public inbox for gcc-bugs@sourceware.org
help / color / mirror / Atom feed
* [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales
@ 2020-11-03 12:37 matmal01 at gcc dot gnu.org
2020-11-03 12:39 ` [Bug sanitizer/97696] " matmal01 at gcc dot gnu.org
` (11 more replies)
0 siblings, 12 replies; 13+ messages in thread
From: matmal01 at gcc dot gnu.org @ 2020-11-03 12:37 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Bug ID: 97696
Summary: ICE since ASAN_MARK does not handle poly_int sized
varibales
Product: gcc
Version: 11.0
Status: UNCONFIRMED
Keywords: ice-checking
Severity: normal
Priority: P3
Component: sanitizer
Assignee: unassigned at gcc dot gnu.org
Reporter: matmal01 at gcc dot gnu.org
CC: dodji at gcc dot gnu.org, dvyukov at gcc dot gnu.org,
jakub at gcc dot gnu.org, kcc at gcc dot gnu.org, marxin at gcc dot gnu.org
Target Milestone: ---
Target: aarch64
asan_expand_mark_ifn asserts that the length to check is a SHWI.
(i.e. it uses `gcc_assert (tree_fits_shwi_p (len))` ).
It attempts to ensure this by avoiding VLA's in `gimplify_decl_expr`.
poly_int sized decls were added, and they were not treated as VLA's since
commit 22b62991 (SVN r275870).
Since then, poly_int sized variables can have ASAN_MARK called on them, which
means the `len` parameter of ASAN_MARK can be a poly_int causing an ICE in
asan_expand_mark_ifn (n.b. in order to emit an ASAN_CHECK on a poly_int sized
variable so that the ASAN_MARK is not removed in the sanopt pass we need to
pass the poly_int sized variable to a builtin memory function).
An example (modified from gcc/testsuite/c-c++-common/asan/pr80308.c):
(v3) work-lin:gcc [Tue 12:25:10] % cat ~/asan-ice.c
#include <arm_sve.h>
__attribute__((noinline, noclone)) int
foo (char *a)
{
int i, j = 0;
asm volatile ("" : "+r" (a) : : "memory");
for (i = 0; i < 12; i++)
j += a[i];
return j;
}
int
main ()
{
int i, j = 0;
for (i = 0; i < 4; i++)
{
char a[12];
__SVInt8_t freq;
__builtin_bcmp (&freq, a, 10);
__builtin_memset (a, 0, sizeof (a));
j += foo (a);
}
return j;
}
(v3) work-lin:gcc [Tue 12:31:53] %
/installdir/aarch64-none-linux-gnu/bin/aarch64-none-linux-gnu-gcc
-march=armv8.6-a+sve -fsanitize=address -fsanitize-address-use-after-scope
~/asan-ice.c -S -o /dev/null
during GIMPLE pass: sanopt
/home/matmal01/asan-ice.c: In function ‘main’:
/home/matmal01/asan-ice.c:14:1: internal compiler error: in
asan_expand_mark_ifn, at asan.c:3235
14 | main ()
| ^~~~
0xdde454 asan_expand_mark_ifn(gimple_stmt_iterator*)
/builddir/src/gcc/gcc/asan.c:3235
0xdf6b7a execute
/builddir/src/gcc/gcc/sanopt.c:1341
Please submit a full bug report,
with preprocessed source if appropriate.
Please include the complete backtrace with any bug report.
