Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bazel: fix sanitizers #24948

Merged
merged 2 commits into from
Jan 28, 2025
Merged

bazel: fix sanitizers #24948

merged 2 commits into from
Jan 28, 2025

Conversation

rockwotj
Copy link
Contributor

  • bazel: add libresolv to sysroot
  • bazel/boost: fix use after free

Backports Required

  • none - not a bug fix
  • none - this is a backport
  • none - issue does not exist in previous branches
  • none - papercut/not impactful enough to backport
  • v24.3.x
  • v24.2.x
  • v24.1.x

Release Notes

  • none

@rockwotj rockwotj requested a review from travisdowns January 27, 2025 19:38
@rockwotj
bazel: add libresolv to sysroot
feaf27e 
Needed for the sanitizers
@rockwotj
bazel/boost: fix use after free
6552dab 
The global configuration set a value on a singleton in boost, which
causes use after free when the global configuration is torn down, but
the singleton then touches the ostream on it's teardown.
travisdowns
travisdowns reviewed Jan 28, 2025
View reviewed changes
src/v/test_utils/boost_result_redirect.cc
}
}
std::ofstream _out;
static inline std::optional<std::ofstream> _out;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm, this was my doing. An example I saw had some deregister code in the desctructor which I omitted, which probably avoided the UAF.

So in this case _out outlives the problematic access? Because the config object itself is destroyed (I think on every test) but the the static outlives that, until static destruction time.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So in this case _out outlives the problematic access?

Yeah, the destructor for the unit test singleton runs before this from my testing and the sanitizer is happy too. I've not fully loaded the standard on destructor ordering into ram here, so this still could be sketchy. However it does seem the XML files are still being created properly, so I think we're good?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think on every test

The documentation seems to disagree with that, I think everything we're playing with here are singletons, but the global configuration singleton is destroyed before the unit test stuff, which is why we need that to run.

https://live.boost.org/doc/libs/1_82_0/libs/test/doc/html/boost_test/utf_reference/link_references/link_boost_test_global_configuration.html

@rockwotj rockwotj merged commit 36c57ba into redpanda-data:dev Jan 28, 2025
17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@travisdowns travisdowns travisdowns approved these changes

Assignees
No one assigned
Labels
area/build area/redpanda
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rockwotj @travisdowns