[compiler-rt][rtsan] Use sanitizer internal allocator during rtsan init to avoid segfault in dlsym #98679
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
@llvm/pr-subscribers-compiler-rt-sanitizer Author: None (davidtrevelyan) ChangesFollows #98268 with a fix for a segfault during preinit on @cjappl and I took inspiration from the solution in Full diff: https://github.com/llvm/llvm-project/pull/98679.diff 4 Files Affected:
diff --git a/compiler-rt/cmake/Modules/AllSupportedArchDefs.cmake b/compiler-rt/cmake/Modules/AllSupportedArchDefs.cmake
index c8bec41db36e9..647f67b66af85 100644
--- a/compiler-rt/cmake/Modules/AllSupportedArchDefs.cmake
+++ b/compiler-rt/cmake/Modules/AllSupportedArchDefs.cmake
@@ -32,9 +32,7 @@ set(ALL_ASAN_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM32} ${ARM64} ${RISCV64}
${LOONGARCH64})
set(ALL_ASAN_ABI_SUPPORTED_ARCH ${X86_64} ${ARM64} ${ARM64_32})
set(ALL_DFSAN_SUPPORTED_ARCH ${X86_64} ${MIPS64} ${ARM64} ${LOONGARCH64})
-#set(ALL_RTSAN_SUPPORTED_ARCH ${X86} ${X86_64} ${ARM32} ${ARM64} ${RISCV64}
-# ${MIPS32} ${MIPS64} ${PPC64} ${S390X} ${SPARC} ${SPARCV9} ${HEXAGON}
-# ${LOONGARCH64})
+set(ALL_RTSAN_SUPPORTED_ARCH ${X86_64} ${ARM64})
if(ANDROID)
set(OS_NAME "Android")
diff --git a/compiler-rt/lib/rtsan/rtsan.cpp b/compiler-rt/lib/rtsan/rtsan.cpp
index 43a63b4636f1e..cf7fbddd9eb9c 100644
--- a/compiler-rt/lib/rtsan/rtsan.cpp
+++ b/compiler-rt/lib/rtsan/rtsan.cpp
@@ -12,10 +12,23 @@
#include <rtsan/rtsan_context.h>
#include <rtsan/rtsan_interceptors.h>
+using namespace __rtsan;
+
+bool __rtsan::rtsan_initialized;
+bool __rtsan::rtsan_init_is_running;
+
extern "C" {
SANITIZER_INTERFACE_ATTRIBUTE void __rtsan_init() {
- __rtsan::InitializeInterceptors();
+ CHECK(!rtsan_init_is_running);
+ if (rtsan_initialized)
+ return;
+ rtsan_init_is_running = true;
+
+ InitializeInterceptors();
+
+ rtsan_init_is_running = false;
+ rtsan_initialized = true;
}
SANITIZER_INTERFACE_ATTRIBUTE void __rtsan_realtime_enter() {
diff --git a/compiler-rt/lib/rtsan/rtsan.h b/compiler-rt/lib/rtsan/rtsan.h
index 8b1219c13cbd3..ccddaf2c893ef 100644
--- a/compiler-rt/lib/rtsan/rtsan.h
+++ b/compiler-rt/lib/rtsan/rtsan.h
@@ -14,6 +14,13 @@
extern "C" {
+namespace __rtsan {
+
+extern bool rtsan_initialized;
+extern bool rtsan_init_is_running;
+
+} // namespace __rtsan
+
// Initialise rtsan interceptors.
// A call to this method is added to the preinit array on Linux systems.
