004aa15b47
This commit adds cross-language LLVM Control Flow Integrity (CFI) support to the Rust compiler by adding the `-Zsanitizer-cfi-normalize-integers` option to be used with Clang `-fsanitize-cfi-icall-normalize-integers` for normalizing integer types (see https://reviews.llvm.org/D139395). It provides forward-edge control flow protection for C or C++ and Rust -compiled code "mixed binaries" (i.e., for when C or C++ and Rust -compiled code share the same virtual address space). For more information about LLVM CFI and cross-language LLVM CFI support for the Rust compiler, see design document in the tracking issue #89653. Cross-language LLVM CFI can be enabled with -Zsanitizer=cfi and -Zsanitizer-cfi-normalize-integers, and requires proper (i.e., non-rustc) LTO (i.e., -Clinker-plugin-lto).
18 lines
686 B
Rust
18 lines
686 B
Rust
// Verifies that pointer type membership tests for indirect calls are omitted.
|
|
//
|
|
// needs-sanitizer-cfi
|
|
// compile-flags: -Clto -Cno-prepopulate-passes -Ctarget-feature=-crt-static -Zsanitizer=cfi -Copt-level=0
|
|
|
|
#![crate_type="lib"]
|
|
#![feature(no_sanitize)]
|
|
|
|
#[no_sanitize(cfi)]
|
|
pub fn foo(f: fn(i32) -> i32, arg: i32) -> i32 {
|
|
// CHECK-LABEL: sanitizer_cfi_emit_type_checks_attr_no_sanitize::foo
|
|
// CHECK: Function Attrs: {{.*}}
|
|
// CHECK-LABEL: define{{.*}}foo{{.*}}!type !{{[0-9]+}} !type !{{[0-9]+}} !type !{{[0-9]+}} !type !{{[0-9]+}}
|
|
// CHECK: start:
|
|
// CHECK-NEXT: {{%.+}} = call i32 %f(i32 %arg)
|
|
// CHECK-NEXT: ret i32 {{%.+}}
|
|
f(arg)
|
|
}
|