#picolisp on 2020-09-24 — irc logs at freenode.irclog.whitequark.org

2018-09-14 18:41 ChanServ changed the topic of #picolisp to: PicoLisp language | Channel Log: https://irclog.whitequark.org/picolisp/ | Check also http://www.picolisp.com for more information

02:18 aw- has joined #picolisp

02:45 dexen has quit [Ping timeout: 260 seconds]

05:01 <aw-> Regenaxer: good morning, with (native) I have a result specification which looks like this: (list 'Attr (64 N . 4) 0)

05:01 <Regenaxer> Hi aw-!

05:02 <aw-> a 64-byte buffer which only returns a list of 4 x 8-byte longs

05:02 <aw-> i want to know: is that "dangerous" ?

05:02 <Regenaxer> and only the first byte is initalized

05:02 <aw-> oh right, missing the . 0

05:02 <Regenaxer> ok

05:02 <aw-> (list 'Attr (64 N . 4) . 0)

05:02 <Regenaxer> I think it is not dangerous

05:03 <Regenaxer> just the buffer is too big

05:03 <Regenaxer> no problem

05:03 <aw-> the function needs a 64-byte buffer

05:03 <aw-> but i only need the first 32 bytes

05:03 <Regenaxer> ah, ok

05:03 <Regenaxer> good

05:03 <Regenaxer> Why should it be dangerous?

05:04 <aw-> accepting more data than I need?

05:04 <Regenaxer> The C function does not care what Lisp does with the buffer

05:05 <Regenaxer> You could ignore it all

05:06 <Regenaxer> 'native' allocates 64 bytes, passes the pointer to C, reads 4 longs, and discards the buffer

05:06 <aw-> i see

05:07 <aw-> you dont worry about buffer overflow when using malloc with (native) ?

05:09 <Regenaxer> overflow is a matter of the C function

05:09 <Regenaxer> It must behave well

05:10 <aw-> right

05:11 <aw-> if i can't see the code for the C function? should i write my picolisp to protect from that situation?

05:11 <Regenaxer> I think there is no way, except for allocating an even bigger buffer

05:12 <Regenaxer> Do you suspect that the function is bad?

05:13 <aw-> no

05:13 <aw-> but i don't know

05:14 <aw-> i gotta go, back in a bit

05:14 <aw-> thanks

05:15 <Regenaxer> ok :)

06:09 orivej has joined #picolisp

06:15 orivej has quit [Ping timeout: 260 seconds]

06:27 rob_w has joined #picolisp

06:46 mtsd has joined #picolisp

07:04 <tankf33der> ersatz works in java15.

07:05 <Regenaxer> Thanks!

07:06 <Regenaxer> I continue with GUI for pil21 now

07:07 <Regenaxer> The base system seems to work so far

07:09 <Regenaxer> At least I have no known issues at the moment

07:11 <Regenaxer> Most critical is DB

07:12 <Regenaxer> Most of the bugs of the last days were DB and OOP

07:17 <Regenaxer> and there are surely more

08:07 orivej has joined #picolisp

08:11 dexen has joined #picolisp

08:44 <tankf33der> pil21 can work under address+undefined sanitizers.

08:44 <tankf33der> fails on memory one, its ok.

08:44 <Regenaxer> Do you know the reason?

08:46 <tankf33der> http://ix.io/2yzV

08:46 <tankf33der> in general should be easy.

08:47 <Regenaxer> What kind of write does it mean? write(2) ?

08:47 <Regenaxer> or memory?

08:48 <Regenaxer> What uninitialized value is it?

08:50 <tankf33der> # make

08:50 <tankf33der> ==1766==WARNING: MemorySanitizer: use-of-uninitialized-value

08:50 <tankf33der> #0 0x4c014d in wrBytes (/root/pil21/bin/picolisp+0x4c014d)

08:50 <tankf33der> ../pil lib/llvm.l main.l -bye > base.ll

08:50 <tankf33der> Uninitialized bytes in __interceptor_write at offset 0 inside [0x72100000140c, 4096)

08:50 <tankf33der> #2 0x4c9d42 in prName (/root/pil21/bin/picolisp+0x4c9d42)

08:50 <tankf33der> #1 0x4be0b8 in _putStdout (/root/pil21/bin/picolisp+0x4be0b8)

08:50 <tankf33der> cant find yet.

08:51 <Regenaxer> Perhaps this is a real bug

08:51 <Regenaxer> would be interesting to understand what that means

09:06 <tankf33der> # ./picolisp-msan /root/t1.l -bye > dfdd

09:06 <tankf33der> ==2237==WARNING: MemorySanitizer: use-of-uninitialized-value

09:06 <tankf33der> #0 0x4c014d in wrBytes /root/pil21/src/picolisp.s:49066

09:06 <tankf33der> Uninitialized bytes in __interceptor_write at offset 0 inside [0x72100000140c, 159)

09:06 <tankf33der> #1 0x4c00c5 in flush /root/pil21/src/picolisp.s:48990

09:06 <tankf33der> #3 0x4be334 in bye /root/pil21/src/picolisp.s:45901

09:06 <tankf33der> #2 0x4be368 in flushAll /root/pil21/src/picolisp.s:45934

09:06 <tankf33der> now got line numbers in picolisp.s file.

09:06 <Regenaxer> ok

09:07 <Regenaxer> Your line numbers are different from mine probably

09:08 <Regenaxer> Can you pastebin your picolisp.s file?

09:08 <tankf33der> doing.

09:09 <tankf33der> too big for ix.io

09:09 <Regenaxer> oh!

09:09 <Regenaxer> only flush then

09:10 <tankf33der> https://envs.sh/wg.s

09:10 <tankf33der> try to download from this url then.

09:10 <tankf33der> full file.

09:10 <Regenaxer> good

09:10 <tankf33der> this file is without opt -O3

09:10 <tankf33der> flat, as is.

09:11 <Regenaxer> No lines added, so that linenumber matches?

09:11 <Regenaxer> 45901

09:12 <Regenaxer> hmm

09:12 <Regenaxer> ImovqI%rbx, %rsi

09:12 <Regenaxer> movqI%rbx, %rsi

09:12 <Regenaxer> is not a memory access

09:12 <Regenaxer> and not a write

09:13 <Regenaxer> also, not in flush() but in _ge

09:14 <Regenaxer> Something is very wrong

09:14 <Regenaxer> ah, wait

09:14 <Regenaxer> I looked wrong

09:15 <Regenaxer> 49066

09:16 <Regenaxer> hmm, neither

09:16 <Regenaxer> it is in prove

09:17 <Regenaxer> I give up

09:20 <tankf33der> eh, as is.

09:20 <Regenaxer> wrBytes() looks correct

09:20 <Regenaxer> called by flush()

09:21 <Regenaxer> The line number above make no sense

09:21 <Regenaxer> but I know that write is called in wrBytes

09:21 <Regenaxer> : (vi 'wrBytes)

09:22 <Regenaxer> Perhaps some buffer indexes are wrong

09:22 <Regenaxer> I insert some debug code

09:22 <Regenaxer> How did you call it?

09:23 <Regenaxer> i.e. can I reproduce?

09:23 <aw-> back

09:23 <Regenaxer> hi :)

09:23 <aw-> hi

09:24 <Regenaxer> tankf33der: *Where* does it write to? If really uninitialized, the written data should be nonsense

09:24 <Regenaxer> stdout?

09:24 <Regenaxer> or a file?

09:27 beneroth has joined #picolisp

09:29 <tankf33der> afk.

09:29 <tankf33der> cant right now.

09:29 <Regenaxer> ok

09:29 <Regenaxer> no hurry

09:55 <tankf33der> 12:06 <tankf33der> # ./picolisp-msan /root/t1.l -bye > dfdd

09:56 <tankf33der> as you can see i just called a file this way

09:56 <tankf33der> and t1.l file is just:

09:56 <tankf33der> println apply * range 1 100

09:56 <tankf33der> .

09:56 <tankf33der> just one line

09:56 <Regenaxer> is garbage in the file?

09:57 <Regenaxer> Could you strace and send me?

