[PAL] Fix memory PAL regression test for UBSan
#2003
Conversation
There was a problem hiding this comment.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, 2 unresolved discussions, not enough approvals from maintainers (2 more required), not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @dimakuv)
-- commits line 4 at r1:
Isn't it v17? (according to https://maskray.me/blog/2022-12-18-control-flow-integrity#fsanitizefunction)
Code quote:
v18
-- commits line 4 at r1:
Isn't it (also) because since v17-fsanitize=function was allowed on C code, while previously it was C++ only (based on https://reviews.llvm.org/D148827)?
Code quote:
added more UBSan checks
dimakuv
force-pushed
the
dimakuv/fix-ubsan-pal-regr-memory
branch
from
75d6f50
to
9777dac
Compare
There was a problem hiding this comment.
Reviewable status: all files reviewed, 2 unresolved discussions, not enough approvals from maintainers (2 more required), not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @kailun-qin)
Previously, kailun-qin (Kailun Qin) wrote…
Isn't it v17? (according to https://maskray.me/blog/2022-12-18-control-flow-integrity#fsanitizefunction)
Done.
Previously, kailun-qin (Kailun Qin) wrote…
Isn't it (also) because since v17
-fsanitize=functionwas allowed on C code, while previously it was C++ only (based on https://reviews.llvm.org/D148827)?
Done. Rephrased.
There was a problem hiding this comment.
Reviewed all commit messages.
Reviewable status: all files reviewed, all discussions resolved, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel)
There was a problem hiding this comment.
Reviewed 1 of 1 files at r1, all commit messages.
Reviewable status: all files reviewed, 1 unresolved discussion, not enough approvals from maintainers (1 more required), not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @dimakuv)
pal/regression/memory.c line 96 at r2 (raw file):
* to be instrumented with two magic metadata values, located right-before the function in address * space. The below code does *not* add metadata (it simply allocates some pages and copies the asm * code at the beginning of the first page). Instead of adding UBSan-required metadata, we simply
"asm code" -> "machine code"
dimakuv
force-pushed
the
dimakuv/fix-ubsan-pal-regr-memory
branch
from
9777dac
to
0f22fa7
Compare
There was a problem hiding this comment.
Reviewable status: 0 of 1 files reviewed, 1 unresolved discussion, not enough approvals from maintainers (2 more required), not enough approvals from different teams (1 more required, approved so far: Intel) (waiting on @kailun-qin and @mkow)
pal/regression/memory.c line 96 at r2 (raw file):
Previously, mkow (Michał Kowalczyk) wrote…
"asm code" -> "machine code"
Done. Also in the commit message.
There was a problem hiding this comment.
Reviewed 1 of 1 files at r3, all commit messages.
Reviewable status: all files reviewed, all discussions resolved, not enough approvals from maintainers (1 more required)
There was a problem hiding this comment.
Reviewed 1 of 1 files at r3, all commit messages.
Reviewable status:complete! all files reviewed, all discussions resolved
Newer Clang versions (v17 and newer) added more UBSan checks for C code that started triggering UBSan on PAL regression tests. In particular, UBSan added the check "Indirect call of a function through a function pointer of the wrong type". UBSan expects all functions which can be indirectly called to be instrumented with two magic metadata values, located right-before the function in address space. The `memory` test however does *not* add this required metadata to a dummy generated-on-the-fly function (it simply allocates some pages and copies machine code at the beginning of the first page). Instead of adding UBSan-required metadata, we simply disable this particular check (it's a test after all, not core Gramine functionality). Signed-off-by: Dmitrii Kuvaiskii <[email protected]>
mkow
force-pushed
the
dimakuv/fix-ubsan-pal-regr-memory
branch
from
0f22fa7
to
bf765c8
Compare
There was a problem hiding this comment.
Reviewed 1 of 1 files at r4, all commit messages.
Reviewable status:
Description of the changes
Newer Clang versions (v18 and newer) added more UBSan checks that triggered UBSan on PAL regression tests. In particular, UBSan added the check "Indirect call of a function through a function pointer of the wrong type". UBSan expects all functions which can be indirectly called to be instrumented with two magic metadata values, located right-before the function in address space.
The
memorytest however does not add this required metadata to a dummy generated-on-the-fly function (it simply allocates some pages and copies the asm code at the beginning of the first page). Instead of adding UBSan-required metadata, we simply disable this particular check (it's a test after all, not core Gramine functionality).References:
Reported by @woju.
How to test this PR?
Run PAL regression tests on Ubuntu 24.04 + UBSan enabled.
This change is