This is an archive of the discontinued LLVM Phabricator instance.

Differential D98008

[AArch64][compiler-rt] Strip PAC from the link register.
ClosedPublic

Authored by danielkiss on Mar 4 2021, 11:08 PM.

Details

Reviewers
tamas.petz
pbarrio
kubamracek
yln
delcypher
aralisza
ab
Commits
rG4220531ceff0: [AArch64][compiler-rt] Strip PAC from the link register.
rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register.
Summary

-mbranch-protection protects the LR on the stack with PAC.
When the frames are walked the LR need to be cleared.
This inline assembly later will be replaced with a new builtin.

Test: build with -DCMAKE_C_FLAGS="-mbranch-protection=standard".

Diff Detail

Event Timeline

danielkiss created this revision.Mar 4 2021, 11:08 PM
Herald added subscribers: kristof.beyls, dberris. · View Herald TranscriptMar 4 2021, 11:08 PM
danielkiss requested review of this revision.Mar 4 2021, 11:08 PM
kubamracek added reviewers: yln, delcypher, aralisza.Mar 5 2021, 10:33 AM
kubamracek added a reviewer: ab.
kubamracek added a comment.Mar 5 2021, 10:43 AM

Could we reuse the macros/builtins from https://github.com/llvm/llvm-project/blob/main/compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h instead? Something like this:

     // Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and
     // x86_64) is invalid and stop unwinding here.  If we're adding support for
     // a platform where this isn't true, we need to reconsider this check.
     if (pc1 < kPageSize)
       break;
+#if __has_feature(ptrauth_returns)
+    pc1 = (uhwptr)ptrauth_strip((void *)pc1, ptrauth_key_return_address);
+#endif

?

danielkiss added a comment.Mar 5 2021, 11:52 AM
In D98008#2607313, @kubamracek wrote:

Could we reuse the macros/builtins from https://github.com/llvm/llvm-project/blob/main/compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h instead?

Yes, that is the plan "This inline assembly later will be replaced with a new builtin." I tried to refer to this builtin.
Right now the intrinsics are not jet made into the codebase: D90868/D91087. Maybe hight time to review/merge them?

Harbormaster completed remote builds in B92230: Diff 328395.Mar 5 2021, 3:32 PM
danielkiss updated this revision to Diff 329296.Mar 9 2021, 4:45 AM

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.
Moved the strip to the sanitizer_ptrauth.h.

danielkiss planned changes to this revision.Mar 9 2021, 6:03 AM
kristof.beyls added inline comments.Mar 9 2021, 7:31 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than STRIP_PC.

danielkiss updated this revision to Diff 329382.Mar 9 2021, 10:30 AM
danielkiss marked an inline comment as done.
kubamracek added a comment.Mar 9 2021, 10:59 AM

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.

Interesting, I'm not saying it's necessarily a bad idea, but could you explain the motivation? The previous approach (stripping the stack trace PCs at the point of capturing stack trace) seemed simpler, easier to implement and presumably faster (less stripping operations overall).

compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is not necessarily the same operation as stripping frame pointers, function pointers, or other types.

danielkiss added a comment.Mar 9 2021, 11:46 AM
In D98008#2614592, @kubamracek wrote:

Keep the PAC in the stack trace and only strip it when necessary like comparing traces, looking up symbols.

Interesting, I'm not saying it's necessarily a bad idea, but could you explain the motivation? The previous approach (stripping the stack trace PCs at the point of capturing stack trace) seemed simpler, easier to implement and presumably faster (less stripping operations overall).

Storing the PAC protected return addresses sounds safer because the values in trace can't be used directly as jump addresses. Assuming some might use sanitisers in production.

danielkiss added inline comments.Mar 9 2021, 11:55 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

__builtin_extract_return_address could do this but back then the decision was to strip return address in __builtin_return_address which is generally fine. both would be useful in this case.

STRIP_PAC_PC sounds good to me,

Harbormaster completed remote builds in B92853: Diff 329296.Mar 9 2021, 1:02 PM
Harbormaster completed remote builds in B92908: Diff 329382.Mar 9 2021, 8:18 PM
danielkiss updated this revision to Diff 329964.Mar 11 2021, 7:35 AM

The current think is that the unstripped value of the return addresses is not too problematic.
Let's keep it simple now.

danielkiss marked an inline comment as done.Mar 11 2021, 7:46 AM
danielkiss added inline comments.
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

using the hint because some build bot are building it with clang9/10 and those does not accept the mnemonic without v8.3 instruction set.

39

I keep STRIP_PC because as it is used today it is fine in the tsan context.

danielkiss updated this revision to Diff 329991.Mar 11 2021, 9:28 AM

fix for lint

kubamracek added inline comments.Mar 11 2021, 9:47 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

Even a "hint" I think should really be #ifdef'd under something more specific than just __aarch64__. Do you have any macro from Clang that would tell when we're targeting a PAC-enabled target?

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp
126

How about:

  1. moving this below the kPageSize check (because that check is trying to detect non-pointers and garbage values and sentinels which are not ptrauth'd)
  2. making the strip call unconditional (it's no-op on non-PAC targets)
  3. using the handy STRIP_PC macro instead of ptrauth_strip?
danielkiss added inline comments.Mar 11 2021, 11:51 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

There is one, the __ARM_FEATURE_PAC_DEFAULT.
The slight problem it is that it is set only when the code is compiled with -mbranch-protection=*.
Today the runtime is compiled without it on most of platforms but the user's code might compiled with it so there is a fairly hight chance the runtime will meet with a signed LR.

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp
126
  1. Let's consider this scenario. LR could be set to null in assembly before the function is called because no return is expected. The called PAC-RET protected function will store the signed null on the stack. Without stripping the below check will fail because of the PAC bits. If the value is invalid the strip will leave it as is. I think one of the reasons of the below check is to catch the null pointers.

2,3: Will do.

