This is an archive of the discontinued LLVM Phabricator instance.

Differential D95963

[dfsan] Add thread registration
ClosedPublic

Authored by stephan.yichao.zhao on Feb 3 2021, 11:52 AM.

Details

Reviewers
morehouse
Commits
rG0f3fd3b2810d: [dfsan] Add thread registration
Summary
This is a part of https://reviews.llvm.org/D95835.

 This change is to address two problems
 1) When recording stacks in origin tracking, libunwind is not async signal safe. Inside signal callbacks, we need
 to use fast unwind. Fast unwind needs threads
 2) StackDepot used by origin tracking is not async signal safe, we set a flag per thread inside
 a signal callback to prevent from using it.

 The thread registration is similar to ASan and MSan.

 Related MSan changes are
 * https://github.com/llvm/llvm-project/commit/98f5ea0dbae664a2e5f9381a64f2913fe1add208
 * https://github.com/llvm/llvm-project/commit/f653cda2695ac7390fe5663f2c0895213938334d
 * https://github.com/llvm/llvm-project/commit/5a7c3643437c262137bd3dac7f6a0f5b9e8501be

 Some changes in the diff are used in the next diffs
 1) The test case pthread.c is not very interesting for now. It will be
   extended to test origin tracking later.
 2) DFsanThread::InSignalHandler will be used by origin tracking later.

Diff Detail

Event Timeline

stephan.yichao.zhao created this revision.Feb 3 2021, 11:52 AM
Herald added a subscriber: jfb. · View Herald TranscriptFeb 3 2021, 11:52 AM
stephan.yichao.zhao requested review of this revision.Feb 3 2021, 11:52 AM
Herald added a project: Restricted Project. · View Herald TranscriptFeb 3 2021, 11:52 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
stephan.yichao.zhao edited the summary of this revision. (Show Details)Feb 3 2021, 11:53 AM
stephan.yichao.zhao edited the summary of this revision. (Show Details)
Harbormaster completed remote builds in B87749: Diff 321178.Feb 3 2021, 1:04 PM
stephan.yichao.zhao updated this revision to Diff 321555.Feb 4 2021, 1:17 PM
stephan.yichao.zhao retitled this revision from [dfsan] Add thread registration to [dfsan] Add thread registration.

fixed broken builts

Herald added a subscriber: mgorny. · View Herald TranscriptFeb 4 2021, 1:17 PM
stephan.yichao.zhao updated this revision to Diff 321563.Feb 4 2021, 2:04 PM

fixed clang-tidy errors

morehouse added inline comments.Feb 4 2021, 2:16 PM
compiler-rt/lib/dfsan/dfsan.cpp
434

Isn't the else block dead code? Getting past the first if block implies WillUseFastUnwind is true.

compiler-rt/lib/dfsan/dfsan_custom.cpp
486–488

Since it isn't used by anything else, let's inline dfsan_pthread_create here.

compiler-rt/lib/dfsan/dfsan_thread.cpp
27

nit

70

stack_switching_ is always false.

77

next_stack_ is never set anywhere.

109

Is the cast needed?

compiler-rt/lib/dfsan/dfsan_thread.h
55

If we use the proper function ptr type here and in the constructor, we can remove some unnecessary casting to void * and back.

compiler-rt/test/dfsan/pthread.c
19

Is the cast needed?

21

Nit: let's use a const variable instead of magic number 24.

stephan.yichao.zhao updated this revision to Diff 321572.Feb 4 2021, 2:53 PM
stephan.yichao.zhao marked 8 inline comments as done.

addressed comments

compiler-rt/lib/dfsan/dfsan.cpp
434

Yes. This branch cannot happen. Removed.

compiler-rt/lib/dfsan/dfsan_custom.cpp
486–488

We will use it after origin tracking is added.

compiler-rt/lib/dfsan/dfsan_thread.cpp
70

removed

77

removed it with stack_switching_. In MSan/ASan threads, they expose APIs to allow users tell them when a fiber thread switch contexts. DFSan does not have the case yet.

