This is an archive of the discontinued LLVM Phabricator instance.

Differential D39334

[Driver] Add Scudo as a possible -fsanitize= option
ClosedPublic

Authored by cryptoad on Oct 26 2017, 8:52 AM.

Details

Reviewers
eugenis
kcc
alekseyshl
Commits
rG8acdc98271c9: [Driver] Add Scudo as a possible -fsanitize= option
rC317337: [Driver] Add Scudo as a possible -fsanitize= option
rL317337: [Driver] Add Scudo as a possible -fsanitize= option
Summary

This change adds Scudo as a possible Sanitizer option via -fsanitize=.
This allows for easier static & shared linking of the Scudo library, it allows
us to enforce PIE (otherwise the security of the allocator is moot), and check
for incompatible Sanitizers combo.

In its current form, Scudo is not compatible with any other Sanitizer, but the
plan is to make it work in conjunction with UBsan (-fsanitize=scudo,undefined),
which will require additional work outside of the scope of this change.

Diff Detail

Event Timeline

cryptoad created this revision.Oct 26 2017, 8:52 AM
Herald added a subscriber: srhines. · View Herald TranscriptOct 26 2017, 8:52 AM
alekseyshl added inline comments.Oct 26 2017, 11:22 AM
lib/Driver/SanitizerArgs.cpp
376

It's a pair of SanitizerMasks, why not add std::make_pair(Scudo, Address | Leak | Thread | Memory | KernelAddress | Undefined)?

lib/Driver/ToolChains/CommonArgs.cpp
575–577

Minor: add an empty line here or remove the one you added before needsUbsanRt.

test/Driver/fsanitize.c
630

Why checking just these two combinations?

cryptoad added inline comments.Oct 26 2017, 11:35 AM
lib/Driver/SanitizerArgs.cpp
376

I'll see if it can be done, I went the way the previous checks were previously made.

lib/Driver/ToolChains/CommonArgs.cpp
575–577

Just to make sure: there are currently no empty line before needsUbsanRt (it was removed for consistency).
So currently there is 0 empty line: would you rather 1 on each side of needsUbsanRt?

test/Driver/fsanitize.c
630

I figured the ASan one was to verify one incompatibility case, and the undefined one is here as well because it will end up being allowed when I figure out how to make the 2 cooperate nicely. I'll add them all.

alekseyshl added inline comments.Oct 26 2017, 1:08 PM
lib/Driver/ToolChains/CommonArgs.cpp
575–577

Indeed! Please ignore.

cryptoad updated this revision to Diff 120480.Oct 26 2017, 1:27 PM
cryptoad marked 7 inline comments as done.

Compacting IncompatibleGroups by creating a mask of incompatible sanitizers
instead to make pairs of single sanitizer. Tests appear to pass without issue.

Adding additional incompatible sanitizer tests for Scudo.

Harbormaster completed remote builds in B11538: Diff 120480.Oct 26 2017, 1:27 PM
alekseyshl accepted this revision.Oct 27 2017, 10:50 AM
This revision is now accepted and ready to land.Oct 27 2017, 10:50 AM
cryptoad requested review of this revision.Oct 30 2017, 12:18 PM
cryptoad edited edge metadata.

Reopening this.
I am going to change the Scudo make to split the C vs CXX static runtimes. This will require changes here as well.
This patch will be updated soon.

cryptoad mentioned this in D39461: [scudo] Implement stricter separation of C vs C++.Oct 31 2017, 10:36 AM
cryptoad updated this revision to Diff 121039.Oct 31 2017, 1:10 PM

Make Scudo compatible with UBSan (see D39461 for the compiler-rt related
changes).

Harbormaster completed remote builds in B11680: Diff 121039.Oct 31 2017, 1:10 PM
cryptoad mentioned this in rL317097: [scudo] Implement stricter separation of C vs C++.Nov 1 2017, 8:28 AM
alekseyshl accepted this revision.Nov 1 2017, 11:16 AM
This revision is now accepted and ready to land.Nov 1 2017, 11:16 AM
eugenis accepted this revision.Nov 1 2017, 2:50 PM
cryptoad updated this revision to Diff 121499.Nov 3 2017, 10:04 AM

Rebasing.

