r281665 - [sanitizer-coverage] make trace-pc-guard and indirect-call work together
Kostya Serebryany via cfe-commits
cfe-commits at lists.llvm.org
Thu Sep 15 15:11:08 PDT 2016
Author: kcc
Date: Thu Sep 15 17:11:08 2016
New Revision: 281665
URL: http://llvm.org/viewvc/llvm-project?rev=281665&view=rev
Log:
[sanitizer-coverage] make trace-pc-guard and indirect-call work together
Modified:
cfe/trunk/docs/SanitizerCoverage.rst
Modified: cfe/trunk/docs/SanitizerCoverage.rst
URL: http://llvm.org/viewvc/llvm-project/cfe/trunk/docs/SanitizerCoverage.rst?rev=281665&r1=281664&r2=281665&view=diff
==============================================================================
--- cfe/trunk/docs/SanitizerCoverage.rst (original)
+++ cfe/trunk/docs/SanitizerCoverage.rst Thu Sep 15 17:11:08 2016
@@ -323,8 +323,8 @@ and can be used with `AFL <http://lcamtu
Tracing PCs with guards
=======================
-Another *experimental* feature that tries to combine `trace-pc`,
-`8bit-counters` and boolean coverage
+Another *experimental* feature that tries to combine the functionality of `trace-pc`,
+`8bit-counters` and boolean coverage.
With ``-fsanitize-coverage=trace-pc-guard`` the compiler will insert the following code
on every edge:
@@ -338,6 +338,9 @@ Every edge will have its own 1-byte `gua
All such guard variables will reside in a dedicated section
(i.e. they essentially form an array).
+Similarly to `trace-pc,indirect-calls`, with `trace-pc-guards,indirect-calls`
+``__sanitizer_cov_trace_pc_indirect(void *callee)`` will be inserted on every indirect call.
+
The compler will also insert a module constructor that will call
.. code-block:: c++
More information about the cfe-commits
mailing list