diff options
| author | Peter Collingbourne <peter@pcc.me.uk> | 2015-04-02 00:23:30 +0000 |
|---|---|---|
| committer | Peter Collingbourne <peter@pcc.me.uk> | 2015-04-02 00:23:30 +0000 |
| commit | 1a7488afaa2419eca0728b9e7adea48b03539cc1 (patch) | |
| tree | 25b11642e512ec6692a2eec1775bd8b8c37c0de1 /clang/test/CodeGenCXX | |
| parent | 943206da8e1227822bc61ae86d2ce373c3d736fc (diff) | |
| download | bcm5719-llvm-1a7488afaa2419eca0728b9e7adea48b03539cc1.tar.gz bcm5719-llvm-1a7488afaa2419eca0728b9e7adea48b03539cc1.zip | |
Implement CFI type checks for non-virtual calls.
This uses the same class metadata currently used for virtual call and
cast checks.
The new flag is -fsanitize=cfi-nvcall. For consistency, the -fsanitize=cfi-vptr
flag has been renamed -fsanitize=cfi-vcall.
Differential Revision: http://reviews.llvm.org/D8756
llvm-svn: 233874
Diffstat (limited to 'clang/test/CodeGenCXX')
| -rw-r--r-- | clang/test/CodeGenCXX/cfi-nvcall.cpp | 35 | ||||
| -rw-r--r-- | clang/test/CodeGenCXX/cfi-vcall.cpp (renamed from clang/test/CodeGenCXX/cfi-vptr.cpp) | 6 |
2 files changed, 38 insertions, 3 deletions
diff --git a/clang/test/CodeGenCXX/cfi-nvcall.cpp b/clang/test/CodeGenCXX/cfi-nvcall.cpp new file mode 100644 index 00000000000..b0db478c9d0 --- /dev/null +++ b/clang/test/CodeGenCXX/cfi-nvcall.cpp @@ -0,0 +1,35 @@ +// RUN: %clang_cc1 -triple x86_64-unknown-linux -fsanitize=cfi-nvcall -emit-llvm -o - %s | FileCheck %s +// RUN: %clang_cc1 -triple x86_64-unknown-linux -fsanitize=cfi-nvcall,cfi-cast-strict -emit-llvm -o - %s | FileCheck --check-prefix=CHECK-STRICT %s + +struct A { + virtual void f(); +}; + +struct B : A { + int i; + void g(); +}; + +struct C : A { + void g(); +}; + +// CHECK-LABEL: @bg +// CHECK-STRICT-LABEL: @bg +extern "C" void bg(B *b) { + // CHECK: call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"1B") + // CHECK-STRICT: call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"1B") + b->g(); +} + +// CHECK-LABEL: @cg +// CHECK-STRICT-LABEL: @cg +extern "C" void cg(C *c) { + // http://clang.llvm.org/docs/ControlFlowIntegrity.html#strictness + // In this case C's layout is the same as its base class, so we allow + // c to be of type A in non-strict mode. + + // CHECK: call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"1A") + // CHECK-STRICT: call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"1C") + c->g(); +} diff --git a/clang/test/CodeGenCXX/cfi-vptr.cpp b/clang/test/CodeGenCXX/cfi-vcall.cpp index 545f22c3c72..bfbbceaa1a3 100644 --- a/clang/test/CodeGenCXX/cfi-vptr.cpp +++ b/clang/test/CodeGenCXX/cfi-vcall.cpp @@ -1,4 +1,4 @@ -// RUN: %clang_cc1 -triple x86_64-unknown-linux -fsanitize=cfi-vptr -emit-llvm -o - %s | FileCheck %s +// RUN: %clang_cc1 -triple x86_64-unknown-linux -fsanitize=cfi-vcall -emit-llvm -o - %s | FileCheck %s struct A { A(); @@ -49,7 +49,7 @@ void af(A *a) { // CHECK: define internal void @_Z2dfPN12_GLOBAL__N_11DE void df(D *d) { - // CHECK: {{%[^ ]*}} = call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"[{{.*}}cfi-vptr.cpp]N12_GLOBAL__N_11DE") + // CHECK: {{%[^ ]*}} = call i1 @llvm.bitset.test(i8* {{%[^ ]*}}, metadata !"[{{.*}}cfi-vcall.cpp]N12_GLOBAL__N_11DE") d->f(); } @@ -67,7 +67,7 @@ void foo() { // CHECK-DAG: !{!"1A", [10 x i8*]* @_ZTVN12_GLOBAL__N_11DE, i64 32} // CHECK-DAG: !{!"1B", [10 x i8*]* @_ZTVN12_GLOBAL__N_11DE, i64 32} // CHECK-DAG: !{!"1C", [10 x i8*]* @_ZTVN12_GLOBAL__N_11DE, i64 72} -// CHECK-DAG: !{!"[{{.*}}cfi-vptr.cpp]N12_GLOBAL__N_11DE", [10 x i8*]* @_ZTVN12_GLOBAL__N_11DE, i64 32} +// CHECK-DAG: !{!"[{{.*}}cfi-vcall.cpp]N12_GLOBAL__N_11DE", [10 x i8*]* @_ZTVN12_GLOBAL__N_11DE, i64 32} // CHECK-DAG: !{!"1A", [5 x i8*]* @_ZTV1B, i64 32} // CHECK-DAG: !{!"1B", [5 x i8*]* @_ZTV1B, i64 32} // CHECK-DAG: !{!"1A", [5 x i8*]* @_ZTV1C, i64 32} |