Harbormaster completed remote builds in B11811: Diff 121499.Nov 3 2017, 10:04 AM
cryptoad closed this revision.Nov 3 2017, 10:04 AM

Revision Contents

PathSize
include/
clang/
Basic/
3 lines
Driver/
1 line
lib/
Driver/
23 lines
ToolChains/
8 lines
5 lines
Lex/
1 line
test/
Driver/
26 lines
50 lines

Diff 121499

include/clang/Basic/Sanitizers.def

Show First 20 LinesShow All 129 Lines▼ Show 20 Lines
// EfficiencySanitizer // EfficiencySanitizer
SANITIZER("efficiency-cache-frag", EfficiencyCacheFrag) SANITIZER("efficiency-cache-frag", EfficiencyCacheFrag)
SANITIZER("efficiency-working-set", EfficiencyWorkingSet) SANITIZER("efficiency-working-set", EfficiencyWorkingSet)
// Meta-group only used internally. // Meta-group only used internally.
SANITIZER_GROUP("efficiency-all", Efficiency, SANITIZER_GROUP("efficiency-all", Efficiency,
EfficiencyCacheFrag | EfficiencyWorkingSet) EfficiencyCacheFrag | EfficiencyWorkingSet)
// Scudo hardened allocator
SANITIZER("scudo", Scudo)
// Magic group, containing all sanitizers. For example, "-fno-sanitize=all" // Magic group, containing all sanitizers. For example, "-fno-sanitize=all"
// can be used to disable all the sanitizers. // can be used to disable all the sanitizers.
SANITIZER_GROUP("all", All, ~0ULL) SANITIZER_GROUP("all", All, ~0ULL)
#undef SANITIZER #undef SANITIZER
#undef SANITIZER_GROUP #undef SANITIZER_GROUP

include/clang/Driver/SanitizerArgs.h

Show First 20 LinesShow All 66 Lines▼ Show 20 Lines public:
bool needsDfsanRt() const { return Sanitizers.has(SanitizerKind::DataFlow); } bool needsDfsanRt() const { return Sanitizers.has(SanitizerKind::DataFlow); }
bool needsSafeStackRt() const { return SafeStackRuntime; } bool needsSafeStackRt() const { return SafeStackRuntime; }
bool needsCfiRt() const; bool needsCfiRt() const;
bool needsCfiDiagRt() const; bool needsCfiDiagRt() const;
bool needsStatsRt() const { return Stats; } bool needsStatsRt() const { return Stats; }
bool needsEsanRt() const { bool needsEsanRt() const {
return Sanitizers.hasOneOf(SanitizerKind::Efficiency); return Sanitizers.hasOneOf(SanitizerKind::Efficiency);
} }
bool needsScudoRt() const { return Sanitizers.has(SanitizerKind::Scudo); }
bool requiresPIE() const; bool requiresPIE() const;
bool needsUnwindTables() const; bool needsUnwindTables() const;
bool linkCXXRuntimes() const { return LinkCXXRuntimes; } bool linkCXXRuntimes() const { return LinkCXXRuntimes; }
bool hasCrossDsoCfi() const { return CfiCrossDso; } bool hasCrossDsoCfi() const { return CfiCrossDso; }
void addArgs(const ToolChain &TC, const llvm::opt::ArgList &Args, void addArgs(const ToolChain &TC, const llvm::opt::ArgList &Args,
llvm::opt::ArgStringList &CmdArgs, types::ID InputType) const; llvm::opt::ArgStringList &CmdArgs, types::ID InputType) const;
}; };
} // namespace driver } // namespace driver
} // namespace clang } // namespace clang
#endif #endif

