Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[PATCH v5] fix issues reported by GCC undefined sanitizer #2044

Merged
merged 19 commits into from
Apr 16, 2024
Merged

[PATCH v5] fix issues reported by GCC undefined sanitizer #2044

merged 19 commits into from
Apr 16, 2024

Commits on Apr 16, 2024

  1. linux-gen: pool: free ring shm if pool creation fails 

    If _odp_pool_create() fails, free ring_shm if it has been reserved. If
adjust_size() fails, instead of returning immediately, first free the
reserved resources, including ring_shm.

Also, for consistency, set ring pointer to NULL whenever ring_shm is
freed.

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    f8f909a View commit details
    Browse the repository at this point in the history

  2. linux-gen: pool: flush pool cache only if the pool has a ring 

    In cache_flush(), if the pool's ring is NULL, i.e. the pool is not
reserved, return immediately and don't try to flush the cache. This
avoids taking the address of a member of the ring struct via a NULL
pointer, which is undefined behavior.

Fixes GCC undefined sanitizer error:

odp_pool.c:138:7: runtime error: member access within null pointer of type 'struct pool_ring_t'

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    ad7174c View commit details
    Browse the repository at this point in the history

  3. linux-gen: crypto_openssl: copy capabilities only if destination is n… 

    …ot NULL

Don't copy capabilities if the destination pointer is NULL. In these
cases size is also zero, so nothing is copied anyway. However,
memcpy() destination is declared to never be NULL, so calling it with
NULL destination is undefined behavior.

Fixes GCC undefined sanitizer errors:

odp_crypto_openssl.c:1911:2: runtime error: null pointer passed as argument 1, which is declared to never be null
odp_crypto_openssl.c:2013:2: runtime error: null pointer passed as argument 1, which is declared to never be null

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    27e7c65 View commit details
    Browse the repository at this point in the history

  4. linux-gen: sched: use static array size in schedule_group_create() 

    With an empty thread mask, thr_tbl[] in schedule_group_create() ends
up being zero size, which is undefined behavior. Fix by using a static
array size.

Fixes GCC undefined sanitizer error:

odp_schedule_basic.c:1922:6: runtime error: variable length array bound evaluates to non-positive value 0

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    76b5488 View commit details
    Browse the repository at this point in the history

  5. linux-gen: packet: in packet_free_multi_ev(), return immediately if n… 

    …umber of events is zero

If packet_free_multi_ev() is called with zero events, the pkt_hdrs[]
array ends up being zero size, which is undefined behavior. Fix by
returning early if number of events is zero.

Fixes GCC undefined sanitizer error:

odp_packet.c:702:20: runtime error: variable length array bound evaluates to non-positive value 0

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    cb53b7d View commit details
    Browse the repository at this point in the history

  6. linux-gen: crc: avoid undefined behavior in bit shifts 

    Avoid undefined behavior in bit shifts in reflect_u*() functions by
using types of sufficient width for the values being shifted.

Fixes GCC undefined sanitizer error:

odp_hash_crc_gen.c:90:16: runtime error: left shift of 237 by 24 places cannot be represented in type 'int'

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    1f5d00e View commit details
    Browse the repository at this point in the history

  7. linux-gen: hash: use unaligned types in _odp_hash_crc32c() 

    Since the data is not necessarily aligned, use unaligned types to read
it, in order to avoid undefined behavior.

Fixes GCC undefined sanitizer errors:

hash_crc32.h:35:24: runtime error: load of misaligned address 0x0000005e12d4 for type 'const uint64_t', which requires 8 byte alignment
hash_crc32.h:40:14: runtime error: load of misaligned address 0x0000005ff879 for type 'const uint32_t', which requires 4 byte alignment
hash_crc32.h:51:47: runtime error: load of misaligned address 0x0000005e67af for type 'const uint16_t', which requires 2 byte alignment

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    8cd6d9d View commit details
    Browse the repository at this point in the history

  8. linux-gen: parse: use unaligned types when parsing ethernet header 

    An ethernet header being parsed may not be aligned in memory, so use
unaligned types to read it, in order to avoid undefined behavior.

Fixes GCC undefined sanitizer errors:

odp_parse.c:43:30: runtime error: load of misaligned address 0x7fc1d4675093 for type 'const uint16_t', which requires 2 byte alignment
odp_parse.c:49:21: runtime error: load of misaligned address 0x7fc1d4674655 for type 'const uint16_t', which requires 2 byte alignment
odp_parse.c:52:21: runtime error: load of misaligned address 0x7fc1d4674657 for type 'const uint16_t', which requires 2 byte alignment
odp_parse.c:72:30: runtime error: load of misaligned address 0x7fc1d4674667 for type 'const uint16_t', which requires 2 byte alignment

Also, remove unnecessary intermediate casts to const void * and uintptr_t.

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    4a401bd View commit details
    Browse the repository at this point in the history

  9. linux-gen: tm: align allocation of queue_blk_t for internal packet queue 

    Align allocation of queue_blk_t, in order to avoid unaligned access to
queue_blk_t members, which is undefined behavior.

Fixes many GCC undefined sanitizer errors, for example:

odp_pkt_queue.c:66:22: runtime error: member access within misaligned address 0x7fe5c3d1f010 for type 'struct queue_blk_t', which requires 64 byte alignment

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    d259871 View commit details
    Browse the repository at this point in the history

  10. linux-gen: random: use unaligned types 

    Random data destination may not be aligned. Use unaligned types to
write the random data, in order to avoid undefined behavior.

