This is an archive of the discontinued LLVM Phabricator instance.

Differential D98008

[AArch64][compiler-rt] Strip PAC from the link register.
ClosedPublic

Authored by danielkiss on Mar 4 2021, 11:08 PM.

Details

Reviewers
tamas.petz
pbarrio
kubamracek
yln
delcypher
aralisza
ab
Commits
rG4220531ceff0: [AArch64][compiler-rt] Strip PAC from the link register.
rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register.
Summary

-mbranch-protection protects the LR on the stack with PAC.
When the frames are walked the LR need to be cleared.
This inline assembly later will be replaced with a new builtin.

Test: build with -DCMAKE_C_FLAGS="-mbranch-protection=standard".

Diff Detail

Event Timeline

danielkiss created this revision.Mar 4 2021, 11:08 PM
Herald added subscribers: kristof.beyls, dberris. · View Herald TranscriptMar 4 2021, 11:08 PM
danielkiss requested review of this revision.Mar 4 2021, 11:08 PM
kubamracek added reviewers: yln, delcypher, aralisza.Mar 5 2021, 10:33 AM
kubamracek added a reviewer: ab.
kubamracek added a comment.Mar 5 2021, 10:43 AM

Could we reuse the macros/builtins from https://github.com/llvm/llvm-project/blob/main/compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h instead? Something like this:

     // Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and
     // x86_64) is invalid and stop unwinding here.  If we're adding support for
     // a platform where this isn't true, we need to reconsider this check.
     if (pc1 < kPageSize)
       break;
+#if __has_feature(ptrauth_returns)
+    pc1 = (uhwptr)ptrauth_strip((void *)pc1, ptrauth_key_return_address);
+#endif

?

danielkiss added a comment.Mar 5 2021, 11:52 AM
In D98008#2607313, @kubamracek wrote:

Could we reuse the macros/builtins from https://github.com/llvm/llvm-project/blob/main/compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h instead?

Yes, that is the plan "This inline assembly later will be replaced with a new builtin." I tried to refer to this builtin.
Right now the intrinsics are not jet made into the codebase: D90868/D91087. Maybe hight time to review/merge them?

Harbormaster completed remote builds in B92230: Diff 328395.Mar 5 2021, 3:32 PM
danielkiss updated this revision to Diff 329296.Mar 9 2021, 4:45 AM

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.
Moved the strip to the sanitizer_ptrauth.h.

danielkiss planned changes to this revision.Mar 9 2021, 6:03 AM
kristof.beyls added inline comments.Mar 9 2021, 7:31 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than STRIP_PC.

danielkiss updated this revision to Diff 329382.Mar 9 2021, 10:30 AM
danielkiss marked an inline comment as done.
kubamracek added a comment.Mar 9 2021, 10:59 AM

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.

Interesting, I'm not saying it's necessarily a bad idea, but could you explain the motivation? The previous approach (stripping the stack trace PCs at the point of capturing stack trace) seemed simpler, easier to implement and presumably faster (less stripping operations overall).

compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is not necessarily the same operation as stripping frame pointers, function pointers, or other types.

danielkiss added a comment.Mar 9 2021, 11:46 AM
In D98008#2614592, @kubamracek wrote:

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.

Interesting, I'm not saying it's necessarily a bad idea, but could you explain the motivation? The previous approach (stripping the stack trace PCs at the point of capturing stack trace) seemed simpler, easier to implement and presumably faster (less stripping operations overall).

Storing the PAC protected return addresses sounds safer because the values in trace can't be used directly as jump addresses. Assuming some might use sanitisers in production.

danielkiss added inline comments.Mar 9 2021, 11:55 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

__builtin_extract_return_address could do this but back then the decision was to strip return address in __builtin_return_address which is generally fine. both would be useful in this case.