lib/Driver/SanitizerArgs.cpp

Show All 24 Lines
using namespace clang::driver; using namespace clang::driver;
using namespace llvm::opt; using namespace llvm::opt;
enum : SanitizerMask { enum : SanitizerMask {
NeedsUbsanRt = Undefined | Integer | Nullability | CFI, NeedsUbsanRt = Undefined | Integer | Nullability | CFI,
NeedsUbsanCxxRt = Vptr | CFI, NeedsUbsanCxxRt = Vptr | CFI,
NotAllowedWithTrap = Vptr, NotAllowedWithTrap = Vptr,
NotAllowedWithMinimalRuntime = Vptr, NotAllowedWithMinimalRuntime = Vptr,
RequiresPIE = DataFlow, RequiresPIE = DataFlow | Scudo,
NeedsUnwindTables = Address | Thread | Memory | DataFlow, NeedsUnwindTables = Address | Thread | Memory | DataFlow,
SupportsCoverage = Address | KernelAddress | Memory | Leak | Undefined | SupportsCoverage = Address | KernelAddress | Memory | Leak | Undefined |
Integer | Nullability | DataFlow | Fuzzer | FuzzerNoLink, Integer | Nullability | DataFlow | Fuzzer | FuzzerNoLink,
RecoverableByDefault = Undefined | Integer | Nullability, RecoverableByDefault = Undefined | Integer | Nullability,
Unrecoverable = Unreachable | Return, Unrecoverable = Unreachable | Return,
LegacyFsanitizeRecoverMask = Undefined | Integer, LegacyFsanitizeRecoverMask = Undefined | Integer,
NeedsLTO = CFI, NeedsLTO = CFI,
TrappingSupported = (Undefined & ~Vptr) | UnsignedIntegerOverflow | TrappingSupported = (Undefined & ~Vptr) | UnsignedIntegerOverflow |
▲ Show 20 LinesShow All 126 Lines▼ Show 20 Linesstatic SanitizerMask parseSanitizeTrapArgs(const Driver &D,
TrappingKinds |= TrappingDefault & ~TrapRemove; TrappingKinds |= TrappingDefault & ~TrapRemove;
return TrappingKinds; return TrappingKinds;
} }
bool SanitizerArgs::needsUbsanRt() const { bool SanitizerArgs::needsUbsanRt() const {
// All of these include ubsan. // All of these include ubsan.
if (needsAsanRt() || needsMsanRt() || needsTsanRt() || needsDfsanRt() || if (needsAsanRt() || needsMsanRt() || needsTsanRt() || needsDfsanRt() ||
needsLsanRt() || needsCfiDiagRt()) needsLsanRt() || needsCfiDiagRt() || needsScudoRt())
return false; return false;
return (Sanitizers.Mask & NeedsUbsanRt & ~TrapSanitizers.Mask) || return (Sanitizers.Mask & NeedsUbsanRt & ~TrapSanitizers.Mask) ||
CoverageFeatures; CoverageFeatures;
} }
bool SanitizerArgs::needsCfiRt() const { bool SanitizerArgs::needsCfiRt() const {
return !(Sanitizers.Mask & CFI & ~TrapSanitizers.Mask) && CfiCrossDso && return !(Sanitizers.Mask & CFI & ~TrapSanitizers.Mask) && CfiCrossDso &&
▲ Show 20 LinesShow All 180 Lines▼ Show 20 Lines if (KindsToDiagnose) {
D.Diag(diag::err_drv_unsupported_opt_for_target) D.Diag(diag::err_drv_unsupported_opt_for_target)
<< ("-fno-sanitize-trap=" + toString(S)) << TC.getTriple().str(); << ("-fno-sanitize-trap=" + toString(S)) << TC.getTriple().str();
Kinds &= ~KindsToDiagnose; Kinds &= ~KindsToDiagnose;
} }
} }
// Warn about incompatible groups of sanitizers. // Warn about incompatible groups of sanitizers.
std::pair<SanitizerMask, SanitizerMask> IncompatibleGroups[] = { std::pair<SanitizerMask, SanitizerMask> IncompatibleGroups[] = {
std::make_pair(Address, Thread), std::make_pair(Address, Memory), std::make_pair(Address, Thread | Memory),
std::make_pair(Thread, Memory), std::make_pair(Leak, Thread), std::make_pair(Thread, Memory),
std::make_pair(Leak, Memory), std::make_pair(KernelAddress, Address), std::make_pair(Leak, Thread | Memory),
std::make_pair(KernelAddress, Leak), std::make_pair(KernelAddress, Address| Leak | Thread | Memory),
alekseyshlUnsubmitted
Done
ReplyInline Actions

It's a pair of SanitizerMasks, why not add std::make_pair(Scudo, Address | Leak | Thread | Memory | KernelAddress | Undefined)?

alekseyshl: It's a pair of SanitizerMasks, why not add std::make_pair(Scudo, Address | Leak | Thread |…
cryptoadAuthorUnsubmitted
Done
ReplyInline Actions

I'll see if it can be done, I went the way the previous checks were previously made.

cryptoad: I'll see if it can be done, I went the way the previous checks were previously made.
std::make_pair(KernelAddress, Thread), std::make_pair(Efficiency, Address | Leak | Thread | Memory |
std::make_pair(KernelAddress, Memory), KernelAddress),
std::make_pair(Efficiency, Address), std::make_pair(Scudo, Address | Leak | Thread | Memory | KernelAddress |
std::make_pair(Efficiency, Leak), Efficiency) };
std::make_pair(Efficiency, Thread),
std::make_pair(Efficiency, Memory),
std::make_pair(Efficiency, KernelAddress)};
for (auto G : IncompatibleGroups) { for (auto G : IncompatibleGroups) {
SanitizerMask Group = G.first; SanitizerMask Group = G.first;
if (Kinds & Group) { if (Kinds & Group) {
if (SanitizerMask Incompatible = Kinds & G.second) { if (SanitizerMask Incompatible = Kinds & G.second) {
D.Diag(clang::diag::err_drv_argument_not_allowed_with) D.Diag(clang::diag::err_drv_argument_not_allowed_with)
<< lastArgumentForMask(D, Args, Group) << lastArgumentForMask(D, Args, Group)
<< lastArgumentForMask(D, Args, Incompatible); << lastArgumentForMask(D, Args, Incompatible);
Kinds &= ~Incompatible; Kinds &= ~Incompatible;
▲ Show 20 LinesShow All 565 LinesShow Last 20 Lines

lib/Driver/ToolChains/CommonArgs.cpp

Show First 20 LinesShow All 560 Lines▼ Show 20 LinescollectSanitizerRuntimes(const ToolChain &TC, const ArgList &Args,
const SanitizerArgs &SanArgs = TC.getSanitizerArgs(); const SanitizerArgs &SanArgs = TC.getSanitizerArgs();
// Collect shared runtimes. // Collect shared runtimes.
if (SanArgs.needsSharedRt()) { if (SanArgs.needsSharedRt()) {
if (SanArgs.needsAsanRt()) { if (SanArgs.needsAsanRt()) {
SharedRuntimes.push_back("asan"); SharedRuntimes.push_back("asan");
if (!Args.hasArg(options::OPT_shared) && !TC.getTriple().isAndroid()) if (!Args.hasArg(options::OPT_shared) && !TC.getTriple().isAndroid())
HelperStaticRuntimes.push_back("asan-preinit"); HelperStaticRuntimes.push_back("asan-preinit");
} }
if (SanArgs.needsUbsanRt()) { if (SanArgs.needsUbsanRt()) {
if (SanArgs.requiresMinimalRuntime()) { if (SanArgs.requiresMinimalRuntime()) {
SharedRuntimes.push_back("ubsan_minimal"); SharedRuntimes.push_back("ubsan_minimal");
} else { } else {
SharedRuntimes.push_back("ubsan_standalone"); SharedRuntimes.push_back("ubsan_standalone");
} }
} }
if (SanArgs.needsScudoRt())
SharedRuntimes.push_back("scudo");
alekseyshlUnsubmitted
Done
ReplyInline Actions

Minor: add an empty line here or remove the one you added before needsUbsanRt.

alekseyshl: Minor: add an empty line here or remove the one you added before needsUbsanRt.
cryptoadAuthorUnsubmitted
Done
ReplyInline Actions

Just to make sure: there are currently no empty line before needsUbsanRt (it was removed for consistency).
So currently there is 0 empty line: would you rather 1 on each side of needsUbsanRt?

cryptoad: Just to make sure: there are currently no empty line before needsUbsanRt (it was removed for…
alekseyshlUnsubmitted
Done
ReplyInline Actions

Indeed! Please ignore.