109

removed.

compiler-rt/lib/dfsan/dfsan_thread.h
55

This start_routine_trampoline_ will have a different type with and without origin tracking like this

typedef void *(*thread_callback_trampoline_t)(void *, void *, dfsan_label,
                                              dfsan_label *);
typedef void *(*thread_callback_origin_trampoline_t)(
    void *, void *, dfsan_label, dfsan_label *, dfsan_origin, dfsan_origin *);

If we use different types here at the C code of dfsan_custom.c, we have to define two functions with similar code.
See the pthread_create wrappers in https://reviews.llvm.org/D95835#change-GvgDqkOr0aQn
Or maybe we can delay how to change this in the late origin tracking related change?

compiler-rt/test/dfsan/pthread.c
19

removed.

21

added kNumThreads=4.

Harbormaster completed remote builds in B87981: Diff 321555.Feb 4 2021, 3:25 PM
Harbormaster completed remote builds in B87990: Diff 321572.Feb 4 2021, 4:21 PM
Harbormaster completed remote builds in B87987: Diff 321563.
morehouse accepted this revision.Feb 5 2021, 8:08 AM
morehouse added inline comments.
compiler-rt/lib/dfsan/dfsan_thread.cpp
63

Please address this lint.

This revision is now accepted and ready to land.Feb 5 2021, 8:08 AM
stephan.yichao.zhao added inline comments.Feb 5 2021, 9:37 AM
compiler-rt/lib/dfsan/dfsan_thread.cpp
63

For some reason the local lint conflicts with the one used here, they propose two different styles... maybe they use different versions..?
For the submission, I will try make the local one happy, so it does not block check in. We will change the function in the next diffs. Then we will see if the conflict is gone.

This revision was landed with ongoing or failed builds.Feb 5 2021, 9:39 AM
Closed by commit rG0f3fd3b2810d: [dfsan] Add thread registration (authored by Jianzhou Zhao <jianzhouzh@google.com>). · Explain Why
This revision was automatically updated to reflect the committed changes.
Jianzhou Zhao <jianzhouzh@google.com> added a commit: rG0f3fd3b2810d: [dfsan] Add thread registration.
stephan.yichao.zhao added a parent revision: D95835: [dfsan] Support origin tracking.Feb 5 2021, 10:07 AM

Revision Contents

PathSize
compiler-rt/
lib/
dfsan/
2 lines
14 lines
68 lines
70 lines
115 lines
test/
dfsan/
29 lines

Diff 321806

compiler-rt/lib/dfsan/CMakeLists.txt

include_directories(..) include_directories(..)
# Runtime library sources and build flags. # Runtime library sources and build flags.
set(DFSAN_RTL_SOURCES set(DFSAN_RTL_SOURCES
dfsan.cpp dfsan.cpp
dfsan_custom.cpp dfsan_custom.cpp
dfsan_interceptors.cpp dfsan_interceptors.cpp
dfsan_thread.cpp
) )
set(DFSAN_RTL_HEADERS set(DFSAN_RTL_HEADERS
dfsan.h dfsan.h
dfsan_flags.inc dfsan_flags.inc
dfsan_platform.h dfsan_platform.h
dfsan_thread.h
) )
set(DFSAN_COMMON_CFLAGS ${SANITIZER_COMMON_CFLAGS}) set(DFSAN_COMMON_CFLAGS ${SANITIZER_COMMON_CFLAGS})
append_rtti_flag(OFF DFSAN_COMMON_CFLAGS) append_rtti_flag(OFF DFSAN_COMMON_CFLAGS)
# Prevent clang from generating libc calls. # Prevent clang from generating libc calls.
append_list_if(COMPILER_RT_HAS_FFREESTANDING_FLAG -ffreestanding DFSAN_COMMON_CFLAGS) append_list_if(COMPILER_RT_HAS_FFREESTANDING_FLAG -ffreestanding DFSAN_COMMON_CFLAGS)
# Static runtime library. # Static runtime library.
Show All 39 Lines

