[scudo] Avoid splitting unaligned allocations on Trusty

marcone · ahomescu · commit 7dba4074024a · 2023-12-22T01:09:00.000Z
Split allocations around the pointer returned by malloc
on Trusty. Avoid splitting completely if that pointer
is not page-aligned.
diff --git a/compiler-rt/lib/scudo/standalone/secondary.h b/compiler-rt/lib/scudo/standalone/secondary.h
@@ -122,18 +122,35 @@ bool mapSecondary(const Options &Options, uptr CommitBase, uptr CommitSize,
   Flags |= MAP_RESIZABLE;
   Flags |= MAP_ALLOWNOMEM;
 
-  const uptr MaxUnusedCacheBytes = MaxUnusedCachePages * getPageSizeCached();
+  const uptr PageSize = getPageSizeCached();
+  const uptr MaxUnusedCacheBytes = MaxUnusedCachePages * PageSize;
   if (useMemoryTagging<Config>(Options) && CommitSize > MaxUnusedCacheBytes) {
-    const uptr UntaggedPos = Max(AllocPos, CommitBase + MaxUnusedCacheBytes);
-    return MemMap.remap(CommitBase, UntaggedPos - CommitBase, "scudo:secondary",
-                        MAP_MEMTAG | Flags) &&
-           MemMap.remap(UntaggedPos, CommitBase + CommitSize - UntaggedPos,
-                        "scudo:secondary", Flags);
-  } else {
-    const uptr RemapFlags =
-        (useMemoryTagging<Config>(Options) ? MAP_MEMTAG : 0) | Flags;
-    return MemMap.remap(CommitBase, CommitSize, "scudo:secondary", RemapFlags);
+    if (SCUDO_TRUSTY) {
+      /*
+       * On Trusty we need AllocPos to be usable for memrefs, which cannot
+       * cross multiple mappings. This means we need to split around AllocPos
+       * and not over it. We can only do this if the address is page-aligned.
+       */
+      const uptr TaggedSize = AllocPos - CommitBase;
+      if (TaggedSize != 0 && isAligned(TaggedSize, PageSize)) {
+        return MemMap.remap(CommitBase, TaggedSize, "scudo:secondary",
+                            MAP_MEMTAG | Flags) &&
+               MemMap.remap(AllocPos, CommitSize - TaggedSize,
+                            "scudo:secondary", Flags);
+      }
+      /* We could not split, so fall through to the normal code path */
+    } else {
+      const uptr UntaggedPos = Max(AllocPos, CommitBase + MaxUnusedCacheBytes);
+      return MemMap.remap(CommitBase, UntaggedPos - CommitBase,
+                          "scudo:secondary", MAP_MEMTAG | Flags) &&
+             MemMap.remap(UntaggedPos, CommitBase + CommitSize - UntaggedPos,
+                          "scudo:secondary", Flags);
+    }
   }
+
+  const uptr RemapFlags =
+      (useMemoryTagging<Config>(Options) ? MAP_MEMTAG : 0) | Flags;
+  return MemMap.remap(CommitBase, CommitSize, "scudo:secondary", RemapFlags);
 }
 
 // Template specialization to avoid producing zero-length array
