Make MAX_CONTEXT_SIZE dynamically sized to future-proof it

[derekbruening]

On Skylake this assert fires:

Internal Error: DynamoRIO debug check failure: D:\dynamorio_package\core\win32\ntdll.c:5359 res >= 0 && len <= MAX_CONTEXT_SIZE

Xref #1937 for the corresponding Linux signal context issue.
We need to make MAX_CONTEXT_SIZE be dynamically sized.

[newgre]

For the record: the extended context size for both, Skylake and Kaby Lake, is 0x4F7.
Would you be ok with an update to MAX_CONTEXT_SIZE until dynamic context size has been implemented?

[newgre]

err, above size was the result without CONTEXT_XSTATE. The correct value should be 0x6EF and 0x4E3 for a 32-bit process.

[derekbruening]

Would you be ok with an update to MAX_CONTEXT_SIZE until dynamic context size has been implemented?

Yes that's a reasonable short-term fix. The current value in the code today for 64-bit MAX_CONTEXT_SIZE is 0x6ef and for 32-bit 0x4e3 -- are you reporting a subset of the context above?
Your values above wouldn't have triggered the assert.

[newgre]

in 7 RC1 I see 0x680 and 0x480, respectively, defined in os_private.h?

[derekbruening]

Would you be ok with an update to MAX_CONTEXT_SIZE until dynamic context size has been implemented?

The only concern here is that stack buffers of this size are used in a number of places in the code and DR has a limited stack size. If the MAX_CONTEXT_SIZE gets too much larger they will need to be changed to use the heap.

[derekbruening]

in 7 RC1 I see 0x680 and 0x480, respectively, defined in os_private.h?

Ah ok, I'm looking at the latest, and it was updated in 5eebc95. So perhaps the short-term fix has already been done?

[newgre]

Oh neat, yes those values are the same that I deduced. Are there nightly builds?

[newgre]

found them: https://github.com/DynamoRIO/dynamorio/wiki/Latest-Build

[newgre]

no windows builds?

[derekbruening]

Unfortunately the old Cr nightly builds no longer exist (we should update that wiki page) and noone has set them up with Appveyor yet (#1967)

[newgre]

I can confirm that the context size related bug is fixed in trunk.

[securitykernel]

Got here via #3923. I tried launching drrun and drmemory via windbg from cygwin, from within windbg, loading symbols to find out the value of len in ntdll.c:5221, but all attempts fail, I get access violations, breakpoints fail to trigger, symbols fail to load, etc.

If you can provide a source code snippet that I can compile with VS 2013 to call RtlGetExtendedContextLength() on my system, than I'd be happy to compile and run it.

[lieser]

On the system that @securitykernel tried the context size seems to be 0xd2f.

[lieser]

@derekbruening Is there any plan to increase the MAX_CONTEXT_SIZE further? Nothing urgent as we currently use a local build there we changed the size, but would be nice to get back to an official build in the long run.

[derekbruening]

Happy to take a pull request for either a short-term size increase or long-term switch to dynamic sizing.

[ntfshard]

This trouble is still reproducible, is it possible to workaround somehow on my side?

[derekbruening]

This trouble is still reproducible, is it possible to workaround somehow on my side?

You can see all the discussion above about local builds and changing the constant (and longer-term refactoring). It would be awesome if someone with these affected machine environments who can thus test it were able to send a pull request for at least a short-term fix.

[lieser]

For reference, here are the notes I took then I debugged it on our affected machine to get the needed value. Note that it has been some time since I did it, so no guarantee about correctness/completes about them:

All done with WinDbg and a cronbuild from https://github.com/DynamoRIO/dynamorio/releases:

As the automatic loading of symbols described at https://github.com/DynamoRIO/dynamorio/wiki/Debugging#debugging-on-windows did nor work for use, we had to load the symbols manually (adapt paths below):

.sympath+ C:\<path>\DynamoRIO-Windows\lib64\debug;C:\<path>\DynamoRIO-Windows\lib64
.reload dynamorio.dll=15000000

To get to the nt_initialize_context function (e.g. to get the value on a system that does trigger the assert), execute the following afterwards:

.childdbg 1
g
$$ should now be at the running process, e.g. notepad
bp dynamorio!nt_initialize_context
g

Afterwards, make a few manual single steps, until the len variable gets populated with the value your machine has.

[ntfshard]

@lieser Thank you for your guidance. Sorry for delay. It seems I got the value, but not sure that I do it in the right way, could you please check:

W/o a call value was undefined. 0n3375 is a dec? I'm quite new with windbg (

[lieser]

Also not an expert on WinDbg, but as far as I can tell you did everything right. But does this error still happen to you with the latest cronbuild?
We already updated MAX_CONTEXT_64_SIZE to 0xd2f (decimal 3375) in a PR. As this is the same value as you found out for your machine, I would expect the latest cronbuild to work for you.

[ntfshard]

Ok, I see, thank you. The difficult is that drmemory crontab releases are appear quite rare: latest - 12 Sep, previous - 4 Jul and 4 Apr

[ntfshard]

Hello
Thank you for fixing crontab releases. I ran 2.3.18633 and it works fine.

[derekbruening]

I think this was accidentally closed: the hardcoded constant was raised, fixing it short-term, but this issue covers a long-term dynamic-sizing fix. Re-opening.

[derekbruening]

Looks like thread_set_self_mcontext is one place where a heap buffer cannot be freed (at least locally). I think all the others can easily heap-allocate.