1 1.1 mrg //===-- asan_interceptors.cpp ---------------------------------------------===// 2 1.1 mrg // 3 1.1 mrg // Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions. 4 1.1 mrg // See https://llvm.org/LICENSE.txt for license information. 5 1.1 mrg // SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception 6 1.1 mrg // 7 1.1 mrg //===----------------------------------------------------------------------===// 8 1.1 mrg // 9 1.1 mrg // This file is a part of AddressSanitizer, an address sanity checker. 10 1.1 mrg // 11 1.1 mrg // Interceptors for operators new and delete. 12 1.1 mrg //===----------------------------------------------------------------------===// 13 1.1 mrg 14 1.3 mrg #include <stddef.h> 15 1.3 mrg 16 1.1 mrg #include "asan_allocator.h" 17 1.1 mrg #include "asan_internal.h" 18 1.1 mrg #include "asan_report.h" 19 1.1 mrg #include "asan_stack.h" 20 1.1 mrg #include "interception/interception.h" 21 1.1 mrg 22 1.1 mrg // C++ operators can't have dllexport attributes on Windows. We export them 23 1.1 mrg // anyway by passing extra -export flags to the linker, which is exactly that 24 1.1 mrg // dllexport would normally do. We need to export them in order to make the 25 1.1 mrg // VS2015 dynamic CRT (MD) work. 26 1.1 mrg #if SANITIZER_WINDOWS && defined(_MSC_VER) 27 1.1 mrg #define CXX_OPERATOR_ATTRIBUTE 28 1.1 mrg #define COMMENT_EXPORT(sym) __pragma(comment(linker, "/export:" sym)) 29 1.1 mrg #ifdef _WIN64 30 1.1 mrg COMMENT_EXPORT("??2@YAPEAX_K@Z") // operator new 31 1.1 mrg COMMENT_EXPORT("??2@YAPEAX_KAEBUnothrow_t@std@@@Z") // operator new nothrow 32 1.1 mrg COMMENT_EXPORT("??3@YAXPEAX@Z") // operator delete 33 1.1 mrg COMMENT_EXPORT("??3@YAXPEAX_K@Z") // sized operator delete 34 1.1 mrg COMMENT_EXPORT("??_U@YAPEAX_K@Z") // operator new[] 35 1.1 mrg COMMENT_EXPORT("??_V@YAXPEAX@Z") // operator delete[] 36 1.1 mrg #else 37 1.1 mrg COMMENT_EXPORT("??2@YAPAXI@Z") // operator new 38 1.1 mrg COMMENT_EXPORT("??2@YAPAXIABUnothrow_t@std@@@Z") // operator new nothrow 39 1.1 mrg COMMENT_EXPORT("??3@YAXPAX@Z") // operator delete 40 1.1 mrg COMMENT_EXPORT("??3@YAXPAXI@Z") // sized operator delete 41 1.1 mrg COMMENT_EXPORT("??_U@YAPAXI@Z") // operator new[] 42 1.1 mrg COMMENT_EXPORT("??_V@YAXPAX@Z") // operator delete[] 43 1.1 mrg #endif 44 1.1 mrg #undef COMMENT_EXPORT 45 1.1 mrg #else 46 1.3 mrg #define CXX_OPERATOR_ATTRIBUTE INTERCEPTOR_ATTRIBUTE SANITIZER_WEAK_ATTRIBUTE 47 1.1 mrg #endif 48 1.1 mrg 49 1.1 mrg using namespace __asan; 50 1.1 mrg 51 1.1 mrg // FreeBSD prior v9.2 have wrong definition of 'size_t'. 52 1.1 mrg // http://svnweb.freebsd.org/base?view=revision&revision=232261 53 1.1 mrg #if SANITIZER_FREEBSD && SANITIZER_WORDSIZE == 32 54 1.1 mrg #include <sys/param.h> 55 1.1 mrg #if __FreeBSD_version <= 902001 // v9.2 56 1.1 mrg #define size_t unsigned 57 1.1 mrg #endif // __FreeBSD_version 58 1.1 mrg #endif // SANITIZER_FREEBSD && SANITIZER_WORDSIZE == 32 59 1.1 mrg 60 1.1 mrg // This code has issues on OSX. 61 1.1 mrg // See https://github.com/google/sanitizers/issues/131. 62 1.1 mrg 63 1.1 mrg // Fake std::nothrow_t and std::align_val_t to avoid including <new>. 64 1.1 mrg namespace std { 65 1.1 mrg struct nothrow_t {}; 66 1.1 mrg enum class align_val_t: size_t {}; 67 1.1 mrg } // namespace std 68 1.1 mrg 69 1.1 mrg // TODO(alekseyshl): throw std::bad_alloc instead of dying on OOM. 70 1.1 mrg // For local pool allocation, align to SHADOW_GRANULARITY to match asan 71 1.1 mrg // allocator behavior. 