieldOffset(layoutStartOffset))
.getQuantity();
} else {		} else {
PoisonSize = Context.toCharUnitsFromBits(		PoisonEnd =
Layout.getFieldOffset(layoutEndOffset) -		Context.toCharUnitsFromBits(Layout.getFieldOffset(layoutEndOffset));
Layout.getFieldOffset(layoutStartOffset))
.getQuantity();
}		}
		CharUnits PoisonSize = PoisonEnd - PoisonStart;
if (PoisonSize == 0)		if (!PoisonSize.isPositive())
return;		return;

EmitSanitizerDtorCallback(CGF, OffsetPtr, PoisonSize);		EmitSanitizerDtorCallback(CGF, OffsetPtr, PoisonSize.getQuantity());
}		}
};		};

class SanitizeDtorVTable final : public EHScopeStack::Cleanup {		class SanitizeDtorVTable final : public EHScopeStack::Cleanup {
const CXXDestructorDecl *Dtor;		const CXXDestructorDecl *Dtor;

public:		public:
SanitizeDtorVTable(const CXXDestructorDecl *Dtor) : Dtor(Dtor) {}		SanitizeDtorVTable(const CXXDestructorDecl *Dtor) : Dtor(Dtor) {}
▲ Show 20 Lines • Show All 1,206 Lines • Show Last 20 Lines