compiler-rt/lib/dfsan/dfsan.cpp

Show All 14 Lines
// //
// The public interface is defined in include/sanitizer/dfsan_interface.h whose // The public interface is defined in include/sanitizer/dfsan_interface.h whose
// functions are prefixed dfsan_ while the compiler interface functions are // functions are prefixed dfsan_ while the compiler interface functions are
// prefixed __dfsan_. // prefixed __dfsan_.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "dfsan/dfsan.h" #include "dfsan/dfsan.h"
#include "dfsan/dfsan_thread.h"
#include "sanitizer_common/sanitizer_atomic.h" #include "sanitizer_common/sanitizer_atomic.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
#include "sanitizer_common/sanitizer_file.h" #include "sanitizer_common/sanitizer_file.h"
#include "sanitizer_common/sanitizer_flag_parser.h" #include "sanitizer_common/sanitizer_flag_parser.h"
#include "sanitizer_common/sanitizer_flags.h" #include "sanitizer_common/sanitizer_flags.h"
#include "sanitizer_common/sanitizer_internal_defs.h" #include "sanitizer_common/sanitizer_internal_defs.h"
#include "sanitizer_common/sanitizer_libc.h" #include "sanitizer_common/sanitizer_libc.h"
#include "sanitizer_common/sanitizer_stacktrace.h" #include "sanitizer_common/sanitizer_stacktrace.h"
▲ Show 20 LinesShow All 386 Lines▼ Show 20 Lines
#define GET_FATAL_STACK_TRACE_PC_BP(pc, bp) \ #define GET_FATAL_STACK_TRACE_PC_BP(pc, bp) \
BufferedStackTrace stack; \ BufferedStackTrace stack; \
stack.Unwind(pc, bp, nullptr, common_flags()->fast_unwind_on_fatal); stack.Unwind(pc, bp, nullptr, common_flags()->fast_unwind_on_fatal);
void __sanitizer::BufferedStackTrace::UnwindImpl(uptr pc, uptr bp, void __sanitizer::BufferedStackTrace::UnwindImpl(uptr pc, uptr bp,
void *context, void *context,
bool request_fast, bool request_fast,
u32 max_depth) { u32 max_depth) {
Unwind(max_depth, pc, bp, context, 0, 0, false); using namespace __dfsan;
DFsanThread *t = GetCurrentThread();
if (!t || !StackTrace::WillUseFastUnwind(request_fast)) {
return Unwind(max_depth, pc, bp, context, 0, 0, false);
}
Unwind(max_depth, pc, bp, nullptr, t->stack_top(), t->stack_bottom(), true);
} }
extern "C" SANITIZER_INTERFACE_ATTRIBUTE void __sanitizer_print_stack_trace() { extern "C" SANITIZER_INTERFACE_ATTRIBUTE void __sanitizer_print_stack_trace() {
morehouseUnsubmitted
Done
ReplyInline Actions

Isn't the else block dead code? Getting past the first if block implies WillUseFastUnwind is true.

morehouse: Isn't the else block dead code? Getting past the first if block implies `WillUseFastUnwind` is…
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

Yes. This branch cannot happen. Removed.

