[clang] [sanitizer] Document AddressSanitizer security considerations (PR #100937)
via cfe-commits
cfe-commits at lists.llvm.org
Sun Jul 28 08:34:53 PDT 2024
https://github.com/bigb4ng created https://github.com/llvm/llvm-project/pull/100937
Follow-up to #92593.
Also makes #92611, https://github.com/google/sanitizers/issues/1130 obsolete.
>From e37995b0c83ee6b090ea7a2042e8a2b82799ac4e Mon Sep 17 00:00:00 2001
From: bigb4ng <130478744+bigb4ng at users.noreply.github.com>
Date: Sun, 28 Jul 2024 18:26:38 +0300
Subject: [PATCH] [sanitizer] Document AddressSanitizer security considerations
Follow-up to PR #92593
---
clang/docs/AddressSanitizer.rst | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/clang/docs/AddressSanitizer.rst b/clang/docs/AddressSanitizer.rst
index e1997153f2037..d543b49d64c05 100644
--- a/clang/docs/AddressSanitizer.rst
+++ b/clang/docs/AddressSanitizer.rst
@@ -313,6 +313,14 @@ Limitations
usually expected.
* Static linking of executables is not supported.
+Security Considerations
+=======================
+
+AddressSanitizer is a bug detection tool and is not meant to be linked
+against production executables. While it may be useful for testing,
+AddressSanitizer's runtime was not developed with security-sensitive
+constraints in mind and may compromise the security of the resulting executable.
+
Supported Platforms
===================
More information about the cfe-commits
mailing list