Address Sanitizer ASLR Bug #184
Comments
|
I've confirmed that upgrading to gcc 13.2 seems to fix the issue. See the Aug 23, '24, 12:19 PM EDT submission at: The with the 6.5.0 kernel that has more aggressive ASLR and for which things were failing earlier. The ASan test on that submission shows 100 successful runs with no error. |
|
I'm looking into Ubuntu versions concurrently in EECS 485. I don't have a Windows machine. These Microsoft docs seem to imply that Ubuntu 24.04 is the recommended (default?) version. |
That tutorial from Canonical suggests searching for and installing Ubuntu 24.04. But, it looks like the default in the Microsoft store for just plain "Ubuntu" is still Ubuntu 22.04: https://apps.microsoft.com/detail/9pdxgncfsczv?hl=en-us&gl=US So, if students install "Ubuntu" via the Microsoft Store, it's 22.04 for now. I assume this is also what they get with But, I haven't found anything that indicates how the pointer from "Ubuntu" to "Ubuntu 22.04" is maintained or when it might switch over to "Ubuntu 24.04". It wouldn't be surprising if it happens soon. |
|
Do you think we (anyone who uses the EECS 280 tutorial, which includes EECS 485 students) should suggestion EDIT: |
Definitely worth considering! I like the idea of consistency. Want to make a new issue for that specifically? |
|
Closing this - the AG was the only platform that seemed to be currently affected, and that's resolved with https://github.com/eecs280staff/p1-stats/pull/373. |
Over the past month or so, I've encountered a "heisenbug" where the address sanitizer would mysteriously fail on the autograder, with stderr something like:
I mentioned this in https://github.com/eecs280staff/p2-cv/pull/227 and it also happened when I was testing for https://github.com/eecs280staff/p3-euchre/pull/249. See this submission at Aug 21, '24, 02:11 PM EDT here for an example. Some of the Euchre Public Tests (UB Checks) fail in this way. (Note that these links will not be publicly available.)
The issue manifests only occasionally and always disappeared on a rerun.
We also ran into this with CI failures in our project repos because this but affected Github Actions runners for a hot minute:
actions/runner-images#9491
Problem
It seems this is related to a bug mentioned here:
https://stackoverflow.com/questions/77894856/possible-bug-in-gcc-sanitizers
Essentially, it was somewhat recently discovered that not enough bits of entropy were being used for ASLR in the Linux kernel configuration. Some distributions, including Ubuntu, now include a patch. In particular, Ubuntu linux kernel versions 6.5.0 and newer use 32 instead of 28 bits of entropy. See https://launchpad.net/ubuntu/+source/linux/6.5.0-25.25, search for "ARCH_MMAP_RND_". Or this commit.
Unfortunately, this change aggravates a bug in Address Sanitizer, which has since been patched, but the patch is only available in fairly new versions of each compiler. The fix appears to have made its way into Ubuntu gcc 13.2:
https://git.launchpad.net/ubuntu/+source/gcc-13/commit/?id=6c5be2a496335c513dbe6fa85df2402cfc0f0a8b
Affected Platforms
CAEN Linux
I am not able to reproduce the issue on CAEN Linux. I can't find much online, but I'm guessing the kernel is defaulting to only 28 bits of entropy, so the bug in ASan doesn't manifest.
Student WSL Ubuntu
I am not able to reproduce this on my machine, unless I manually set
sudo sysctl vm.mmap_rnd_bits=32, in which case the bug readily shows up (maybe 25% of runs on any trivial program with the address sanitizer enabled).It looks like the WSL kernel may eventually include an increase to use more (32) bits of entropy:
microsoft/WSL2-Linux-Kernel@856cf33
But that commit is currently only for 6.X.X versions of the kernel, and WSL currently ships with 5.X.X by default. Only if someone manually upgraded it, which is pretty involved, would it be a potential issue:
https://learn.microsoft.com/en-us/community/content/wsl-user-msft-kernel-v6
Ubuntu 24.04 is available for WSL via the Microsoft Store, but it isn't the default yet. When it become the default, our students would get gcc 13.2 or newer, which contains the fix for the ASan bug. Hopefully that happens before kernel 6.X.X becomes the default.
Student Mac
Not affected AFAIK.
Autograder
This is the most interesting case. Clearly the AG is affected, since I've been seeing the issue. But it only manifests rarely - it turns out that some of the AG grader machines have different kernel versions. For example:
https://autograder.io/web/project/2666?current_tab=student_lookup¤t_student_lookup=495003
Particularly the submissions from:
1 does not fail the asan test.
uname -rit is kernel version5.4.0-182-generic.2 does fail the asan test.
uname -ris6.5.0-35-generic.So the failure is dependent on the particular machine that the grading job gets dispatched to. Even though the grading is running in a docker container, the ASLR is still handled by the host kernel.
The ideal fix is likely to upgrade our AG image to Ubuntu 24.04 so we can use gcc 13.2 which has the ASan fix. I plan to try this out and make a PR with the appropriate changes if it seems to resolve the issue.
The text was updated successfully, but these errors were encountered: