[libc][LIBC_ADD_NULL_CHECKS] replace volatile deref with __builtin_trap (#123401)

nickdesaulniers · web-flow · commit 8e79ade49d68 · 2025-01-22T09:34:59.000-08:00
Also, update the unit tests that were checking for SIGSEGV to not check for a specific signal. To further improve this check, it may be worth: - renaming the configuration option/macro/docs to be clearer about intent. - swap __builtin_trap for __builtin_unreachable, removing the preprocessor variants of LIBC_CRASH_ON_NULLPTR, then unconditionally using `-fsanitize=unreachable -fsanitize-trap=unreachable` in cmake flags when LIBC_ADD_NULL_CHECKS is enabled. - building with `-fno-delete-null-pointer-checks` when LIBC_ADD_NULL_CHECKS (or when some larger yet to be added hardening config) is enabled. Link: #111546
diff --git a/libc/src/__support/macros/null_check.h b/libc/src/__support/macros/null_check.h
@@ -14,15 +14,10 @@
 #include "src/__support/macros/sanitizer.h"
 
 #if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
-// Use volatile to prevent undefined behavior of dereferencing nullptr.
-// Intentionally crashing with SIGSEGV.
-#define LIBC_CRASH_ON_NULLPTR(PTR)                                             \
+#define LIBC_CRASH_ON_NULLPTR(ptr)                                             \
   do {                                                                         \
-    if (LIBC_UNLIKELY(PTR == nullptr)) {                                       \
-      volatile auto *crashing = PTR;                                           \
-      [[maybe_unused]] volatile auto crash = *crashing;                        \
+    if (LIBC_UNLIKELY((ptr) == nullptr))                                       \
       __builtin_trap();                                                        \
-    }                                                                          \
   } while (0)
 #else
 #define LIBC_CRASH_ON_NULLPTR(ptr)                                             \
diff --git a/libc/test/src/math/smoke/nan_test.cpp b/libc/test/src/math/smoke/nan_test.cpp
@@ -44,8 +44,8 @@ TEST_F(LlvmLibcNanTest, RandomString) {
   run_test("123 ", 0x7ff8000000000000);
 }
 
-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)
+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
 TEST_F(LlvmLibcNanTest, InvalidInput) {
-  EXPECT_DEATH([] { LIBC_NAMESPACE::nan(nullptr); }, WITH_SIGNAL(SIGSEGV));
+  EXPECT_DEATH([] { LIBC_NAMESPACE::nan(nullptr); });
 }
 #endif // LIBC_HAS_ADDRESS_SANITIZER
diff --git a/libc/test/src/math/smoke/nanf128_test.cpp b/libc/test/src/math/smoke/nanf128_test.cpp
@@ -55,8 +55,8 @@ TEST_F(LlvmLibcNanf128Test, RandomString) {
            QUIET_NAN);
 }
 
-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)
+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
 TEST_F(LlvmLibcNanf128Test, InvalidInput) {
-  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf128(nullptr); }, WITH_SIGNAL(SIGSEGV));
+  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf128(nullptr); });
 }
 #endif // LIBC_HAS_ADDRESS_SANITIZER
diff --git a/libc/test/src/math/smoke/nanf16_test.cpp b/libc/test/src/math/smoke/nanf16_test.cpp
@@ -43,8 +43,8 @@ TEST_F(LlvmLibcNanf16Test, RandomString) {
   run_test("123 ", 0x7e00);
 }
 
-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)
+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
 TEST_F(LlvmLibcNanf16Test, InvalidInput) {
-  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf16(nullptr); }, WITH_SIGNAL(SIGSEGV));
+  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf16(nullptr); });
 }
 #endif // LIBC_HAS_ADDRESS_SANITIZER
diff --git a/libc/test/src/math/smoke/nanf_test.cpp b/libc/test/src/math/smoke/nanf_test.cpp
@@ -43,8 +43,8 @@ TEST_F(LlvmLibcNanfTest, RandomString) {
   run_test("123 ", 0x7fc00000);
 }
 
-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)
+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
 TEST_F(LlvmLibcNanfTest, InvalidInput) {
-  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf(nullptr); }, WITH_SIGNAL(SIGSEGV));
+  EXPECT_DEATH([] { LIBC_NAMESPACE::nanf(nullptr); });
 }
 #endif // LIBC_HAS_ADDRESS_SANITIZER
diff --git a/libc/test/src/math/smoke/nanl_test.cpp b/libc/test/src/math/smoke/nanl_test.cpp
@@ -71,8 +71,8 @@ TEST_F(LlvmLibcNanlTest, RandomString) {
   run_test("123 ", expected);
 }
 