alekseyshl: Indeed! Please ignore.
} }
// The stats_client library is also statically linked into DSOs. // The stats_client library is also statically linked into DSOs.
if (SanArgs.needsStatsRt()) if (SanArgs.needsStatsRt())
StaticRuntimes.push_back("stats_client"); StaticRuntimes.push_back("stats_client");
// Collect static runtimes. // Collect static runtimes.
if (Args.hasArg(options::OPT_shared) || SanArgs.needsSharedRt()) { if (Args.hasArg(options::OPT_shared) || SanArgs.needsSharedRt()) {
Show All 40 Lines if (SanArgs.linkCXXRuntimes())
StaticRuntimes.push_back("ubsan_standalone_cxx"); StaticRuntimes.push_back("ubsan_standalone_cxx");
} }
if (SanArgs.needsStatsRt()) { if (SanArgs.needsStatsRt()) {
NonWholeStaticRuntimes.push_back("stats"); NonWholeStaticRuntimes.push_back("stats");
RequiredSymbols.push_back("__sanitizer_stats_register"); RequiredSymbols.push_back("__sanitizer_stats_register");
} }
if (SanArgs.needsEsanRt()) if (SanArgs.needsEsanRt())
StaticRuntimes.push_back("esan"); StaticRuntimes.push_back("esan");
if (SanArgs.needsScudoRt()) {
StaticRuntimes.push_back("scudo");
if (SanArgs.linkCXXRuntimes())
StaticRuntimes.push_back("scudo_cxx");
}
} }
// Should be called before we add system libraries (C++ ABI, libstdc++/libc++, // Should be called before we add system libraries (C++ ABI, libstdc++/libc++,
// C runtime, etc). Returns true if sanitizer system deps need to be linked in. // C runtime, etc). Returns true if sanitizer system deps need to be linked in.
bool tools::addSanitizerRuntimes(const ToolChain &TC, const ArgList &Args, bool tools::addSanitizerRuntimes(const ToolChain &TC, const ArgList &Args,
ArgStringList &CmdArgs) { ArgStringList &CmdArgs) {
SmallVector<StringRef, 4> SharedRuntimes, StaticRuntimes, SmallVector<StringRef, 4> SharedRuntimes, StaticRuntimes,
NonWholeStaticRuntimes, HelperStaticRuntimes, RequiredSymbols; NonWholeStaticRuntimes, HelperStaticRuntimes, RequiredSymbols;
▲ Show 20 LinesShow All 530 LinesShow Last 20 Lines

lib/Driver/ToolChains/Linux.cpp

Show First 20 LinesShow All 839 Lines▼ Show 20 LinesSanitizerMask Linux::getSupportedSanitizers() const {
if (IsX86_64 || IsMIPS64 || IsAArch64 || IsX86 || IsArmArch || IsPowerPC64) if (IsX86_64 || IsMIPS64 || IsAArch64 || IsX86 || IsArmArch || IsPowerPC64)
Res |= SanitizerKind::Leak; Res |= SanitizerKind::Leak;
if (IsX86_64 || IsMIPS64 || IsAArch64 || IsPowerPC64) if (IsX86_64 || IsMIPS64 || IsAArch64 || IsPowerPC64)
Res |= SanitizerKind::Thread; Res |= SanitizerKind::Thread;
if (IsX86_64 || IsMIPS64 || IsPowerPC64 || IsAArch64) if (IsX86_64 || IsMIPS64 || IsPowerPC64 || IsAArch64)
Res |= SanitizerKind::Memory; Res |= SanitizerKind::Memory;
if (IsX86_64 || IsMIPS64) if (IsX86_64 || IsMIPS64)
Res |= SanitizerKind::Efficiency; Res |= SanitizerKind::Efficiency;
if (IsX86 || IsX86_64) { if (IsX86 || IsX86_64)
Res |= SanitizerKind::Function; Res |= SanitizerKind::Function;
} if (IsX86_64 || IsMIPS64 || IsAArch64 || IsX86 || IsArmArch)
Res |= SanitizerKind::Scudo;
return Res; return Res;
} }
void Linux::addProfileRTLibs(const llvm::opt::ArgList &Args, void Linux::addProfileRTLibs(const llvm::opt::ArgList &Args,
llvm::opt::ArgStringList &CmdArgs) const { llvm::opt::ArgStringList &CmdArgs) const {
if (!needsProfileRT(Args)) return; if (!needsProfileRT(Args)) return;
// Add linker option -u__llvm_runtime_variable to cause runtime // Add linker option -u__llvm_runtime_variable to cause runtime
// initialization module to be linked in. // initialization module to be linked in.
if (!Args.hasArg(options::OPT_coverage)) if (!Args.hasArg(options::OPT_coverage))
CmdArgs.push_back(Args.MakeArgString( CmdArgs.push_back(Args.MakeArgString(
Twine("-u", llvm::getInstrProfRuntimeHookVarName()))); Twine("-u", llvm::getInstrProfRuntimeHookVarName())));
ToolChain::addProfileRTLibs(Args, CmdArgs); ToolChain::addProfileRTLibs(Args, CmdArgs);
} }

