[sanitizer] Initial implementation of a Hardened Allocator - bcm5719-llvm

diff options

author	Kostya Serebryany <kcc@google.com>	2016-06-07 01:20:26 +0000
committer	Kostya Serebryany <kcc@google.com>	2016-06-07 01:20:26 +0000
commit	712fc9803a4dc7161b7b26f04f7ddf05d1e7288d (patch)
tree	9df022990fb143919ad80316d504f99ec972adf3 /clang/lib/CodeGen/CoverageMappingGen.cpp
parent	4a1ebae537e8a2c26e88bd2531ccd5cbc85c2892 (diff)
download	bcm5719-llvm-712fc9803a4dc7161b7b26f04f7ddf05d1e7288d.tar.gz bcm5719-llvm-712fc9803a4dc7161b7b26f04f7ddf05d1e7288d.zip

[sanitizer] Initial implementation of a Hardened Allocator

Summary: This is an initial implementation of a Hardened Allocator based on Sanitizer Common's CombinedAllocator. It aims at mitigating heap based vulnerabilities by adding several features to the base allocator, while staying relatively fast. The following were implemented: - additional consistency checks on the allocation function parameters and on the heap chunks; - use of checksum protected chunk header, to detect corruption; - randomness to the allocator base; - delayed freelist (quarantine), to mitigate use after free and overall determinism. Additional mitigations are in the works. Reviewers: eugenis, aizatsky, pcc, krasin, vitalybuka, glider, dvyukov, kcc Subscribers: kubabrecka, filcab, llvm-commits Differential Revision: http://reviews.llvm.org/D20084 llvm-svn: 271968

Diffstat (limited to 'clang/lib/CodeGen/CoverageMappingGen.cpp')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: