[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
//===-- options.h -----------------------------------------------*- C++ -*-===//
|
|
|
|
|
//
|
|
|
|
|
// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
|
|
|
|
|
// See https://llvm.org/LICENSE.txt for license information.
|
|
|
|
|
// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
|
|
|
|
|
//
|
|
|
|
|
//===----------------------------------------------------------------------===//
|
|
|
|
|
|
|
|
|
|
#ifndef GWP_ASAN_OPTIONS_H_
|
|
|
|
|
#define GWP_ASAN_OPTIONS_H_
|
|
|
|
|
|
[GWP-ASan] Add generic unwinders and structure backtrace output.
Summary:
Adds two flavours of generic unwinder and all the supporting cruft. If the
supporting allocator is okay with bringing in sanitizer_common, they can use
the fast frame-pointer based unwinder from sanitizer_common. Otherwise, we also
provide the backtrace() libc-based unwinder as well. Of course, the allocator
can always specify its own unwinder and unwinder-symbolizer.
The slightly changed output format is exemplified in the first comment on this
patch. It now better incorporates backtrace information, and displays
allocation details on the second line.
Reviewers: eugenis, vlad.tsyrklevich
Reviewed By: eugenis, vlad.tsyrklevich
Subscribers: srhines, kubamracek, mgorny, cryptoad, #sanitizers, llvm-commits, morehouse
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D63841
llvm-svn: 364941
2019-07-03 00:04:52 +08:00
|
|
|
#include <stddef.h>
|
|
|
|
|
#include <stdint.h>
|
|
|
|
|
|
[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
namespace gwp_asan {
|
|
|
|
|
namespace options {
|
2019-08-13 05:36:44 +08:00
|
|
|
// ================================ Requirements ===============================
|
|
|
|
|
// This function is required to be implemented by the supporting allocator. The
|
|
|
|
|
// sanitizer::Printf() function can be simply used here.
|
|
|
|
|
// ================================ Description ================================
|
|
|
|
|
// This function shall produce output according to a strict subset of the C
|
|
|
|
|
// standard library's printf() family. This function must support printing the
|
|
|
|
|
// following formats:
|
|
|
|
|
// 1. integers: "%([0-9]*)?(z|ll)?{d,u,x,X}"
|
|
|
|
|
// 2. pointers: "%p"
|
|
|
|
|
// 3. strings: "%[-]([0-9]*)?(\\.\\*)?s"
|
|
|
|
|
// 4. chars: "%c"
|
[GWP-ASan] Split options_parser and backtrace_sanitizer_common.
Summary:
optional/options_parser and optional/backtrace_sanitizer_common are logically
separate components. They both use sanitizer-common to power their
functionality, but there was an unstated implicit dependency that in order for
backtrace_sanitizer_common to function correctly, one had to also use
options_parser.
This was because options_parser called __sanitizer::InitialiseCommonFlags. This
is a requirement for backtrace_sanitizer_common to work, as the sanitizer
unwinder uses the sanitizer_common flags and will SEGV on a null page if
they're not initialised correctly.
This patch removes this hidden dependency. You can now use
backtrace_sanitizer_common without the requirements of options_parser.
This patch also makes the GWP-ASan unit tests only have a soft dependency on
sanitizer-common. The unit tests previously explicitly used
__sanitizer::Printf, which is now provided under
tests/optional/printf_sanitizer_common. This allows Android to build the unit
tests using their own signal-safe printf().
Reviewers: eugenis
Reviewed By: eugenis
Subscribers: srhines, mgorny, #sanitizers, llvm-commits, vlad.tsyrklevich, morehouse
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D66684
llvm-svn: 369825
2019-08-24 07:23:48 +08:00
|
|
|
// This function must be implemented in a signal-safe manner.
|
2019-08-13 05:36:44 +08:00
|
|
|
// =================================== Notes ===================================
|
|
|
|
|
// This function has a slightly different signature than the C standard
|
|
|
|
|
// library's printf(). Notably, it returns 'void' rather than 'int'.