-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)
+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)
 TEST_F(LlvmLibcNanlTest, InvalidInput) {
-  EXPECT_DEATH([] { LIBC_NAMESPACE::nanl(nullptr); }, WITH_SIGNAL(SIGSEGV));
+  EXPECT_DEATH([] { LIBC_NAMESPACE::nanl(nullptr); });
 }
 #endif // LIBC_HAS_ADDRESS_SANITIZER

Original file line number	Diff line number	Diff line change
`@@ -44,8 +44,8 @@ TEST_F(LlvmLibcNanTest, RandomString) {`
`44`	`44`	`run_test("123 ", 0x7ff8000000000000);`
`45`	`45`	`}`
`46`	`46`
`47`		`-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)`
	`47`	`+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)`
`48`	`48`	`TEST_F(LlvmLibcNanTest, InvalidInput) {`
`49`		`- EXPECT_DEATH([] { LIBC_NAMESPACE::nan(nullptr); }, WITH_SIGNAL(SIGSEGV));`
	`49`	`+ EXPECT_DEATH([] { LIBC_NAMESPACE::nan(nullptr); });`
`50`	`50`	`}`
`51`	`51`	`#endif // LIBC_HAS_ADDRESS_SANITIZER`
Original file line number	Diff line number	Diff line change
`@@ -55,8 +55,8 @@ TEST_F(LlvmLibcNanf128Test, RandomString) {`
`55`	`55`	`QUIET_NAN);`
`56`	`56`	`}`
`57`	`57`
`58`		`-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)`
	`58`	`+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)`
`59`	`59`	`TEST_F(LlvmLibcNanf128Test, InvalidInput) {`
`60`		`- EXPECT_DEATH([] { LIBC_NAMESPACE::nanf128(nullptr); }, WITH_SIGNAL(SIGSEGV));`
	`60`	`+ EXPECT_DEATH([] { LIBC_NAMESPACE::nanf128(nullptr); });`
`61`	`61`	`}`
`62`	`62`	`#endif // LIBC_HAS_ADDRESS_SANITIZER`
Original file line number	Diff line number	Diff line change
`@@ -43,8 +43,8 @@ TEST_F(LlvmLibcNanf16Test, RandomString) {`
`43`	`43`	`run_test("123 ", 0x7e00);`
`44`	`44`	`}`
`45`	`45`
`46`		`-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)`
	`46`	`+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)`
`47`	`47`	`TEST_F(LlvmLibcNanf16Test, InvalidInput) {`
`48`		`- EXPECT_DEATH([] { LIBC_NAMESPACE::nanf16(nullptr); }, WITH_SIGNAL(SIGSEGV));`
	`48`	`+ EXPECT_DEATH([] { LIBC_NAMESPACE::nanf16(nullptr); });`
`49`	`49`	`}`
`50`	`50`	`#endif // LIBC_HAS_ADDRESS_SANITIZER`
Original file line number	Diff line number	Diff line change
`@@ -43,8 +43,8 @@ TEST_F(LlvmLibcNanfTest, RandomString) {`
`43`	`43`	`run_test("123 ", 0x7fc00000);`
`44`	`44`	`}`
`45`	`45`
`46`		`-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)`
	`46`	`+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)`
`47`	`47`	`TEST_F(LlvmLibcNanfTest, InvalidInput) {`
`48`		`- EXPECT_DEATH([] { LIBC_NAMESPACE::nanf(nullptr); }, WITH_SIGNAL(SIGSEGV));`
	`48`	`+ EXPECT_DEATH([] { LIBC_NAMESPACE::nanf(nullptr); });`
`49`	`49`	`}`
`50`	`50`	`#endif // LIBC_HAS_ADDRESS_SANITIZER`
Original file line number	Diff line number	Diff line change
`@@ -71,8 +71,8 @@ TEST_F(LlvmLibcNanlTest, RandomString) {`
`71`	`71`	`run_test("123 ", expected);`
`72`	`72`	`}`
`73`	`73`
`74`		`-#if !defined(LIBC_HAS_ADDRESS_SANITIZER) && defined(LIBC_TARGET_OS_IS_LINUX)`
	`74`	`+#if defined(LIBC_ADD_NULL_CHECKS) && !defined(LIBC_HAS_SANITIZER)`
`75`	`75`	`TEST_F(LlvmLibcNanlTest, InvalidInput) {`
`76`		`- EXPECT_DEATH([] { LIBC_NAMESPACE::nanl(nullptr); }, WITH_SIGNAL(SIGSEGV));`
	`76`	`+ EXPECT_DEATH([] { LIBC_NAMESPACE::nanl(nullptr); });`
`77`	`77`	`}`
`78`	`78`	`#endif // LIBC_HAS_ADDRESS_SANITIZER`