Skip to content

Android SDK build script: HWAsan support added#25718

Merged
asmorkalov merged 2 commits intoopencv:4.xfrom
savuor:rv/hwasan_flag
Jun 11, 2024
Merged

Android SDK build script: HWAsan support added#25718
asmorkalov merged 2 commits intoopencv:4.xfrom
savuor:rv/hwasan_flag

Conversation

@savuor
Copy link
Copy Markdown
Contributor

@savuor savuor commented Jun 6, 2024

Pull Request Readiness Checklist

See details at https://github.com/opencv/opencv/wiki/How_to_contribute#making-a-good-pull-request

  • I agree to contribute to the project under Apache 2 License.
  • To the best of my knowledge, the proposed patch is not based on a code under GPL or another license that is incompatible with OpenCV
  • The PR is proposed to the proper branch
  • There is a reference to the original bug report and related work
  • There is accuracy test, performance test and test data in opencv_extra repository, if applicable
    Patch to opencv_extra has the same branch name.
  • The feature is well documented and sample code can be built with the project CMake

@asmorkalov asmorkalov self-requested a review June 6, 2024 08:34
@savuor savuor marked this pull request as ready for review June 11, 2024 01:37
@asmorkalov asmorkalov self-assigned this Jun 11, 2024
@asmorkalov asmorkalov added this to the 4.11.0 milestone Jun 11, 2024
@asmorkalov asmorkalov merged commit 3ea7ed9 into opencv:4.x Jun 11, 2024
opencv-alalek
opencv-alalek reviewed Jun 11, 2024
View reviewed changes
platforms/android/build_sdk.py
hwasan_flags = "-fno-omit-frame-pointer -fsanitize=hwaddress"
cmake_vars['CMAKE_CXX_FLAGS_DEBUG'] = hwasan_flags
cmake_vars['CMAKE_C_FLAGS_DEBUG'] = hwasan_flags
cmake_vars['CMAKE_LINKER_FLAGS_DEBUG'] = hwasan_flags
Copy link
Copy Markdown
Contributor

@opencv-alalek opencv-alalek Jun 11, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why "debug" only?

Copy link
Copy Markdown
Contributor Author

@savuor savuor Jun 11, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added release mode flags in #25746
I think the only sense of HWASan in Release mode is to die instead of doing some insecure memory operation like buffer overflow.
I don' see a lot of sense in HWASan reports in Release mode since there's no symbols and no proper stack trace is produced. For example, here's the log for the issue #25735 with Release mode on:

HWASan report 
==29605==ERROR: HWAddressSanitizer: tag-mismatch on address 0x003e2df44c60 at pc 0x005c2e8578c0
WRITE of size 8 at 0x003e2df44c60 tags: 0b/07(0b) (ptr/mem) in thread T0
Invalid access starting at offset 7
    #0 opencv_test::(anonymous namespace)::BufferArea_basic_Test::Body() in ??:0:0
    #1 opencv_test::(anonymous namespace)::BufferArea_basic_Test::TestBody() in ??:0:0
    #2 void testing::internal::HandleExceptionsInMethodIfSupported<testing::Test, void>(testing::Test*, void (testing::Test::*)(), char const*) in ??:0:0
    #3 testing::Test::Run() in ??:0:0
    #4 testing::TestInfo::Run() in ??:0:0
    #5 testing::TestCase::Run() in ??:0:0
    #6 testing::internal::UnitTestImpl::RunAllTests() in ??:0:0
    #7 bool testing::internal::HandleExceptionsInMethodIfSupported<testing::internal::UnitTestImpl, bool>(testing::internal::UnitTestImpl*, bool (testing::internal::UnitTestImpl::*)(), char const*) in ??:0:0
    #8 testing::UnitTest::Run() in ??:0:0
    #9 main in ??:0:0
    #10 0x7df38b98f0  (/apex/com.android.runtime/lib64/bionic/hwasan/libc.so+0x5b8f0) (BuildId: a345f50b7faa262077e8d08a5acbfaa7)

[0x003e2df44c40,0x003e2df44c80) is a small allocated heap chunk; size: 64 offset: 32

