[msan] Block signals during MsanThread::TSDDtor (#98405)

thurstond · web-flow · commit fff8b3236ab8 · 2024-07-11T08:26:04.000-07:00
MSan may segfault inside a signal handler, if MSan instrumentation is trying to access thread-local storage that has already been destroyed. This fixes the issue by blocking asychronous signals inside MsanThread::TSDDtor. This is based on an idea suggested by Paul Pluzhnikov (block async signals in MsanThread::Destroy()) and refined by Vitaly Buka. Note: ed8565c changed *BlockSignals to only block asynchronous signals, despite the name.
diff --git a/compiler-rt/lib/msan/msan_linux.cpp b/compiler-rt/lib/msan/msan_linux.cpp
@@ -292,6 +292,7 @@ void MsanTSDDtor(void *tsd) {
     CHECK_EQ(0, pthread_setspecific(tsd_key, tsd));
     return;
   }
+  ScopedBlockSignals block(nullptr);
   msan_current_thread = nullptr;
   // Make sure that signal handler can not see a stale current thread pointer.
   atomic_signal_fence(memory_order_seq_cst);

Original file line number	Diff line number	Diff line change
`@@ -292,6 +292,7 @@ void MsanTSDDtor(void *tsd) {`
`292`	`292`	`CHECK_EQ(0, pthread_setspecific(tsd_key, tsd));`
`293`	`293`	`return;`
`294`	`294`	`}`
	`295`	`+ ScopedBlockSignals block(nullptr);`
`295`	`296`	`msan_current_thread = nullptr;`
`296`	`297`	`// Make sure that signal handler can not see a stale current thread pointer.`
`297`	`298`	`atomic_signal_fence(memory_order_seq_cst);`