Harbormaster completed remote builds in B93306: Diff 329964.Mar 11 2021, 1:08 PM
Harbormaster completed remote builds in B93327: Diff 329991.Mar 11 2021, 3:58 PM
kubamracek added inline comments.Mar 11 2021, 4:49 PM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

@ab what do you say to this?

In my opinion, we do *not* want these instructions to end up in the runtime when building for "plain aarch64", even if the instructions are just HINTs that don't do anything. At a minimum, we would need an !APPLE or something like that.

pbarrio added inline comments.Mar 12 2021, 2:04 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

I would expect some users to want universal binaries that can run on both base AArch64 and PAC-enabled systems. This is also meant for systems other than Apple, so I think !APPLE wouldn't work. What is the reason behind not wanting HINTs in plain AArch64? Is it just code size? Do you see any security implication?

danielkiss updated this revision to Diff 330329.Mar 12 2021, 11:36 AM

Implementing the review comment.

danielkiss added inline comments.Mar 12 2021, 11:44 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
23

In my use case the runtime is built with pac-ret so
__ARM_FEATURE_PAC_DEFAULT work for me.
Generally this problem of PAC/NonPAC compatible runtime support need to be solved in each runtime component I think we could defer the solution.

kubamracek added inline comments.Mar 12 2021, 12:47 PM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
14

Also add && !__APPLE__ please. I think there's no good reason to change the behavior of PAC on Apple platforms, so we shouldn't do that.

Harbormaster completed remote builds in B93570: Diff 330329.Mar 12 2021, 1:42 PM
danielkiss updated this revision to Diff 330377.Mar 12 2021, 2:47 PM
danielkiss marked an inline comment as done.
Harbormaster completed remote builds in B93607: Diff 330377.Mar 12 2021, 4:18 PM
kubamracek accepted this revision.Mar 12 2021, 5:36 PM

LGTM, and thanks!

This revision is now accepted and ready to land.Mar 12 2021, 5:36 PM
This revision was landed with ongoing or failed builds.Mar 15 2021, 2:26 AM
Closed by commit rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register. (authored by danielkiss). · Explain Why
This revision was automatically updated to reflect the committed changes.
danielkiss added a commit: rGad40453fc425: [AArch64][compiler-rt] Strip PAC from the link register..
Herald added a project: Restricted Project. · View Herald TranscriptMar 15 2021, 2:26 AM
Herald added a subscriber: Restricted Project. · View Herald Transcript
kubamracek added inline comments.Mar 18 2021, 8:50 AM
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

The extra cast, (uptr)pc, is causing downstream failures for the Apple PAC implementation. The ptrauth_strip builtin expects to receive pointers only — could you drop this (uptr)pc cast (and I guess change your ptrauth_strip to also expect a pointer)?

danielkiss added a commit: rG4220531ceff0: [AArch64][compiler-rt] Strip PAC from the link register..Mar 18 2021, 2:04 PM
danielkiss added a reverting change: rGc1940aac99ea: Revert "[AArch64][compiler-rt] Strip PAC from the link register.".
danielkiss marked an inline comment as done.Mar 18 2021, 2:06 PM
danielkiss added inline comments.
compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h
39

Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d

Revision Contents

Diff 329382

compiler-rt/lib/asan/asan_suppressions.cpp

Show All 9 Lines
// //
// Issue suppression and suppression-related functions. // Issue suppression and suppression-related functions.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "asan_suppressions.h" #include "asan_suppressions.h"
#include "asan_stack.h" #include "asan_stack.h"
#include "sanitizer_common/sanitizer_placement_new.h" #include "sanitizer_common/sanitizer_placement_new.h"
#include "sanitizer_common/sanitizer_ptrauth.h"
#include "sanitizer_common/sanitizer_suppressions.h" #include "sanitizer_common/sanitizer_suppressions.h"
#include "sanitizer_common/sanitizer_symbolizer.h" #include "sanitizer_common/sanitizer_symbolizer.h"
namespace __asan { namespace __asan {
ALIGNED(64) static char suppression_placeholder[sizeof(SuppressionContext)]; ALIGNED(64) static char suppression_placeholder[sizeof(SuppressionContext)];
static SuppressionContext *suppression_ctx = nullptr; static SuppressionContext *suppression_ctx = nullptr;
static const char kInterceptorName[] = "interceptor_name"; static const char kInterceptorName[] = "interceptor_name";
Show All 40 Lines
bool IsStackTraceSuppressed(const StackTrace *stack) { bool IsStackTraceSuppressed(const StackTrace *stack) {
if (!HaveStackTraceBasedSuppressions()) if (!HaveStackTraceBasedSuppressions())
return false; return false;
CHECK(suppression_ctx); CHECK(suppression_ctx);
Symbolizer *symbolizer = Symbolizer::GetOrInit(); Symbolizer *symbolizer = Symbolizer::GetOrInit();
Suppression *s; Suppression *s;
for (uptr i = 0; i < stack->size && stack->trace[i]; i++) { for (uptr i = 0; i < stack->size && stack->trace[i]; i++) {
uptr addr = stack->trace[i]; uptr addr = STRIP_PAC(stack->trace[i]);
if (suppression_ctx->HasSuppressionType(kInterceptorViaLibrary)) { if (suppression_ctx->HasSuppressionType(kInterceptorViaLibrary)) {
// Match "interceptor_via_lib" suppressions. // Match "interceptor_via_lib" suppressions.
if (const char *module_name = symbolizer->GetModuleNameForPc(addr)) if (const char *module_name = symbolizer->GetModuleNameForPc(addr))
if (suppression_ctx->Match(module_name, kInterceptorViaLibrary, &s)) if (suppression_ctx->Match(module_name, kInterceptorViaLibrary, &s))
return true; return true;
} }
Show All 22 Lines