stephan.yichao.zhao: Yes. This branch cannot happen. Removed.
GET_FATAL_STACK_TRACE_PC_BP(StackTrace::GetCurrentPc(), GET_CURRENT_FRAME()); GET_FATAL_STACK_TRACE_PC_BP(StackTrace::GetCurrentPc(), GET_CURRENT_FRAME());
stack.Print(); stack.Print();
} }
void Flags::SetDefaults() { void Flags::SetDefaults() {
#define DFSAN_FLAG(Type, Name, DefaultValue, Description) Name = DefaultValue; #define DFSAN_FLAG(Type, Name, DefaultValue, Description) Name = DefaultValue;
#include "dfsan_flags.inc" #include "dfsan_flags.inc"
#undef DFSAN_FLAG #undef DFSAN_FLAG
▲ Show 20 LinesShow All 88 Lines▼ Show 20 Linesstatic void dfsan_init(int argc, char **argv, char **envp) {
InitializeInterceptors(); InitializeInterceptors();
// Register the fini callback to run when the program terminates successfully // Register the fini callback to run when the program terminates successfully
// or it is killed by the runtime. // or it is killed by the runtime.
Atexit(dfsan_fini); Atexit(dfsan_fini);
AddDieCallback(dfsan_fini); AddDieCallback(dfsan_fini);
// Set up threads
DFsanTSDInit(DFsanTSDDtor);
DFsanThread *main_thread = DFsanThread::Create(nullptr, nullptr, nullptr);
SetCurrentThread(main_thread);
main_thread->ThreadStart();
__dfsan_label_info[kInitializingLabel].desc = "<init label>"; __dfsan_label_info[kInitializingLabel].desc = "<init label>";
} }
#if SANITIZER_CAN_USE_PREINIT_ARRAY #if SANITIZER_CAN_USE_PREINIT_ARRAY
__attribute__((section(".preinit_array"), used)) __attribute__((section(".preinit_array"), used))
static void (*dfsan_init_ptr)(int, char **, char **) = dfsan_init; static void (*dfsan_init_ptr)(int, char **, char **) = dfsan_init;
#endif #endif

compiler-rt/lib/dfsan/dfsan_custom.cpp

Show All 31 Lines
#include <sys/socket.h> #include <sys/socket.h>
#include <sys/stat.h> #include <sys/stat.h>
#include <sys/time.h> #include <sys/time.h>
#include <sys/types.h> #include <sys/types.h>
#include <time.h> #include <time.h>
#include <unistd.h> #include <unistd.h>
#include "dfsan/dfsan.h" #include "dfsan/dfsan.h"
#include "dfsan/dfsan_thread.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
#include "sanitizer_common/sanitizer_internal_defs.h" #include "sanitizer_common/sanitizer_internal_defs.h"
#include "sanitizer_common/sanitizer_linux.h" #include "sanitizer_common/sanitizer_linux.h"
using namespace __dfsan; using namespace __dfsan;
#define CALL_WEAK_INTERCEPTOR_HOOK(f, ...) \ #define CALL_WEAK_INTERCEPTOR_HOOK(f, ...) \
do { \ do { \
▲ Show 20 LinesShow All 393 Lines▼ Show 20 Lines__dfsw_dlopen(const char *filename, int flag, dfsan_label filename_label,
void *handle = dlopen(filename, flag); void *handle = dlopen(filename, flag);
link_map *map = GET_LINK_MAP_BY_DLOPEN_HANDLE(handle); link_map *map = GET_LINK_MAP_BY_DLOPEN_HANDLE(handle);
if (map) if (map)
ForEachMappedRegion(map, unpoison); ForEachMappedRegion(map, unpoison);
*ret_label = 0; *ret_label = 0;
return handle; return handle;
} }
struct pthread_create_info { static void *DFsanThreadStartFunc(void *arg) {
void *(*start_routine_trampoline)(void *, void *, dfsan_label, dfsan_label *); DFsanThread *t = (DFsanThread *)arg;
void *start_routine; SetCurrentThread(t);
void *arg; return t->ThreadStart();
}; }
static void *pthread_create_cb(void *p) { static int dfsan_pthread_create(pthread_t *thread, const pthread_attr_t *attr,
pthread_create_info pci(*(pthread_create_info *)p); void *start_routine_trampoline,
free(p); void *start_routine, void *arg,
dfsan_label ret_label; dfsan_label *ret_label) {
return pci.start_routine_trampoline(pci.start_routine, pci.arg, 0, pthread_attr_t myattr;
&ret_label); if (!attr) {
pthread_attr_init(&myattr);
attr = &myattr;
}
// Ensure that the thread stack is large enough to hold all TLS data.
AdjustStackSize((void *)(const_cast<pthread_attr_t *>(attr)));
DFsanThread *t = DFsanThread::Create(start_routine_trampoline,
(thread_callback_t)start_routine, arg);
int res = pthread_create(thread, attr, DFsanThreadStartFunc, t);
if (attr == &myattr)
pthread_attr_destroy(&myattr);
*ret_label = 0;
return res;
} }
SANITIZER_INTERFACE_ATTRIBUTE int __dfsw_pthread_create( SANITIZER_INTERFACE_ATTRIBUTE int __dfsw_pthread_create(
pthread_t *thread, const pthread_attr_t *attr, pthread_t *thread, const pthread_attr_t *attr,
void *(*start_routine_trampoline)(void *, void *, dfsan_label, void *(*start_routine_trampoline)(void *, void *, dfsan_label,
dfsan_label *), dfsan_label *),
void *start_routine, void *arg, dfsan_label thread_label, void *start_routine, void *arg, dfsan_label thread_label,
dfsan_label attr_label, dfsan_label start_routine_label, dfsan_label attr_label, dfsan_label start_routine_label,
dfsan_label arg_label, dfsan_label *ret_label) { dfsan_label arg_label, dfsan_label *ret_label) {
pthread_create_info *pci = return dfsan_pthread_create(thread, attr, (void *)start_routine_trampoline,
(pthread_create_info *)malloc(sizeof(pthread_create_info)); start_routine, arg, ret_label);
pci->start_routine_trampoline = start_routine_trampoline;
pci->start_routine = start_routine;
pci->arg = arg;
int rv = pthread_create(thread, attr, pthread_create_cb, (void *)pci);
if (rv != 0)
free(pci);
*ret_label = 0;
return rv;
} }
morehouseUnsubmitted
Done
ReplyInline Actions