Cause: heap-buffer-overflow
0x003e2df44c60 is located 32 bytes inside a 39-byte region [0x003e2df44c40,0x003e2df44c67)
allocated here:
    #0 0x7ded168698  (/apex/com.android.runtime/lib64/bionic/libclang_rt.hwasan-aarch64-android.so+0x23698) (BuildId: 558b5c131872716737ddc0a62f3382dd3df70b9a)
    #1 0x7df38ad36c  (/apex/com.android.runtime/lib64/bionic/hwasan/libc.so+0x4f36c) (BuildId: a345f50b7faa262077e8d08a5acbfaa7)
    #2 cv::fastMalloc(unsigned long) in ??:0:0
    #3 cv::utils::BufferArea::commit() in ??:0:0
    #4 opencv_test::(anonymous namespace)::BufferArea_basic_Test::Body() in ??:0:0
    #5 opencv_test::(anonymous namespace)::BufferArea_basic_Test::TestBody() in ??:0:0
    #6 void testing::internal::HandleExceptionsInMethodIfSupported<testing::Test, void>(testing::Test*, void (testing::Test::*)(), char const*) in ??:0:0
    #7 testing::Test::Run() in ??:0:0
    #8 testing::TestInfo::Run() in ??:0:0
    #9 testing::TestCase::Run() in ??:0:0
    #10 testing::internal::UnitTestImpl::RunAllTests() in ??:0:0
    #11 bool testing::internal::HandleExceptionsInMethodIfSupported<testing::internal::UnitTestImpl, bool>(testing::internal::UnitTestImpl*, bool (testing::internal::UnitTestImpl::*)(), char const*) in ??:0:0
    #12 testing::UnitTest::Run() in ??:0:0
    #13 main in ??:0:0
    #14 0x7df38b98f0  (/apex/com.android.runtime/lib64/bionic/hwasan/libc.so+0x5b8f0) (BuildId: a345f50b7faa262077e8d08a5acbfaa7)
    #15 _start_main in ??:0:0

