Interesting behaviour with UBSAN+libc++

Ismail_Donmez · December 4, 2014, 1:21pm

I got some very simple code, dumbed down from a larger one:

[~]> cat wc.cpp
#include

int wc() {
return 0;
}

int main()
{
std::cout << wc() << std::endl;
}

[~]> /opt/clang/bin/clang++ -stdlib=libc++ -fsanitize=undefined wc.cpp

[~]> ./a.out
/opt/clang/bin/…/include/c++/v1/ostream:1034:14: runtime error: member call on address 0x000000ef9858 which does not point to an object of type ‘std::__1::basic_ios’
0x000000ef9850: note: object is base class subobject at offset 8 within object of type ‘std::__1::basic_ostream<char, std::__1::char_traits >’
00 00 00 00 40 a3 b9 c6 b1 7f 00 00 68 a3 b9 c6 b1 7f 00 00 02 10 00 00 00 00 00 00 06 00 00 00
^ ~~~~~~~~~~~~~~~~~~~~~~~
vptr for ‘’ base class of ‘std::__1::basic_ostream<char, std::__1::char_traits >’
/opt/clang/bin/…/include/c++/v1/ios:734:41: runtime error: member call on address 0x000000ef9858 which does not point to an object of type ‘std::__1::ios_base’
0x000000ef9850: note: object is base class subobject at offset 8 within object of type ‘std::__1::basic_ostream<char, std::__1::char_traits >’
00 00 00 00 40 a3 b9 c6 b1 7f 00 00 68 a3 b9 c6 b1 7f 00 00 02 10 00 00 00 00 00 00 06 00 00 00
^ ~~~~~~~~~~~~~~~~~~~~~~~
vptr for ‘’ base class of ‘std::__1::basic_ostream<char, std::__1::char_traits >’
0

Works fine if I link to libstdc++. clang is r223341.

EricWF · December 4, 2014, 9:05pm

Did you compile libc++ with UBSAN?

/Eric

EricWF · December 4, 2014, 9:12pm

LLVM and libc++ always seem to use '-fno-sanitize=vptr,function' and
'-fno-sanitize-recover' with UBSAN. I imagine adding these will remove
the error.
I would ask the compiler-rt people about the error on llvm-dev.

/Eric

zygoloid · December 4, 2014, 9:39pm

The UBSan runtime’s support for type checks of virtual bases is new and possibly incorrect.

sberg · December 5, 2014, 8:36am

...which reminds me of <http://lists.cs.uiuc.edu/pipermail/llvm-commits/Week-of-Mon-20141201/247604.html> "[PATCH] [comiler-rt/ubsan] getVtablePrefix must not sanity-check on Prefix->Offset > 0"

Ismail_Donmez · December 5, 2014, 9:05am

Ok so just to confirm to use ubsan against c++ programs I do not
necessarily recompile libc++ with ubsan support right?

Regards.

sberg · December 5, 2014, 1:17pm

I successfully use UBSan on LibreOffice (lots of C++) against a non-instrumented libstdc++ (on Linux) at least.

(It is MemorySanitizer that needs /all/ code to be instrumented, I think.)

Ismail_Donmez · December 5, 2014, 1:18pm

Same for TSAN I guess. Thanks for the confirmation!

Marshall_Clow1 · December 5, 2014, 9:42pm

Correct.

— Marshall