Since it isn't used by anything else, let's inline dfsan_pthread_create here.

morehouse: Since it isn't used by anything else, let's inline `dfsan_pthread_create` here.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

We will use it after origin tracking is added.

stephan.yichao.zhao: We will use it after origin tracking is added.
SANITIZER_INTERFACE_ATTRIBUTE int __dfsw_pthread_join(pthread_t thread, SANITIZER_INTERFACE_ATTRIBUTE int __dfsw_pthread_join(pthread_t thread,
void **retval, void **retval,
dfsan_label thread_label, dfsan_label thread_label,
dfsan_label retval_label, dfsan_label retval_label,
dfsan_label *ret_label) { dfsan_label *ret_label) {
int ret = pthread_join(thread, retval); int ret = pthread_join(thread, retval);
if (ret == 0 && retval) if (ret == 0 && retval)
▲ Show 20 LinesShow All 370 Lines▼ Show 20 Lines
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
int __dfsw_sigemptyset(sigset_t *set, dfsan_label set_label, int __dfsw_sigemptyset(sigset_t *set, dfsan_label set_label,
dfsan_label *ret_label) { dfsan_label *ret_label) {
int ret = sigemptyset(set); int ret = sigemptyset(set);
dfsan_set_label(0, set, sizeof(sigset_t)); dfsan_set_label(0, set, sizeof(sigset_t));
return ret; return ret;
} }
class SignalHandlerScope {
public:
SignalHandlerScope() {
if (DFsanThread *t = GetCurrentThread())
t->EnterSignalHandler();
}
~SignalHandlerScope() {
if (DFsanThread *t = GetCurrentThread())
t->LeaveSignalHandler();
}
};
// Clear DFSan runtime TLS state at the end of a scope. // Clear DFSan runtime TLS state at the end of a scope.
// //
// Implementation must be async-signal-safe and use small data size, because // Implementation must be async-signal-safe and use small data size, because
// instances of this class may live on the signal handler stack. // instances of this class may live on the signal handler stack.
// //
// DFSan uses TLS to pass metadata of arguments and return values. When an // DFSan uses TLS to pass metadata of arguments and return values. When an
// instrumented function accesses the TLS, if a signal callback happens, and the // instrumented function accesses the TLS, if a signal callback happens, and the
// callback calls other instrumented functions with updating the same TLS, the // callback calls other instrumented functions with updating the same TLS, the
Show All 11 Lines public:
~ScopedClearThreadLocalState() { dfsan_clear_thread_local_state(); } ~ScopedClearThreadLocalState() { dfsan_clear_thread_local_state(); }
}; };
// SignalSpinLocker::sigactions_mu guarantees atomicity of sigaction() calls. // SignalSpinLocker::sigactions_mu guarantees atomicity of sigaction() calls.
const int kMaxSignals = 1024; const int kMaxSignals = 1024;
static atomic_uintptr_t sigactions[kMaxSignals]; static atomic_uintptr_t sigactions[kMaxSignals];
static void SignalHandler(int signo) { static void SignalHandler(int signo) {
ScopedClearThreadLocalState stlsb; SignalHandlerScope signal_handler_scope;
ScopedClearThreadLocalState scoped_clear_tls;
// Clear shadows for all inputs provided by system. This is why DFSan // Clear shadows for all inputs provided by system. This is why DFSan
