Skip to content

Ports over dfsan from polytracker-llvm #6517

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
surovic merged 40 commits into from
Mar 23, 2023
Merged

Ports over dfsan from polytracker-llvm #6517

surovic merged 40 commits into from
Mar 23, 2023

Conversation

@surovic
Copy link
Contributor

@surovic surovic commented Nov 22, 2022
edited
Loading

The ports over the DataflowSanitizer pass and related parts of compiler-rt from our modified fork of the LLVM repository. By doing this we are no longer dependent on that fork and can eventually move to more recent versions of LLVM. For this to happen, parts of polytracker's CMake build system had to be modified and the Dockerfile had to be rewritten. Users should also expect increased docker image build times as we now build libc++, which was part of the polytracker-llvm docker dependency build. The sum duration of polytracker-llvm and polytracker docker image build has however been drastically lowered. Future hope is to optimize the docker image build further.

@surovic surovic linked an issue Nov 22, 2022 that may be closed by this pull request
Port DFSAN and it's dependencies from polytracker-llvm #6506
Closed
surovic and others added 22 commits February 22, 2023 14:53
@surovic
passes: ports llvm::DataFlowSanitizerPass
93c2cac
@surovic
compiler-rt: adds compiler-rt library project
58d02bf 
* builds only `dfsan` sanitizer runtime and its dependencies
@surovic
taintdag: adds license header
b34650b
@surovic
cmake: fixes libcxx paths
0c97520
@surovic
cmake: adds local compiler-rt to polytracker includes
de0341b
@surovic
build: fixes libcxx include paths
8ba6eb4
@surovic
build: adds libcxx rpath to instrumented binary
884bd74
@surovic
polytracker: adds missing include header
3135986
@surovic
compiler-rt: updates runtime to use taintdag methods
7ed1662
@surovic
docker: refactors to remove dependency on polytracker-llvm
fe71f01
@surovic
treewide: reformat for CI
911f355
@surovic
docker: downgrades llvm from 13 to 12
a2ebb90
@surovic
taintdag: formatting fix
a7c384f
taintdag: removes debug prints
12c4003
treewide: removes build dependency on libc++
03c6298
tests: adds a simple hello world c build test
ae4641b
compiler-rt: adds missing header
637bb78
cmake, docker: builds "clean" and "poly" libc++
07f9eb6
ci: excludes compiler-rt from python linting
a10740d
docker: remove unneeded package installs
39ec4f9
unittests: fixes call ambiguity compile error
f70fb15
docker; cmake: lowers llvm version due to -Werror
e196a03
@surovic surovic marked this pull request as ready for review February 22, 2023 14:05
@surovic surovic requested review from ESultanik and hbrodin February 22, 2023 14:15
@surovic surovic self-assigned this Feb 22, 2023
ESultanik
ESultanik approved these changes Feb 23, 2023
View reviewed changes
kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
Dockerfile Outdated
WORKDIR /blight
RUN git clone https://github.com/trailofbits/blight.git .
RUN pip3 install .
RUN GO111MODULE=off go get github.com/SRI-CSL/gllvm/cmd/...
Copy link
Contributor

@kaoudis kaoudis Feb 24, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for updating the gllvm! I may have missed it, but what golang version is supported in this new Dockerfile version? I think the current master Polytracker base Dockerfile is pinned to an old Golang, so am curious whether we are using Jammy's default golang or otherwise replace/configure it in some way I haven't noticed yet here.

Copy link
Contributor Author

@surovic surovic Mar 7, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

root@dea90b62fec0:/workdir# go version 
go version go1.18.1 linux/amd64

I think we're using the Jammy default. Which is also the same we've used in polytracker-llvm unless I'm missing something.

kaoudis
kaoudis reviewed Feb 24, 2023
View reviewed changes
@surovic surovic mentioned this pull request Mar 6, 2023
Open
This was referenced Mar 7, 2023
Open
Open
@surovic
Copy link
Contributor Author

surovic commented Mar 7, 2023

Is it recorded somewhere what version of the compiler-rt that is included here? I think it would be good to add that information somewhere.

I'll make an issue to add a note in a new polytracker/src/compiler-rt/README.md.

I've assumed that anything in compiler-rt is untouched so I haven't paid to much attention to those files. Is that correct?

Yes. That is correct.

@surovic surovic mentioned this pull request Mar 7, 2023
Open
@surovic surovic merged commit 45b3d0b into master Mar 23, 2023
@surovic surovic deleted the 6506-port-dfsan branch March 23, 2023 13:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hbrodin hbrodin hbrodin left review comments

@ESultanik ESultanik ESultanik approved these changes

+2 more reviewers

@kaoudis kaoudis kaoudis left review comments

@josephsweeney josephsweeney josephsweeney left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@surovic surovic

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Port DFSAN and it's dependencies from polytracker-llvm

6 participants

@surovic @kaoudis @ESultanik @josephsweeney @hbrodin