maxjhandsome
/
llvm-project
forked from OSchip/llvm-project
1
0
Fork 0
Code Issues Pull Requests Packages Releases Wiki Activity
290,978 Commits 23 Branches 0 Tags 2.2 GiB
Commit Graph

39 Commits

Author SHA1 Message Date
Dmitry Vyukov 7097b4d22d docs: don't say that data flow tracing interface is unstable 
We are starting to use data flow tracing in kernel.
The interface is not subject to change anymore.

Reviewed in https://reviews.llvm.org/D37303

llvm-svn: 312232
 2017-08-31 11:02:44 +00:00
Kostya Serebryany d3e4b7e24a [sanitizer-coverage] extend fsanitize-coverage=pc-table with flags for every PC 
llvm-svn: 311794
 2017-08-25 19:29:47 +00:00
Kostya Serebryany a38bbe30eb [sanitizer-coverage] document -fsanitize-coverage=pc-table and -fsanitize-coverage=inline-8bit-counters 
llvm-svn: 311719
 2017-08-24 22:40:03 +00:00
Alexander Potapenko 5241081532 [sanitizer-coverage] Change cmp instrumentation to distinguish const operands 
This implementation of SanitizerCoverage instrumentation inserts different
callbacks depending on constantness of operands:

  1. If both operands are non-const, then a usual
     __sanitizer_cov_trace_cmp[1248] call is inserted.
  2. If exactly one operand is const, then a
     __sanitizer_cov_trace_const_cmp[1248] call is inserted. The first
     argument of the call is always the constant one.
  3. If both operands are const, then no callback is inserted.

This separation comes useful in fuzzing when tasks like "find one operand
of the comparison in input arguments and replace it with the other one"
have to be done. The new instrumentation allows us to not waste time on
searching the constant operands in the input.

Patch by Victor Chibotaru.

llvm-svn: 310600
 2017-08-10 15:00:13 +00:00
Kostya Serebryany 50fb618b93 [sanitizer-coverage] implement -fsanitize-coverage=no-prune,... instead of a hidden -mllvm flag. clang part. 
llvm-svn: 302320
 2017-05-05 23:28:18 +00:00
Kostya Serebryany 2a451c504f [sanitizer-coverage] update the SanitizerCoverage docs to reflect the current state 
llvm-svn: 301888
 2017-05-02 00:32:57 +00:00
Kostya Serebryany 4a27c79a95 [sanitizer-coverage] add a deprecation note to coverage_direct=1 
llvm-svn: 301824
 2017-05-01 19:52:01 +00:00
Kostya Serebryany a1ef90ab9c [sanitizer-coverage] trim down the docs 
llvm-svn: 300776
 2017-04-19 22:25:30 +00:00
Kostya Serebryany 9d1ed13b53 [sanitizer-coverage] deprecate some of the stale coverage variants 
llvm-svn: 300738
 2017-04-19 19:57:16 +00:00
Mike Aizatsky 9afa12bbc5 [sancov] pc_guard_init is called at least once per DSO. 
Summary: Documentation update for https://reviews.llvm.org/D29662