compiler-rt/lib/lsan/lsan_common.cpp

Show All 12 Lines
#include "lsan_common.h" #include "lsan_common.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
#include "sanitizer_common/sanitizer_flag_parser.h" #include "sanitizer_common/sanitizer_flag_parser.h"
#include "sanitizer_common/sanitizer_flags.h" #include "sanitizer_common/sanitizer_flags.h"
#include "sanitizer_common/sanitizer_placement_new.h" #include "sanitizer_common/sanitizer_placement_new.h"
#include "sanitizer_common/sanitizer_procmaps.h" #include "sanitizer_common/sanitizer_procmaps.h"
#include "sanitizer_common/sanitizer_ptrauth.h"
#include "sanitizer_common/sanitizer_report_decorator.h" #include "sanitizer_common/sanitizer_report_decorator.h"
#include "sanitizer_common/sanitizer_stackdepot.h" #include "sanitizer_common/sanitizer_stackdepot.h"
#include "sanitizer_common/sanitizer_stacktrace.h" #include "sanitizer_common/sanitizer_stacktrace.h"
#include "sanitizer_common/sanitizer_suppressions.h" #include "sanitizer_common/sanitizer_suppressions.h"
#include "sanitizer_common/sanitizer_thread_registry.h" #include "sanitizer_common/sanitizer_thread_registry.h"
#include "sanitizer_common/sanitizer_tls_get_addr.h" #include "sanitizer_common/sanitizer_tls_get_addr.h"
#if CAN_SANITIZE_LEAKS #if CAN_SANITIZE_LEAKS
▲ Show 20 LinesShow All 472 Lines▼ Show 20 Linesstatic void MarkInvalidPCCb(uptr chunk, void *arg) {
LsanMetadata m(chunk); LsanMetadata m(chunk);
if (m.allocated() && m.tag() != kReachable && m.tag() != kIgnored) { if (m.allocated() && m.tag() != kReachable && m.tag() != kIgnored) {
u32 stack_id = m.stack_trace_id(); u32 stack_id = m.stack_trace_id();
uptr caller_pc = 0; uptr caller_pc = 0;
if (stack_id > 0) if (stack_id > 0)
caller_pc = GetCallerPC(stack_id, param->stack_depot_reverse_map); caller_pc = GetCallerPC(stack_id, param->stack_depot_reverse_map);
// If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark // If caller_pc is unknown, this chunk may be allocated in a coroutine. Mark
// it as reachable, as we can't properly report its allocation stack anyway. // it as reachable, as we can't properly report its allocation stack anyway.
if (caller_pc == 0 || (param->skip_linker_allocations && if (caller_pc == 0 ||
GetLinker()->containsAddress(caller_pc))) { (param->skip_linker_allocations &&
GetLinker()->containsAddress(STRIP_PAC(caller_pc)))) {
m.set_tag(kReachable); m.set_tag(kReachable);
param->frontier->push_back(chunk); param->frontier->push_back(chunk);
} }
} }
} }
// On Linux, treats all chunks allocated from ld-linux.so as reachable, which // On Linux, treats all chunks allocated from ld-linux.so as reachable, which
// covers dynamically allocated TLS blocks, internal dynamic loader's loaded // covers dynamically allocated TLS blocks, internal dynamic loader's loaded
▲ Show 20 LinesShow All 261 Lines▼ Show 20 Lines
} }
Suppression *LeakSuppressionContext::GetSuppressionForStack( Suppression *LeakSuppressionContext::GetSuppressionForStack(
u32 stack_trace_id) { u32 stack_trace_id) {
LazyInit(); LazyInit();
StackTrace stack = StackDepotGet(stack_trace_id); StackTrace stack = StackDepotGet(stack_trace_id);
for (uptr i = 0; i < stack.size; i++) { for (uptr i = 0; i < stack.size; i++) {
Suppression *s = GetSuppressionForAddr( Suppression *s = GetSuppressionForAddr(
StackTrace::GetPreviousInstructionPc(stack.trace[i])); StackTrace::GetPreviousInstructionPc(STRIP_PAC(stack.trace[i])));
if (s) { if (s) {
suppressed_stacks_sorted = false; suppressed_stacks_sorted = false;
suppressed_stacks.push_back(stack_trace_id); suppressed_stacks.push_back(stack_trace_id);
return s; return s;
} }
} }
return nullptr; return nullptr;
} }
▲ Show 20 LinesShow All 257 LinesShow Last 20 Lines

compiler-rt/lib/sanitizer_common/sanitizer_ptrauth.h

//===-- sanitizer_ptrauth.h -------------------------------------*- C++ -*-===// //===-- sanitizer_ptrauth.h -------------------------------------*- C++ -*-===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#ifndef SANITIZER_PTRAUTH_H #ifndef SANITIZER_PTRAUTH_H
#define SANITIZER_PTRAUTH_H #define SANITIZER_PTRAUTH_H
#if __has_feature(ptrauth_calls) #if __has_feature(ptrauth_calls)
#include <ptrauth.h> #include <ptrauth.h>
#elif defined(__aarch64__)
kubamracekUnsubmitted
Done
ReplyInline Actions

Also add && !__APPLE__ please. I think there's no good reason to change the behavior of PAC on Apple platforms, so we shouldn't do that.

kubamracek: Also add ` && !__APPLE__` please. I think there's no good reason to change the behavior of PAC…
inline unsigned long ptrauth_strip(unsigned long __value, unsigned int __key) {
// On the stack the link register could be protected with Pointer
// Authentication Code when compiled with -mbranch-protection.
// Let's stripping the PAC unconditionally because xpaclri is in
// the NOP space so will do nothing when it is not enabled or not available.
unsigned long ret;
asm volatile(
"mov x30, %1\n\t"
"xpaclri\n\t"
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

using the hint because some build bot are building it with clang9/10 and those does not accept the mnemonic without v8.3 instruction set.

danielkiss: using the hint because some build bot are building it with clang9/10 and those does not accept…
kubamracekUnsubmitted
Not Done
ReplyInline Actions

Even a "hint" I think should really be #ifdef'd under something more specific than just __aarch64__. Do you have any macro from Clang that would tell when we're targeting a PAC-enabled target?

kubamracek: Even a "hint" I think should really be #ifdef'd under something more specific than just…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

There is one, the __ARM_FEATURE_PAC_DEFAULT.
The slight problem it is that it is set only when the code is compiled with -mbranch-protection=*.
Today the runtime is compiled without it on most of platforms but the user's code might compiled with it so there is a fairly hight chance the runtime will meet with a signed LR.

danielkiss: There is one, the [[ https://developer.arm.com/documentation/101028/0012/5--Feature-test-macros?
kubamracekUnsubmitted
Not Done
ReplyInline Actions

@ab what do you say to this?