// instrumentation generates a trampoline function to each function pointer, // instrumentation generates a trampoline function to each function pointer,
// and uses the trampoline to clear shadows. However sigaction does not use // and uses the trampoline to clear shadows. However sigaction does not use
// a function pointer directly, so we have to do this manually. // a function pointer directly, so we have to do this manually.
dfsan_clear_arg_tls(0, sizeof(dfsan_label)); dfsan_clear_arg_tls(0, sizeof(dfsan_label));
typedef void (*signal_cb)(int x); typedef void (*signal_cb)(int x);
signal_cb cb = signal_cb cb =
(signal_cb)atomic_load(&sigactions[signo], memory_order_relaxed); (signal_cb)atomic_load(&sigactions[signo], memory_order_relaxed);
cb(signo); cb(signo);
} }
static void SignalAction(int signo, siginfo_t *si, void *uc) { static void SignalAction(int signo, siginfo_t *si, void *uc) {
ScopedClearThreadLocalState stlsb; SignalHandlerScope signal_handler_scope;
ScopedClearThreadLocalState scoped_clear_tls;
// Clear shadows for all inputs provided by system. Similar to SignalHandler. // Clear shadows for all inputs provided by system. Similar to SignalHandler.
dfsan_clear_arg_tls(0, 3 * sizeof(dfsan_label)); dfsan_clear_arg_tls(0, 3 * sizeof(dfsan_label));
dfsan_set_label(0, si, sizeof(*si)); dfsan_set_label(0, si, sizeof(*si));
dfsan_set_label(0, uc, sizeof(ucontext_t)); dfsan_set_label(0, uc, sizeof(ucontext_t));
typedef void (*sigaction_cb)(int, siginfo_t *, void *); typedef void (*sigaction_cb)(int, siginfo_t *, void *);
sigaction_cb cb = sigaction_cb cb =
▲ Show 20 LinesShow All 576 LinesShow Last 20 Lines

compiler-rt/lib/dfsan/dfsan_thread.h

  • This file was added.
//===-- dfsan_thread.h -------------------------------------------*- C++
//-*-===//
//
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
//
//===----------------------------------------------------------------------===//
//
// This file is a part of DataFlowSanitizer.
//
//===----------------------------------------------------------------------===//
#ifndef DFSAN_THREAD_H
#define DFSAN_THREAD_H
#include "sanitizer_common/sanitizer_common.h"
namespace __dfsan {
class DFsanThread {
public:
// NOTE: There is no DFsanThread constructor. It is allocated
// via mmap() and *must* be valid in zero-initialized state.
static DFsanThread *Create(void *start_routine_trampoline,
thread_callback_t start_routine, void *arg);
static void TSDDtor(void *tsd);
void Destroy();
void Init(); // Should be called from the thread itself.
thread_return_t ThreadStart();
uptr stack_top();
uptr stack_bottom();
bool IsMainThread() { return start_routine_ == nullptr; }
bool InSignalHandler() { return in_signal_handler_; }
void EnterSignalHandler() { in_signal_handler_++; }
void LeaveSignalHandler() { in_signal_handler_--; }
int destructor_iterations_;
private:
void SetThreadStackAndTls();
struct StackBounds {
uptr bottom;
uptr top;
};
StackBounds GetStackBounds() const;
bool AddrIsInStack(uptr addr);
void *start_routine_trampoline_;
thread_callback_t start_routine_;
morehouseUnsubmitted
Not Done
ReplyInline Actions

