Gitiles
Code Review Sign In
gerrit-public.fairphone.software / toolchain / llvm-project / 6f5a804cdb6563293d4dc93bd9abf44950bc1076 / . / llvm / lib / Fuzzer / FuzzerTracePC.cpp
blob: 9daa721cfbc2c511785efacf9f75389e2db389b0 [file] [log] [blame]
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]1//===- FuzzerTracePC.cpp - PC tracing--------------------------------------===//
2//
3// The LLVM Compiler Infrastructure
4//
5// This file is distributed under the University of Illinois Open Source
6// License. See LICENSE.TXT for details.
7//
8//===----------------------------------------------------------------------===//
9// Trace PCs.
Kostya Serebryanya00b2432016-09-14 02:13:06 +0000[diff] [blame]10// This module implements __sanitizer_cov_trace_pc_guard[_init],
11// the callback required for -fsanitize-coverage=trace-pc-guard instrumentation.
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]12//
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]13//===----------------------------------------------------------------------===//
14
15#include "FuzzerInternal.h"
Kostya Serebryany6f5a8042016-09-21 01:50:50 +0000[diff] [blame^]16#include "FuzzerTracePC.h"
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]17
18namespace fuzzer {
Mike Aizatsky1aa501e2016-05-10 23:43:15 +0000[diff] [blame]19
Kostya Serebryanya00b2432016-09-14 02:13:06 +0000[diff] [blame]20TracePC TPC;
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]21const size_t TracePC::kNumCounters;
Kostya Serebryanyb706b482016-09-18 21:47:08 +0000[diff] [blame]22const size_t TracePC::kNumPCs;
Mike Aizatsky1aa501e2016-05-10 23:43:15 +0000[diff] [blame]23
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]24void TracePC::HandleTrace(uintptr_t *Guard, uintptr_t PC) {
25 uintptr_t Idx = *Guard;
26 if (!Idx) return;
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]27 if (UseCounters) {
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]28 uint8_t Counter = Counters[Idx % kNumCounters];
Kostya Serebryany3e36ec12016-09-17 05:04:47 +0000[diff] [blame]29 if (Counter == 0) {
Kostya Serebryanyb706b482016-09-18 21:47:08 +0000[diff] [blame]30 PCs[Idx] = PC;
Kostya Serebryany53501782016-09-15 04:36:45 +0000[diff] [blame]31 if (TotalCoverageMap.AddValue(Idx)) {
32 TotalCoverage++;
33 AddNewPC(PC);
34 }
35 }
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]36 if (Counter < 128)
37 Counters[Idx % kNumCounters] = Counter + 1;
Kostya Serebryanybc3789a2016-09-17 06:01:55 +0000[diff] [blame]38 else
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]39 *Guard = 0;
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]40 } else {
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]41 *Guard = 0;
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]42 TotalCoverage++;
Kostya Serebryany53501782016-09-15 04:36:45 +0000[diff] [blame]43 AddNewPC(PC);
Kostya Serebryanyb706b482016-09-18 21:47:08 +0000[diff] [blame]44 PCs[Idx] = PC;
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]45 }
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]46}
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]47
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]48void TracePC::HandleInit(uintptr_t *Start, uintptr_t *Stop) {
Kostya Serebryany3e36ec12016-09-17 05:04:47 +0000[diff] [blame]49 if (Start == Stop || *Start) return;
50 assert(NumModules < sizeof(Modules) / sizeof(Modules[0]));
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]51 for (uintptr_t *P = Start; P < Stop; P++)
52 *P = ++NumGuards;
Kostya Serebryany3e36ec12016-09-17 05:04:47 +0000[diff] [blame]53 Modules[NumModules].Start = Start;
54 Modules[NumModules].Stop = Stop;
55 NumModules++;
56}
57
58void TracePC::PrintModuleInfo() {
59 Printf("INFO: Loaded %zd modules (%zd guards): ", NumModules, NumGuards);
60 for (size_t i = 0; i < NumModules; i++)