72 1.1 mrg #define OPERATOR_NEW_BODY(type, nothrow) \ 73 1.1 mrg GET_STACK_TRACE_MALLOC; \ 74 1.1 mrg void *res = asan_memalign(0, size, &stack, type); \ 75 1.1 mrg if (!nothrow && UNLIKELY(!res)) \ 76 1.1 mrg ReportOutOfMemory(size, &stack); \ 77 1.1 mrg return res; 78 1.1 mrg #define OPERATOR_NEW_BODY_ALIGN(type, nothrow) \ 79 1.1 mrg GET_STACK_TRACE_MALLOC; \ 80 1.1 mrg void *res = asan_memalign((uptr)align, size, &stack, type); \ 81 1.1 mrg if (!nothrow && UNLIKELY(!res)) \ 82 1.1 mrg ReportOutOfMemory(size, &stack); \ 83 1.1 mrg return res; 84 1.1 mrg 85 1.1 mrg // On OS X it's not enough to just provide our own 'operator new' and 86 1.1 mrg // 'operator delete' implementations, because they're going to be in the 87 1.1 mrg // runtime dylib, and the main executable will depend on both the runtime 88 1.1 mrg // dylib and libstdc++, each of those'll have its implementation of new and 89 1.1 mrg // delete. 90 1.1 mrg // To make sure that C++ allocation/deallocation operators are overridden on 91 1.1 mrg // OS X we need to intercept them using their mangled names. 92 1.4 mrg #if !SANITIZER_APPLE 93 1.1 mrg CXX_OPERATOR_ATTRIBUTE 94 1.1 mrg void *operator new(size_t size) 95 1.1 mrg { OPERATOR_NEW_BODY(FROM_NEW, false /*nothrow*/); } 96 1.1 mrg CXX_OPERATOR_ATTRIBUTE 97 1.1 mrg void *operator new[](size_t size) 98 1.1 mrg { OPERATOR_NEW_BODY(FROM_NEW_BR, false /*nothrow*/); } 99 1.1 mrg CXX_OPERATOR_ATTRIBUTE 100 1.1 mrg void *operator new(size_t size, std::nothrow_t const&) 101 1.1 mrg { OPERATOR_NEW_BODY(FROM_NEW, true /*nothrow*/); } 102 1.1 mrg CXX_OPERATOR_ATTRIBUTE 103 1.1 mrg void *operator new[](size_t size, std::nothrow_t const&) 104 1.1 mrg { OPERATOR_NEW_BODY(FROM_NEW_BR, true /*nothrow*/); } 105 1.1 mrg CXX_OPERATOR_ATTRIBUTE 106 1.1 mrg void *operator new(size_t size, std::align_val_t align) 107 1.1 mrg { OPERATOR_NEW_BODY_ALIGN(FROM_NEW, false /*nothrow*/); } 108 1.1 mrg CXX_OPERATOR_ATTRIBUTE 109 1.1 mrg void *operator new[](size_t size, std::align_val_t align) 110 1.1 mrg { OPERATOR_NEW_BODY_ALIGN(FROM_NEW_BR, false /*nothrow*/); } 111 1.1 mrg CXX_OPERATOR_ATTRIBUTE 112 1.1 mrg void *operator new(size_t size, std::align_val_t align, std::nothrow_t const&) 113 1.1 mrg { OPERATOR_NEW_BODY_ALIGN(FROM_NEW, true /*nothrow*/); } 114 1.1 mrg CXX_OPERATOR_ATTRIBUTE 115 1.1 mrg void *operator new[](size_t size, std::align_val_t align, std::nothrow_t const&) 116 1.1 mrg { OPERATOR_NEW_BODY_ALIGN(FROM_NEW_BR, true /*nothrow*/); } 117 1.1 mrg 118 1.4 mrg #else // SANITIZER_APPLE 119 1.1 mrg INTERCEPTOR(void *, _Znwm, size_t size) { 120 1.1 mrg OPERATOR_NEW_BODY(FROM_NEW, false /*nothrow*/); 121 1.1 mrg } 122 1.1 mrg INTERCEPTOR(void *, _Znam, size_t size) { 123 1.1 mrg OPERATOR_NEW_BODY(FROM_NEW_BR, false /*nothrow*/); 124 1.1 mrg } 125 1.1 mrg INTERCEPTOR(void *, _ZnwmRKSt9nothrow_t, size_t size, std::nothrow_t const&) { 126 1.1 mrg OPERATOR_NEW_BODY(FROM_NEW, true /*nothrow*/); 127 1.1 mrg } 128 1.1 mrg INTERCEPTOR(void *, _ZnamRKSt9nothrow_t, size_t size, std::nothrow_t const&) { 129 1.1 mrg OPERATOR_NEW_BODY(FROM_NEW_BR, true /*nothrow*/); 130 1.1 mrg } 131 1.4 mrg #endif // !SANITIZER_APPLE 132 1.1 mrg 133 1.1 mrg #define