Update LLVM to clang-r487747b.

Includes a bunch of test `#include` fixes for the reason explained in
the changelog.

Also updates the ASan test. The ASan failure message has been rephrased
so the old test no longer matched the death message correctly. As best
as I can tell the test we have is a copy of the upstream test with all
the supporting functions from the various sanitizer test support headers
copied into it. I've replaced the guts of the test and copied the new
required supporting functions.

This also disables the TSan smoke test. It hangs indefinitely, and we
don't have timeout support (`timeout` is not available on old devices).
The test was already an xfail, so we can just disable it for now. The
test will still be built, so we can be sure that it won't suffer build-
time regressions.

A few libc++ tests were disabled because the tests (either the failing
asserts or whole tests) were removed upstream.

Bug: android/ndk#1298
Bug: android/ndk#1677
Bug: android/ndk#1834
Bug: android/ndk#1860
Bug: android/ndk#1862
Test: checkbuild.py && run_tests.py
Change-Id: Id467537487908cad99099bfeb2cfacf4787d875c

Author: DanAlbert

docs/changelogs/Changelog-r26.md

@@ -20,6 +20,25 @@ directly, see the [build system maintainers guide].
 
 ## Changes
 
+* Updated LLVM to clang-r487747b, based on LLVM 17 development.
+  * Clang now treats `-Wimplicit-function-declaration` as an error rather than a
+    warning in C11 and newer. Clang's default C standard is 17, so this is a
+    change in default behavior compared to older versions of Clang, but is the
+    behavior defined by C99.
+
+    If you encounter these errors when upgrading, you most likely forgot an
+    `#include`. If you cannot (or do not want to) fix those issues, you can
+    revert to the prior behavior with
+    `-Wno-error=implicit-function-declaration`.
+
+    C++ users are unaffected. This has never been allowed in C++.
+
+    See https://reviews.llvm.org/D122983 for more details.
+  * [Issue 1298]: Fixed seccomp error with ASan on x86_64 devices.
+  * [Issue 1677]: Fixed Clang crash in optimizer.
+  * [Issue 1834]: Fixed Clang crash during SVE conversions.
+  * [Issue 1860]: Fixed miscompilation affecting armv7.
+  * [Issue 1862]: Fixed Clang crash for aarch64 with `-Os`.
 * Version scripts that name public symbols that are not present in the library
   will now emit an error by default for ndk-build and the CMake toolchain file.
   Build failures caused by this error are likely a bug in your library or a
@@ -36,6 +55,11 @@ directly, see the [build system maintainers guide].
 
 [Issue 837]: https://github.com/android/ndk/issues/837
 [Issue 1803]: https://github.com/android/ndk/issues/1803
+[Issue 1298]: https://github.com/android/ndk/issues/1298
+[Issue 1677]: https://github.com/android/ndk/issues/1677
+[Issue 1834]: https://github.com/android/ndk/issues/1834
+[Issue 1860]: https://github.com/android/ndk/issues/1860
+[Issue 1862]: https://github.com/android/ndk/issues/1862
 
 ## Known Issues
 

ndk/checkbuild.py

@@ -469,7 +469,7 @@ def install(self) -> None:
             (bin_dir / f"lld{bin_ext}").unlink()
             (bin_dir / f"lld-link{bin_ext}").unlink()
 
-        install_clanglib = install_path / "lib64/clang"
+        install_clanglib = install_path / "lib/clang"
         linux_prebuilt_path = ClangToolchain.path_for_host(Host.Linux)
 
         # Remove unused python scripts. They are not installed for Windows.
@@ -487,25 +487,18 @@ def install(self) -> None:
                 for pyfile in python_bin_dir.glob(file_pattern):
                     pyfile.unlink()
 
-        # Remove lldb-argdumper in site-packages. libc++ is not available there.
-        # People should use bin/lldb-argdumper instead.
-        for pylib in (install_path / "lib").glob("python*"):
-            (pylib / f"site-packages/lldb/lldb-argdumper{bin_ext}").unlink()
-
         if self.host != Host.Linux:
-            # We don't build target binaries as part of the Darwin or Windows
-            # build. These toolchains need to get these from the Linux
-            # prebuilts.
+            # We don't build target binaries as part of the Darwin or Windows build.
+            # These toolchains need to get these from the Linux prebuilts.
             #
-            # The headers and libraries we care about are all in lib64/clang
-            # for both toolchains, and those two are intended to be identical
-            # between each host, so we can just replace them with the one from
-            # the Linux toolchain.
+            # The headers and libraries we care about are all in lib/clang for both
+            # toolchains, and those two are intended to be identical between each host,
+            # so we can just replace them with the one from the Linux toolchain.
             shutil.rmtree(install_clanglib)
-            shutil.copytree(linux_prebuilt_path / "lib64/clang", install_clanglib)
+            shutil.copytree(linux_prebuilt_path / "lib/clang", install_clanglib)
 
