[compiler-rt] [sanitizer] Disable writes to log files for binaries in a secure context. (PR #92593)
Evgenii Stepanov via llvm-commits
llvm-commits at lists.llvm.org
Fri May 31 13:29:13 PDT 2024
eugenis wrote:
I do not have a strong opinion here. It is certainly useful to build setiud binaries with sanitizers, for testing. It is very convenient to simply build everything with asan/hwasan, without cherry-picking, like we do in Android for memory testing, but with understanding that there are security holes.
We've got ubsan_minimal runtime library that is half way between trap mode and a full sanitizer runtime, developed with security in mind.
If there is no viable plan to make sanitizer runtime production-level secure, then maybe we should err on the side of usability.
https://github.com/llvm/llvm-project/pull/92593
More information about the llvm-commits
mailing list