See <https://gcc.gnu.org/bugs/> for instructions.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
@ 2020-11-03 12:39 ` matmal01 at gcc dot gnu.org
2020-11-04 9:44 ` marxin at gcc dot gnu.org
` (10 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: matmal01 at gcc dot gnu.org @ 2020-11-03 12:39 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #1 from Matthew Malcomson <matmal01 at gcc dot gnu.org> ---
I guess this may also happen for the emission of ASAN_MARK in
`gimple_target_expr`, but haven't yet been able to trigger that.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
2020-11-03 12:39 ` [Bug sanitizer/97696] " matmal01 at gcc dot gnu.org
@ 2020-11-04 9:44 ` marxin at gcc dot gnu.org
2024-01-29 19:07 ` rvmallad at amazon dot com
` (9 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: marxin at gcc dot gnu.org @ 2020-11-04 9:44 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Martin Liška <marxin at gcc dot gnu.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|UNCONFIRMED |NEW
Ever confirmed|0 |1
Last reconfirmed| |2020-11-04
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
2020-11-03 12:39 ` [Bug sanitizer/97696] " matmal01 at gcc dot gnu.org
2020-11-04 9:44 ` marxin at gcc dot gnu.org
@ 2024-01-29 19:07 ` rvmallad at amazon dot com
2024-02-24 12:21 ` rsandifo at gcc dot gnu.org
` (8 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: rvmallad at amazon dot com @ 2024-01-29 19:07 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Rama Malladi <rvmallad at amazon dot com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |rvmallad at amazon dot com
--- Comment #2 from Rama Malladi <rvmallad at amazon dot com> ---
Hi,
Can this be actioned/ fixed? We had a related issue and would like this fixed.
https://github.com/numpy/numpy/issues/25556
Thank you.
Rama
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (2 preceding siblings ...)
2024-01-29 19:07 ` rvmallad at amazon dot com
@ 2024-02-24 12:21 ` rsandifo at gcc dot gnu.org
2024-02-24 12:23 ` rsandifo at gcc dot gnu.org
` (7 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: rsandifo at gcc dot gnu.org @ 2024-02-24 12:21 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Richard Sandiford <rsandifo at gcc dot gnu.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |rsandifo at gcc dot gnu.org
Status|NEW |ASSIGNED
Assignee|unassigned at gcc dot gnu.org |rsandifo at gcc dot gnu.org
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (3 preceding siblings ...)
2024-02-24 12:21 ` rsandifo at gcc dot gnu.org
@ 2024-02-24 12:23 ` rsandifo at gcc dot gnu.org
2024-03-05 19:48 ` cvs-commit at gcc dot gnu.org
` (6 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: rsandifo at gcc dot gnu.org @ 2024-02-24 12:23 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #3 from Richard Sandiford <rsandifo at gcc dot gnu.org> ---
Created attachment 57520
--> https://gcc.gnu.org/bugzilla/attachment.cgi?id=57520&action=edit
Candidate patch
The attached patch seems to fix it. I'm taking next week off, but I'll run the
patch through proper testing when I get back.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (4 preceding siblings ...)
2024-02-24 12:23 ` rsandifo at gcc dot gnu.org
@ 2024-03-05 19:48 ` cvs-commit at gcc dot gnu.org
2024-03-06 1:52 ` rvmallad at amazon dot com
` (5 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: cvs-commit at gcc dot gnu.org @ 2024-03-05 19:48 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #4 from GCC Commits <cvs-commit at gcc dot gnu.org> ---
The trunk branch has been updated by Richard Sandiford <rsandifo@gcc.gnu.org>:
https://gcc.gnu.org/g:fca6f6fddb22b8665e840f455a7d0318d4575227
commit r14-9324-gfca6f6fddb22b8665e840f455a7d0318d4575227
Author: Richard Sandiford <richard.sandiford@arm.com>
Date: Tue Mar 5 19:48:25 2024 +0000
asan: Handle poly-int sizes in ASAN_MARK [PR97696]
This patch makes the expansion of IFN_ASAN_MARK let through
poly-int-sized objects. The expansion itself was already generic
enough, but the tests for the fast path were too strict.
gcc/
PR sanitizer/97696
* asan.cc (asan_expand_mark_ifn): Allow the length to be a
poly_int.
gcc/testsuite/
PR sanitizer/97696
* gcc.target/aarch64/sve/pr97696.c: New test.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (5 preceding siblings ...)