STRIP_PAC_PC sounds good to me,

Harbormaster completed remote builds in B92853: Diff 329296.Mar 9 2021, 1:02 PM
Harbormaster completed remote builds in B92908: Diff 329382.Mar 9 2021, 8:18 PM
danielkiss updated this revision to Diff 329964.Mar 11 2021, 7:35 AM

The current think is that the unstripped value of the return addresses is not too problematic.
Let's keep it simple now.

danielkiss marked an inline comment as done.Mar 11 2021, 7:46 AM
danielkiss added inline comments.
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

using the hint because some build bot are building it with clang9/10 and those does not accept the mnemonic without v8.3 instruction set.

39

I keep STRIP_PC because as it is used today it is fine in the tsan context.

danielkiss updated this revision to Diff 329991.Mar 11 2021, 9:28 AM

fix for lint

kubamracek added inline comments.Mar 11 2021, 9:47 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

Even a "hint" I think should really be #ifdef'd under something more specific than just __aarch64__. Do you have any macro from Clang that would tell when we're targeting a PAC-enabled target?

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp
126

How about:

  1. moving this below the kPageSize check (because that check is trying to detect non-pointers and garbage values and sentinels which are not ptrauth'd)
  2. making the strip call unconditional (it's no-op on non-PAC targets)
  3. using the handy STRIP_PC macro instead of ptrauth_strip?
danielkiss added inline comments.Mar 11 2021, 11:51 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

There is one, the __ARM_FEATURE_PAC_DEFAULT.
The slight problem it is that it is set only when the code is compiled with -mbranch-protection=*.
Today the runtime is compiled without it on most of platforms but the user's code might compiled with it so there is a fairly hight chance the runtime will meet with a signed LR.

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp
126
  1. Let's consider this scenario. LR could be set to null in assembly before the function is called because no return is expected. The called PAC-RET protected function will store the signed null on the stack. Without stripping the below check will fail because of the PAC bits. If the value is invalid the strip will leave it as is. I think one of the reasons of the below check is to catch the null pointers.

2,3: Will do.

Harbormaster completed remote builds in B93306: Diff 329964.Mar 11 2021, 1:08 PM
Harbormaster completed remote builds in B93327: Diff 329991.Mar 11 2021, 3:58 PM
kubamracek added inline comments.Mar 11 2021, 4:49 PM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

@ab what do you say to this?

In my opinion, we do *not* want these instructions to end up in the runtime when building for "plain aarch64", even if the instructions are just HINTs that don't do anything. At a minimum, we would need an !APPLE or something like that.

pbarrio added inline comments.Mar 12 2021, 2:04 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

I would expect some users to want universal binaries that can run on both base AArch64 and PAC-enabled systems. This is also meant for systems other than Apple, so I think !APPLE wouldn't work. What is the reason behind not wanting HINTs in plain AArch64? Is it just code size? Do you see any security implication?

danielkiss updated this revision to Diff 330329.Mar 12 2021, 11:36 AM

Implementing the review comment.

danielkiss added inline comments.Mar 12 2021, 11:44 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

In my use case the runtime is built with pac-ret so
__ARM_FEATURE_PAC_DEFAULT work for me.
Generally this problem of PAC/NonPAC compatible runtime support need to be solved in each runtime component I think we could defer the solution.

kubamracek added inline comments.Mar 12 2021, 12:47 PM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
14

Also add && !__APPLE__ please. I think there's no good reason to change the behavior of PAC on Apple platforms, so we shouldn't do that.

Harbormaster completed remote builds in B93570: Diff 330329.Mar 12 2021, 1:42 PM
danielkiss updated this revision to Diff 330377.Mar 12 2021, 2:47 PM
danielkiss marked an inline comment as done.
Harbormaster completed remote builds in B93607: Diff 330377.Mar 12 2021, 4:18 PM
kubamracek accepted this revision.Mar 12 2021, 5:36 PM

LGTM, and thanks!

