Fix wrong `MALLOC_ALIGNMENT` for powerpc (#1646)

* Fix the wrong MALLOC_ALIGNMENT If `2 * SIZE_SZ < __alignof__ (long double)`, `MALLOC_ALIGNMENT` will be `__alignof__ (long double)`. See https://elixir.bootlin.com/glibc/glibc-2.37/source/sysdeps/generic/malloc-alignment.h#L27 * Hardcoded supports powerpc's MALLOC_ALIGNMENT for GDB < 8.2
3 years ago · 814eb33417
parent 9a913e2651
commit 814eb33417
2 changed files with 27 additions and 12 deletions
--- a/pwndbg/heap/ptmalloc.py
+++ b/pwndbg/heap/ptmalloc.py
@ -965,12 +965,21 @@ class GlibcMemoryAllocator(pwndbg.heap.heap.MemoryAllocator):
    @pwndbg.lib.memoize.reset_on_objfile
    def malloc_alignment(self):
        """Corresponds to MALLOC_ALIGNMENT in glibc malloc.c"""
-        # i386 will override it to 16 when GLIBC version >= 2.26
-        # See https://elixir.bootlin.com/glibc/glibc-2.26/source/sysdeps/i386/malloc-alignment.h#L22
+        if pwndbg.gdblib.arch.current == "i386" and pwndbg.glibc.get_version() >= (2, 26):
+            # i386 will override it to 16 when GLIBC version >= 2.26
+            # See https://elixir.bootlin.com/glibc/glibc-2.26/source/sysdeps/i386/malloc-alignment.h#L22
+            return 16
+        # See https://elixir.bootlin.com/glibc/glibc-2.37/source/sysdeps/generic/malloc-alignment.h#L27
+        if hasattr(gdb.Type, "alignof"):
+            long_double_alignment = pwndbg.gdblib.typeinfo.lookup_types("long double").alignof
+        else:
+            # alignof doesn't available in GDB < 8.2 (https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=blob_plain;f=gdb/NEWS;hb=gdb-8.2-release)
+            # Hardcoded return correct MALLOC_ALIGNMENT for powerpc
+            # TODO: This will be wrong if there's another architecture similar to powerpc
+            # TODO: We can remove this when we drop supports for GDB < 8.2
+            return 16 if pwndbg.gdblib.arch.current == "powerpc" else 2 * self.size_sz
        return (
-            16
-            if pwndbg.gdblib.arch.current == "i386" and pwndbg.glibc.get_version() >= (2, 26)
-            else pwndbg.gdblib.arch.ptrsize * 2
+            long_double_alignment if 2 * self.size_sz < long_double_alignment else 2 * self.size_sz
        )

    @property
--- a/pwndbg/heap/structs.py
+++ b/pwndbg/heap/structs.py
@ -22,15 +22,21 @@ def fastbin_index(size: int) -> int:
        return (size >> 3) - 2


+# TODO: Move these heap constants and macros to elsewhere, because pwndbg/heap/ptmalloc.py also uses them, we are duplicating them here.
 SIZE_SZ = pwndbg.gdblib.arch.ptrsize
 MINSIZE = pwndbg.gdblib.arch.ptrsize * 4
-# i386 will override it to 16.
-# See https://elixir.bootlin.com/glibc/glibc-2.26/source/sysdeps/i386/malloc-alignment.h#L22
-MALLOC_ALIGN = (
-    16
-    if pwndbg.gdblib.arch.current == "i386" and pwndbg.glibc.get_version() >= (2, 26)
-    else pwndbg.gdblib.arch.ptrsize * 2
-)
+if pwndbg.gdblib.arch.current == "i386" and pwndbg.glibc.get_version() >= (2, 26):
+    # i386 will override it to 16 when GLIBC version >= 2.26
+    # See https://elixir.bootlin.com/glibc/glibc-2.26/source/sysdeps/i386/malloc-alignment.h#L22
+    MALLOC_ALIGN = 16
+elif hasattr(gdb.Type, "alignof"):
+    # See https://elixir.bootlin.com/glibc/glibc-2.37/source/sysdeps/generic/malloc-alignment.h#L27
+    long_double_alignment = pwndbg.gdblib.typeinfo.lookup_types("long double").alignof
+    MALLOC_ALIGN = long_double_alignment if 2 * SIZE_SZ < long_double_alignment else 2 * SIZE_SZ
+else:
+    # alignof doesn't available in GDB < 8.2 (https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=blob_plain;f=gdb/NEWS;hb=gdb-8.2-release)
+    # Hardcoded the MALLOC_ALIGN to 16 for powerpc, and 2 * SIZE_SZ for other archs
+    MALLOC_ALIGN = 16 if pwndbg.gdblib.arch.current == "powerpc" else 2 * SIZE_SZ
 MALLOC_ALIGN_MASK = MALLOC_ALIGN - 1
 MAX_FAST_SIZE = 80 * SIZE_SZ // 4
 NBINS = 128