[rtsan] Add syscall interceptor #118250
Merged
[rtsan] Add syscall interceptor #118250
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Your org has enabled the Graphite merge queue for merging into mainAdd the label “FP Bundles” to the PR and Graphite will automatically add it to the merge queue when it’s ready to merge. You must have a Graphite account and log in to Graphite in order to use the merge queue. Sign up using this link. |
Member
|
@llvm/pr-subscribers-compiler-rt-sanitizer Author: Chris Apple (cjappl) ChangesThis is a complex one - However, this call:
I've tried to put in a couple tests to ensure we aren't mucking with the underlying functionality and they seem to be working. Full diff: https://github.com/llvm/llvm-project/pull/118250.diff 3 Files Affected:
diff --git a/compiler-rt/lib/rtsan/rtsan_interceptors_posix.cpp b/compiler-rt/lib/rtsan/rtsan_interceptors_posix.cpp
index 7dddaf553dad6d..4262039e8e1fa6 100644
--- a/compiler-rt/lib/rtsan/rtsan_interceptors_posix.cpp
+++ b/compiler-rt/lib/rtsan/rtsan_interceptors_posix.cpp
@@ -815,6 +815,43 @@ INTERCEPTOR(int, mkfifo, const char *pathname, mode_t mode) {
return REAL(mkfifo)(pathname, mode);
}
+#if SANITIZER_APPLE
+#define INT_TYPE_SYSCALL int
+#else
+#define INT_TYPE_SYSCALL long
+#endif
+
+#pragma clang diagnostic push
+#pragma clang diagnostic ignored "-Wdeprecated-declarations"
+INTERCEPTOR(INT_TYPE_SYSCALL, syscall, INT_TYPE_SYSCALL number, ...) {
+ __rtsan_notify_intercepted_call("syscall");
+
+ va_list args;
+ va_start(args, number);
+
+ // the goal is to pick something large enough to hold all syscall args
+ // see fcntl for more discussion and why we always pull all 6 args
+ using arg_type = unsigned long;
+ arg_type arg1 = va_arg(args, arg_type);
+ arg_type arg2 = va_arg(args, arg_type);
+ arg_type arg3 = va_arg(args, arg_type);
+ arg_type arg4 = va_arg(args, arg_type);
+ arg_type arg5 = va_arg(args, arg_type);
+ arg_type arg6 = va_arg(args, arg_type);
+
+ // these are various examples of things that COULD be passed
+ static_assert(sizeof(arg_type) >= sizeof(off_t));
+ static_assert(sizeof(arg_type) >= sizeof(struct flock *));
+ static_assert(sizeof(arg_type) >= sizeof(const char *));
+ static_assert(sizeof(arg_type) >= sizeof(int));
+ static_assert(sizeof(arg_type) >= sizeof(unsigned long));
+
+ va_end(args);
+
+ return REAL(syscall)(number, arg1, arg2, arg3, arg4, arg5, arg6);
+}
+#pragma clang diagnostic pop
+
// Preinit
void __rtsan::InitializeInterceptors() {
INTERCEPT_FUNCTION(calloc);
@@ -918,6 +955,8 @@ void __rtsan::InitializeInterceptors() {
INTERCEPT_FUNCTION(pipe);
INTERCEPT_FUNCTION(mkfifo);
+
+ INTERCEPT_FUNCTION(syscall);
}
#endif // SANITIZER_POSIX
diff --git a/compiler-rt/lib/rtsan/tests/rtsan_test_interceptors_posix.cpp b/compiler-rt/lib/rtsan/tests/rtsan_test_interceptors_posix.cpp
index f715b0b11b2885..88df8ec46d0a33 100644
--- a/compiler-rt/lib/rtsan/tests/rtsan_test_interceptors_posix.cpp
+++ b/compiler-rt/lib/rtsan/tests/rtsan_test_interceptors_posix.cpp
@@ -47,6 +47,7 @@
#include <sys/mman.h>
#include <sys/socket.h>
#include <sys/stat.h>
+#include <sys/syscall.h>
#include <sys/types.h>
#include <sys/uio.h>
@@ -1090,4 +1091,20 @@ TEST(TestRtsanInterceptors, PipeDiesWhenRealtime) {
ExpectNonRealtimeSurvival(Func);
}