2024-03-05 19:48 ` cvs-commit at gcc dot gnu.org
@ 2024-03-06 1:52 ` rvmallad at amazon dot com
2024-03-27 15:30 ` cvs-commit at gcc dot gnu.org
` (4 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: rvmallad at amazon dot com @ 2024-03-06 1:52 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #5 from Rama Malladi <rvmallad at amazon dot com> ---
Thank you Richard for this patch/ fix.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (6 preceding siblings ...)
2024-03-06 1:52 ` rvmallad at amazon dot com
@ 2024-03-27 15:30 ` cvs-commit at gcc dot gnu.org
2024-03-27 17:38 ` cvs-commit at gcc dot gnu.org
` (3 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: cvs-commit at gcc dot gnu.org @ 2024-03-27 15:30 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #6 from GCC Commits <cvs-commit at gcc dot gnu.org> ---
The releases/gcc-13 branch has been updated by Richard Sandiford
<rsandifo@gcc.gnu.org>:
https://gcc.gnu.org/g:86b80b049167d28a9ef43aebdfbb80ae5deb0888
commit r13-8501-g86b80b049167d28a9ef43aebdfbb80ae5deb0888
Author: Richard Sandiford <richard.sandiford@arm.com>
Date: Wed Mar 27 15:30:19 2024 +0000
asan: Handle poly-int sizes in ASAN_MARK [PR97696]
This patch makes the expansion of IFN_ASAN_MARK let through
poly-int-sized objects. The expansion itself was already generic
enough, but the tests for the fast path were too strict.
gcc/
PR sanitizer/97696
* asan.cc (asan_expand_mark_ifn): Allow the length to be a
poly_int.
gcc/testsuite/
PR sanitizer/97696
* gcc.target/aarch64/sve/pr97696.c: New test.
(cherry picked from commit fca6f6fddb22b8665e840f455a7d0318d4575227)
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (7 preceding siblings ...)
2024-03-27 15:30 ` cvs-commit at gcc dot gnu.org
@ 2024-03-27 17:38 ` cvs-commit at gcc dot gnu.org
2024-03-27 19:27 ` cvs-commit at gcc dot gnu.org
` (2 subsequent siblings)
11 siblings, 0 replies; 13+ messages in thread
From: cvs-commit at gcc dot gnu.org @ 2024-03-27 17:38 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #7 from GCC Commits <cvs-commit at gcc dot gnu.org> ---
The releases/gcc-12 branch has been updated by Richard Sandiford
<rsandifo@gcc.gnu.org>:
https://gcc.gnu.org/g:51e1629bc11f0ae4b8050712b26521036ed360aa
commit r12-10296-g51e1629bc11f0ae4b8050712b26521036ed360aa
Author: Richard Sandiford <richard.sandiford@arm.com>
Date: Wed Mar 27 17:38:09 2024 +0000
asan: Handle poly-int sizes in ASAN_MARK [PR97696]
This patch makes the expansion of IFN_ASAN_MARK let through
poly-int-sized objects. The expansion itself was already generic
enough, but the tests for the fast path were too strict.
gcc/
PR sanitizer/97696
* asan.cc (asan_expand_mark_ifn): Allow the length to be a
poly_int.
gcc/testsuite/
PR sanitizer/97696
* gcc.target/aarch64/sve/pr97696.c: New test.
(cherry picked from commit fca6f6fddb22b8665e840f455a7d0318d4575227)
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (8 preceding siblings ...)
