Crash when compiled as a universal binary (x86_64 + arm64) for macOS #118
Comments
|
You are most likely facing a situation where the CMake configuration is not
excluding all ASM files or is not defining all the right symbols. The issue
is that I don’t have a Mac anymore, so I cannot properly investigate the
situation.
Would you mind adding verbose cmake flags and gmake and then we can compare
both and see what we’re missing?
…On Fri, 31 May 2024 at 4:39 PM Felipe Farinon ***@***.***> wrote:
When we compile cryptopp as a universal binary (x86_64 + arm64) using this
CMake script, running the cryptest validation test fails. It also crashes
my application that relies on this, even though compilation succeeds.
The same universal binary compiled using the GNUMakeFile provided by
cryptopp passes all validation tests without issue. To compile using the
GNUMakeFile you can enter: CXXFLAGS="-DNDEBUG -g2 -O3 -stdlib=libc++
-arch x86_64 -arch arm64" make -j 4 on a fresh cryptopp install.
I've tried to further reduce the problem, and finally the problem isn't
with the universal binary per se, but rather with how the CMake script
handles the CRYPTOPP_DISABLE_ASM flag. If you compile with cmake -G Ninja
.. -DCRYPTOPP_DISABLE_ASM=1 you'll have the same issue.
*Steps*
1. Download this repo.
2. Run:
mkdir build cd build cmake -G Ninja ..
-DCMAKE_OSX_ARCHITECTURES="x86_64;arm64"
3. Compilation succeeds, but running validation tests fail:
`
cd cryptopp
./cryptest v
Using seed: 1717168127
Testing Settings...
passed: Your machine is little endian.
passed: Your machine is 64-bit.
passed: sizeof(byte) == 1
passed: sizeof(word16) == 2
passed: sizeof(word32) == 4
passed: sizeof(word64) == 8
passed: sizeof(word128) == 16
passed: sizeof(hword) == 4, sizeof(word) == 8, sizeof(dword) == 16
passed: cacheLineSize == 64
hasSSE2 == 0, hasSSSE3 == 0, hasSSE4.1 == 0, hasSSE4.2 == 0, hasAVX == 0,
hasAVX2 == 0, hasAESNI == 0, hasCLMUL == 0, hasRDRAND == 0, hasRDSEED == 0,
hasSHA == 0, isP4 == 0
...
Testing RandomPool generator...
passed: 10240 generated bytes compressed to 10245 bytes by DEFLATE
passed: IncorporateEntropy with 128 bytes
passed: GenerateWord32 and Crop
passed: DiscardBytes with 1024 bytes
zsh: segmentation fault ./cryptest v
`
OS: macOS 12.7.5
CPU: 1.6 GHz Dual-Core Intel Core i5
Compiler: Apple clang version 14.0.0 (clang-1400.0.29.202)
Version: master, most recent commit on Mar 11, 2024
—
Reply to this email directly, view it on GitHub
<#118>, or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AADPXLPPVDE2W6KQNRZ6CRTZFCKTDAVCNFSM6AAAAABITBEILCVHI2DSMVQWIX3LMV43ASLTON2WKOZSGMZDQMJRGIZTCMQ>
.
You are receiving this because you are subscribed to this thread.Message
ID: ***@***.***>
|
|
Sure, give me a few minutes. |
|
I diff'ed the files that were compiled with GNUMakeFile and cmake: GNUMakeFile: +adhoc.cpp I saw there's an explicit line on the cmake script that adds sse_simd.cpp, so I tried removing it, leaving the only file difference the adhoc.cpp. The compilation succeeded, but the crash still happens. Now checking the compilation flags and adhoc.cpp. |
|
adhoc.cpp is part of the test project, not of the main library. I included it in the cryptest compilation for CMake, but to no effect. Now checking the compilation flags. |
|
I've sampled the compilation for one file below, since the other files seem to follow the same pattern. Anyway, the complete compilation log is attached. GNUMakeFile sha.cpp: c++ -DCRYPTOPP_DISABLE_ASM -fPIC -pthread -fno-common -pipe -DNDEBUG -g2 -O3 -stdlib=libc++ -arch x86_64 -arch arm64 -c sha.cppCMake sha.cpp: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/c++ -DCRYPTOPP_DISABLE_ASM=1 -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build -O3 -DNDEBUG -arch x86_64 -arch arm64 -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX13.1.sdk -mmacosx-version-min=12.7 -fPIC -fvisibility=hidden -fvisibility-inlines-hidden -MD -MT cryptopp/CMakeFiles/cryptopp.dir/sha.cpp.o -MF CMakeFiles/cryptopp.dir/sha.cpp.o.d -o CMakeFiles/cryptopp.dir/sha.cpp.o -c /Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp/sha.cppThere's a difference in the visibility settings and the way the DISABLED_ASM is set. Also, cmake creates the library with |
|
Nothing stands out but there are some differences like -pthread,
-fno-common that could result in different behavior.