In my opinion, we do *not* want these instructions to end up in the runtime when building for "plain aarch64", even if the instructions are just HINTs that don't do anything. At a minimum, we would need an !APPLE or something like that.

kubamracek: @ab what do you say to this? In my opinion, we do *not* want these instructions to end up in…
pbarrioUnsubmitted
Not Done
ReplyInline Actions

I would expect some users to want universal binaries that can run on both base AArch64 and PAC-enabled systems. This is also meant for systems other than Apple, so I think !APPLE wouldn't work. What is the reason behind not wanting HINTs in plain AArch64? Is it just code size? Do you see any security implication?

pbarrio: I would expect some users to want universal binaries that can run on both base AArch64 and PAC…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

In my use case the runtime is built with pac-ret so
__ARM_FEATURE_PAC_DEFAULT work for me.
Generally this problem of PAC/NonPAC compatible runtime support need to be solved in each runtime component I think we could defer the solution.

danielkiss: In my use case the runtime is built with pac-ret so `__ARM_FEATURE_PAC_DEFAULT` work for me.
"mov %0, x30\n\t"
: "=r"(ret)
: "r"(__value)
: "x30");
return ret;
}
#define ptrauth_auth_data(__value, __old_key, __old_data) __value
#define ptrauth_string_discriminator(__string) ((int)0)
#else #else
// Copied from <ptrauth.h> // Copied from <ptrauth.h>
#define ptrauth_strip(__value, __key) __value #define ptrauth_strip(__value, __key) __value
#define ptrauth_auth_data(__value, __old_key, __old_data) __value #define ptrauth_auth_data(__value, __old_key, __old_data) __value
#define ptrauth_string_discriminator(__string) ((int)0) #define ptrauth_string_discriminator(__string) ((int)0)
#endif #endif
#define STRIP_PC(pc) ((uptr)ptrauth_strip(pc, 0)) #define STRIP_PAC(ptr) ((uptr)ptrauth_strip((uptr)ptr, 0))
kristof.beylsUnsubmitted
Done
ReplyInline Actions

This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than STRIP_PC.

kristof.beyls: This is probably bikeshedding, but to me, STRIP_PAC would be a more meaningful name than…
kubamracekUnsubmitted
Done
ReplyInline Actions

Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is not necessarily the same operation as stripping frame pointers, function pointers, or other types.

kubamracek: Could we do at least STRIP_PAC_PC, or go back to STRIP_PC? The idea is that stripping PCs is…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

__builtin_extract_return_address could do this but back then the decision was to strip return address in __builtin_return_address which is generally fine. both would be useful in this case.

STRIP_PAC_PC sounds good to me,

danielkiss: `__builtin_extract_return_address` could do this but back then the decision was to strip return…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

I keep STRIP_PC because as it is used today it is fine in the tsan context.

danielkiss: I keep `STRIP_PC` because as it is used today it is fine in the tsan context.
kubamracekUnsubmitted
Not Done
ReplyInline Actions

The extra cast, (uptr)pc, is causing downstream failures for the Apple PAC implementation. The ptrauth_strip builtin expects to receive pointers only — could you drop this (uptr)pc cast (and I guess change your ptrauth_strip to also expect a pointer)?

kubamracek: The extra cast, `(uptr)pc`, is causing downstream failures for the Apple PAC implementation.
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d

danielkiss: Sorry for that. fixed in reland: 4220531ceff0742851b8a2a5836400a7a521491d
#endif // SANITIZER_PTRAUTH_H #endif // SANITIZER_PTRAUTH_H

