1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
// Test to demonstrate compile-time disabling of container-overflow checks
// in order to handle uninstrumented libraries
// UNSUPPORTED: target={{.*windows-msvc.*}}
// Mimic a closed-source library compiled without ASan
// RUN: %clangxx_asan -fno-sanitize=address -DSHARED_LIB %s %fPIC -shared -o %t-so.so
// Mimic multiple files being linked into a single executable,
// %t-object.o and %t-main compiled seperately and then linked together
// RUN: %clangxx_asan -DMULTI_SOURCE %s -c -o %t-object.o
// RUN: %clangxx_asan %s -c -o %t-main.o
// RUN: %clangxx_asan -o %t %t-main.o %t-object.o %libdl
// RUN: not %run %t 2>&1 | FileCheck %s
// Disable container overflow checks at runtime using ASAN_OPTIONS=detect_container_overflow=0
// RUN: %env_asan_opts=detect_container_overflow=0 %run %t 2>&1 | FileCheck --check-prefix=CHECK-NO-CONTAINER-OVERFLOW %s
// RUN: %clangxx_asan -D__SANITIZER_DISABLE_CONTAINER_OVERFLOW__ -DMULTI_SOURCE %s -c -o %t-object.o
// RUN: %clangxx_asan -D__SANITIZER_DISABLE_CONTAINER_OVERFLOW__ %s -c -o %t-main.o
// RUN: %clangxx_asan -D__SANITIZER_DISABLE_CONTAINER_OVERFLOW__ -o %t %t-main.o %t-object.o %libdl
// RUN: %run %t 2>&1 | FileCheck --check-prefix=CHECK-NO-CONTAINER-OVERFLOW %s
//
// UNSUPPORTED: true
#include <assert.h>
#include <sanitizer/common_interface_defs.h>
#include <stdio.h>
template <typename T> class Stack {
private:
T data[5];
size_t size;
public:
Stack() : size(0) {
#if __has_feature(address_sanitizer) && !__ASAN_DISABLE_CONTAINER_OVERFLOW__
// Mark entire storage as unaddressable initially
__sanitizer_annotate_contiguous_container(data, data + 5, data + 5, data);
#endif
}
~Stack() {
#if __has_feature(address_sanitizer) && !__ASAN_DISABLE_CONTAINER_OVERFLOW__
__sanitizer_annotate_contiguous_container(data, data + 5, data + size,
data + 5);
#endif
}
void push(const T &value) {
assert(size < 5 && "Stack overflow");
#if __has_feature(address_sanitizer) && !__ASAN_DISABLE_CONTAINER_OVERFLOW__
__sanitizer_annotate_contiguous_container(data, data + 5, data + size,
data + size + 1);
#endif
data[size++] = value;
}
T pop() {
assert(size > 0 && "Cannot pop from empty stack");
T result = data[--size];
#if __has_feature(address_sanitizer) && !__ASAN_DISABLE_CONTAINER_OVERFLOW__
__sanitizer_annotate_contiguous_container(data, data + 5, data + size + 1,
data + size);
#endif
return result;
}
};
#ifdef SHARED_LIB
// Mimics a closed-source library compiled without ASan
extern "C" void push_value_to_stack(Stack<int> &stack) { stack.push(42); }
#else // SHARED_LIB
# include <dlfcn.h>
# include <string>
typedef void (*push_func_t)(Stack<int> &);
# if defined(MULTI_SOURCE)
extern push_func_t push_value;
extern "C" void do_push_value_to_stack(Stack<int> &stack) {
assert(push_value);
push_value(stack);
}
# else
push_func_t push_value = nullptr;
extern "C" void do_push_value_to_stack(Stack<int> &stack);
int main(int argc, char *argv[]) {
std::string path = std::string(argv[0]) + "-so.so";
printf("Loading library: %s\n", path.c_str());
void *lib = dlopen(path.c_str(), RTLD_NOW);
assert(lib);
push_value = (push_func_t)dlsym(lib, "push_value_to_stack");
assert(push_value);
Stack<int> stack;
do_push_value_to_stack(stack);
// BOOM! uninstrumented library didn't update container bounds
int value = stack.pop();
// CHECK: AddressSanitizer: container-overflow
printf("Popped value: %d\n", value);
assert(value == 42 && "Expected value 42");
dlclose(lib);
printf("SUCCESS\n");
// CHECK-NO-CONTAINER-OVERFLOW: SUCCESS
return 0;
}
# endif // MULTI_SOURCE
#endif // SHARED_LIB
|