We may also check the core dump to see where exactly the test case is
crashing. Maybe it will give us a hint.
…On Fri, 31 May 2024 at 8:27 PM Felipe Farinon ***@***.***> wrote:
I've sampled the compilation for one file below, since the other files
seem to follow the same pattern. Anyway, the complete compilation log is
attached.
GNUMakeFile.txt
<https://github.com/user-attachments/files/15517904/GNUMakeFile.txt>
cmake.txt <https://github.com/user-attachments/files/15517907/cmake.txt>
GNUMakeFile sha.cpp:
c++ -DCRYPTOPP_DISABLE_ASM -fPIC -pthread -fno-common -pipe -DNDEBUG -g2 -O3 -stdlib=libc++ -arch x86_64 -arch arm64 -c sha.cpp
CMake sha.cpp:
/Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/c++ -DCRYPTOPP_DISABLE_ASM=1 -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build -O3 -DNDEBUG -arch x86_64 -arch arm64 -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX13.1.sdk -mmacosx-version-min=12.7 -fPIC -fvisibility=hidden -fvisibility-inlines-hidden -MD -MT cryptopp/CMakeFiles/cryptopp.dir/sha.cpp.o -MF CMakeFiles/cryptopp.dir/sha.cpp.o.d -o CMakeFiles/cryptopp.dir/sha.cpp.o -c /Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp/sha.cpp
There's a difference in the visibility settings and the way the
DISABLED_ASM is set. Also, cmake creates the library with ar while
GNUMakeFile uses libtool, but nothing stands out yet.
—
Reply to this email directly, view it on GitHub
<#118 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AADPXLPGWUBZ75EZV5KQHULZFDFLZAVCNFSM6AAAAABITBEILCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNBSHA3DENJXGY>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
|
The call stack for cryptest: As for the compilation, I managed to reduce the differences between both commands lines, but the crash persists. I will keep reducing it further. GNUMakeFile: c++ -DCRYPTOPP_DISABLE_ASM -fPIC -pthread -fno-common -pipe -DNDEBUG -g2 -O3 -stdlib=libc++ -arch x86_64 -arch arm64 -c sha.cppCMake c++ -DCRYPTOPP_DISABLE_ASM -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp -I/Users/felipefarinon/downloads/cryptopp-cmake-master/build -pthread -fno-common -O3 -DNDEBUG -arch x86_64 -arch arm64 -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX13.1.sdk -mmacosx-version-min=12.7 -fPIC -MD -MT cryptopp/CMakeFiles/cryptopp.dir/sha.cpp.o -MF CMakeFiles/cryptopp.dir/sha.cpp.o.d -o CMakeFiles/cryptopp.dir/sha.cpp.o -c /Users/felipefarinon/downloads/cryptopp-cmake-master/build/cryptopp/sha.cpp |
|
Ending my investigation for today: I've reduced further the compilation differences, with no success. I also called objdump on the randpool, iterhash and osrng object files, and they match 100%. Tomorrow I'll check if I have the same bug with DISABLE_ASM on my Windows machine, where I'm more proficient with the debugger. I'm also intrigued that GNUMakeFile uses libtool instead of ar, like CMake. |
|
Ok. Be aware of #101 on windows. You need to use the latest master of
cryptopp and not the released version.
…On Sat, 1 Jun 2024 at 12:12 AM Felipe Farinon ***@***.***> wrote:
Ending my investigation for today: I've reduced further the compilation
differences, with no success. I also called objdump on the randpool,
iterhash and osrng object files, and they match 100%.
Tomorrow I'll check if I have the same bug with DISABLE_ASM on my Windows
machine, where I'm more proficient with the debugger. I'm also intrigued
that GNUMakeFile uses libtool instead of ar, like CMake.