compiler-rt/lib/sanitizer_common/sanitizer_stackdepot.cpp

//===-- sanitizer_stackdepot.cpp ------------------------------------------===// //===-- sanitizer_stackdepot.cpp ------------------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file is shared between AddressSanitizer and ThreadSanitizer // This file is shared between AddressSanitizer and ThreadSanitizer
// run-time libraries. // run-time libraries.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_stackdepot.h" #include "sanitizer_stackdepot.h"
#include "sanitizer_common.h" #include "sanitizer_common.h"
#include "sanitizer_hash.h" #include "sanitizer_hash.h"
#include "sanitizer_ptrauth.h"
#include "sanitizer_stackdepotbase.h" #include "sanitizer_stackdepotbase.h"
namespace __sanitizer { namespace __sanitizer {
struct StackDepotNode { struct StackDepotNode {
StackDepotNode *link; StackDepotNode *link;
u32 id; u32 id;
atomic_uint32_t hash_and_use_count; // hash_bits : 12; use_count : 20; atomic_uint32_t hash_and_use_count; // hash_bits : 12; use_count : 20;
Show All 12 Linesstruct StackDepotNode {
typedef StackTrace args_type; typedef StackTrace args_type;
bool eq(u32 hash, const args_type &args) const { bool eq(u32 hash, const args_type &args) const {
u32 hash_bits = u32 hash_bits =
atomic_load(&hash_and_use_count, memory_order_relaxed) & kHashMask; atomic_load(&hash_and_use_count, memory_order_relaxed) & kHashMask;
if ((hash & kHashMask) != hash_bits || args.size != size || args.tag != tag) if ((hash & kHashMask) != hash_bits || args.size != size || args.tag != tag)
return false; return false;
uptr i = 0; uptr i = 0;
for (; i < size; i++) { for (; i < size; i++) {
if (stack[i] != args.trace[i]) return false; if (STRIP_PAC(stack[i]) != STRIP_PAC(args.trace[i]))
return false;
} }
return true; return true;
} }
static uptr storage_size(const args_type &args) { static uptr storage_size(const args_type &args) {
return sizeof(StackDepotNode) + (args.size - 1) * sizeof(uptr); return sizeof(StackDepotNode) + (args.size - 1) * sizeof(uptr);
} }
static u32 hash(const args_type &args) { static u32 hash(const args_type &args) {
MurMur2HashBuilder H(args.size * sizeof(uptr)); MurMur2HashBuilder H(args.size * sizeof(uptr));
for (uptr i = 0; i < args.size; i++) H.add(args.trace[i]); for (uptr i = 0; i < args.size; i++) H.add(STRIP_PAC(args.trace[i]));
return H.get(); return H.get();
} }
static bool is_valid(const args_type &args) { static bool is_valid(const args_type &args) {
return args.size > 0 && args.trace; return args.size > 0 && args.trace;
} }
void store(const args_type &args, u32 hash) { void store(const args_type &args, u32 hash) {
atomic_store(&hash_and_use_count, hash & kHashMask, memory_order_relaxed); atomic_store(&hash_and_use_count, hash & kHashMask, memory_order_relaxed);
size = args.size; size = args.size;
▲ Show 20 LinesShow All 92 LinesShow Last 20 Lines

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace.cpp

Show All 9 Lines
// run-time libraries. // run-time libraries.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_stacktrace.h" #include "sanitizer_stacktrace.h"
#include "sanitizer_common.h" #include "sanitizer_common.h"
#include "sanitizer_flags.h" #include "sanitizer_flags.h"
#include "sanitizer_platform.h" #include "sanitizer_platform.h"
#include "sanitizer_ptrauth.h"
namespace __sanitizer { namespace __sanitizer {
uptr StackTrace::GetNextInstructionPc(uptr pc) { uptr StackTrace::GetNextInstructionPc(uptr pc) {
#if defined(__sparc__) || defined(__mips__) #if defined(__sparc__) || defined(__mips__)
return pc + 8; return pc + 8;
#elif defined(__powerpc__) || defined(__arm__) || defined(__aarch64__) #elif defined(__powerpc__) || defined(__arm__) || defined(__aarch64__)
return pc + 4; return pc + 4;
▲ Show 20 LinesShow All 91 Lines▼ Show 20 Lines if (!IsValidFrame((uptr)caller_frame, stack_top, bottom) ||
break; break;
uhwptr pc1 = caller_frame[2]; uhwptr pc1 = caller_frame[2];
#elif defined(__s390__) #elif defined(__s390__)
uhwptr pc1 = frame[14]; uhwptr pc1 = frame[14];
#elif defined(__riscv) #elif defined(__riscv)
// frame[-1] contains the return address // frame[-1] contains the return address
uhwptr pc1 = frame[-1]; uhwptr pc1 = frame[-1];
#else #else
uhwptr pc1 = frame[1]; uhwptr pc1 = frame[1];
kubamracekUnsubmitted
Not Done
ReplyInline Actions

How about:

  1. moving this below the kPageSize check (because that check is trying to detect non-pointers and garbage values and sentinels which are not ptrauth'd)
  2. making the strip call unconditional (it's no-op on non-PAC targets)
  3. using the handy STRIP_PC macro instead of ptrauth_strip?
kubamracek: How about: 1) moving this below the kPageSize check (because that check is trying to detect non…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions
  1. Let's consider this scenario. LR could be set to null in assembly before the function is called because no return is expected. The called PAC-RET protected function will store the signed null on the stack. Without stripping the below check will fail because of the PAC bits. If the value is invalid the strip will leave it as is. I think one of the reasons of the below check is to catch the null pointers.

2,3: Will do.

danielkiss: 1. Let's consider this scenario. LR could be set to null in assembly before the function is…
#endif #endif
// Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and // Let's assume that any pointer in the 0th page (i.e. <0x1000 on i386 and
// x86_64) is invalid and stop unwinding here. If we're adding support for // x86_64) is invalid and stop unwinding here. If we're adding support for
// a platform where this isn't true, we need to reconsider this check. // a platform where this isn't true, we need to reconsider this check.
if (pc1 < kPageSize) if (pc1 < kPageSize)
break; break;
if (pc1 != pc) { if (pc1 != pc) {
trace_buffer[size++] = (uptr) pc1; trace_buffer[size++] = (uptr) pc1;
Show All 19 Linesvoid BufferedStackTrace::PopStackFrames(uptr count) {
} }
} }
static uptr Distance(uptr a, uptr b) { return a < b ? b - a : a - b; } static uptr Distance(uptr a, uptr b) { return a < b ? b - a : a - b; }
uptr BufferedStackTrace::LocatePcInTrace(uptr pc) { uptr BufferedStackTrace::LocatePcInTrace(uptr pc) {
uptr best = 0; uptr best = 0;
for (uptr i = 1; i < size; ++i) { for (uptr i = 1; i < size; ++i) {
if (Distance(trace[i], pc) < Distance(trace[best], pc)) best = i; if (Distance(STRIP_PAC(trace[i]), pc) <
Distance(STRIP_PAC(trace[best]), pc))
best = i;
} }
return best; return best;
} }
} // namespace __sanitizer } // namespace __sanitizer