SANITIZER_INTERFACE_ATTRIBUTE void __rtsan_init();
diff --git a/compiler-rt/lib/rtsan/rtsan_interceptors.cpp b/compiler-rt/lib/rtsan/rtsan_interceptors.cpp
index 3a65f9d3f779d..f7e75b15ca33e 100644
--- a/compiler-rt/lib/rtsan/rtsan_interceptors.cpp
+++ b/compiler-rt/lib/rtsan/rtsan_interceptors.cpp
@@ -10,10 +10,12 @@
#include "rtsan/rtsan_interceptors.h"
+#include "sanitizer_common/sanitizer_allocator_internal.h"
#include "sanitizer_common/sanitizer_platform.h"
#include "sanitizer_common/sanitizer_platform_interceptors.h"
#include "interception/interception.h"
+#include "rtsan/rtsan.h"
#include "rtsan/rtsan_context.h"
#if SANITIZER_APPLE
@@ -35,6 +37,9 @@
using namespace __sanitizer;
+using __rtsan::rtsan_init_is_running;
+using __rtsan::rtsan_initialized;
+
void ExpectNotRealtime(const char *intercepted_function_name) {
__rtsan::GetContextForThisThread().ExpectNotRealtime(
intercepted_function_name);
@@ -238,11 +243,17 @@ INTERCEPTOR(int, nanosleep, const struct timespec *rqtp,
// Memory
INTERCEPTOR(void *, calloc, SIZE_T num, SIZE_T size) {
+ if (rtsan_init_is_running && REAL(calloc) == nullptr)
+ return __sanitizer::InternalCalloc(num, size);
+
ExpectNotRealtime("calloc");
return REAL(calloc)(num, size);
}
INTERCEPTOR(void, free, void *ptr) {
+ if (__sanitizer::internal_allocator()->PointerIsMine(ptr))
+ return __sanitizer::InternalFree(ptr);
+
if (ptr != NULL) {
ExpectNotRealtime("free");
}
@@ -250,11 +261,17 @@ INTERCEPTOR(void, free, void *ptr) {
}
INTERCEPTOR(void *, malloc, SIZE_T size) {
+ if (rtsan_init_is_running && REAL(malloc) == nullptr)
+ return __sanitizer::InternalAlloc(size);
+
ExpectNotRealtime("malloc");
return REAL(malloc)(size);
}
INTERCEPTOR(void *, realloc, void *ptr, SIZE_T size) {
+ if (rtsan_init_is_running && REAL(realloc) == nullptr)
+ return __sanitizer::InternalRealloc(ptr, size);
+
ExpectNotRealtime("realloc");
return REAL(realloc)(ptr, size);
}
|
|
Tagging interested parties: @vitalybuka @cjappl @chapuni - many thanks in advance for any reviews. |
chapuni
approved these changes
Jul 13, 2024
|
Polite ping FAO @vitalybuka and @MaskRay - your oversight on this PR would be much appreciated, @cjappl and I are just waiting for this and #99437 (also approved) to go in before we submit our next PR for rtsan's frontend in clang. Just wanted to also leave a reminder that I don't have commit access, so I will need someone to do the merge for me if there are no further requested changes. Many thanks in advance for your time! |
MaskRay
reviewed
Jul 18, 2024
| @@ -238,23 +243,35 @@ INTERCEPTOR(int, nanosleep, const struct timespec *rqtp, | |||
| // Memory | |||
|
|
|||
| INTERCEPTOR(void *, calloc, SIZE_T num, SIZE_T size) { | |||
| if (rtsan_init_is_running && REAL(calloc) == nullptr) | |||
There was a problem hiding this comment.
We should define UseImpl and use DlsymAlloc::Use. See #98415
MaskRay
approved these changes
Jul 19, 2024
|
Also, neither of the main authors of this patch have review access. If someone sees this after it has an acceptable number of approvals and wants to merge it, that would be great! Thanks |
|
I was waiting for possible response from regular compiler-rt sanitizers folks:) I think this is good to merge in the absence of their response. |
MaskRay
pushed a commit
that referenced
this pull request
Jul 22, 2024
) Also add atomic check to rtsan for when the tests are merged (related review #98679)
|
Thanks @MaskRay ! We were unsure of what to do when it looked like there was some approval, but we didn't have merge rights. Thanks for your help as always |
|
Having an error on android, which I thought was previously removed but may have been caught in a revert conflict. |
vitalybuka
pushed a commit
that referenced
this pull request
Jul 22, 2024
Based on failing build: https://lab.llvm.org/buildbot/#/builders/186/builds/829 Follow up to #98679
yuxuanchen1997
pushed a commit
that referenced
this pull request
Jul 25, 2024
…it to avoid segfault in dlsym (#98679) Summary: Follows #98268 with a fix for a segfault during preinit on `ubuntu:20.04` environments. Previously, `rtsan` was not handling the situation where `dlsym` calls `calloc` during the interceptors initialization, resulting in a call to a function at a null address. @cjappl and I took inspiration from the solution in `nsan`, but we re-used the sanitizer internal allocator instead of our own static buffer. This PR also re-enables the existing non-instrumented `rtsan` tests for `x86_64` and `arm64` architectures. --------- Co-authored-by: Chris Apple <cja-private@pm.me> Test Plan: Reviewers: Subscribers: Tasks: Tags: Differential Revision: https://phabricator.intern.facebook.com/D60251347
yuxuanchen1997
pushed a commit
that referenced
this pull request
Jul 25, 2024
) Also add atomic check to rtsan for when the tests are merged (related review #98679)
yuxuanchen1997
pushed a commit
that referenced
this pull request
Jul 25, 2024
Summary: Based on failing build: https://lab.llvm.org/buildbot/#/builders/186/builds/829 Follow up to #98679 Test Plan: Reviewers: Subscribers: Tasks: Tags: Differential Revision: https://phabricator.intern.facebook.com/D60251097
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Follows #98268 with a fix for a segfault during preinit on
ubuntu:20.04environments. Previously,rtsanwas not handling the situation wheredlsymcallscallocduring the interceptors initialization, resulting in a call to a function at a null address.@cjappl and I took inspiration from the solution in
nsan, but we re-used the sanitizer internal allocator instead of our own static buffer. This PR also re-enables the existing non-instrumentedrtsantests forx86_64andarm64architectures.