lib/Lex/PPMacroExpansion.cpp

Show First 20 LinesShow All 1,132 Lines▼ Show 20 Lines return llvm::StringSwitch<bool>(Feature)
.Case("enumerator_attributes", true) .Case("enumerator_attributes", true)
.Case("nullability", true) .Case("nullability", true)
.Case("nullability_on_arrays", true) .Case("nullability_on_arrays", true)
.Case("memory_sanitizer", LangOpts.Sanitize.has(SanitizerKind::Memory)) .Case("memory_sanitizer", LangOpts.Sanitize.has(SanitizerKind::Memory))
.Case("thread_sanitizer", LangOpts.Sanitize.has(SanitizerKind::Thread)) .Case("thread_sanitizer", LangOpts.Sanitize.has(SanitizerKind::Thread))
.Case("dataflow_sanitizer", LangOpts.Sanitize.has(SanitizerKind::DataFlow)) .Case("dataflow_sanitizer", LangOpts.Sanitize.has(SanitizerKind::DataFlow))
.Case("efficiency_sanitizer", .Case("efficiency_sanitizer",
LangOpts.Sanitize.hasOneOf(SanitizerKind::Efficiency)) LangOpts.Sanitize.hasOneOf(SanitizerKind::Efficiency))
.Case("scudo", LangOpts.Sanitize.hasOneOf(SanitizerKind::Scudo))
// Objective-C features // Objective-C features
.Case("objc_arr", LangOpts.ObjCAutoRefCount) // FIXME: REMOVE? .Case("objc_arr", LangOpts.ObjCAutoRefCount) // FIXME: REMOVE?
.Case("objc_arc", LangOpts.ObjCAutoRefCount) .Case("objc_arc", LangOpts.ObjCAutoRefCount)
.Case("objc_arc_weak", LangOpts.ObjCWeak) .Case("objc_arc_weak", LangOpts.ObjCWeak)
.Case("objc_default_synthesize_properties", LangOpts.ObjC2) .Case("objc_default_synthesize_properties", LangOpts.ObjC2)
.Case("objc_fixed_enum", LangOpts.ObjC2) .Case("objc_fixed_enum", LangOpts.ObjC2)
.Case("objc_instancetype", LangOpts.ObjC2) .Case("objc_instancetype", LangOpts.ObjC2)
.Case("objc_kindof", LangOpts.ObjC2) .Case("objc_kindof", LangOpts.ObjC2)
▲ Show 20 LinesShow All 764 LinesShow Last 20 Lines