This revision is now accepted and ready to land.Mar 12 2021, 5:36 PM
This revision was landed with ongoing or failed builds.Mar 15 2021, 2:26 AM
Closed by commit rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register. (authored by danielkiss). · Explain Why
This revision was automatically updated to reflect the committed changes.
danielkiss added a commit: rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register..
Herald added a project: Restricted Project. · View Herald TranscriptMar 15 2021, 2:26 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
kubamracek added inline comments.Mar 18 2021, 8:50 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

The extra cast, (uptr)pc, is causing downstream failures for the Apple PAC implementation. The ptrauth_strip builtin expects to receive pointers only — could you drop this (uptr)pc cast (and I guess change your ptrauth_strip to also expect a pointer)?

danielkiss added a commit: rG4220531ceff0: [AArch64][compiler-rt] Strip PAC from the link register..Mar 18 2021, 2:04 PM
danielkiss added a reverting change: rGc1940aac99ea: Revert "[AArch64][compiler-rt] Strip PAC from the link register.".
danielkiss marked an inline comment as done.Mar 18 2021, 2:06 PM
danielkiss added inline comments.
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d

Revision Contents

PathSize
compiler-rt/
lib/
sanitizer_common/
20 lines
3 lines
tsan/
rtl/
4 lines
8 lines
22 lines

Diff 330582

compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h

//===-- sanitizer_ptrauth.h -------------------------------------*- C++ -*-===// //===-- sanitizer_ptrauth.h -------------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef SANITIZER_PTRAUTH_H #ifndef SANITIZER_PTRAUTH_H
#define SANITIZER_PTRAUTH_H #define SANITIZER_PTRAUTH_H
#if __has_feature(ptrauth_calls) #if __has_feature(ptrauth_calls)
#include <ptrauth.h> #include <ptrauth.h>
#elif defined(__ARM_FEATURE_PAC_DEFAULT) && !defined(__APPLE__)
kubamracekUnsubmitted
Done
ReplyInline Actions

Also add && !__APPLE__ please. I think there's no good reason to change the behavior of PAC on Apple platforms, so we shouldn't do that.

kubamracek: Also add ` && !__APPLE__` please. I think there's no good reason to change the behavior of PAC…
inline unsigned long ptrauth_strip(unsigned long __value, unsigned int __key) {
// On the stack the link register is protected with Pointer
// Authentication Code when compiled with -mbranch-protection.
// Let's stripping the PAC unconditionally because xpaclri is in
// the NOP space so will do nothing when it is not enabled or not available.
unsigned long ret;
asm volatile(
"mov x30, %1\n\t"
"hint #7\n\t" // xpaclri
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

using the hint because some build bot are building it with clang9/10 and those does not accept the mnemonic without v8.3 instruction set.

danielkiss: using the hint because some build bot are building it with clang9/10 and those does not accept…
kubamracekUnsubmitted
Not Done
ReplyInline Actions

Even a "hint" I think should really be #ifdef'd under something more specific than just __aarch64__. Do you have any macro from Clang that would tell when we're targeting a PAC-enabled target?

kubamracek: Even a "hint" I think should really be #ifdef'd under something more specific than just…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

There is one, the __ARM_FEATURE_PAC_DEFAULT.
The slight problem it is that it is set only when the code is compiled with -mbranch-protection=*.
Today the runtime is compiled without it on most of platforms but the user's code might compiled with it so there is a fairly hight chance the runtime will meet with a signed LR.

danielkiss: There is one, the [[ https://developer.arm.com/documentation/101028/0012/5--Feature-test-macros?
kubamracekUnsubmitted
Not Done
ReplyInline Actions

@ab what do you say to this?

In my opinion, we do *not* want these instructions to end up in the runtime when building for "plain aarch64", even if the instructions are just HINTs that don't do anything. At a minimum, we would need an !APPLE or something like that.

kubamracek: @ab what do you say to this? In my opinion, we do *not* want these instructions to end up in…
pbarrioUnsubmitted
Not Done
ReplyInline Actions

I would expect some users to want universal binaries that can run on both base AArch64 and PAC-enabled systems. This is also meant for systems other than Apple, so I think !APPLE wouldn't work. What is the reason behind not wanting HINTs in plain AArch64? Is it just code size? Do you see any security implication?

pbarrio: I would expect some users to want universal binaries that can run on both base AArch64 and PAC…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