-        # The Clang prebuilts have the platform toolchain libraries in
-        # lib64/clang. The libraries we want are in runtimes_ndk_cxx.
+        # The Clang prebuilts have the platform toolchain libraries in lib/clang. The
+        # libraries we want are in runtimes_ndk_cxx.
         ndk_runtimes = linux_prebuilt_path / "runtimes_ndk_cxx"
         for version_dir in install_clanglib.iterdir():
             dst_lib_dir = version_dir / "lib/linux"
@@ -541,15 +534,15 @@ def install(self) -> None:
         # For some reason the LLVM install includes CMake modules that expose
         # its internal APIs. We want to purge these so apps don't accidentally
         # depend on them. See http://b/142327416 for more info.
-        shutil.rmtree(install_path / "lib64/cmake")
+        shutil.rmtree(install_path / "lib/cmake")
 
         # Remove libc++.a and libc++abi.a on Darwin. Now that these files are
         # universal binaries, they break notarization. Maybe it is possible to
         # fix notarization by using ditto to preserve APFS extended attributes.
         # See https://developer.apple.com/forums/thread/126038.
         if self.host == Host.Darwin:
-            (install_path / "lib64/libc++.a").unlink()
-            (install_path / "lib64/libc++abi.a").unlink()
+            (install_path / "lib/libc++.a").unlink()
+            (install_path / "lib/libc++abi.a").unlink()
 
         # Strip some large binaries and libraries. This is awkward, hand-crafted
         # logic to select most of the biggest offenders, but could be
@@ -578,6 +571,36 @@ def install(self) -> None:
             ):
                 subprocess.check_call([str(strip_cmd), "--strip-unneeded", str(file)])
 
+        for lib in (install_path / "lib").iterdir():
+            broken_symlinks = {
+                "libc++abi.so.1.0",
+                "libc++abi.so",
+                "libc++.so.1.0",
+            }
+
+            if lib.name in broken_symlinks:
+                self._check_and_remove_dangling_symlink(lib)
+
+    def _check_and_remove_dangling_symlink(self, path: Path) -> None:
+        """Removes an expected dangling symlink, or raises an error.
+
+        The latest LLVM prebuilts have some dangling symlinks. It's a bug on the LLVM
+        build side, but rather than wait for a respin we just clean up the problems
+        here. This will raise an error whenever we upgrade to a new toolchain that
+        doesn't have these problems, so we'll know when to remove the workaround.
+        """
+        if not path.is_symlink():
+            raise RuntimeError(
+                f"Expected {path} to be a symlink. Update or remove this workaround."
+            )
+        if (dest := path.readlink()).exists():
+            raise RuntimeError(
+                f"Expected {path} to be a dangling symlink, but {dest} exists. Update "
+                "or remove this workaround."
+            )
+
+        path.unlink()
+
 
 def versioned_so(host: Host, lib: str, version: str) -> str:
     """Returns the formatted versioned library for the given host.
@@ -665,7 +688,7 @@ def env(self) -> Dict[str, str]:
 
     @property
     def _libcxx_dir(self) -> Path:
-        return self.get_dep("clang").get_build_host_install() / "lib64"
+        return self.get_dep("clang").get_build_host_install() / "lib"
 
     @property
     def _libcxx(self) -> List[Path]:

ndk/toolchains.py

@@ -21,8 +21,7 @@
 from ndk.hosts import Host, get_default_host
 import ndk.paths
 
-
-CLANG_VERSION = "clang-r450784d1"
+CLANG_VERSION = "clang-r487747b"
 
 
 HOST_TRIPLE_MAP = {

tests/device/asan-smoke/jni/asan_oob_test.cc

@@ -6,10 +6,20 @@
 // License. See LICENSE.TXT for details.
 //
 //===----------------------------------------------------------------------===//
+#include <stdint.h>
 #include <stdio.h>
+#include <stdlib.h>
+
+#include <string>
 
 #include <gtest/gtest.h>
 
+#if __LP64__ || defined(_WIN64)
+#  define SANITIZER_WORDSIZE 64
+#else
+#  define SANITIZER_WORDSIZE 32
+#endif
+
 #define NOINLINE __attribute__((noinline))
 
 typedef uint8_t   U1;
@@ -26,6 +36,16 @@ inline void break_optimization(void *arg) {
 #endif
 }
 