test/Driver/fsanitize.c

Show First 20 LinesShow All 602 Lines▼ Show 20 Lines
// RUN: %clang -target x86_64-linux-gnu -fsanitize=cfi -fno-sanitize-trap=cfi-icall -flto -fvisibility=hidden -fsanitize-minimal-runtime %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-CFI-NOTRAP-MINIMAL // RUN: %clang -target x86_64-linux-gnu -fsanitize=cfi -fno-sanitize-trap=cfi-icall -flto -fvisibility=hidden -fsanitize-minimal-runtime %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-CFI-NOTRAP-MINIMAL
// CHECK-CFI-NOTRAP-MINIMAL: error: invalid argument 'fsanitize-minimal-runtime' only allowed with 'fsanitize-trap=cfi' // CHECK-CFI-NOTRAP-MINIMAL: error: invalid argument 'fsanitize-minimal-runtime' only allowed with 'fsanitize-trap=cfi'
// RUN: %clang -target x86_64-linux-gnu -fsanitize=cfi -fno-sanitize-trap=cfi-icall -fno-sanitize=cfi-icall -flto -fvisibility=hidden -fsanitize-minimal-runtime %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-CFI-NOICALL-MINIMAL // RUN: %clang -target x86_64-linux-gnu -fsanitize=cfi -fno-sanitize-trap=cfi-icall -fno-sanitize=cfi-icall -flto -fvisibility=hidden -fsanitize-minimal-runtime %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-CFI-NOICALL-MINIMAL
// CHECK-CFI-NOICALL-MINIMAL: "-fsanitize=cfi-derived-cast,cfi-unrelated-cast,cfi-nvcall,cfi-vcall" // CHECK-CFI-NOICALL-MINIMAL: "-fsanitize=cfi-derived-cast,cfi-unrelated-cast,cfi-nvcall,cfi-vcall"
// CHECK-CFI-NOICALL-MINIMAL: "-fsanitize-trap=cfi-derived-cast,cfi-unrelated-cast,cfi-nvcall,cfi-vcall" // CHECK-CFI-NOICALL-MINIMAL: "-fsanitize-trap=cfi-derived-cast,cfi-unrelated-cast,cfi-nvcall,cfi-vcall"
// CHECK-CFI-NOICALL-MINIMAL: "-fsanitize-minimal-runtime" // CHECK-CFI-NOICALL-MINIMAL: "-fsanitize-minimal-runtime"
// RUN: %clang -target aarch64-linux-gnu -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO
// RUN: %clang -target arm-linux-androideabi -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO
// RUN: %clang -target i386-linux-gnu -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO
// CHECK-SCUDO: "-fsanitize=scudo"
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-PIE
// RUN: %clang -target arm-linux-androideabi -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-PIE
// CHECK-SCUDO-PIE: "-mrelocation-model" "pic" "-pic-level" "2" "-pic-is-pie"
// CHECK-SCUDO-PIE: "-pie"
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo,undefined %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-UBSAN
// CHECK-SCUDO-UBSAN: "-fsanitize={{.*}}scudo"
// RUN: %clang -target powerpc-unknown-linux -fsanitize=scudo %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-NO-SCUDO
// CHECK-NO-SCUDO: unsupported option
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo,address %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-ASAN
// CHECK-SCUDO-ASAN: error: invalid argument '-fsanitize=scudo' not allowed with '-fsanitize=address'
alekseyshlUnsubmitted
Done
ReplyInline Actions

Why checking just these two combinations?

alekseyshl: Why checking just these two combinations?
cryptoadAuthorUnsubmitted
Done
ReplyInline Actions

I figured the ASan one was to verify one incompatibility case, and the undefined one is here as well because it will end up being allowed when I figure out how to make the 2 cooperate nicely. I'll add them all.

cryptoad: I figured the ASan one was to verify one incompatibility case, and the undefined one is here as…
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo,leak %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-LSAN
// CHECK-SCUDO-LSAN: error: invalid argument '-fsanitize=scudo' not allowed with '-fsanitize=leak'
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo,memory %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-MSAN
// CHECK-SCUDO-MSAN: error: invalid argument '-fsanitize=scudo' not allowed with '-fsanitize=memory'
// RUN: %clang -target x86_64-linux-gnu -fsanitize=scudo,thread %s -### 2>&1 | FileCheck %s --check-prefix=CHECK-SCUDO-TSAN
// CHECK-SCUDO-TSAN: error: invalid argument '-fsanitize=scudo' not allowed with '-fsanitize=thread'

