1673dc3d4SNico Weber // Test that use-after-return works with arguments passed by value. 2673dc3d4SNico Weber // RUN: %clangxx_asan -O0 %s -o %t 3673dc3d4SNico Weber // RUN: %env_asan_opts=detect_stack_use_after_return=0 %run %t 2>&1 | \ 4673dc3d4SNico Weber // RUN: FileCheck --check-prefix=CHECK-NO-UAR %s 5673dc3d4SNico Weber // RUN: not %env_asan_opts=detect_stack_use_after_return=1 %run %t 2>&1 | \ 6673dc3d4SNico Weber // RUN: FileCheck --check-prefix=CHECK-UAR %s 7*60084d49SKevin Athey // RUN: %clangxx_asan -O0 %s -o %t -fsanitize-address-use-after-return=never && \ 8af8c59e0SKevin Athey // RUN: %run %t 2>&1 | FileCheck --check-prefix=CHECK-NO-UAR %s 9*60084d49SKevin Athey // RUN: %clangxx_asan -O0 %s -o %t -fsanitize-address-use-after-return=always && \ 10af8c59e0SKevin Athey // RUN: not %run %t 2>&1 | FileCheck --check-prefix=CHECK-UAR %s 11673dc3d4SNico Weber // 12673dc3d4SNico Weber // On several architectures, the IR does not use byval arguments for foo() and 13673dc3d4SNico Weber // instead creates a copy in main() and gives foo() a pointer to the copy. In 14673dc3d4SNico Weber // that case, ASAN has nothing to poison on return from foo() and will not 15673dc3d4SNico Weber // detect the UAR. 16673dc3d4SNico Weber // REQUIRES: x86_64-target-arch, linux, !android 17673dc3d4SNico Weber 18673dc3d4SNico Weber #include <cstdio> 19673dc3d4SNico Weber 20673dc3d4SNico Weber struct A { 21673dc3d4SNico Weber int a[8]; 22673dc3d4SNico Weber }; 23673dc3d4SNico Weber foo(A a)24673dc3d4SNico WeberA *foo(A a) { 25673dc3d4SNico Weber return &a; 26673dc3d4SNico Weber } 27673dc3d4SNico Weber main()28673dc3d4SNico Weberint main() { 29673dc3d4SNico Weber A *a = foo(A()); 30673dc3d4SNico Weber a->a[0] = 7; 31673dc3d4SNico Weber std::fprintf(stderr, "\n"); // Ensures some output is generated for FileCheck 32673dc3d4SNico Weber // to verify in the case where UAR is not 33673dc3d4SNico Weber // detected. 34673dc3d4SNico Weber } 35673dc3d4SNico Weber 36673dc3d4SNico Weber // CHECK-NO-UAR-NOT: ERROR: AddressSanitizer: stack-use-after-return 37673dc3d4SNico Weber // CHECK-NO-UAR-NOT: WRITE of size 4 at 38673dc3d4SNico Weber // CHECK-NO-UAR-NOT: Memory access at offset {{[0-9]+}} is inside this variable 39673dc3d4SNico Weber // 40673dc3d4SNico Weber // CHECK-UAR: ERROR: AddressSanitizer: stack-use-after-return 41673dc3d4SNico Weber // CHECK-UAR: WRITE of size 4 at 42673dc3d4SNico Weber // CHECK-UAR: Memory access at offset {{[0-9]+}} is inside this variable 43