—
Reply to this email directly, view it on GitHub
<#118 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AADPXLJ7DHJDP5EYKJCKUTLZFD7ULAVCNFSM6AAAAABITBEILCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCNBTGA4TEMRQGY>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
|
Can confirm that the issue also happens on Windows, at the same step of cryptest (RandomPool generator test). I've compiled the dev-windows config, on Windows 10, with CRYPTOPP_DISABLE_ASM=ON, latest master commit, with CRYPTOPP_USE_MASTER_BRANCH=TRUE (to avoid #101). It's a stack corruption problem detected by a stack guard. I'll try running with a sanitizer to see if we get the exact code that's corrupting the stack.
|
|
It's a stack overflow in the SecBlock ctor. The tests pass if I define CRYPTOPP_BOOL_ALIGN16=1, which seems to add some padding to the buffer in the allocator of SecBlock. There are some interesting interactions between CRYPTOPP_BOOL_ALIGN16 and CRYPTOPP_DISABLE_ASM.
|
|
Tagging @noloader |
|
Found it! The CMake script is overriding the CRYPTOPP compilation flags for certain source files, not for all. This makes specific classes have different sizes/offsets depending on the compilation unit they're instantiated. I'm opening a PR with the fix for cryptest. That being said, I believe the compilation flags should be part of the public definition of the library, so that users of the library are required to compile with the right defines. Otherwise, a change in the automatic configuration of the library might create this kind of hard to diagnose issues. |
…ompilation definitions abdes#118
|
Good catch. Agree that we may need to review the library public interface to check if it's missing any flags or definitions. Feel free to also submit a PR for that change. |
|
Hi Everyone. Sorry for the late reply. I was locked out of GitHub again. When you see If you want to build fat binaries, then take a look at https://www.cryptopp.com/wiki/Universal_Binaries. |
|
No worries. If to build fat binaries we have to patch both config_asm.h and config_cxx.h, does this mean that the CMake script doesn't support fat binaries yet? Otherwise, I'd expect that setting CMAKE_OSX_ARCHITECTURES would patch the headers accordingly. That being said, after having a look at config_asm.h, it seems it just specializes the assembly use to a specific processor. If we disable ASM entirely, the library becomes slower, but will it become wrong? For my application it'd be a very acceptable compromise to make the lib less performant in exchange for ease of compilation. |
|
Any positioning on using CRYPTOPP_DISABLE_ASM for compiling fat binaries, if performance is acceptable, @noloader? |
|
Hello. Looking forward to the reply, this is an important issue for my project. |
When we compile cryptopp as a universal binary (x86_64 + arm64) using this CMake script, running the cryptest validation test fails. It also crashes my application that relies on this, even though compilation succeeds.
The same universal binary compiled using the GNUMakeFile provided by cryptopp passes all validation tests without issue. To compile using the GNUMakeFile you can enter:
CXXFLAGS="-DNDEBUG -g2 -O3 -stdlib=libc++ -arch x86_64 -arch arm64" make -j 4on a fresh cryptopp install.I've tried to further reduce the problem, and finally the problem isn't with the universal binary per se, but rather with how the CMake script handles the CRYPTOPP_DISABLE_ASM flag. If you compile with
cmake -G Ninja .. -DCRYPTOPP_DISABLE_ASM=1you'll have the same issue.Steps
cd cryptopp ./cryptest v Using seed: 1717168127 Testing Settings... passed: Your machine is little endian. passed: Your machine is 64-bit. passed: sizeof(byte) == 1 passed: sizeof(word16) == 2 passed: sizeof(word32) == 4 passed: sizeof(word64) == 8 passed: sizeof(word128) == 16 passed: sizeof(hword) == 4, sizeof(word) == 8, sizeof(dword) == 16 passed: cacheLineSize == 64 hasSSE2 == 0, hasSSSE3 == 0, hasSSE4.1 == 0, hasSSE4.2 == 0, hasAVX == 0, hasAVX2 == 0, hasAESNI == 0, hasCLMUL == 0, hasRDRAND == 0, hasRDSEED == 0, hasSHA == 0, isP4 == 0 ... Testing RandomPool generator... passed: 10240 generated bytes compressed to 10245 bytes by DEFLATE passed: IncorporateEntropy with 128 bytes passed: GenerateWord32 and Crop passed: DiscardBytes with 1024 bytes zsh: segmentation fault ./cryptest vOS: macOS 12.7.5
CPU: 1.6 GHz Dual-Core Intel Core i5
Compiler: Apple clang version 14.0.0 (clang-1400.0.29.202)
Version: master, most recent commit on Mar 11, 2024
The text was updated successfully, but these errors were encountered: