tsan: fix crash when data race happens on out-of-bounds accesses.

git-svn-id: https://llvm.org/svn/llvm-project/compiler-rt/trunk@180180 91177308-0d34-0410-b5e6-96231b3b80d8
author: Dmitry Vyukov <dvyukov@google.com> 2013-04-24 09:20:25 +0000
committer: Dmitry Vyukov <dvyukov@google.com> 2013-04-24 09:20:25 +0000
commit: 03049413f8978c202a254eb0acfa2f10b9bbe34a (patch)
tree: 483efa8698e148f923246dba481a6eacae969c7d
parent: 1d38069f4842973df02525c7bf77a5cbed3b03aa (diff)
download: compiler-rt-03049413f8978c202a254eb0acfa2f10b9bbe34a.tar.gz
3 files changed, 9 insertions, 4 deletions
diff --git a/lib/tsan/rtl/tsan_mman.cc b/lib/tsan/rtl/tsan_mman.cc
index 76e406c65..b6671b1ab 100644
--- a/lib/tsan/rtl/tsan_mman.cc
+++ b/lib/tsan/rtl/tsan_mman.cc
@@ -149,6 +149,7 @@ void *user_realloc(ThreadState *thr, uptr pc, void *p, uptr sz) {
       return 0;
     if (p) {
       MBlock *b = user_mblock(thr, p);
+      CHECK_NE(b, 0);
       internal_memcpy(p2, p, min(b->Size(), sz));
     }
   }
@@ -166,10 +167,11 @@ uptr user_alloc_usable_size(ThreadState *thr, uptr pc, void *p) {
 }
 
 MBlock *user_mblock(ThreadState *thr, void *p) {
-  CHECK_NE(p, (void*)0);
+  CHECK_NE(p, 0);
   Allocator *a = allocator();
   void *b = a->GetBlockBegin(p);
-  CHECK_NE(b, 0);
+  if (b == 0)
+    return 0;
   return (MBlock*)a->GetMetaData(b);
 }
 
diff --git a/lib/tsan/rtl/tsan_rtl_report.cc b/lib/tsan/rtl/tsan_rtl_report.cc
index 40f42e021..8e85a09fe 100644
--- a/lib/tsan/rtl/tsan_rtl_report.cc
+++ b/lib/tsan/rtl/tsan_rtl_report.cc
@@ -313,8 +313,9 @@ void ScopedReport::AddLocation(uptr addr, uptr size) {
       AddThread(tctx);
     return;
   }
-  if (allocator()->PointerIsMine((void*)addr)) {
-    MBlock *b = user_mblock(0, (void*)addr);
+  MBlock *b = 0;
+  if (allocator()->PointerIsMine((void*)addr)
+      && (b = user_mblock(0, (void*)addr))) {
     ThreadContext *tctx = FindThreadByTidLocked(b->Tid());
     void *mem = internal_alloc(MBlockReportLoc, sizeof(ReportLocation));
     ReportLocation *loc = new(mem) ReportLocation();
diff --git a/lib/tsan/rtl/tsan_sync.cc b/lib/tsan/rtl/tsan_sync.cc
index 94bad2193..c6ddcdb37 100644
--- a/lib/tsan/rtl/tsan_sync.cc
+++ b/lib/tsan/rtl/tsan_sync.cc
@@ -82,6 +82,7 @@ SyncVar* SyncTab::GetAndLock(ThreadState *thr, uptr pc,
   // the hashmap anyway.
   if (PrimaryAllocator::PointerIsMine((void*)addr)) {
     MBlock *b = user_mblock(thr, (void*)addr);
+    CHECK_NE(b, 0);
     MBlock::ScopedLock l(b);
     SyncVar *res = 0;
     for (res = b->ListHead(); res; res = res->next) {
@@ -146,6 +147,7 @@ SyncVar* SyncTab::GetAndRemove(ThreadState *thr, uptr pc, uptr addr) {
   }
   if (PrimaryAllocator::PointerIsMine((void*)addr)) {
     MBlock *b = user_mblock(thr, (void*)addr);
+    CHECK_NE(b, 0);
     SyncVar *res = 0;
     {
       MBlock::ScopedLock l(b);
author	Dmitry Vyukov <dvyukov@google.com>	2013-04-24 09:20:25 +0000
committer	Dmitry Vyukov <dvyukov@google.com>	2013-04-24 09:20:25 +0000
commit	03049413f8978c202a254eb0acfa2f10b9bbe34a (patch)
tree	483efa8698e148f923246dba481a6eacae969c7d
parent	1d38069f4842973df02525c7bf77a5cbed3b03aa (diff)
download	compiler-rt-03049413f8978c202a254eb0acfa2f10b9bbe34a.tar.gz