09:57 <Regenaxer> I can look at write() calls

10:33 <tankf33der> in dfdd correct number

10:34 <tankf33der> http://ix.io/2yAl

10:34 <tankf33der> ^^^ this is strace of:

10:35 <tankf33der> strace ./picolisp-msan /root/t1.l -bye > dfdd

10:36 <Regenaxer> checking ...

10:37 <Regenaxer> does it write numbers like "93326215443944152681699238856266"?

10:38 <tankf33der> yeap

10:38 <Regenaxer> after that only write(2, "\33[1m\33[31mUninitialized bytes

10:38 <Regenaxer> So write seems ok

10:39 <tankf33der> : (apply * (range 1 100))

10:39 <tankf33der> -> 93326215443944152681699238856266700490715968264381621468592963895217599993229915608941463976156518286253697920827223758251185210916864000000000000000000000000

10:39 <tankf33der> :

10:39 <Regenaxer> yeah

10:39 <tankf33der> maybe printing second cons of bignum is wrong somehow.

10:40 <Regenaxer> length of that num is 158

10:40 <Regenaxer> write(1, "93326215443944152681699238856266"..., 159) = 159

10:40 <Regenaxer> so a space or newline?

10:41 <Regenaxer> How does it find out uninitialized memory? By pre-filling with some pattern?

10:42 <Regenaxer> No idea why it complains

10:42 <tankf33der> sanitizer counts memory access.

10:42 <tankf33der> if checked then ok.

10:43 <Regenaxer> checked in which way?

10:50 orivej has quit [Ping timeout: 256 seconds]

11:12 <beneroth> hi Regenaxer, tankf33der

11:13 <beneroth> Regenaxer, for every memory read, check if it was written before, if not == uninitialized memory access

11:13 <beneroth> if that is the topic...

11:13 <Regenaxer> Hi beneroth

11:13 <Regenaxer> it checks by pre-filling?

11:13 <Regenaxer> Or how else?

11:14 <beneroth> I don't know the method here in question

11:14 <Regenaxer> It cannot track every memory access without hardware support

11:14 <beneroth> but prefilling, or with active profiling like pil's (trace), decorate every memory access call

11:14 <Regenaxer> and obviously the memory is correct here

11:14 <Regenaxer> the contents

11:15 <beneroth> can't it, if its goes basically MitM between the software and the hardware?

11:15 <beneroth> hm ok

11:15 <Regenaxer> to trace it that way, it must track machine instructions

11:15 <Regenaxer> ie hardware

11:15 <Regenaxer> perhaps CPUs support that

11:15 <Regenaxer> debug instructions

11:16 <Regenaxer> probably only by super user

11:16 <Regenaxer> anyway

11:17 <Regenaxer> I'd like to know why it believes it is uninitialized. Perhaps it is. But which memory?

11:18 <Regenaxer> Not very helpful

11:18 <beneroth> yeah which memory is the question

11:18 <Regenaxer> If it really detects it, it should better tell exactly *which* range of memory

11:18 <Regenaxer> T

11:19 <Regenaxer> Above we write() 159 byte

11:19 <Regenaxer> the number has 158

11:19 <Regenaxer> I assume the last byte is a newline

11:19 <Regenaxer> So everything looks good

11:55 rob_w has quit [Ping timeout: 272 seconds]

12:07 rob_w has joined #picolisp

12:57 mtsd has quit [Quit: Leaving]

13:00 orivej has joined #picolisp

14:42 rob_w has quit [Remote host closed the connection]

16:03 orivej has quit [Ping timeout: 258 seconds]

19:11 orivej has joined #picolisp

21:33 <dexen> perhaps could use the paging mechanism for tracking all memory accesses?

21:34 <dexen> rough idea: allocate a protected (no read, no write) memory region. adjust all *relevant* pointers by adding a large constant, to make them all point to the protected memory region.

21:35 <dexen> any attempt at accessing the pointer will cause SIGSEGV, catch it, subtract the large constant from the pointer to obtain the *actual* / original value

23:11 orivej has quit [Ping timeout: 256 seconds]

23:15 orivej has joined #picolisp

23:17 orivej has quit [Excess Flood]

23:17 orivej has joined #picolisp