Thread: T0 0x007400002000 stack: [0x007ff253b000,0x007ff2d3b000) sz: 8388608 tls: [0x007df6f06000,0x007df6f09000)
Memory tags around the buggy address (one tag corresponds to 16 bytes):
  0x003e2df44400: aa  aa  aa  aa  34  34  34  34  63  63  63  63  9b  9b  9b  9b
  0x003e2df44500: c8  c8  c8  c8  20  20  20  20  24  24  24  24  bc  bc  bc  bc
  0x003e2df44600: a3  a3  a3  a3  cc  cc  cc  cc  f2  f2  f2  f2  e4  e4  e4  e4
  0x003e2df44700: 4c  4c  4c  4c  d4  d4  d4  d4  a5  a5  a5  a5  d5  d5  d5  d5
  0x003e2df44800: b4  b4  b4  b4  1a  1a  1a  1a  e4  e4  e4  e4  89  89  89  89
  0x003e2df44900: e3  e3  e3  e3  76  76  76  76  5a  5a  5a  5a  35  35  35  35
  0x003e2df44a00: dc  dc  dc  dc  ed  ed  ed  ed  2d  2d  2d  2d  56  56  56  56
  0x003e2df44b00: d2  d2  d2  d2  7f  7f  7f  7f  b4  b4  b4  b4  5c  5c  5c  5c
=>0x003e2df44c00: 4c  4c  4c  4c  0b  0b [07] bc  e4  e4  e4  e4  b6  76  76  76
  0x003e2df44d00: 13  13  13  13  60  60  60  60  fb  fb  fb  fb  c9  c9  08  8b
  0x003e2df44e00: bc  bc  bc  bc  a9  a9  a9  a9  0f  0f  0f  0f  5c  5c  5c  5c
  0x003e2df44f00: c4  c4  c4  c4  9d  9d  9d  9d  bb  bb  bb  bb  81  81  81  81
  0x003e2df45000: d7  d7  d7  d7  83  83  83  83  6e  6e  6e  6e  17  17  17  d7
  0x003e2df45100: 24  24  24  24  c6  c6  c6  c6  41  41  41  41  b7  b7  b7  b7
  0x003e2df45200: 1b  1b  1b  1b  ce  ce  ce  ce  52  52  52  52  f1  f1  f1  f1
  0x003e2df45300: 73  73  73  73  13  13  13  13  de  de  de  de  ea  ea  ea  ea
  0x003e2df45400: e1  e1  e1  e1  75  75  75  75  65  65  65  65  4f  4f  4f  4f
Tags for short granules around the buggy address (one tag corresponds to 16 bytes):
  0x003e2df44b00: ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..
=>0x003e2df44c00: ..  ..  ..  ..  00  40 [0b] ..  ..  ..  ..  ..  ..  ..  ..  ..
  0x003e2df44d00: ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  ..  c9  ..
See https://clang.llvm.org/docs/HardwareAssistedAddressSanitizerDesign.html#short-granules for a description of short granule tags
Registers where the failure occurred (pc 0x005c2e8578c0):
    x0  0b00003e2df44c60  x1  3900007ff2d38c60  x2  7900007ff2d38c50  x3  e60000402dee27d0
    x4  0000007ff253b000  x5  0000000000000014  x6  0000007ff253b000  x7  0000000000000001
    x8  0b00003e2df44c50  x9  0200007500000000  x10 4008000000000000  x11 0000000000000008
    x12 0000000000000003  x13 00000007ff2d3884  x14 00000007ff2d3882  x15 00000007ff2d3884
    x16 0000007ded194918  x17 0000007ded16e330  x18 0000007df7538000  x19 0200007500000000
    x20 6700007ff2d38a60  x21 d900007ff2d38c70  x22 f900007ff2d38ac0  x23 7900007ff2d38c50
    x24 0040000e80000311  x25 0040000e80000305  x26 0040000e80000361  x27 0040000e80000319
    x28 3900007ff2d38c60  x29 0000007ff2d38cf0  x30 0000005c2e8578c4   sp 0000007ff2d38950
Learn more about HWASan reports: https://source.android.com/docs/security/test/memory-safety/hwasan-reports
SUMMARY: HWAddressSanitizer: tag-mismatch (/data/local/tmp/release/opencv_test_core+0x9688c0) (BuildId: f9512eec121c1d87878200bcdd8dc9dc4b4573d1)
==29605==WARNING: HWASan is ignoring requested __hwasan_handle_longjmp: stack top: 0x007ff2d372f0; target 0x000000000000; distance: 0xffffff800d2c8d10 (8748369168516010610)
False positive error reports may follow
Segmentation fault

@savuor savuor deleted the rv/hwasan_flag branch June 11, 2024 15:08
@savuor savuor mentioned this pull request Jun 11, 2024
Merged
6 tasks
@mshabunin mshabunin mentioned this pull request Jun 14, 2024
Merged
asmorkalov pushed a commit that referenced this pull request Jun 18, 2024
@savuor
Merge pull request #25746 from savuor:rv/hwasan_flag_release
766f3f5 
Android SDK build script: HWAsan flags added for release mode #25746

A quick fix for #25718

### Pull Request Readiness Checklist

See details at https://github.com/opencv/opencv/wiki/How_to_contribute#making-a-good-pull-request

- [x] I agree to contribute to the project under Apache 2 License.
- [x] To the best of my knowledge, the proposed patch is not based on a code under GPL or another license that is incompatible with OpenCV
- [x] The PR is proposed to the proper branch
- [x] There is a reference to the original bug report and related work
- [x] There is accuracy test, performance test and test data in opencv_extra repository, if applicable
      Patch to opencv_extra has the same branch name.
- [x] The feature is well documented and sample code can be built with the project CMake
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@opencv-alalek opencv-alalek opencv-alalek left review comments

@asmorkalov asmorkalov asmorkalov approved these changes

Assignees

@asmorkalov asmorkalov

Labels

category: build/install platform: android

Projects

None yet

Milestone

4.11.0

Development

Successfully merging this pull request may close these issues.

3 participants

@savuor @asmorkalov @opencv-alalek