In my use case the runtime is built with pac-ret so
__ARM_FEATURE_PAC_DEFAULT work for me.
Generally this problem of PAC/NonPAC compatible runtime support need to be solved in each runtime component I think we could defer the solution.

danielkiss: In my use case the runtime is built with pac-ret so `__ARM_FEATURE_PAC_DEFAULT` work for me.
"mov %0, x30\n\t"
: "=r"(ret)
: "r"(__value)
: "x30");
return ret;
}
#define ptrauth_auth_data(__value, __old_key, __old_data) __value
#define ptrauth_string_discriminator(__string) ((int)0)
#else #else
// Copied from <ptrauth.h> // Copied from <ptrauth.h>
#define ptrauth_strip(__value, __key) __value #define ptrauth_strip(__value, __key) __value
#define ptrauth_auth_data(__value, __old_key, __old_data) __value #define ptrauth_auth_data(__value, __old_key, __old_data) __value
#define ptrauth_string_discriminator(__string) ((int)0) #define ptrauth_string_discriminator(__string) ((int)0)
#endif #endif
#define STRIP_PC(pc) ((uptr)ptrauth_strip(pc, 0)) #define STRIP_PAC_PC(pc) ((uptr)ptrauth_strip((uptr)pc, 0))
kristof.beylsUnsubmitted
Done
ReplyInline Actions

This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than STRIP_PC.

kristof.beyls: This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than…
kubamracekUnsubmitted
Done
ReplyInline Actions

Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is not necessarily the same operation as stripping frame pointers, function pointers, or other types.

kubamracek: Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

__builtin_extract_return_address could do this but back then the decision was to strip return address in __builtin_return_address which is generally fine. both would be useful in this case.

STRIP_PAC_PC sounds good to me,

danielkiss: `__builtin_extract_return_address` could do this but back then the decision was to strip return…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

I keep STRIP_PC because as it is used today it is fine in the tsan context.

danielkiss: I keep `STRIP_PC` because as it is used today it is fine in the tsan context.
kubamracekUnsubmitted
Not Done
ReplyInline Actions

The extra cast, (uptr)pc, is causing downstream failures for the Apple PAC implementation. The ptrauth_strip builtin expects to receive pointers only — could you drop this (uptr)pc cast (and I guess change your ptrauth_strip to also expect a pointer)?

kubamracek: The extra cast, `(uptr)pc`, is causing downstream failures for the Apple PAC implementation.
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d

danielkiss: Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d
#endif // SANITIZER_PTRAUTH_H #endif // SANITIZER_PTRAUTH_H

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp

Show All 9 Lines
// run-time libraries. // run-time libraries.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_stacktrace.h" #include "sanitizer_stacktrace.h"
#include "sanitizer_common.h" #include "sanitizer_common.h"
#include "sanitizer_flags.h" #include "sanitizer_flags.h"
#include "sanitizer_platform.h" #include "sanitizer_platform.h"
#include "sanitizer_ptrauth.h"
namespace __sanitizer { namespace __sanitizer {
uptr StackTrace::GetNextInstructionPc(uptr pc) { uptr StackTrace::GetNextInstructionPc(uptr pc) {
#if defined(__sparc__) || defined(__mips__) #if defined(__sparc__) || defined(__mips__)
return pc + 8; return pc + 8;
#elif defined(__powerpc__) || defined(__arm__) || defined(__aarch64__) #elif defined(__powerpc__) || defined(__arm__) || defined(__aarch64__)
return pc + 4; return pc + 4;
▲ Show 20 LinesShow All 91 Lines▼ Show 20 Lines if (!IsValidFrame((uptr)caller_frame, stack_top, bottom) ||
break; break;
uhwptr pc1 = caller_frame[2]; uhwptr pc1 = caller_frame[2];
#elif defined(__s390__) #elif defined(__s390__)
uhwptr pc1 = frame[14]; uhwptr pc1 = frame[14];
#elif defined(__riscv) #elif defined(__riscv)
// frame[-1] contains the return address // frame[-1] contains the return address
uhwptr pc1 = frame[-1]; uhwptr pc1 = frame[-1];
#else #else
uhwptr pc1 = frame[1]; uhwptr pc1 = STRIP_PAC_PC(frame[1]);
kubamracekUnsubmitted
Not Done
ReplyInline Actions

How about:

  1. moving this below the kPageSize check (because that check is trying to detect non-pointers and garbage values and sentinels which are not ptrauth'd)
  2. making the strip call unconditional (it's no-op on non-PAC targets)
  3. using the handy STRIP_PC macro instead of ptrauth_strip?
kubamracek: How about: 1) moving this below the kPageSize check (because that check is trying to detect non…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions
  1. Let's consider this scenario. LR could be set to null in assembly before the function is called because no return is expected. The called PAC-RET protected function will store the signed null on the stack. Without stripping the below check will fail because of the PAC bits. If the value is invalid the strip will leave it as is. I think one of the reasons of the below check is to catch the null pointers.

2,3: Will do.

danielkiss: 1. Let's consider this scenario. LR could be set to null in assembly before the function is…
#endif #endif
// Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and // Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and
// x86_64) is invalid and stop unwinding here. If we're adding support for // x86_64) is invalid and stop unwinding here. If we're adding support for
// a platform where this isn't true, we need to reconsider this check. // a platform where this isn't true, we need to reconsider this check.
if (pc1 < kPageSize) if (pc1 < kPageSize)
break; break;
if (pc1 != pc) { if (pc1 != pc) {
trace_buffer[size++] = (uptr) pc1; trace_buffer[size++] = (uptr) pc1;
Show All 33 Lines

compiler-rt/lib/tsan/rtl/tsan_external.cpp

Show First 20 LinesShow All 105 Lines▼ Show 20 Linesvoid __tsan_external_assign_tag(void *addr, void *tag) {
} }
if (b) { if (b) {
b->tag = (uptr)tag; b->tag = (uptr)tag;
} }
} }
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
void __tsan_external_read(void *addr, void *caller_pc, void *tag) { void __tsan_external_read(void *addr, void *caller_pc, void *tag) {
ExternalAccess(addr, STRIP_PC(caller_pc), tag, MemoryRead); ExternalAccess(addr, STRIP_PAC_PC(caller_pc), tag, MemoryRead);
} }
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
void __tsan_external_write(void *addr, void *caller_pc, void *tag) { void __tsan_external_write(void *addr, void *caller_pc, void *tag) {
ExternalAccess(addr, STRIP_PC(caller_pc), tag, MemoryWrite); ExternalAccess(addr, STRIP_PAC_PC(caller_pc), tag, MemoryWrite);
} }
} // extern "C" } // extern "C"
#endif // !SANITIZER_GO #endif // !SANITIZER_GO
} // namespace __tsan } // namespace __tsan

compiler-rt/lib/tsan/rtl/tsan_interface.cpp

Show All 34 Lines
} }
void __tsan_write16(void *addr) { void __tsan_write16(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8);
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr + 8, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr + 8, kSizeLog8);
} }
void __tsan_read16_pc(void *addr, void *pc) { void __tsan_read16_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog8);
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr + 8, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr + 8, kSizeLog8);
} }
void __tsan_write16_pc(void *addr, void *pc) { void __tsan_write16_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog8);
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr + 8, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr + 8, kSizeLog8);
} }
// __tsan_unaligned_read/write calls are emitted by compiler. // __tsan_unaligned_read/write calls are emitted by compiler.
void __tsan_unaligned_read2(const void *addr) { void __tsan_unaligned_read2(const void *addr) {
UnalignedMemoryAccess(cur_thread(), CALLERPC, (uptr)addr, 2, false, false); UnalignedMemoryAccess(cur_thread(), CALLERPC, (uptr)addr, 2, false, false);
} }
▲ Show 20 LinesShow All 100 LinesShow Last 20 Lines