+// This function returns its parameter but in such a way that compiler
+// can not prove it.
+template<class T>
+NOINLINE
+static T Ident(T t) {
+  T ret = t;
+  break_optimization(&ret);
+  return ret;
+}
+
 NOINLINE void *malloc_fff(size_t size) {
   void *res = malloc/**/(size); break_optimization(0); return res;}
 NOINLINE void *malloc_eee(size_t size) {
@@ -48,6 +68,14 @@ NOINLINE void asan_write(T *a) {
   *a = 0;
 }
 
+NOINLINE void asan_write_sized_aligned(uint8_t *p, size_t size) {
+  EXPECT_EQ(0U, ((uintptr_t)p % size));
+  if      (size == 1) asan_write((uint8_t*)p);
+  else if (size == 2) asan_write((uint16_t*)p);
+  else if (size == 4) asan_write((uint32_t*)p);
+  else if (size == 8) asan_write((uint64_t*)p);
+}
+
 template<typename T>
 NOINLINE void oob_test(int size, int off) {
   char *p = (char*)malloc_aaa(size);
@@ -57,41 +85,106 @@ NOINLINE void oob_test(int size, int off) {
   free_aaa(p);
 }
 
+static std::string GetLeftOOBMessage(int off) {
+  char str[100];
+  sprintf(str, "is located.*%d byte.*before", off);
+  return str;
+}
+
+static std::string GetRightOOBMessage(int off) {
+  char str[100];
+#if !defined(_WIN32)
+  // FIXME: Fix PR42868 and remove SEGV match.
+  sprintf(str, "is located.*%d byte.*after|SEGV", off);
+#else
+  // `|` doesn't work in googletest's regexes on Windows,
+  // see googletest/docs/advanced.md#regular-expression-syntax
+  // But it's not needed on Windows anyways.
+  sprintf(str, "is located.*%d byte.*after", off);
+#endif
+  return str;
+}
+
 template<typename T>
 void OOBTest() {
-  char expected_str[100];
   for (int size = sizeof(T); size < 20; size += 5) {
-    for (int i = -5; i < 0; i++) {
-      const char *str =
-          "is located.*%d byte.*to the left";
-      sprintf(expected_str, str, abs(i));
-      EXPECT_DEATH(oob_test<T>(size, i), expected_str);
-    }
+    for (int i = -5; i < 0; i++)
+      EXPECT_DEATH(oob_test<T>(size, i), GetLeftOOBMessage(-i));
 
     for (int i = 0; i < (int)(size - sizeof(T) + 1); i++)
       oob_test<T>(size, i);
 
     for (int i = size - sizeof(T) + 1; i <= (int)(size + 2 * sizeof(T)); i++) {
-      const char *str =
-          "is located.*%d byte.*to the right";
-      int off = i >= size ? (i - size) : 0;
       // we don't catch unaligned partially OOB accesses.
       if (i % sizeof(T)) continue;
-      sprintf(expected_str, str, off);
-      EXPECT_DEATH(oob_test<T>(size, i), expected_str);
+      int off = i >= size ? (i - size) : 0;
+      EXPECT_DEATH(oob_test<T>(size, i), GetRightOOBMessage(off));
     }
   }
 
-  EXPECT_DEATH(oob_test<T>(kLargeMalloc, -1),
-          "is located.*1 byte.*to the left");
-  EXPECT_DEATH(oob_test<T>(kLargeMalloc, kLargeMalloc),
-          "is located.*0 byte.*to the right");
+  EXPECT_DEATH(oob_test<T>(kLargeMalloc, -1), GetLeftOOBMessage(1));
+  EXPECT_DEATH(oob_test<T>(kLargeMalloc, kLargeMalloc), GetRightOOBMessage(0));
 }
 
+// TODO(glider): the following tests are EXTREMELY slow on Darwin:
+//   AddressSanitizer.OOB_char (125503 ms)
+//   AddressSanitizer.OOB_int (126890 ms)
+//   AddressSanitizer.OOBRightTest (315605 ms)
+//   AddressSanitizer.SimpleStackTest (366559 ms)
+
 TEST(AddressSanitizer, OOB_char) {
   OOBTest<U1>();
 }
 