2024-03-27 17:38 ` cvs-commit at gcc dot gnu.org
@ 2024-03-27 19:27 ` cvs-commit at gcc dot gnu.org
2024-03-27 19:28 ` rsandifo at gcc dot gnu.org
2024-03-27 19:30 ` pinskia at gcc dot gnu.org
11 siblings, 0 replies; 13+ messages in thread
From: cvs-commit at gcc dot gnu.org @ 2024-03-27 19:27 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
--- Comment #8 from GCC Commits <cvs-commit at gcc dot gnu.org> ---
The releases/gcc-11 branch has been updated by Richard Sandiford
<rsandifo@gcc.gnu.org>:
https://gcc.gnu.org/g:d98467091bfc23522fefd32f1253e1c9e80331d3
commit r11-11296-gd98467091bfc23522fefd32f1253e1c9e80331d3
Author: Richard Sandiford <richard.sandiford@arm.com>
Date: Wed Mar 27 19:26:57 2024 +0000
asan: Handle poly-int sizes in ASAN_MARK [PR97696]
This patch makes the expansion of IFN_ASAN_MARK let through
poly-int-sized objects. The expansion itself was already generic
enough, but the tests for the fast path were too strict.
gcc/
PR sanitizer/97696
* asan.c (asan_expand_mark_ifn): Allow the length to be a poly_int.
gcc/testsuite/
PR sanitizer/97696
* gcc.target/aarch64/sve/pr97696.c: New test.
(cherry picked from commit fca6f6fddb22b8665e840f455a7d0318d4575227)
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (9 preceding siblings ...)
2024-03-27 19:27 ` cvs-commit at gcc dot gnu.org
@ 2024-03-27 19:28 ` rsandifo at gcc dot gnu.org
2024-03-27 19:30 ` pinskia at gcc dot gnu.org
11 siblings, 0 replies; 13+ messages in thread
From: rsandifo at gcc dot gnu.org @ 2024-03-27 19:28 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Richard Sandiford <rsandifo at gcc dot gnu.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |FIXED
Status|ASSIGNED |RESOLVED
--- Comment #9 from Richard Sandiford <rsandifo at gcc dot gnu.org> ---
Fixed on trunk and all active release branches.
^ permalink raw reply [flat|nested] 13+ messages in thread
* [Bug sanitizer/97696] ICE since ASAN_MARK does not handle poly_int sized varibales
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
` (10 preceding siblings ...)
2024-03-27 19:28 ` rsandifo at gcc dot gnu.org
@ 2024-03-27 19:30 ` pinskia at gcc dot gnu.org
11 siblings, 0 replies; 13+ messages in thread
From: pinskia at gcc dot gnu.org @ 2024-03-27 19:30 UTC (permalink / raw)
To: gcc-bugs
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=97696
Andrew Pinski <pinskia at gcc dot gnu.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Known to fail| |11.4.0, 12.1.0, 12.3.0,
| |13.1.0, 13.2.0
Target Milestone|--- |11.5
Known to work| |11.4.1, 12.3.1, 13.2.1,
| |14.0
^ permalink raw reply [flat|nested] 13+ messages in thread
end of thread, other threads:[~2024-03-27 19:30 UTC | newest]
Thread overview: 13+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-11-03 12:37 [Bug sanitizer/97696] New: ICE since ASAN_MARK does not handle poly_int sized varibales matmal01 at gcc dot gnu.org
2020-11-03 12:39 ` [Bug sanitizer/97696] " matmal01 at gcc dot gnu.org
2020-11-04 9:44 ` marxin at gcc dot gnu.org
2024-01-29 19:07 ` rvmallad at amazon dot com
2024-02-24 12:21 ` rsandifo at gcc dot gnu.org
2024-02-24 12:23 ` rsandifo at gcc dot gnu.org
2024-03-05 19:48 ` cvs-commit at gcc dot gnu.org
2024-03-06 1:52 ` rvmallad at amazon dot com
2024-03-27 15:30 ` cvs-commit at gcc dot gnu.org
2024-03-27 17:38 ` cvs-commit at gcc dot gnu.org
2024-03-27 19:27 ` cvs-commit at gcc dot gnu.org
2024-03-27 19:28 ` rsandifo at gcc dot gnu.org
2024-03-27 19:30 ` pinskia at gcc dot gnu.org
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).