Fixes GCC undefined sanitizer errors:

odp_random_std.c:61:31: runtime error: store to misaligned address 0x7fffc1307109 for type 'uint32_t', which requires 4 byte alignment
odp_random_std.c:69:32: runtime error: store to misaligned address 0x7fffc1307109 for type 'uint16_t', which requires 2 byte alignment

Also, remove some unnecessary intermediate casts to uintptr_t.

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    c334381 View commit details
    Browse the repository at this point in the history

  11. validation: crypto: in write_header_and_trailer(), return immediately… 

    … if header and trailer lengths are zero

If write_header_and_trailer() is called with both header_len and
trailer_len zero, the buffer[] array ends up being zero size, which is
undefined behavior. Fix by returning early in that case.

Fixes GCC undefined sanitizer error:

crypto_op_test.c:165:10: runtime error: variable length array bound evaluates to non-positive value 0

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    654fca3 View commit details
    Browse the repository at this point in the history

  12. validation: crypto: use static array sizes for cipher and auth keys i… 

    …n session_create()

When calling session_create() with cipher or auth key length zero, the
cipher_key_data[] and/or auth_key_data[] arrays end up being zero
size, which is undefined behavior. Fix by using static array sizes.

Fixes GCC undefined sanitizer errors:

odp_crypto_test_inp.c:191:10: runtime error: variable length array bound evaluates to non-positive value 0
odp_crypto_test_inp.c:192:10: runtime error: variable length array bound evaluates to non-positive value 0

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    6a49c6d View commit details
    Browse the repository at this point in the history

  13. test: performance: pktio_ordered: avoid undefined behavior in bit shi… 

    …ft in calc_ipv4_5tuple_hash()

Avoid undefined behavior in bit shift in calc_ipv4_5tuple_hash() by
casting to an unsigned integer of sufficient width before the shift
operation.

Fixes GCC undefined sanitizer error:

odp_pktio_ordered.c:336:24: runtime error: left shift of negative value -25535

Also, use unsigned types in ipv4_tuple5_t. This avoids potential
implementation defined results in calc_flow_idx() when assigning
unsigned values to a tuple.

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    75ff8ee View commit details
    Browse the repository at this point in the history

  14. test: performance: cpu_bench: use unaligned type when accessing packe… 

    …t data

Packet data may not be aligned. Use unaligned type when accessing
packet data in order to avoid undefined behavior.

Fixes multiple GCC undefined sanitizer errors, for example:

odp_cpu_bench.c:206:11: runtime error: store to misaligned address 0x7fde78bda1aa for type 'uint32_t', which requires 4 byte alignment

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    5d0214e View commit details
    Browse the repository at this point in the history

  15. test: packet_gen: use static array size 

    In open_pktios(), if the number of rx or tx threads is zero, the
pktin[] or pktout[] arrays end up being zero size, which is undefined
behavior. Fix by using a static array size. Also, move the arrays into
a smaller scope.

Fixes GCC undefined sanitizer error:

odp_packet_gen.c:790:20: runtime error: variable length array bound evaluates to non-positive value 0

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    114a5f7 View commit details
    Browse the repository at this point in the history

  16. example: ipfragreass: avoid undefined behavior in bit shift in hash() 

    Avoid undefined behavior in bit shift in hash() by casting to an
unsigned integer of sufficient width before the shift operation.

Fixes GCC undefined sanitizer error:

odp_ipfragreass_reassemble.c:92:23: runtime error: left shift of 40448 by 16 places cannot be represented in type 'int'

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    45aa19b View commit details
    Browse the repository at this point in the history

  17. example: ipsec: use unsigned integers to form ip4 address 

    In parse_ipv4_string(), use unsigned variables and scanf formatters to
avoid negative values, and cast to uint32_t in order to avoid
undefined behavior in bit shift operations.

Fixes GCC undefined sanitizer error:

odp_ipsec_misc.h:192:47: runtime error: left shift of 192 by 24 places cannot be represented in type 'int'

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    21d2d25 View commit details
    Browse the repository at this point in the history

  18. helper: hashtable: round up hash node size 

    Round node size up to the hash node alignment requirement.

Fixes GCC undefined sanitizer errors:

hashtable.c:203:22: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
hashtable.c:204:22: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
hashtable.c:205:4: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
hashtable.c:266:13: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
hashtable.c:267:25: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
hashtable.c:271:2: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_hash_node', which requires 8 byte alignment
odph_list_internal.h:31:13: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_list_object', which requires 8 byte alignment
odph_list_internal.h:32:13: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_list_object', which requires 8 byte alignment
odph_list_internal.h:40:12: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_list_object', which requires 8 byte alignment
odph_list_internal.h:41:12: runtime error: member access within misaligned address 0x7f92c156007b for type 'struct odph_list_object', which requires 8 byte alignment

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    386ea35 View commit details
    Browse the repository at this point in the history

  19. github_ci: add undefined sanitizier to the sanitizer job 

    Add undefined sanitizier to the sanitizer job.

Signed-off-by: Jere Leppänen <jere.leppanen@nokia.com>
Reviewed-by: Janne Peltonen <janne.peltonen@nokia.com>
    @JereLeppanen
    JereLeppanen committed Apr 16, 2024
    Configuration menu
    Copy the full SHA
    e513e83 View commit details
    Browse the repository at this point in the history