1f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Copyright 2014 The Chromium Authors. All rights reserved. 2f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Use of this source code is governed by a BSD-style license that can be 3f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// found in the LICENSE file. 4f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// 5f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Defines some functions that intentionally do an invalid memory access in 6f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// order to trigger an AddressSanitizer (ASan) error report. 7f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 8f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#ifndef BASE_DEBUG_ASAN_INVALID_ACCESS_H_ 9f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#define BASE_DEBUG_ASAN_INVALID_ACCESS_H_ 10f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 11f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#include "base/base_export.h" 12f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#include "base/compiler_specific.h" 13f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 14f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)namespace base { 15f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)namespace debug { 16f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 17f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#if defined(ADDRESS_SANITIZER) || defined(SYZYASAN) 18f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 19f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Generates an heap buffer overflow. 20f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)BASE_EXPORT NOINLINE void AsanHeapOverflow(); 21f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 22f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Generates an heap buffer underflow. 23f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)BASE_EXPORT NOINLINE void AsanHeapUnderflow(); 24f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 25f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Generates an use after free. 26f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)BASE_EXPORT NOINLINE void AsanHeapUseAfterFree(); 27f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 28f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#endif // ADDRESS_SANITIZER || SYZYASAN 29f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 30f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// The "corrupt-block" and "corrupt-heap" classes of bugs is specific to 31f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// SyzyASan. 325f1c94371a64b3196d4be9466099bb892df9b88eTorne (Richard Coles)#if defined(SYZYASAN) && defined(COMPILER_MSVC) 33f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 34f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Corrupts a memory block and makes sure that the corruption gets detected when 35f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// we try to free this block. 36f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)BASE_EXPORT NOINLINE void AsanCorruptHeapBlock(); 37f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 38f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// Corrupts the heap and makes sure that the corruption gets detected when a 39f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)// crash occur. 40f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)BASE_EXPORT NOINLINE void AsanCorruptHeap(); 41f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 425f1c94371a64b3196d4be9466099bb892df9b88eTorne (Richard Coles)#endif // SYZYASAN && COMPILER_MSVC 43f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 44f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)} // namespace debug 45f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)} // namespace base 46f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles) 47f8ee788a64d60abd8f2d742a5fdedde054ecd910Torne (Richard Coles)#endif // BASE_DEBUG_ASAN_INVALID_ACCESS_H_ 48