If we use the proper function ptr type here and in the constructor, we can remove some unnecessary casting to void * and back.

morehouse: If we use the proper function ptr type here and in the constructor, we can remove some…
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

This start_routine_trampoline_ will have a different type with and without origin tracking like this

typedef void *(*thread_callback_trampoline_t)(void *, void *, dfsan_label,
                                              dfsan_label *);
typedef void *(*thread_callback_origin_trampoline_t)(
    void *, void *, dfsan_label, dfsan_label *, dfsan_origin, dfsan_origin *);

If we use different types here at the C code of dfsan_custom.c, we have to define two functions with similar code.
See the pthread_create wrappers in https://reviews.llvm.org/D95835#change-GvgDqkOr0aQn
Or maybe we can delay how to change this in the late origin tracking related change?

stephan.yichao.zhao: This start_routine_trampoline_ will have a different type with and without origin tracking like…
void *arg_;
StackBounds stack_;
unsigned in_signal_handler_;
};
DFsanThread *GetCurrentThread();
void SetCurrentThread(DFsanThread *t);
void DFsanTSDInit(void (*destructor)(void *tsd));
void DFsanTSDDtor(void *tsd);
} // namespace __dfsan
#endif // DFSAN_THREAD_H

compiler-rt/lib/dfsan/dfsan_thread.cpp

  • This file was added.
#include "dfsan_thread.h"
#include <pthread.h>
#include "dfsan.h"
namespace __dfsan {
DFsanThread *DFsanThread::Create(void *start_routine_trampoline,
thread_callback_t start_routine, void *arg) {
uptr PageSize = GetPageSizeCached();
uptr size = RoundUpTo(sizeof(DFsanThread), PageSize);
DFsanThread *thread = (DFsanThread *)MmapOrDie(size, __func__);
thread->start_routine_trampoline_ = start_routine_trampoline;
thread->start_routine_ = start_routine;
thread->arg_ = arg;
thread->destructor_iterations_ = GetPthreadDestructorIterations();
return thread;
}
void DFsanThread::SetThreadStackAndTls() {
uptr tls_size = 0;
uptr stack_size = 0;
uptr tls_begin;
GetThreadStackAndTls(IsMainThread(), &stack_.bottom, &stack_size, &tls_begin,
&tls_size);
morehouseUnsubmitted
Done
ReplyInline Actions
uptr stack_size = 0;
- uptr tls_begin_;
+ uptr tls_begin;
GetThreadStackAndTls(IsMainThread(), &stack_.bottom, &stack_size, &tls_begin_,

nit

morehouse: nit
stack_.top = stack_.bottom + stack_size;
int local;
CHECK(AddrIsInStack((uptr)&local));
}
void DFsanThread::Init() { SetThreadStackAndTls(); }
void DFsanThread::TSDDtor(void *tsd) {
DFsanThread *t = (DFsanThread *)tsd;
t->Destroy();
}
void DFsanThread::Destroy() {
uptr size = RoundUpTo(sizeof(DFsanThread), GetPageSizeCached());
UnmapOrDie(this, size);
}
thread_return_t DFsanThread::ThreadStart() {
Init();
if (!start_routine_) {
// start_routine_ == 0 if we're on the main thread or on one of the
// OS X libdispatch worker threads. But nobody is supposed to call
// ThreadStart() for the worker threads.
return 0;
}
CHECK(start_routine_trampoline_);
typedef void *(*thread_callback_trampoline_t)(void *, void *, dfsan_label,
dfsan_label *);
dfsan_label ret_label;
return ((thread_callback_trampoline_t)
start_routine_trampoline_)((void *)start_routine_, arg_, 0,
morehouseUnsubmitted
Not Done
ReplyInline Actions

Please address this lint.

morehouse: Please address this lint.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

For some reason the local lint conflicts with the one used here, they propose two different styles... maybe they use different versions..?
For the submission, I will try make the local one happy, so it does not block check in. We will change the function in the next diffs. Then we will see if the conflict is gone.

