review.tizen.org Git - platform/upstream/llvm.git/commit

author	Julian Lettner <jlettner@apple.com>
	Thu, 10 Oct 2019 00:33:04 +0000 (00:33 +0000)
committer	Julian Lettner <jlettner@apple.com>
	Thu, 10 Oct 2019 00:33:04 +0000 (00:33 +0000)
commit	b577efe4567f1f6a711ad36e1d17280dd1c4f009
tree	db99143a2af9841c57ec159ee2e0ef5dda26869a	tree \| snapshot
parent	d6e9e99cec95c83293c68d3b30534e34f53a1923	commit \| diff

[ASan] Do not misrepresent high value address dereferences as null dereferences

Dereferences with addresses above the 48-bit hardware addressable range
produce "invalid instruction" (instead of "invalid access") hardware
exceptions (there is no hardware address decoding logic for those bits),
and the address provided by this exception is the address of the
instruction (not the faulting address).  The kernel maps the "invalid
instruction" to SEGV, but fails to provide the real fault address.

Because of this ASan lies and says that those cases are null
dereferences.  This downgrades the severity of a found bug in terms of
security.  In the ASan signal handler, we can not provide the real
faulting address, but at least we can try not to lie.

rdar://50366151

Reviewed By: vitalybuka

Differential Revision: https://reviews.llvm.org/D68676

llvm-svn: 374265

compiler-rt/lib/asan/asan_errors.h		diff \| blob \| history
compiler-rt/lib/sanitizer_common/sanitizer_common.h		diff \| blob \| history
compiler-rt/lib/sanitizer_common/sanitizer_linux.cpp		diff \| blob \| history
compiler-rt/lib/sanitizer_common/sanitizer_mac.cpp		diff \| blob \| history
compiler-rt/lib/sanitizer_common/sanitizer_symbolizer_report.cpp		diff \| blob \| history
compiler-rt/lib/sanitizer_common/sanitizer_win.cpp		diff \| blob \| history
compiler-rt/test/asan/TestCases/Posix/high-address-dereference.c	[new file with mode: 0644]	blob