OPERATOR_DELETE_BODY(type) \ 134 1.3 mrg GET_STACK_TRACE_FREE; \ 135 1.1 mrg asan_delete(ptr, 0, 0, &stack, type); 136 1.1 mrg 137 1.1 mrg #define OPERATOR_DELETE_BODY_SIZE(type) \ 138 1.3 mrg GET_STACK_TRACE_FREE; \ 139 1.1 mrg asan_delete(ptr, size, 0, &stack, type); 140 1.1 mrg 141 1.1 mrg #define OPERATOR_DELETE_BODY_ALIGN(type) \ 142 1.3 mrg GET_STACK_TRACE_FREE; \ 143 1.1 mrg asan_delete(ptr, 0, static_cast<uptr>(align), &stack, type); 144 1.1 mrg 145 1.1 mrg #define OPERATOR_DELETE_BODY_SIZE_ALIGN(type) \ 146 1.3 mrg GET_STACK_TRACE_FREE; \ 147 1.1 mrg asan_delete(ptr, size, static_cast<uptr>(align), &stack, type); 148 1.1 mrg 149 1.4 mrg #if !SANITIZER_APPLE 150 1.1 mrg CXX_OPERATOR_ATTRIBUTE 151 1.1 mrg void operator delete(void *ptr) NOEXCEPT 152 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW); } 153 1.1 mrg CXX_OPERATOR_ATTRIBUTE 154 1.1 mrg void operator delete[](void *ptr) NOEXCEPT 155 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW_BR); } 156 1.1 mrg CXX_OPERATOR_ATTRIBUTE 157 1.1 mrg void operator delete(void *ptr, std::nothrow_t const&) 158 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW); } 159 1.1 mrg CXX_OPERATOR_ATTRIBUTE 160 1.1 mrg void operator delete[](void *ptr, std::nothrow_t const&) 161 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW_BR); } 162 1.1 mrg CXX_OPERATOR_ATTRIBUTE 163 1.1 mrg void operator delete(void *ptr, size_t size) NOEXCEPT 164 1.1 mrg { OPERATOR_DELETE_BODY_SIZE(FROM_NEW); } 165 1.1 mrg CXX_OPERATOR_ATTRIBUTE 166 1.1 mrg void operator delete[](void *ptr, size_t size) NOEXCEPT 167 1.1 mrg { OPERATOR_DELETE_BODY_SIZE(FROM_NEW_BR); } 168 1.1 mrg CXX_OPERATOR_ATTRIBUTE 169 1.1 mrg void operator delete(void *ptr, std::align_val_t align) NOEXCEPT 170 1.1 mrg { OPERATOR_DELETE_BODY_ALIGN(FROM_NEW); } 171 1.1 mrg CXX_OPERATOR_ATTRIBUTE 172 1.1 mrg void operator delete[](void *ptr, std::align_val_t align) NOEXCEPT 173 1.1 mrg { OPERATOR_DELETE_BODY_ALIGN(FROM_NEW_BR); } 174 1.1 mrg CXX_OPERATOR_ATTRIBUTE 175 1.1 mrg void operator delete(void *ptr, std::align_val_t align, std::nothrow_t const&) 176 1.1 mrg { OPERATOR_DELETE_BODY_ALIGN(FROM_NEW); } 177 1.1 mrg CXX_OPERATOR_ATTRIBUTE 178 1.1 mrg void operator delete[](void *ptr, std::align_val_t align, std::nothrow_t const&) 179 1.1 mrg { OPERATOR_DELETE_BODY_ALIGN(FROM_NEW_BR); } 180 1.1 mrg CXX_OPERATOR_ATTRIBUTE 181 1.1 mrg void operator delete(void *ptr, size_t size, std::align_val_t align) NOEXCEPT 182 1.1 mrg { OPERATOR_DELETE_BODY_SIZE_ALIGN(FROM_NEW); } 183 1.1 mrg CXX_OPERATOR_ATTRIBUTE 184 1.1 mrg void operator delete[](void *ptr, size_t size, std::align_val_t align) NOEXCEPT 185 1.1 mrg { OPERATOR_DELETE_BODY_SIZE_ALIGN(FROM_NEW_BR); } 186 1.1 mrg 187 1.4 mrg #else // SANITIZER_APPLE 188 1.1 mrg INTERCEPTOR(void, _ZdlPv, void *ptr) 189 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW); } 190 1.1 mrg INTERCEPTOR(void, _ZdaPv, void *ptr) 191 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW_BR); } 192 1.1 mrg INTERCEPTOR(void, _ZdlPvRKSt9nothrow_t, void *ptr, std::nothrow_t const&) 193 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW); } 194 1.1 mrg INTERCEPTOR(void, _ZdaPvRKSt9nothrow_t, void *ptr, std::nothrow_t const&) 195 1.1 mrg { OPERATOR_DELETE_BODY(FROM_NEW_BR); } 196 1.4 mrg #endif // !SANITIZER_APPLE 197
Indexes created Sat Feb 28 05:31:39 UTC 2026