compiler-rt/lib/sanitizer_common/sanitizer_stacktrace_libcdep.cpp

//===-- sanitizer_stacktrace_libcdep.cpp ----------------------------------===// //===-- sanitizer_stacktrace_libcdep.cpp ----------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file is shared between AddressSanitizer and ThreadSanitizer // This file is shared between AddressSanitizer and ThreadSanitizer
// run-time libraries. // run-time libraries.
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_common.h" #include "sanitizer_common.h"
#include "sanitizer_placement_new.h" #include "sanitizer_placement_new.h"
#include "sanitizer_ptrauth.h"
#include "sanitizer_stacktrace.h" #include "sanitizer_stacktrace.h"
#include "sanitizer_stacktrace_printer.h" #include "sanitizer_stacktrace_printer.h"
#include "sanitizer_symbolizer.h" #include "sanitizer_symbolizer.h"
namespace __sanitizer { namespace __sanitizer {
void StackTrace::Print() const { void StackTrace::Print() const {
if (trace == nullptr || size == 0) { if (trace == nullptr || size == 0) {
Printf(" <empty stack>\n\n"); Printf(" <empty stack>\n\n");
return; return;
} }
InternalScopedString frame_desc(GetPageSizeCached() * 2); InternalScopedString frame_desc(GetPageSizeCached() * 2);
InternalScopedString dedup_token(GetPageSizeCached()); InternalScopedString dedup_token(GetPageSizeCached());
int dedup_frames = common_flags()->dedup_token_length; int dedup_frames = common_flags()->dedup_token_length;
bool symbolize = RenderNeedsSymbolization(common_flags()->stack_trace_format); bool symbolize = RenderNeedsSymbolization(common_flags()->stack_trace_format);
uptr frame_num = 0; uptr frame_num = 0;
for (uptr i = 0; i < size && trace[i]; i++) { for (uptr i = 0; i < size && trace[i]; i++) {
// PCs in stack traces are actually the return addresses, that is, // PCs in stack traces are actually the return addresses, that is,
// addresses of the next instructions after the call. // addresses of the next instructions after the call.
uptr pc = GetPreviousInstructionPc(trace[i]); uptr pc = GetPreviousInstructionPc(STRIP_PAC(trace[i]));
SymbolizedStack *frames; SymbolizedStack *frames;
if (symbolize) if (symbolize)
frames = Symbolizer::GetOrInit()->SymbolizePC(pc); frames = Symbolizer::GetOrInit()->SymbolizePC(pc);
else else
frames = SymbolizedStack::New(pc); frames = SymbolizedStack::New(pc);
CHECK(frames); CHECK(frames);
for (SymbolizedStack *cur = frames; cur; cur = cur->next) { for (SymbolizedStack *cur = frames; cur; cur = cur->next) {
frame_desc.clear(); frame_desc.clear();
▲ Show 20 LinesShow All 130 LinesShow Last 20 Lines

compiler-rt/lib/sanitizer_common/sanitizer_symbolizer_report.cpp

Show All 9 Lines
/// libraries and implements symbolized reports related functions. /// libraries and implements symbolized reports related functions.
/// ///
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
#include "sanitizer_common.h" #include "sanitizer_common.h"
#include "sanitizer_file.h" #include "sanitizer_file.h"
#include "sanitizer_flags.h" #include "sanitizer_flags.h"
#include "sanitizer_procmaps.h" #include "sanitizer_procmaps.h"
#include "sanitizer_ptrauth.h"
#include "sanitizer_report_decorator.h" #include "sanitizer_report_decorator.h"
#include "sanitizer_stacktrace.h" #include "sanitizer_stacktrace.h"
#include "sanitizer_stacktrace_printer.h" #include "sanitizer_stacktrace_printer.h"
#include "sanitizer_symbolizer.h" #include "sanitizer_symbolizer.h"
#if SANITIZER_POSIX #if SANITIZER_POSIX
# include "sanitizer_posix.h" # include "sanitizer_posix.h"
# include <sys/mman.h> # include <sys/mman.h>
▲ Show 20 LinesShow All 50 Lines▼ Show 20 Lines#if !SANITIZER_GO
if (!common_flags()->print_summary) if (!common_flags()->print_summary)
return; return;
if (stack->size == 0) { if (stack->size == 0) {
ReportErrorSummary(error_type); ReportErrorSummary(error_type);
return; return;
} }
// Currently, we include the first stack frame into the report summary. // Currently, we include the first stack frame into the report summary.
// Maybe sometimes we need to choose another frame (e.g. skip memcpy/etc). // Maybe sometimes we need to choose another frame (e.g. skip memcpy/etc).
uptr pc = StackTrace::GetPreviousInstructionPc(stack->trace[0]); uptr pc = StackTrace::GetPreviousInstructionPc(STRIP_PAC(stack->trace[0]));
SymbolizedStack *frame = Symbolizer::GetOrInit()->SymbolizePC(pc); SymbolizedStack *frame = Symbolizer::GetOrInit()->SymbolizePC(pc);
ReportErrorSummary(error_type, frame->info, alt_tool_name); ReportErrorSummary(error_type, frame->info, alt_tool_name);
frame->ClearAll(); frame->ClearAll();
#endif #endif
} }
void ReportMmapWriteExec(int prot) { void ReportMmapWriteExec(int prot) {
#if SANITIZER_POSIX && (!SANITIZER_GO && !SANITIZER_ANDROID) #if SANITIZER_POSIX && (!SANITIZER_GO && !SANITIZER_ANDROID)
▲ Show 20 LinesShow All 202 LinesShow Last 20 Lines