+#pragma clang diagnostic push
+#pragma clang diagnostic ignored "-Wdeprecated-declarations"
+TEST(TestRtsanInterceptors, SyscallDiesWhenRealtime) {
+ auto Func = []() { syscall(SYS_getpid); };
+ ExpectRealtimeDeath(Func, "syscall");
+ ExpectNonRealtimeSurvival(Func);
+}
+
+TEST(TestRtsanInterceptors, GetPidReturnsSame) {
+ int pid = syscall(SYS_getpid);
+ EXPECT_THAT(pid, Ne(-1));
+
+ EXPECT_THAT(getpid(), Eq(pid));
+}
+#pragma clang diagnostic pop
+
#endif // SANITIZER_POSIX
diff --git a/compiler-rt/test/rtsan/syscall.cpp b/compiler-rt/test/rtsan/syscall.cpp
new file mode 100644
index 00000000000000..a23a934184a691
--- /dev/null
+++ b/compiler-rt/test/rtsan/syscall.cpp
@@ -0,0 +1,78 @@
+// RUN: %clangxx -fsanitize=realtime %s -o %t
+// RUN: %env_rtsan_opts="halt_on_error=false" %run %t 2>&1 | FileCheck %s --check-prefixes=CHECK-RTSAN,CHECK
+
+// RUN: %clangxx %s -o %t
+// RUN: %run %t 2>&1 | FileCheck %s
+
+// UNSUPPORTED: ios
+
+// Intent: Ensure the `syscall` call behaves in the same way with/without the
+// sanitizer disabled
+
+#include <fcntl.h>
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <sys/syscall.h>
+#include <sys/types.h>
+#include <unistd.h>
+
+const char *GetTemporaryFilePath() { return "/tmp/rtsan_syscall_test.txt"; }
+
+void custom_assert(bool condition, const char *message) {
+ if (!condition) {
+ fprintf(stderr, "ASSERTION FAILED: %s\n", message);
+ exit(1);
+ }
+}
+
+class ScopedFileCleanup {
+public:
+ [[nodiscard]] ScopedFileCleanup() = default;
+ ~ScopedFileCleanup() {
+ if (access(GetTemporaryFilePath(), F_OK) != -1)
+ unlink(GetTemporaryFilePath());
+ }
+};
+
+// Apple has deprecated `syscall`, ignore that error
+#pragma clang diagnostic push
+#pragma clang diagnostic ignored "-Wdeprecated-declarations"
+int main() [[clang::nonblocking]] {
+ ScopedFileCleanup cleanup;
+
+ {
+ int fd = syscall(SYS_openat, AT_FDCWD, GetTemporaryFilePath(),
+ O_CREAT | O_WRONLY, 0644);
+
+ custom_assert(fd != -1, "Failed to open file - write");
+
+ int written = syscall(SYS_write, fd, "Hello, world!", 13);
+ custom_assert(written == 13, "Failed to write to file");
+
+ custom_assert(syscall(SYS_close, fd) == 0, "Failed to close file - write");
+ }
+
+ {
+ int fd = syscall(SYS_openat, AT_FDCWD, GetTemporaryFilePath(), O_RDONLY);
+ custom_assert(fd != -1, "Failed to open file - read");
+
+ char buffer[13];
+ int read = syscall(SYS_read, fd, buffer, 13);
+ custom_assert(read == 13, "Failed to read from file");
+
+ custom_assert(memcmp(buffer, "Hello, world!", 13) == 0,
+ "Read data does not match written data");
+
+ custom_assert(syscall(SYS_close, fd) == 0, "Failed to close file - read");
+ }
+
+ unlink(GetTemporaryFilePath());
+ printf("DONE\n");
+}
+#pragma clang diagnostic pop
+
+// CHECK-NOT: ASSERTION FAILED
+// CHECK-RTSAN-COUNT-6: Intercepted call to real-time unsafe function `syscall`
+
+// CHECK: DONE
|
vitalybuka
approved these changes
Dec 2, 2024
davidtrevelyan
approved these changes
Dec 2, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
4 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a complex one -
syscallis used when people want to bypass libc and make the call directlyHowever, this call:
I've tried to put in a couple tests to ensure we aren't mucking with the underlying functionality and they seem to be working.