[llvm-branch-commits] [llvm] [BOLT] Gadget scanner: detect non-protected indirect calls (PR #131899)
Kristof Beyls via llvm-branch-commits
llvm-branch-commits at lists.llvm.org
Tue Mar 25 06:49:02 PDT 2025
================
@@ -0,0 +1,676 @@
+// RUN: %clang %cflags -march=armv8.3-a %s -o %t.exe
+// RUN: llvm-bolt-binary-analysis --scanners=pacret %t.exe 2>&1 | FileCheck %s
----------------
kbeyls wrote:
I'm wondering if the user interface for this should be adapted?
`pac-ret` is a widely deployed hardening scheme, so just verifying the correct application of pac-ret hardening is something that users presumably want to do, without also checking pauthabi hardening guarantees that do not exist in pac-ret?
Maybe the checking of non-protected indirect calls should happen under a different `--scanners` option?
https://github.com/llvm/llvm-project/pull/131899
More information about the llvm-branch-commits
mailing list