test/Driver/sanitizer-ld.c

Show First 20 LinesShow All 638 Lines▼ Show 20 Lines
// RUN: -target x86_64-unknown-linux -fuse-ld=ld \ // RUN: -target x86_64-unknown-linux -fuse-ld=ld \
// RUN: | FileCheck --check-prefix=CHECK-ESAN-LINUX %s // RUN: | FileCheck --check-prefix=CHECK-ESAN-LINUX %s
// RUN: %clang -fsanitize=efficiency-working-set %s -### -o %t.o 2>&1 \ // RUN: %clang -fsanitize=efficiency-working-set %s -### -o %t.o 2>&1 \
// RUN: -target x86_64-unknown-linux -fuse-ld=ld \ // RUN: -target x86_64-unknown-linux -fuse-ld=ld \
// RUN: | FileCheck --check-prefix=CHECK-ESAN-LINUX %s // RUN: | FileCheck --check-prefix=CHECK-ESAN-LINUX %s
// //
// CHECK-ESAN-LINUX: "{{(.*[^-.0-9A-Z_a-z])?}}ld{{(.exe)?}}" // CHECK-ESAN-LINUX: "{{(.*[^-.0-9A-Z_a-z])?}}ld{{(.exe)?}}"
// CHECK-ESAN-LINUX: libclang_rt.esan-x86_64.a // CHECK-ESAN-LINUX: libclang_rt.esan-x86_64.a
// RUN: %clang -fsanitize=scudo %s -### -o %t.o 2>&1 \
// RUN: -target i386-unknown-linux -fuse-ld=ld \
// RUN: --sysroot=%S/Inputs/basic_linux_tree \
// RUN: | FileCheck --check-prefix=CHECK-SCUDO-LINUX %s
// CHECK-SCUDO-LINUX: "{{.*}}ld{{(.exe)?}}"
// CHECK-SCUDO-LINUX: "-pie"
// CHECK-SCUDO-LINUX: "-whole-archive" "{{.*}}libclang_rt.scudo-i386.a" "-no-whole-archive"
// CHECK-SCUDO-LINUX-NOT: "-lstdc++"
// CHECK-SCUDO-LINUX: "-lpthread"
// CHECK-SCUDO-LINUX: "-ldl"
// RUN: %clang -no-canonical-prefixes %s -### -o %t.so -shared 2>&1 \
// RUN: -target i386-unknown-linux -fuse-ld=ld -fsanitize=scudo -shared-libsan \
// RUN: -resource-dir=%S/Inputs/resource_dir \
// RUN: --sysroot=%S/Inputs/basic_linux_tree \
// RUN: | FileCheck --check-prefix=CHECK-SCUDO-SHARED-LINUX %s
//
// CHECK-SCUDO-SHARED-LINUX: "{{(.*[^-.0-9A-Z_a-z])?}}ld{{(.exe)?}}"
// CHECK-SCUDO-SHARED-LINUX-NOT: "-lc"
// CHECK-SCUDO-SHARED-LINUX-NOT: libclang_rt.scudo-i386.a"
// CHECK-SCUDO-SHARED-LINUX: libclang_rt.scudo-i386.so"
// CHECK-SCUDO-SHARED-LINUX-NOT: "-lpthread"
// CHECK-SCUDO-SHARED-LINUX-NOT: "-lrt"
// CHECK-SCUDO-SHARED-LINUX-NOT: "-ldl"
// CHECK-SCUDO-SHARED-LINUX-NOT: "-export-dynamic"
// CHECK-SCUDO-SHARED-LINUX-NOT: "--dynamic-list"
// RUN: %clang -no-canonical-prefixes %s -### -o %t.o 2>&1 \
// RUN: -target arm-linux-androideabi -fuse-ld=ld -fsanitize=scudo \
// RUN: --sysroot=%S/Inputs/basic_android_tree/sysroot \
// RUN: | FileCheck --check-prefix=CHECK-SCUDO-ANDROID %s
//
// CHECK-SCUDO-ANDROID: "{{(.*[^.0-9A-Z_a-z])?}}ld{{(.exe)?}}"
// CHECK-SCUDO-ANDROID-NOT: "-lc"
// CHECK-SCUDO-ANDROID: "-pie"
// CHECK-SCUDO-ANDROID-NOT: "-lpthread"
// CHECK-SCUDO-ANDROID: libclang_rt.scudo-arm-android.so"
// CHECK-SCUDO-ANDROID-NOT: "-lpthread"
// RUN: %clang -no-canonical-prefixes %s -### -o %t.o 2>&1 \
// RUN: -target arm-linux-androideabi -fuse-ld=ld -fsanitize=scudo \
// RUN: --sysroot=%S/Inputs/basic_android_tree/sysroot \
// RUN: -static-libsan \
// RUN: | FileCheck --check-prefix=CHECK-SCUDO-ANDROID-STATIC %s
// CHECK-SCUDO-ANDROID-STATIC: "{{(.*[^.0-9A-Z_a-z])?}}ld{{(.exe)?}}"
// CHECK-SCUDO-ANDROID-STATIC: "-pie"
// CHECK-SCUDO-ANDROID-STATIC: "-whole-archive" "{{.*}}libclang_rt.scudo-arm-android.a" "-no-whole-archive"
// CHECK-SCUDO-ANDROID-STATIC-NOT: "-lstdc++"
// CHECK-SCUDO-ANDROID-STATIC: "-lpthread"