compiler-rt/lib/tsan/rtl/tsan_external.cpp

Show First 20 LinesShow All 105 Lines▼ Show 20 Linesvoid __tsan_external_assign_tag(void *addr, void *tag) {
} }
if (b) { if (b) {
b->tag = (uptr)tag; b->tag = (uptr)tag;
} }
} }
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
void __tsan_external_read(void *addr, void *caller_pc, void *tag) { void __tsan_external_read(void *addr, void *caller_pc, void *tag) {
ExternalAccess(addr, STRIP_PC(caller_pc), tag, MemoryRead); ExternalAccess(addr, STRIP_PAC(caller_pc), tag, MemoryRead);
} }
SANITIZER_INTERFACE_ATTRIBUTE SANITIZER_INTERFACE_ATTRIBUTE
void __tsan_external_write(void *addr, void *caller_pc, void *tag) { void __tsan_external_write(void *addr, void *caller_pc, void *tag) {
ExternalAccess(addr, STRIP_PC(caller_pc), tag, MemoryWrite); ExternalAccess(addr, STRIP_PAC(caller_pc), tag, MemoryWrite);
} }
} // extern "C" } // extern "C"
#endif // !SANITIZER_GO #endif // !SANITIZER_GO
} // namespace __tsan } // namespace __tsan

compiler-rt/lib/tsan/rtl/tsan_interface.cpp

Show All 34 Lines
} }
void __tsan_write16(void *addr) { void __tsan_write16(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8);
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr + 8, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr + 8, kSizeLog8);
} }
void __tsan_read16_pc(void *addr, void *pc) { void __tsan_read16_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog8);
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr + 8, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr + 8, kSizeLog8);
} }
void __tsan_write16_pc(void *addr, void *pc) { void __tsan_write16_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog8);
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr + 8, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr + 8, kSizeLog8);
} }
// __tsan_unaligned_read/write calls are emitted by compiler. // __tsan_unaligned_read/write calls are emitted by compiler.
void __tsan_unaligned_read2(const void *addr) { void __tsan_unaligned_read2(const void *addr) {
UnalignedMemoryAccess(cur_thread(), CALLERPC, (uptr)addr, 2, false, false); UnalignedMemoryAccess(cur_thread(), CALLERPC, (uptr)addr, 2, false, false);
} }
▲ Show 20 LinesShow All 100 LinesShow Last 20 Lines

compiler-rt/lib/tsan/rtl/tsan_interface_inl.h

Show First 20 LinesShow All 45 Lines▼ Show 20 Linesvoid __tsan_write4(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog4); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog4);
} }
void __tsan_write8(void *addr) { void __tsan_write8(void *addr) {
MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), CALLERPC, (uptr)addr, kSizeLog8);
} }
void __tsan_read1_pc(void *addr, void *pc) { void __tsan_read1_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog1); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog1);
} }
void __tsan_read2_pc(void *addr, void *pc) { void __tsan_read2_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog2); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog2);
} }
void __tsan_read4_pc(void *addr, void *pc) { void __tsan_read4_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog4); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog4);
} }
void __tsan_read8_pc(void *addr, void *pc) { void __tsan_read8_pc(void *addr, void *pc) {
MemoryRead(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryRead(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog8);
} }
void __tsan_write1_pc(void *addr, void *pc) { void __tsan_write1_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog1); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog1);
} }
void __tsan_write2_pc(void *addr, void *pc) { void __tsan_write2_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog2); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog2);
} }
void __tsan_write4_pc(void *addr, void *pc) { void __tsan_write4_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog4); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog4);
} }
void __tsan_write8_pc(void *addr, void *pc) { void __tsan_write8_pc(void *addr, void *pc) {
MemoryWrite(cur_thread(), STRIP_PC(pc), (uptr)addr, kSizeLog8); MemoryWrite(cur_thread(), STRIP_PAC(pc), (uptr)addr, kSizeLog8);
} }
void __tsan_vptr_update(void **vptr_p, void *new_val) { void __tsan_vptr_update(void **vptr_p, void *new_val) {
CHECK_EQ(sizeof(vptr_p), 8); CHECK_EQ(sizeof(vptr_p), 8);
if (*vptr_p != new_val) { if (*vptr_p != new_val) {
ThreadState *thr = cur_thread(); ThreadState *thr = cur_thread();
thr->is_vptr_access = true; thr->is_vptr_access = true;
MemoryWrite(thr, CALLERPC, (uptr)vptr_p, kSizeLog8); MemoryWrite(thr, CALLERPC, (uptr)vptr_p, kSizeLog8);
thr->is_vptr_access = false; thr->is_vptr_access = false;
} }
} }
void __tsan_vptr_read(void **vptr_p) { void __tsan_vptr_read(void **vptr_p) {
CHECK_EQ(sizeof(vptr_p), 8); CHECK_EQ(sizeof(vptr_p), 8);
ThreadState *thr = cur_thread(); ThreadState *thr = cur_thread();
thr->is_vptr_access = true; thr->is_vptr_access = true;
MemoryRead(thr, CALLERPC, (uptr)vptr_p, kSizeLog8); MemoryRead(thr, CALLERPC, (uptr)vptr_p, kSizeLog8);
thr->is_vptr_access = false; thr->is_vptr_access = false;
} }
void __tsan_func_entry(void *pc) { void __tsan_func_entry(void *pc) { FuncEntry(cur_thread(), STRIP_PAC(pc)); }
Lint: Pre-merge checks
Inline Actions

clang-tidy: warning: function '__tsan_func_entry' defined in a header file; function definitions in header files can lead to ODR violations [misc-definitions-in-headers]
not useful