61 Printf("[%p, %p), ", Modules[i].Start, Modules[i].Stop);
62 Printf("\n");
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]63}
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]64
Kostya Serebryanybc3789a2016-09-17 06:01:55 +0000[diff] [blame]65void TracePC::ResetGuards() {
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]66 uintptr_t N = 0;
Kostya Serebryanybc3789a2016-09-17 06:01:55 +0000[diff] [blame]67 for (size_t M = 0; M < NumModules; M++)
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]68 for (uintptr_t *X = Modules[M].Start; X < Modules[M].Stop; X++)
69 *X = ++N;
70 assert(N == NumGuards);
Kostya Serebryanybc3789a2016-09-17 06:01:55 +0000[diff] [blame]71}
72
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]73void TracePC::FinalizeTrace() {
74 if (UseCounters && TotalCoverage) {
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]75 for (size_t Idx = 1, N = std::min(kNumCounters, NumGuards); Idx < N;
76 Idx++) {
77 uint8_t Counter = Counters[Idx];
78 if (!Counter) continue;
79 Counters[Idx] = 0;
80 unsigned Bit = 0;
81 /**/ if (Counter >= 128) Bit = 7;
82 else if (Counter >= 32) Bit = 6;
83 else if (Counter >= 16) Bit = 5;
84 else if (Counter >= 8) Bit = 4;
85 else if (Counter >= 4) Bit = 3;
86 else if (Counter >= 3) Bit = 2;
87 else if (Counter >= 2) Bit = 1;
88 CounterMap.AddValue(Idx * 8 + Bit);
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]89 }
90 }
91}
92
93size_t TracePC::UpdateCounterMap(ValueBitMap *Map) {
94 if (!TotalCoverage) return 0;
95 size_t NewTotalCounterBits = Map->MergeFrom(CounterMap);
96 size_t Delta = NewTotalCounterBits - TotalCounterBits;
97 TotalCounterBits = NewTotalCounterBits;
98 return Delta;
99}
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]100
Kostya Serebryany09845172016-09-15 22:16:15 +0000[diff] [blame]101void TracePC::HandleCallerCallee(uintptr_t Caller, uintptr_t Callee) {
102 const uintptr_t kBits = 12;
103 const uintptr_t kMask = (1 << kBits) - 1;
104 CounterMap.AddValue((Caller & kMask) | ((Callee & kMask) << kBits));
105}
106
Kostya Serebryanyb706b482016-09-18 21:47:08 +0000[diff] [blame]107void TracePC::PrintCoverage() {
108 Printf("COVERAGE:\n");
109 for (size_t i = 0; i < std::min(NumGuards, kNumPCs); i++) {
110 if (PCs[i])
111 PrintPC("COVERED: %p %F %L\n", "COVERED: %p\n", PCs[i]);
112 }
113}
114
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]115} // namespace fuzzer
116
Dan Liew59144072016-06-06 20:27:09 +0000[diff] [blame]117extern "C" {
Kostya Serebryany32661f92016-08-18 20:52:52 +0000[diff] [blame]118__attribute__((visibility("default")))
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]119void __sanitizer_cov_trace_pc_guard(uintptr_t *Guard) {
Kostya Serebryanya00b2432016-09-14 02:13:06 +0000[diff] [blame]120 uintptr_t PC = (uintptr_t)__builtin_return_address(0);
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]121 fuzzer::TPC.HandleTrace(Guard, PC);
Kostya Serebryanyda63c1d2016-02-26 21:33:56 +0000[diff] [blame]122}
Dan Liew59144072016-06-06 20:27:09 +0000[diff] [blame]123
Kostya Serebryany32661f92016-08-18 20:52:52 +0000[diff] [blame]124__attribute__((visibility("default")))
Kostya Serebryany8e781a82016-09-18 04:52:23 +0000[diff] [blame]125void __sanitizer_cov_trace_pc_guard_init(uintptr_t *Start, uintptr_t *Stop) {
Kostya Serebryanya5277d52016-09-15 01:30:18 +0000[diff] [blame]126 fuzzer::TPC.HandleInit(Start, Stop);
Dan Liew59144072016-06-06 20:27:09 +0000[diff] [blame]127}
Kostya Serebryany09845172016-09-15 22:16:15 +0000[diff] [blame]128
129__attribute__((visibility("default")))
130void __sanitizer_cov_trace_pc_indir(uintptr_t Callee) {
131 uintptr_t PC = (uintptr_t)__builtin_return_address(0);
132 fuzzer::TPC.HandleCallerCallee(PC, Callee);
133}
Dan Liew59144072016-06-06 20:27:09 +0000[diff] [blame]134}