This is the mail archive of the gcc-patches@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)

From: Richard Biener <richard dot guenther at gmail dot com>
To: Jakub Jelinek <jakub at redhat dot com>
Cc: Martin Liška <mliska at suse dot cz>, GCC Patches <gcc-patches at gcc dot gnu dot org>
Date: Wed, 2 Nov 2016 14:16:52 +0100
Subject: Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
Authentication-results: sourceware.org; auth=none
References: <20161021142617.GG7282@tucnak.redhat.com> <3a109250-0440-7438-8e1f-7e5c6d8b6580@suse.cz> <20161027172358.GN3541@tucnak.redhat.com> <606cd948-6cba-02a4-f114-35900ab53203@suse.cz> <20161101151219.GT3541@tucnak.redhat.com> <CAFiYyc3bLw=mkwWj_5sbr07nznG3_1-Sf5PObLQdhg9-tvNVVA@mail.gmail.com> <20161102095202.GL3541@tucnak.redhat.com> <CAFiYyc1HodaSpqz=Gy8KUNWGeu0JT7rWxoqnh8AQ5HO25F1oNA@mail.gmail.com> <20161102125609.GQ3541@tucnak.redhat.com> <CAFiYyc1RhajBS7ZhJvLGYkrPnh_1z7QqHYLBNCOGN4YdS5TzmQ@mail.gmail.com> <20161102130612.GR3541@tucnak.redhat.com>

On Wed, Nov 2, 2016 at 2:06 PM, Jakub Jelinek <jakub@redhat.com> wrote:
> On Wed, Nov 02, 2016 at 01:59:00PM +0100, Richard Biener wrote:
>> > Yeah, that is what I meant.  The issue is how to report uses of such
>> > SSA_NAME when there is no memory.  So, either we'd need a special runtime
>> > library entrypoint that would report uses after scope even when there is no
>> > underlying memory, or we'd need to force it at asan pass time into memory again.
>>
>> Well, there can't be any uses outside the scope -- there are no (memory) uses
>> left if we rewrite the thing into SSA.  That is, the address can no
>> longer "escape".
>>
>> Of course there could have been invalid uses before the rewrite into SSA.  But
>> those can be diagnosed either immediately before or after re-writing into SSA
>> at compile-time (may be in dead code regions of course).
>
> Sure, we can warn on those at compile time, but we really should arrange to
> error on those at runtime if they are ever executed, the UB happens only at
> runtime, so in dead code isn't fatal.

Then we can replace those uses with a call into the asan runtime diagnosing the
issue instead?

Richard.

>         Jakub

Follow-Ups:
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Martin Liška
- [RFC][PATCH] Speed-up use-after-scope (re-writing to SSA)
  - From: Martin Liška

References:
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Martin Liška
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Jakub Jelinek
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Richard Biener
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Jakub Jelinek
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Richard Biener
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Jakub Jelinek
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Richard Biener
- Re: [PATCH, RFC] Introduce -fsanitize=use-after-scope (v2)
  - From: Jakub Jelinek

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]