Lint: Pre-merge checks: clang-tidy: warning: function '__tsan_func_entry' defined in a header file; function…
FuncEntry(cur_thread(), STRIP_PC(pc));
}
void __tsan_func_exit() { void __tsan_func_exit() {
FuncExit(cur_thread()); FuncExit(cur_thread());
} }
void __tsan_ignore_thread_begin() { void __tsan_ignore_thread_begin() {
ThreadIgnoreBegin(cur_thread(), CALLERPC); ThreadIgnoreBegin(cur_thread(), CALLERPC);
} }
void __tsan_ignore_thread_end() { void __tsan_ignore_thread_end() {
ThreadIgnoreEnd(cur_thread(), CALLERPC); ThreadIgnoreEnd(cur_thread(), CALLERPC);
} }
void __tsan_read_range(void *addr, uptr size) { void __tsan_read_range(void *addr, uptr size) {
MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, false); MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, false);
} }
void __tsan_write_range(void *addr, uptr size) { void __tsan_write_range(void *addr, uptr size) {
MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, true); MemoryAccessRange(cur_thread(), CALLERPC, (uptr)addr, size, true);
} }
void __tsan_read_range_pc(void *addr, uptr size, void *pc) { void __tsan_read_range_pc(void *addr, uptr size, void *pc) {
MemoryAccessRange(cur_thread(), STRIP_PC(pc), (uptr)addr, size, false); MemoryAccessRange(cur_thread(), STRIP_PAC(pc), (uptr)addr, size, false);
} }
void __tsan_write_range_pc(void *addr, uptr size, void *pc) { void __tsan_write_range_pc(void *addr, uptr size, void *pc) {
MemoryAccessRange(cur_thread(), STRIP_PC(pc), (uptr)addr, size, true); MemoryAccessRange(cur_thread(), STRIP_PAC(pc), (uptr)addr, size, true);
} }

compiler-rt/lib/tsan/rtl/tsan_rtl_report.cpp

//===-- tsan_rtl_report.cpp -----------------------------------------------===// //===-- tsan_rtl_report.cpp -----------------------------------------------===//
// //
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
// See https://llvm.org/LICENSE.txt for license information. // See https://llvm.org/LICENSE.txt for license information.
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
// //
// This file is a part of ThreadSanitizer (TSan), a race detector. // This file is a part of ThreadSanitizer (TSan), a race detector.
// //
//===----------------------------------------------------------------------===// //===----------------------------------------------------------------------===//
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

+#include "sanitizer_common/sanitizer_common.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` +#include "sanitizer_common/sanitizer_common.h" ```
#include "sanitizer_common/sanitizer_libc.h" #include "sanitizer_common/sanitizer_libc.h"
#include "sanitizer_common/sanitizer_placement_new.h" #include "sanitizer_common/sanitizer_placement_new.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

+#include "sanitizer_common/sanitizer_ptrauth.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` +#include "sanitizer_common/sanitizer_ptrauth.h" ```
#include "sanitizer_common/sanitizer_stackdepot.h" #include "sanitizer_common/sanitizer_stackdepot.h"
#include "sanitizer_common/sanitizer_common.h" #include "sanitizer_common/sanitizer_common.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

-#include "sanitizer_common/sanitizer_common.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` -#include "sanitizer_common/sanitizer_common.h" ```
#include "sanitizer_common/sanitizer_stacktrace.h" #include "sanitizer_common/sanitizer_stacktrace.h"
#include "sanitizer_common/sanitizer_ptrauth.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

-#include "sanitizer_common/sanitizer_ptrauth.h"
+#include "tsan_fd.h"
+#include "tsan_flags.h"
+#include "tsan_mman.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` -#include "sanitizer_common/sanitizer_ptrauth.h"…
#include "tsan_platform.h" #include "tsan_platform.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

+#include "tsan_report.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` +#include "tsan_report.h" ```
#include "tsan_rtl.h" #include "tsan_rtl.h"
#include "tsan_suppressions.h" #include "tsan_suppressions.h"
#include "tsan_symbolize.h" #include "tsan_symbolize.h"
#include "tsan_report.h" #include "tsan_report.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

-#include "tsan_report.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` -#include "tsan_report.h" ```
#include "tsan_sync.h" #include "tsan_sync.h"
#include "tsan_mman.h" #include "tsan_mman.h"
Lint: Pre-merge checks
Inline Actions

clang-format: please reformat the code

-#include "tsan_mman.h"
-#include "tsan_flags.h"
-#include "tsan_fd.h"
Lint: Pre-merge checks: clang-format: please reformat the code ``` -#include "tsan_mman.h" -#include "tsan_flags.h"…
#include "tsan_flags.h" #include "tsan_flags.h"
#include "tsan_fd.h" #include "tsan_fd.h"
namespace __tsan { namespace __tsan {
using namespace __sanitizer; using namespace __sanitizer;
static ReportStack *SymbolizeStack(StackTrace trace); static ReportStack *SymbolizeStack(StackTrace trace);
▲ Show 20 LinesShow All 81 Lines▼ Show 20 Lines
} }
static ReportStack *SymbolizeStack(StackTrace trace) { static ReportStack *SymbolizeStack(StackTrace trace) {
if (trace.size == 0) if (trace.size == 0)
return 0; return 0;
SymbolizedStack *top = nullptr; SymbolizedStack *top = nullptr;
for (uptr si = 0; si < trace.size; si++) { for (uptr si = 0; si < trace.size; si++) {
const uptr pc = trace.trace[si]; const uptr pc = trace.trace[si];
uptr pc1 = pc; uptr pc1 = STRIP_PAC(pc);
// We obtain the return address, but we're interested in the previous // We obtain the return address, but we're interested in the previous
// instruction. // instruction.
if ((pc & kExternalPCBit) == 0) if ((pc & kExternalPCBit) == 0)
pc1 = StackTrace::GetPreviousInstructionPc(pc); pc1 = StackTrace::GetPreviousInstructionPc(STRIP_PAC(pc));
SymbolizedStack *ent = SymbolizeCode(pc1); SymbolizedStack *ent = SymbolizeCode(pc1);
CHECK_NE(ent, 0); CHECK_NE(ent, 0);
SymbolizedStack *last = ent; SymbolizedStack *last = ent;
while (last->next) { while (last->next) {
last->info.address = pc; // restore original pc for report last->info.address = pc; // restore original pc for report
last = last->next; last = last->next;
} }
last->info.address = pc; // restore original pc for report last->info.address = pc; // restore original pc for report
▲ Show 20 LinesShow All 618 LinesShow Last 20 Lines