stephan.yichao.zhao: For some reason the local lint conflicts with the one used here, they propose two different…
&ret_label);
}
DFsanThread::StackBounds DFsanThread::GetStackBounds() const {
return {stack_.bottom, stack_.top};
}
morehouseUnsubmitted
Done
ReplyInline Actions

stack_switching_ is always false.

morehouse: `stack_switching_` is always false.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

removed

stephan.yichao.zhao: removed
uptr DFsanThread::stack_top() { return GetStackBounds().top; }
uptr DFsanThread::stack_bottom() { return GetStackBounds().bottom; }
bool DFsanThread::AddrIsInStack(uptr addr) {
const auto bounds = GetStackBounds();
return addr >= bounds.bottom && addr < bounds.top;
morehouseUnsubmitted
Done
ReplyInline Actions

next_stack_ is never set anywhere.

morehouse: `next_stack_` is never set anywhere.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

removed it with stack_switching_. In MSan/ASan threads, they expose APIs to allow users tell them when a fiber thread switch contexts. DFSan does not have the case yet.

stephan.yichao.zhao: removed it with stack_switching_. In MSan/ASan threads, they expose APIs to allow users tell…
}
static pthread_key_t tsd_key;
static bool tsd_key_inited = false;
void DFsanTSDInit(void (*destructor)(void *tsd)) {
CHECK(!tsd_key_inited);
tsd_key_inited = true;
CHECK_EQ(0, pthread_key_create(&tsd_key, destructor));
}
static THREADLOCAL DFsanThread *dfsan_current_thread;
DFsanThread *GetCurrentThread() { return dfsan_current_thread; }
void SetCurrentThread(DFsanThread *t) {
// Make sure we do not reset the current DFsanThread.
CHECK_EQ(0, dfsan_current_thread);
dfsan_current_thread = t;
// Make sure that DFsanTSDDtor gets called at the end.
CHECK(tsd_key_inited);
pthread_setspecific(tsd_key, t);
}
void DFsanTSDDtor(void *tsd) {
DFsanThread *t = (DFsanThread *)tsd;
if (t->destructor_iterations_ > 1) {
t->destructor_iterations_--;
CHECK_EQ(0, pthread_setspecific(tsd_key, tsd));
return;
}
dfsan_current_thread = nullptr;
morehouseUnsubmitted
Done
ReplyInline Actions

Is the cast needed?

morehouse: Is the cast needed?
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

removed.

stephan.yichao.zhao: removed.
// Make sure that signal handler can not see a stale current thread pointer.
atomic_signal_fence(memory_order_seq_cst);
DFsanThread::TSDDtor(tsd);
}
} // namespace __dfsan

compiler-rt/test/dfsan/pthread.c

  • This file was added.
// RUN: %clang_dfsan -mllvm -dfsan-fast-16-labels=true %s -o %t && %run %t
#include <sanitizer/dfsan_interface.h>
#include <assert.h>
#include <pthread.h>
int volatile x;
int __thread y;
static void *ThreadFn(void *a) {
y = x;
assert(dfsan_get_label(y) == 8);
return 0;
}
int main(void) {
dfsan_set_label(8, &x, sizeof(x));
morehouseUnsubmitted
Done
ReplyInline Actions

Is the cast needed?

morehouse: Is the cast needed?
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

removed.

stephan.yichao.zhao: removed.
const int kNumThreads = 24;
pthread_t t[kNumThreads];
morehouseUnsubmitted
Done
ReplyInline Actions

Nit: let's use a const variable instead of magic number 24.

morehouse: Nit: let's use a const variable instead of magic number 24.
stephan.yichao.zhaoAuthorUnsubmitted
Done
ReplyInline Actions

added kNumThreads=4.

stephan.yichao.zhao: added kNumThreads=4.
for (size_t i = 0; i < kNumThreads; ++i) {
pthread_create(&t[i], 0, ThreadFn, (void *)i);
}
for (size_t i = 0; i < kNumThreads; ++i) {
pthread_join(t[i], 0);
}
return 0;
}