|
[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
typedef void (*Printf_t)(const char *Format, ...);
|
|
|
|
|
|
2019-08-13 05:36:44 +08:00
|
|
|
// ================================ Requirements ===============================
|
|
|
|
|
// This function is required to be either implemented by the supporting
|
|
|
|
|
// allocator, or one of the two provided implementations may be used
|
|
|
|
|
// (RTGwpAsanBacktraceLibc or RTGwpAsanBacktraceSanitizerCommon).
|
|
|
|
|
// ================================ Description ================================
|
|
|
|
|
// This function shall collect the backtrace for the calling thread and place
|
|
|
|
|
// the result in `TraceBuffer`. This function should elide itself and all frames
|
|
|
|
|
// below itself from `TraceBuffer`, i.e. the caller's frame should be in
|
|
|
|
|
// TraceBuffer[0], and subsequent frames 1..n into TraceBuffer[1..n], where a
|
|
|
|
|
// maximum of `Size` frames are stored. Returns the number of frames stored into
|
|
|
|
|
// `TraceBuffer`, and zero on failure. If the return value of this function is
|
|
|
|
|
// equal to `Size`, it may indicate that the backtrace is truncated.
|
|
|
|
|
// =================================== Notes ===================================
|
|
|
|
|
// This function may directly or indirectly call malloc(), as the
|
|
|
|
|
// GuardedPoolAllocator contains a reentrancy barrier to prevent infinite
|
|
|
|
|
// recursion. Any allocation made inside this function will be served by the
|
|
|
|
|
// supporting allocator, and will not have GWP-ASan protections.
|
|
|
|
|
typedef size_t (*Backtrace_t)(uintptr_t *TraceBuffer, size_t Size);
|
|
|
|
|
|
|
|
|
|
// ================================ Requirements ===============================
|
|
|
|
|
// This function is optional for the supporting allocator, but one of the two
|
|
|
|
|
// provided implementations may be used (RTGwpAsanBacktraceLibc or
|
|
|
|
|
// RTGwpAsanBacktraceSanitizerCommon). If not provided, a default implementation
|
|
|
|
|
// is used which prints the raw pointers only.
|
|
|
|
|
// ================================ Description ================================
|
|
|
|
|
// This function shall take the backtrace provided in `TraceBuffer`, and print
|
|
|
|
|
// it in a human-readable format using `Print`. Generally, this function shall
|
|
|
|
|
// resolve raw pointers to section offsets and print them with the following
|
|
|
|
|
// sanitizer-common format:
|
|
|
|
|
// " #{frame_number} {pointer} in {function name} ({binary name}+{offset}"
|
|
|
|
|
// e.g. " #5 0x420459 in _start (/tmp/uaf+0x420459)"
|
|
|
|
|
// This format allows the backtrace to be symbolized offline successfully using
|
|
|
|
|
// llvm-symbolizer.
|
|
|
|
|
// =================================== Notes ===================================
|
|
|
|
|
// This function may directly or indirectly call malloc(), as the
|
|
|
|
|
// GuardedPoolAllocator contains a reentrancy barrier to prevent infinite
|
|
|
|
|
// recursion. Any allocation made inside this function will be served by the
|
|
|
|
|
// supporting allocator, and will not have GWP-ASan protections.
|
|
|
|
|
typedef void (*PrintBacktrace_t)(uintptr_t *TraceBuffer, size_t TraceLength,
|
|
|
|
|
Printf_t Print);
|
[GWP-ASan] Add generic unwinders and structure backtrace output.
Summary:
Adds two flavours of generic unwinder and all the supporting cruft. If the
supporting allocator is okay with bringing in sanitizer_common, they can use
the fast frame-pointer based unwinder from sanitizer_common. Otherwise, we also
provide the backtrace() libc-based unwinder as well. Of course, the allocator
can always specify its own unwinder and unwinder-symbolizer.
The slightly changed output format is exemplified in the first comment on this
patch. It now better incorporates backtrace information, and displays
allocation details on the second line.
