2016-08-16 03:30:21 +08:00
|
|
|
//===-- asan_descriptions.h -------------------------------------*- C++ -*-===//
|
|
|
|
//
|
2019-01-19 16:50:56 +08:00
|
|
|
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
|
|
|
|
// See https://llvm.org/LICENSE.txt for license information.
|
|
|
|
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
|
2016-08-16 03:30:21 +08:00
|
|
|
//
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
//
|
|
|
|
// This file is a part of AddressSanitizer, an address sanity checker.
|
|
|
|
//
|
|
|
|
// ASan-private header for asan_descriptions.cc.
|
|
|
|
// TODO(filcab): Most struct definitions should move to the interface headers.
|
|
|
|
//===----------------------------------------------------------------------===//
|
2016-08-18 21:22:00 +08:00
|
|
|
#ifndef ASAN_DESCRIPTIONS_H
|
|
|
|
#define ASAN_DESCRIPTIONS_H
|
2016-08-16 03:30:21 +08:00
|
|
|
|
2016-08-17 17:16:08 +08:00
|
|
|
#include "asan_allocator.h"
|
2016-08-17 00:38:46 +08:00
|
|
|
#include "asan_thread.h"
|
2016-08-16 03:30:21 +08:00
|
|
|
#include "sanitizer_common/sanitizer_common.h"
|
2016-08-17 00:38:46 +08:00
|
|
|
#include "sanitizer_common/sanitizer_report_decorator.h"
|
2016-08-16 03:30:21 +08:00
|
|
|
|
|
|
|
namespace __asan {
|
|
|
|
|
2016-08-17 00:38:46 +08:00
|
|
|
void DescribeThread(AsanThreadContext *context);
|
|
|
|
static inline void DescribeThread(AsanThread *t) {
|
|
|
|
if (t) DescribeThread(t->context());
|
|
|
|
}
|
2018-07-10 01:54:55 +08:00
|
|
|
|
|
|
|
class AsanThreadIdAndName {
|
|
|
|
public:
|
|
|
|
explicit AsanThreadIdAndName(AsanThreadContext *t);
|
|
|
|
explicit AsanThreadIdAndName(u32 tid);
|
|
|
|
|
|
|
|
// Contains "T%tid (%name)" or "T%tid" if the name is empty.
|
|
|
|
const char *c_str() const { return &name[0]; }
|
|
|
|
|
|
|
|
private:
|
|
|
|
void Init(u32 tid, const char *tname);
|
|
|
|
|
|
|
|
char name[128];
|
|
|
|
};
|
2016-08-17 00:38:46 +08:00
|
|
|
|
|
|
|
class Decorator : public __sanitizer::SanitizerCommonDecorator {
|
|
|
|
public:
|
|
|
|
Decorator() : SanitizerCommonDecorator() {}
|
|
|
|
const char *Access() { return Blue(); }
|
|
|
|
const char *Location() { return Green(); }
|
|
|
|
const char *Allocation() { return Magenta(); }
|
|
|
|
|
|
|
|
const char *ShadowByte(u8 byte) {
|
|
|
|
switch (byte) {
|
|
|
|
case kAsanHeapLeftRedzoneMagic:
|
|
|
|
case kAsanArrayCookieMagic:
|
|
|
|
return Red();
|
|
|
|
case kAsanHeapFreeMagic:
|
|
|
|
return Magenta();
|
|
|
|
case kAsanStackLeftRedzoneMagic:
|
|
|
|
case kAsanStackMidRedzoneMagic:
|
|
|
|
case kAsanStackRightRedzoneMagic:
|
|
|
|
return Red();
|
|
|
|
case kAsanStackAfterReturnMagic:
|
|
|
|
return Magenta();
|
|
|
|
case kAsanInitializationOrderMagic:
|
|
|
|
return Cyan();
|
|
|
|
case kAsanUserPoisonedMemoryMagic:
|
|
|
|
case kAsanContiguousContainerOOBMagic:
|
|
|
|
case kAsanAllocaLeftMagic:
|
|
|
|
case kAsanAllocaRightMagic:
|
|
|
|
return Blue();
|
|
|
|
case kAsanStackUseAfterScopeMagic:
|
|
|
|
return Magenta();
|
|
|
|
case kAsanGlobalRedzoneMagic:
|
|
|
|
return Red();
|
|
|
|
case kAsanInternalHeapMagic:
|
|
|
|
return Yellow();
|
|
|
|
case kAsanIntraObjectRedzone:
|
|
|
|
return Yellow();
|
|
|
|
default:
|
|
|
|
return Default();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
2016-08-16 03:30:21 +08:00
|
|
|
enum ShadowKind : u8 {
|
|
|
|
kShadowKindLow,
|
|
|
|
kShadowKindGap,
|
|
|
|
kShadowKindHigh,
|
|
|
|
};
|
|
|
|
static const char *const ShadowNames[] = {"low shadow", "shadow gap",
|
|
|
|
"high shadow"};
|
|
|
|
|
|
|
|
struct ShadowAddressDescription {
|
|
|
|
uptr addr;
|
|
|
|
ShadowKind kind;
|
|
|
|
u8 shadow_byte;
|
2016-08-19 21:07:23 +08:00
|
|
|
|
2016-09-10 04:43:20 +08:00
|
|
|
void Print() const;
|
2016-08-16 03:30:21 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
bool GetShadowAddressInformation(uptr addr, ShadowAddressDescription *descr);
|
|
|
|
bool DescribeAddressIfShadow(uptr addr);
|
|
|
|
|
2016-08-17 17:16:08 +08:00
|
|
|
enum AccessType {
|
|
|
|
kAccessTypeLeft,
|
|
|
|
kAccessTypeRight,
|
|
|
|
kAccessTypeInside,
|
|
|
|
kAccessTypeUnknown, // This means we have an AddressSanitizer bug!
|
|
|
|
};
|
|
|
|
|
|
|
|
struct ChunkAccess {
|
|
|
|
uptr bad_addr;
|
|
|
|
sptr offset;
|
|
|
|
uptr chunk_begin;
|
|
|
|
uptr chunk_size;
|
2017-10-26 01:21:37 +08:00
|
|
|
u32 user_requested_alignment : 12;
|
2016-08-17 17:16:08 +08:00
|
|
|
u32 access_type : 2;
|
|
|
|
u32 alloc_type : 2;
|
|
|
|
};
|
|
|
|
|
|
|
|
struct HeapAddressDescription {
|
|
|
|
uptr addr;
|
|
|
|
uptr alloc_tid;
|
|
|
|
uptr free_tid;
|
|
|
|
u32 alloc_stack_id;
|
|
|
|
u32 free_stack_id;
|
|
|
|
ChunkAccess chunk_access;
|
2016-08-19 21:07:23 +08:00
|
|
|
|
2016-09-10 04:43:20 +08:00
|
|
|
void Print() const;
|
2016-08-17 17:16:08 +08:00
|
|
|
};
|
|
|
|
|
|
|
|
bool GetHeapAddressInformation(uptr addr, uptr access_size,
|
|
|
|
HeapAddressDescription *descr);
|
|
|
|
bool DescribeAddressIfHeap(uptr addr, uptr access_size = 1);
|
|
|
|
|
2016-08-18 03:52:06 +08:00
|
|
|
struct StackAddressDescription {
|
|
|
|
uptr addr;
|
|
|
|
uptr tid;
|
|
|
|
uptr offset;
|
|
|
|
uptr frame_pc;
|
2016-09-10 05:09:06 +08:00
|
|
|
uptr access_size;
|
2016-08-18 03:52:06 +08:00
|
|
|
const char *frame_descr;
|
2016-08-19 21:07:23 +08:00
|
|
|
|
2016-09-10 05:09:06 +08:00
|
|
|
void Print() const;
|
2016-08-18 03:52:06 +08:00
|
|
|
};
|
2016-08-19 21:07:23 +08:00
|
|
|
|
2016-09-10 05:09:06 +08:00
|
|
|
bool GetStackAddressInformation(uptr addr, uptr access_size,
|
|
|
|
StackAddressDescription *descr);
|
2016-08-18 03:52:06 +08:00
|
|
|
|
2016-08-18 03:52:12 +08:00
|
|
|
struct GlobalAddressDescription {
|
|
|
|
uptr addr;
|
|
|
|
// Assume address is close to at most four globals.
|
|
|
|
static const int kMaxGlobals = 4;
|
|
|
|
__asan_global globals[kMaxGlobals];
|
|
|
|
u32 reg_sites[kMaxGlobals];
|
2016-09-10 05:09:06 +08:00
|
|
|
uptr access_size;
|
2016-08-18 03:52:12 +08:00
|
|
|
u8 size;
|
2016-08-19 21:07:23 +08:00
|
|
|
|
2016-09-10 05:09:06 +08:00
|
|
|
void Print(const char *bug_type = "") const;
|
2017-12-05 02:00:24 +08:00
|
|
|
|
|
|
|
// Returns true when this descriptions points inside the same global variable
|
|
|
|
// as other. Descriptions can have different address within the variable
|
|
|
|
bool PointsInsideTheSameVariable(const GlobalAddressDescription &other) const;
|
2016-08-18 03:52:12 +08:00
|
|
|
};
|
|
|
|
|
2016-09-10 05:09:06 +08:00
|
|
|
bool GetGlobalAddressInformation(uptr addr, uptr access_size,
|
|
|
|
GlobalAddressDescription *descr);
|
2016-08-18 03:52:12 +08:00
|
|
|
bool DescribeAddressIfGlobal(uptr addr, uptr access_size, const char *bug_type);
|
|
|
|
|
2016-08-19 21:07:23 +08:00
|
|
|
// General function to describe an address. Will try to describe the address as
|
|
|
|
// a shadow, global (variable), stack, or heap address.
|
|
|
|
// bug_type is optional and is used for checking if we're reporting an
|
|
|
|
// initialization-order-fiasco
|
|
|
|
// The proper access_size should be passed for stack, global, and heap
|
|
|
|
// addresses. Defaults to 1.
|
|
|
|
// Each of the *AddressDescription functions has its own Print() member, which
|
|
|
|
// may take access_size and bug_type parameters if needed.
|
|
|
|
void PrintAddressDescription(uptr addr, uptr access_size = 1,
|
|
|
|
const char *bug_type = "");
|
|
|
|
|
2016-09-10 04:43:20 +08:00
|
|
|
enum AddressKind {
|
|
|
|
kAddressKindWild,
|
|
|
|
kAddressKindShadow,
|
|
|
|
kAddressKindHeap,
|
|
|
|
kAddressKindStack,
|
|
|
|
kAddressKindGlobal,
|
|
|
|
};
|
|
|
|
|
|
|
|
class AddressDescription {
|
|
|
|
struct AddressDescriptionData {
|
|
|
|
AddressKind kind;
|
|
|
|
union {
|
|
|
|
ShadowAddressDescription shadow;
|
|
|
|
HeapAddressDescription heap;
|
|
|
|
StackAddressDescription stack;
|
|
|
|
GlobalAddressDescription global;
|
|
|
|
uptr addr;
|
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
AddressDescriptionData data;
|
|
|
|
|
|
|
|
public:
|
|
|
|
AddressDescription() = default;
|
|
|
|
// shouldLockThreadRegistry allows us to skip locking if we're sure we already
|
|
|
|
// have done it.
|
|
|
|
AddressDescription(uptr addr, bool shouldLockThreadRegistry = true)
|
|
|
|
: AddressDescription(addr, 1, shouldLockThreadRegistry) {}
|
|
|
|
AddressDescription(uptr addr, uptr access_size,
|
|
|
|
bool shouldLockThreadRegistry = true);
|
|
|
|
|
|
|
|
uptr Address() const {
|
|
|
|
switch (data.kind) {
|
|
|
|
case kAddressKindWild:
|
|
|
|
return data.addr;
|
|
|
|
case kAddressKindShadow:
|
|
|
|
return data.shadow.addr;
|
|
|
|
case kAddressKindHeap:
|
|
|
|
return data.heap.addr;
|
|
|
|
case kAddressKindStack:
|
|
|
|
return data.stack.addr;
|
|
|
|
case kAddressKindGlobal:
|
|
|
|
return data.global.addr;
|
|
|
|
}
|
|
|
|
UNREACHABLE("AddressInformation kind is invalid");
|
|
|
|
}
|
[asan] Reify ErrorGeneric
Summary:
Finish work on PR30351 (last one, after D24551, D24552, and D24554 land)
Also replace the old ReportData structure/variable with the current_error_ static
member of the ScopedInErrorReport class.
This has the following side-effects:
- Move ASAN_ON_ERROR(); call to the start of the destructor, instead
of in StartReporting().