compiler-rt/lib/tsan/rtl/tsan_interface_inl.h

Show First 20 LinesShow All 45 Lines▼ Show 20 Linesvoid __tsan_write4(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog4); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog4);
} }
void __tsan_write8(void *addr) { void __tsan_write8(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8);
} }
void __tsan_read1_pc(void *addr, void *pc) { void __tsan_read1_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog1); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog1);
} }
void __tsan_read2_pc(void *addr, void *pc) { void __tsan_read2_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog2); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog2);
} }
void __tsan_read4_pc(void *addr, void *pc) { void __tsan_read4_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog4); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog4);
} }
void __tsan_read8_pc(void *addr, void *pc) { void __tsan_read8_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog8);
} }
void __tsan_write1_pc(void *addr, void *pc) { void __tsan_write1_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog1); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog1);
} }
void __tsan_write2_pc(void *addr, void *pc) { void __tsan_write2_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog2); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog2);
} }
void __tsan_write4_pc(void *addr, void *pc) { void __tsan_write4_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog4); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog4);
} }
void __tsan_write8_pc(void *addr, void *pc) { void __tsan_write8_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, kSizeLog8);
} }
void __tsan_vptr_update(void **vptr_p, void *new_val) { void __tsan_vptr_update(void **vptr_p, void *new_val) {
CHECK_EQ(sizeof(vptr_p), 8); CHECK_EQ(sizeof(vptr_p), 8);
if (*vptr_p != new_val) { if (*vptr_p != new_val) {
ThreadState *thr = cur_thread(); ThreadState *thr = cur_thread();
thr->is_vptr_access = true; thr->is_vptr_access = true;
MemoryWrite(thr, CALLERPC, (uptr)vptr_p, kSizeLog8); MemoryWrite(thr, CALLERPC, (uptr)vptr_p, kSizeLog8);
thr->is_vptr_access = false; thr->is_vptr_access = false;
} }
} }
void __tsan_vptr_read(void **vptr_p) { void __tsan_vptr_read(void **vptr_p) {
CHECK_EQ(sizeof(vptr_p), 8); CHECK_EQ(sizeof(vptr_p), 8);
ThreadState *thr = cur_thread(); ThreadState *thr = cur_thread();
thr->is_vptr_access = true; thr->is_vptr_access = true;
MemoryRead(thr, CALLERPC, (uptr)vptr_p, kSizeLog8); MemoryRead(thr, CALLERPC, (uptr)vptr_p, kSizeLog8);
thr->is_vptr_access = false; thr->is_vptr_access = false;
} }
void __tsan_func_entry(void *pc) { void __tsan_func_entry(void *pc) {
FuncEntry(cur_thread(), STRIP_PC(pc)); FuncEntry(cur_thread(), STRIP_PAC_PC(pc));
} }
void __tsan_func_exit() { void __tsan_func_exit() {
FuncExit(cur_thread()); FuncExit(cur_thread());
} }
void __tsan_ignore_thread_begin() { void __tsan_ignore_thread_begin() {
ThreadIgnoreBegin(cur_thread(), CALLERPC); ThreadIgnoreBegin(cur_thread(), CALLERPC);
} }
void __tsan_ignore_thread_end() { void __tsan_ignore_thread_end() {
ThreadIgnoreEnd(cur_thread(), CALLERPC); ThreadIgnoreEnd(cur_thread(), CALLERPC);
} }
void __tsan_read_range(void *addr, uptr size) { void __tsan_read_range(void *addr, uptr size) {
MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, false); MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, false);
} }
void __tsan_write_range(void *addr, uptr size) { void __tsan_write_range(void *addr, uptr size) {
MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, true); MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, true);
} }
void __tsan_read_range_pc(void *addr, uptr size, void *pc) { void __tsan_read_range_pc(void *addr, uptr size, void *pc) {
MemoryAccessRange(cur_thread(), STRIP_PC(pc), (uptr)addr, size, false); MemoryAccessRange(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, size, false);
} }
void __tsan_write_range_pc(void *addr, uptr size, void *pc) { void __tsan_write_range_pc(void *addr, uptr size, void *pc) {
MemoryAccessRange(cur_thread(), STRIP_PC(pc), (uptr)addr, size, true); MemoryAccessRange(cur_thread(), STRIP_PAC_PC(pc), (uptr)addr, size, true);
} }