llvm-project

Commit Graph

Author	SHA1	Message	Date
Peter Collingbourne	5b74593e16	docs: Fix bad link in SafeStack.rst. llvm-svn: 240696	2015-06-25 21:02:17 +00:00
Aaron Ballman	d95d0dab46	Silencing some Sphinx warnings about duplicate explicit target names. llvm-svn: 240536	2015-06-24 12:11:04 +00:00
Peter Collingbourne	7ce9199a57	SafeStack documentation improvements This patch makes the following improvements to the SafeStack documentation: Explicitly states the security guarantees of the SafeStack Clarifies which of the security guarantees are probabilistic Re-orders security limitations to put the most severe ones first Explains how `__attribute__((no_sanitize("safe-stack")))` works and how to use it safely Explains that SafeStack should be combined with a forward-edge protection mechanism, such as CPI, IFCC or others Multiple readability and stylistic improvements Patch by Volodymyr Kuznetsov! Differential Revision: http://reviews.llvm.org/D10598 llvm-svn: 240472	2015-06-23 22:24:45 +00:00
Peter Collingbourne	c4122c17b4	Protection against stack-based memory corruption errors using SafeStack: Clang command line option and function attribute This patch adds the -fsanitize=safe-stack command line argument for clang, which enables the Safe Stack protection (see http://reviews.llvm.org/D6094 for the detailed description of the Safe Stack). This patch is our implementation of the safe stack on top of Clang. The patches make the following changes: - Add -fsanitize=safe-stack and -fno-sanitize=safe-stack options to clang to control safe stack usage (the safe stack is disabled by default). - Add __attribute__((no_sanitize("safe-stack"))) attribute to clang that can be used to disable the safe stack for individual functions even when enabled globally. Original patch by Volodymyr Kuznetsov and others at the Dependable Systems Lab at EPFL; updates and upstreaming by myself. Differential Revision: http://reviews.llvm.org/D6095 llvm-svn: 239762	2015-06-15 21:08:13 +00:00

4 Commits