 TEST(AddressSanitizer, OOB_int) {
   OOBTest<U4>();
 }
+
+TEST(AddressSanitizer, OOBRightTest) {
+  size_t max_access_size = SANITIZER_WORDSIZE == 64 ? 8 : 4;
+  for (size_t access_size = 1; access_size <= max_access_size;
+       access_size *= 2) {
+    for (size_t alloc_size = 1; alloc_size <= 8; alloc_size++) {
+      for (size_t offset = 0; offset <= 8; offset += access_size) {
+        void *p = malloc(alloc_size);
+        // allocated: [p, p + alloc_size)
+        // accessed:  [p + offset, p + offset + access_size)
+        uint8_t *addr = (uint8_t*)p + offset;
+        if (offset + access_size <= alloc_size) {
+          asan_write_sized_aligned(addr, access_size);
+        } else {
+          int outside_bytes = offset > alloc_size ? (offset - alloc_size) : 0;
+          EXPECT_DEATH(asan_write_sized_aligned(addr, access_size),
+                       GetRightOOBMessage(outside_bytes));
+        }
+        free(p);
+      }
+    }
+  }
+}
+
+TEST(AddressSanitizer, LargeOOBRightTest) {
+  size_t large_power_of_two = 1 << 19;
+  for (size_t i = 16; i <= 256; i *= 2) {
+    size_t size = large_power_of_two - i;
+    char *p = Ident(new char[size]);
+    EXPECT_DEATH(p[size] = 0, GetRightOOBMessage(0));
+    delete [] p;
+  }
+}
+
+TEST(AddressSanitizer, DISABLED_DemoOOBLeftLow) {
+  oob_test<U1>(10, -1);
+}
+
+TEST(AddressSanitizer, DISABLED_DemoOOBLeftHigh) {
+  oob_test<U1>(kLargeMalloc, -1);
+}
+
+TEST(AddressSanitizer, DISABLED_DemoOOBRightLow) {
+  oob_test<U1>(10, 10);
+}
+
+TEST(AddressSanitizer, DISABLED_DemoOOBRightHigh) {
+  oob_test<U1>(kLargeMalloc, kLargeMalloc);
+}

tests/device/clone/jni/clone.c

@@ -1,7 +1,9 @@
+#define _GNU_SOURCE
+
 #include <stdio.h>
 #include <unistd.h>
 #include <fcntl.h>
-#include <linux/sched.h>
+#include <sched.h>
 #include <stdlib.h>
 
 int v, fd;

tests/device/issue19851-sigsetjmp/jni/issue19851-sigsetjmp.c

@@ -17,6 +17,7 @@
 #include <stdio.h>
 #include <signal.h>
 #include <setjmp.h>
+#include <unistd.h>
 
 static sigjmp_buf sbuf;
 

tests/device/openmp/jni/fib.c

@@ -1,8 +1,11 @@
+#include <math.h>
 #include <stdio.h>
 #include <stdlib.h>
-#include <math.h>
-#include <omp.h>
+#include <sys/time.h>
 #include <unistd.h>
+
+#include <omp.h>
+
 #define MAX 33 //41
 int Fibonacci(int n)
 {   int x, y;
@@ -31,7 +34,7 @@ int main(int argc, char * argv[])
   struct timeval time_start, time_end;
   int i = 0;
   // openmp related print message
-  printf("CPU_ONLN= %d\n", sysconf(_SC_NPROCESSORS_ONLN));
+  printf("CPU_ONLN= %ld\n", sysconf(_SC_NPROCESSORS_ONLN));
   printf("Number of CPUs=%d\n", omp_get_num_procs());
   printf("Number of max threads=%d\n", omp_get_max_threads());
   printf("Number of executing thread=%d\n", omp_get_thread_num());

tests/device/openmp/jni/openmp2.c

@@ -6,8 +6,8 @@
 int main (int argc, char *argv[])
 {
     int nthreads, tid;
-    printf("SC_NPROCESSORS_ONLN: %d\n", sysconf (_SC_NPROCESSORS_ONLN));
-    printf("SC_NPROCESSORS_CONF: %d\n", sysconf (_SC_NPROCESSORS_CONF));
+    printf("SC_NPROCESSORS_ONLN: %ld\n", sysconf (_SC_NPROCESSORS_ONLN));
+    printf("SC_NPROCESSORS_CONF: %ld\n", sysconf (_SC_NPROCESSORS_CONF));
   #pragma omp parallel default(shared) private(nthreads, tid)
     /* Fork a team of threads giving them their own copies of variables */
     {

tests/device/test-cpufeatures/jni/test_arm_idiv.c

@@ -13,11 +13,13 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-#include <cpu-features.h>
+#include <memory.h>
 #include <setjmp.h>
 #include <stdio.h>
 #include <signal.h>
 
+#include <cpu-features.h>
+
 #ifndef __arm__
 #error "Only compile this file for an ARM target"
 #endif