forked from OSchip/llvm-project
99fa3e774d
Summary: Very basic stack instrumentation using tagged pointers. Tag for N'th alloca in a function is built as XOR of: * base tag for the function, which is just some bits of SP (poor man's random) * small constant which is a function of N. Allocas are aligned to 16 bytes. On every ReturnInst allocas are re-tagged to catch use-after-return. This implementation has a bunch of issues that will be taken care of later: 1. lifetime intrinsics referring to tagged pointers are not recognized in SDAG. This effectively disables stack coloring. 2. Generated code is quite inefficient. There is one extra instruction at each memory access that adds the base tag to the untagged alloca address. It would be better to keep tagged SP in a callee-saved register and address allocas as an offset of that XOR retag, but that needs better coordination between hwasan instrumentation pass and prologue/epilogue insertion. 3. Lifetime instrinsics are ignored and use-after-scope is not implemented. This would be harder to do than in ASan, because we need to use a differently tagged pointer depending on which lifetime.start / lifetime.end the current instruction is dominated / post-dominated. Reviewers: kcc, alekseyshl Subscribers: srhines, kubamracek, javed.absar, hiraditya, llvm-commits Differential Revision: https://reviews.llvm.org/D41602 llvm-svn: 322324 |
||
|---|---|---|
| .. | ||
| AddressSanitizer.cpp | ||
| BoundsChecking.cpp | ||
| CFGMST.h | ||
| CMakeLists.txt | ||
| DataFlowSanitizer.cpp | ||
| EfficiencySanitizer.cpp | ||
| GCOVProfiling.cpp | ||
| HWAddressSanitizer.cpp | ||
| IndirectCallPromotion.cpp | ||
| InstrProfiling.cpp | ||
| Instrumentation.cpp | ||
| LLVMBuild.txt | ||
| MaximumSpanningTree.h | ||
| MemorySanitizer.cpp | ||
| PGOInstrumentation.cpp | ||
| PGOMemOPSizeOpt.cpp | ||
| SanitizerCoverage.cpp | ||
| ThreadSanitizer.cpp | ||