- We only generate the error structure after the
ScopedInErrorReport constructor finishes, so we can't call
ASAN_ON_ERROR() during the constructor. I think this makes more
sense, since we end up never running two of the ASAN_ON_ERROR()
callback. This also works the same way as error reporting, since
we end up having a lock around it. Otherwise we could end up
with the ASAN_ON_ERROR() call for error 1, then the
ASAN_ON_ERROR() call for error 2, and then lock the mutex for
reporting error 1.
- The __asan_get_report_* functions will be able to, in the future,
provide information about other errors that aren't a "generic
error". But we might want to rethink that API, since it's too
restricted. Ideally we teach lldb about the current_error_ member of
ScopedInErrorReport.
Reviewers: vitalybuka, kcc, eugenis
Subscribers: kubabrecka, llvm-commits
Differential Revision: https://reviews.llvm.org/D24555
llvm-svn: 282107
2016-09-22 04:18:18 +08:00
|
|
|
void Print(const char *bug_descr = nullptr) const {
|
2016-09-10 04:43:20 +08:00
|
|
|
switch (data.kind) {
|
|
|
|
case kAddressKindWild:
|
|
|
|
Printf("Address %p is a wild pointer.\n", data.addr);
|
|
|
|
return;
|
|
|
|
case kAddressKindShadow:
|
|
|
|
return data.shadow.Print();
|
|
|
|
case kAddressKindHeap:
|
|
|
|
return data.heap.Print();
|
|
|
|
case kAddressKindStack:
|
|
|
|
return data.stack.Print();
|
|
|
|
case kAddressKindGlobal:
|
[asan] Reify ErrorGeneric
Summary:
Finish work on PR30351 (last one, after D24551, D24552, and D24554 land)
Also replace the old ReportData structure/variable with the current_error_ static
member of the ScopedInErrorReport class.
This has the following side-effects:
- Move ASAN_ON_ERROR(); call to the start of the destructor, instead
of in StartReporting().
- We only generate the error structure after the
ScopedInErrorReport constructor finishes, so we can't call
ASAN_ON_ERROR() during the constructor. I think this makes more
sense, since we end up never running two of the ASAN_ON_ERROR()
callback. This also works the same way as error reporting, since
we end up having a lock around it. Otherwise we could end up
with the ASAN_ON_ERROR() call for error 1, then the
ASAN_ON_ERROR() call for error 2, and then lock the mutex for
reporting error 1.
- The __asan_get_report_* functions will be able to, in the future,
provide information about other errors that aren't a "generic
error". But we might want to rethink that API, since it's too
restricted. Ideally we teach lldb about the current_error_ member of
ScopedInErrorReport.
Reviewers: vitalybuka, kcc, eugenis
Subscribers: kubabrecka, llvm-commits
Differential Revision: https://reviews.llvm.org/D24555
llvm-svn: 282107
2016-09-22 04:18:18 +08:00
|
|
|
// initialization-order-fiasco has a special Print()
|
|
|
|
return data.global.Print(bug_descr);
|
2016-09-10 04:43:20 +08:00
|
|
|
}
|
|
|
|
UNREACHABLE("AddressInformation kind is invalid");
|
|
|
|
}
|
|
|
|
|
|
|
|
void StoreTo(AddressDescriptionData *dst) const { *dst = data; }
|
|
|
|
|
|
|
|
const ShadowAddressDescription *AsShadow() const {
|
|
|
|
return data.kind == kAddressKindShadow ? &data.shadow : nullptr;
|
|
|
|
}
|
|
|
|
const HeapAddressDescription *AsHeap() const {
|
|
|
|
return data.kind == kAddressKindHeap ? &data.heap : nullptr;
|
|
|
|
}
|
|
|
|
const StackAddressDescription *AsStack() const {
|
|
|
|
return data.kind == kAddressKindStack ? &data.stack : nullptr;
|
|
|
|
}
|
|
|
|
const GlobalAddressDescription *AsGlobal() const {
|
|
|
|
return data.kind == kAddressKindGlobal ? &data.global : nullptr;
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
2016-08-16 03:30:21 +08:00
|
|
|
} // namespace __asan
|
2016-08-18 21:22:00 +08:00
|
|
|
|
|
|
|
#endif // ASAN_DESCRIPTIONS_H
|