Google Git
Sign in
llvm / llvm-project / compiler-rt / dd1cb1cbb2fc66a10cf06e3e89c5828df340a78c / . / test / asan / TestCases / contiguous_container.cpp
blob: 8c783796d1c8794b950fe21e00a5af3fa5ff9f53 [file] [log] [blame]
// RUN: %clangxx_asan -fexceptions -O %s -o %t && %env_asan_opts=detect_stack_use_after_return=0 %run %t
//
// Test __sanitizer_annotate_contiguous_container.
#include <assert.h>
#include <sanitizer/asan_interface.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
static constexpr size_t kGranularity = 8;
static constexpr bool AddrIsAlignedByGranularity(uintptr_t a) {
return (a & (kGranularity - 1)) == 0;
}
static constexpr uintptr_t RoundDown(uintptr_t x) {
return x & ~(kGranularity - 1);
}
void TestContainer(size_t capacity, size_t off_begin, size_t off_end,
bool off_poisoned) {
char *buffer = new char[capacity + off_begin + off_end];
char *buffer_end = buffer + capacity + off_begin + off_end;
if (off_poisoned)
__sanitizer_annotate_contiguous_container(buffer, buffer_end, buffer_end,
buffer);
char *beg = buffer + off_begin;
char *end = beg + capacity;
char *mid = off_poisoned ? beg : beg + capacity;
char *old_mid = 0;
// If after the container, there is another object, last granule
// cannot be poisoned.
char *cannot_poison =
(off_end == 0) ? end : (char *)RoundDown((uintptr_t)end);
for (int i = 0; i < 1000; i++) {
size_t size = rand() % (capacity + 1);
assert(size <= capacity);
old_mid = mid;
mid = beg + size;
__sanitizer_annotate_contiguous_container(beg, end, old_mid, mid);
// If off buffer before the container was poisoned and we had to
// unpoison it, we won't poison it again as we don't have information,
// if it was poisoned.
for (size_t idx = 0; idx < off_begin && !off_poisoned; idx++)
assert(!__asan_address_is_poisoned(buffer + idx));
for (size_t idx = 0; idx < size; idx++)
assert(!__asan_address_is_poisoned(beg + idx));
for (size_t idx = size; beg + idx < cannot_poison; idx++)
assert(__asan_address_is_poisoned(beg + idx));
for (size_t idx = 0; idx < off_end; idx++) {
if (!off_poisoned)
assert(!__asan_address_is_poisoned(end + idx));
else // off part after the buffer should be always poisoned
assert(__asan_address_is_poisoned(end + idx));
}
assert(__sanitizer_verify_contiguous_container(beg, mid, end));
assert(NULL ==
__sanitizer_contiguous_container_find_bad_address(beg, mid, end));
size_t distance = (off_end > 0) ? kGranularity + 1 : 1;
if (mid >= beg + distance) {
assert(
!__sanitizer_verify_contiguous_container(beg, mid - distance, end));
assert(mid - distance ==
__sanitizer_contiguous_container_find_bad_address(
beg, mid - distance, end));
}
if (mid + distance <= end) {
assert(
!__sanitizer_verify_contiguous_container(beg, mid + distance, end));
assert(mid == __sanitizer_contiguous_container_find_bad_address(
beg, mid + distance, end));
}
}
// Don't forget to unpoison the whole thing before destroying/reallocating.
if (capacity == 0 && off_poisoned)
mid = buffer;
__sanitizer_annotate_contiguous_container(buffer, buffer_end, mid,
buffer_end);
for (size_t idx = 0; idx < capacity + off_begin + off_end; idx++)
assert(!__asan_address_is_poisoned(buffer + idx));
delete[] buffer;
}
__attribute__((noinline)) void Throw() { throw 1; }
__attribute__((noinline)) void ThrowAndCatch() {
try {
Throw();
} catch (...) {
}
}
void TestThrow() {
char x[32];
__sanitizer_annotate_contiguous_container(x, x + 32, x + 32, x + 14);
assert(!__asan_address_is_poisoned(x + 13));
assert(__asan_address_is_poisoned(x + 14));
ThrowAndCatch();
assert(!__asan_address_is_poisoned(x + 13));
assert(!__asan_address_is_poisoned(x + 14));
__sanitizer_annotate_contiguous_container(x, x + 32, x + 14, x + 32);
assert(!__asan_address_is_poisoned(x + 13));
assert(!__asan_address_is_poisoned(x + 14));
}
int main(int argc, char **argv) {
int n = argc == 1 ? 64 : atoi(argv[1]);
for (int i = 0; i <= n; i++)
for (int j = 0; j < 8; j++)
for (int k = 0; k < 8; k++)
for (int off = 0; off < 2; ++off)
TestContainer(i, j, k, off);
TestThrow();
}