Reviewers: eugenis, vlad.tsyrklevich
Reviewed By: eugenis, vlad.tsyrklevich
Subscribers: srhines, kubamracek, mgorny, cryptoad, #sanitizers, llvm-commits, morehouse
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D63841
llvm-svn: 364941
2019-07-03 00:04:52 +08:00
|
|
|
|
[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
struct Options {
|
|
|
|
|
Printf_t Printf = nullptr;
|
[GWP-ASan] Add generic unwinders and structure backtrace output.
Summary:
Adds two flavours of generic unwinder and all the supporting cruft. If the
supporting allocator is okay with bringing in sanitizer_common, they can use
the fast frame-pointer based unwinder from sanitizer_common. Otherwise, we also
provide the backtrace() libc-based unwinder as well. Of course, the allocator
can always specify its own unwinder and unwinder-symbolizer.
The slightly changed output format is exemplified in the first comment on this
patch. It now better incorporates backtrace information, and displays
allocation details on the second line.
Reviewers: eugenis, vlad.tsyrklevich
Reviewed By: eugenis, vlad.tsyrklevich
Subscribers: srhines, kubamracek, mgorny, cryptoad, #sanitizers, llvm-commits, morehouse
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D63841
llvm-svn: 364941
2019-07-03 00:04:52 +08:00
|
|
|
Backtrace_t Backtrace = nullptr;
|
|
|
|
|
PrintBacktrace_t PrintBacktrace = nullptr;
|
[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
|
|
|
|
|
// Read the options from the included definitions file.
|
|
|
|
|
#define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \
|
|
|
|
|
Type Name = DefaultValue;
|
|
|
|
|
#include "gwp_asan/options.inc"
|
|
|
|
|
#undef GWP_ASAN_OPTION
|
|
|
|
|
|
|
|
|
|
void setDefaults() {
|
|
|
|
|
#define GWP_ASAN_OPTION(Type, Name, DefaultValue, Description) \
|
|
|
|
|
Name = DefaultValue;
|
|
|
|
|
#include "gwp_asan/options.inc"
|
|
|
|
|
#undef GWP_ASAN_OPTION
|
|
|
|
|
|
|
|
|
|
Printf = nullptr;
|
[GWP-ASan] Add generic unwinders and structure backtrace output.
Summary:
Adds two flavours of generic unwinder and all the supporting cruft. If the
supporting allocator is okay with bringing in sanitizer_common, they can use
the fast frame-pointer based unwinder from sanitizer_common. Otherwise, we also
provide the backtrace() libc-based unwinder as well. Of course, the allocator
can always specify its own unwinder and unwinder-symbolizer.
The slightly changed output format is exemplified in the first comment on this
patch. It now better incorporates backtrace information, and displays
allocation details on the second line.
Reviewers: eugenis, vlad.tsyrklevich
Reviewed By: eugenis, vlad.tsyrklevich
Subscribers: srhines, kubamracek, mgorny, cryptoad, #sanitizers, llvm-commits, morehouse
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D63841
llvm-svn: 364941
2019-07-03 00:04:52 +08:00
|
|
|
Backtrace = nullptr;
|
|
|
|
|
PrintBacktrace = nullptr;
|
[GWP-ASan] Configuration options [3].
Summary:
See D60593 for further information.
This patch introduces the configuration options for GWP-ASan. In general, we expect the supporting allocator to populate the options struct, and give that to GWP-ASan during initialisation. For allocators that are okay with pulling in sanitizer_common, we also provide an optional parser that populates the gwp_asan::Options struct with values provided in the GWP_ASAN_OPTIONS environment variable.
This patch contains very little logic, and all of the testable components (i.e. the optional parser's internal logic) is tested as part of the sanitizer_common testbed.
Reviewers: vlad.tsyrklevich, morehouse, jfb
Reviewed By: morehouse
Subscribers: dexonsmith, kubamracek, mgorny, #sanitizers, llvm-commits, vitalybuka
Tags: #sanitizers, #llvm
Differential Revision: https://reviews.llvm.org/D62698
llvm-svn: 362527
2019-06-05 01:01:11 +08:00
|
|
|
}
|
|
|
|
|
};
|
|
|
|
|
} // namespace options
|
|
|
|
|
} // namespace gwp_asan
|
|
|
|
|
|
|
|
|
|
#endif // GWP_ASAN_OPTIONS_H_
|