Differential Revision: https://reviews.llvm.org/D29722

llvm-svn: 294522
 2017-02-08 21:28:39 +00:00
Kostya Serebryany 4b2ff07c11 [sanitizer-coverage] emit __sanitizer_cov_trace_pc_guard w/o a preceding 'if' by default. Update the docs, also add deprecation notes around other parts of sanitizer coverage 
llvm-svn: 292862
 2017-01-24 00:57:31 +00:00
Mike Aizatsky a271d1a531 [sancov] documentation update after r283241 
llvm-svn: 283242
 2016-10-04 19:19:16 +00:00
Kostya Serebryany f74169c9d6 [sanitizer-coverage] fix docs 
llvm-svn: 282962
 2016-09-30 21:57:10 +00:00
Mike Aizatsky a675e0e03c [sancov] -symbolize documentation update 
llvm-svn: 282948
 2016-09-30 21:02:56 +00:00
Kostya Serebryany 851cb98269 [sanitizer-coverage] a bit more docs 
llvm-svn: 282752
 2016-09-29 19:06:09 +00:00
Kostya Serebryany d6ae22a7ab [sanitizer-coverage] more docs 
llvm-svn: 282751
 2016-09-29 18:58:17 +00:00
Kostya Serebryany 6bb5498a4a [sanitize-coverage] doc typo 
llvm-svn: 282749
 2016-09-29 18:34:40 +00:00
Kostya Serebryany a9b0dd0e51 [sanitizer-coverage/libFuzzer] make the guards for trace-pc 32-bit; create one array of guards per function, instead of one guard per BB. reorganize the code so that trace-pc-guard does not create unneeded globals 
llvm-svn: 282735
 2016-09-29 17:43:24 +00:00
Kostya Serebryany 8e781a888a [libFuzzer] use 'if guard' instead of 'if guard >= 0' with trace-pc; change the guard type to intptr_t; use separate array for 8-bit counters 
llvm-svn: 281845
 2016-09-18 04:52:23 +00:00
Kostya Serebryany 8ad4155745 [sanitizer-coverage] change trace-pc to use 8-byte guards 
llvm-svn: 281809
 2016-09-17 05:03:05 +00:00
Kostya Serebryany 66a9c175bf [sanitizer-coverage] make trace-pc-guard and indirect-call work together 
llvm-svn: 281665
 2016-09-15 22:11:08 +00:00
Kostya Serebryany 60cdd6113f [sanitizer-coverage] add yet another flavour of coverage instrumentation: trace-pc-guard. The intent is to eventually replace all of {bool coverage, 8bit-counters, trace-pc} with just this one. Clang part 
llvm-svn: 281432
 2016-09-14 01:39:49 +00:00
Kostya Serebryany 3b41971763 [sanitizer-coverage] add two more modes of instrumentation: trace-div and trace-gep, mostly usaful for value-profile-based fuzzing; clang part 
llvm-svn: 280044
 2016-08-30 01:27:03 +00:00
Kostya Serebryany 070bcb0d68 [sanitizer-coverag] update the docs in __sanitizer_cov_trace_cmp 
llvm-svn: 279028
 2016-08-18 01:26:36 +00:00
Evgeniy Stepanov 5b49eb42c5 [sanitizer] Allow sanitize coverage w/o sanitizers. 
The reason is that this (a) seems to work just fine and (b) useful when building stuff with
sanitizer+coverage, but need to exclude the sanitizer for a particular source file.

llvm-svn: 272717
 2016-06-14 21:33:40 +00:00
Kostya Serebryany 6453786b26 [sanitizer-coverage] better docs for -fsanitize-coverage=trace-bb 
llvm-svn: 266672
 2016-04-18 21:28:37 +00:00
Aaron Ballman 0f6f82a3a8 Use an anonymous hyperlink reference to eliminate Sphinx warnings. 
llvm-svn: 261523
 2016-02-22 13:09:36 +00:00
Kostya Serebryany 52e86493e3 [sanitizer-coverage] allow -fsanitize-coverage=trace-pc w/o any other sanitizer and w/o ...=[func,bb,edge]. This makes this syntax a superset of the GCC's syntax 
llvm-svn: 261182
 2016-02-18 00:49:23 +00:00
Kostya Serebryany d4590c7304 [sanitizer-coverage] implement -fsanitize-coverage=trace-pc. This is similar to trace-bb, but has a different API. We already use the equivalent flag in GCC for Linux kernel fuzzing. We may be able to use this flag with AFL too 
llvm-svn: 261159
 2016-02-17 21:34:43 +00:00
Sylvestre Ledru be8f396bde Fix some typos in the clang doc 
llvm-svn: 260856
 2016-02-14 20:20:58 +00:00
Mike Aizatsky a731ee3a80 [sancov] improved object files handling. 
Documentation change for: http://reviews.llvm.org/D17169

Differential Revision: http://reviews.llvm.org/D17175

llvm-svn: 260630
 2016-02-12 00:29:45 +00:00
Mike Aizatsky 3828cbbf9f [sancov] sancov tool documentation 
Differential Revision: http://reviews.llvm.org/D16432

llvm-svn: 259000
 2016-01-27 23:56:12 +00:00
Kostya Serebryany 5ce81794c3 [sanitizer coverage] document -fsanitize-coverage=trace-bb 
llvm-svn: 254481
 2015-12-02 02:08:26 +00:00
Kostya Serebryany a94e6e7eb0 [libFuzzer] clarify the limitation of fsanitize-coverage=trace-cmp 
llvm-svn: 254337
 2015-11-30 22:17:19 +00:00
Kostya Serebryany b17e298a64 [libFuzzer] minimal documentation on data-flow-guided fuzzing 
llvm-svn: 243793
 2015-07-31 21:48:10 +00:00
Alexey Samsonov 8fffba1ef1 Update docs for SanitizerCoverage. 
llvm-svn: 236793
 2015-05-07 23:04:19 +00:00
Sergey Matveev ea558e0b33 [docs] Update SanitizerCoverage docs. 
llvm-svn: 236641
 2015-05-06 21:09:00 +00:00
Sergey Matveev 33e322455f Fix clang docs build. 
llvm-svn: 235650
 2015-04-23 21:29:37 +00:00
Sergey Matveev 07e2d283a3 Add clang/docs/SanitizerCoverage.rst 
Moved from https://code.google.com/p/address-sanitizer/wiki/AsanCoverage

llvm-svn: 235643
 2015-04-23 20:40:04 +00:00