1; Test that loads of local pointers to allocation functions and stores 2; of pointers to allocation functions are instrumented. 3 4; REQUIRES: allow_dump 5 6; RUN: %p2i -i %s --args -verbose=inst -threads=0 -fsanitize-address \ 7; RUN: -allow-externally-defined-symbols | FileCheck --check-prefix=DUMP %s 8 9declare external i32 @malloc(i32) 10declare external i32 @realloc(i32, i32) 11declare external i32 @calloc(i32, i32) 12declare external void @free(i32) 13 14define internal void @func(i32 %store_loc) { 15 %store_dest = inttoptr i32 %store_loc to i32* 16 17 %malloc_ptr = bitcast i32 (i32)* @malloc to i32* 18 %realloc_ptr = bitcast i32 (i32, i32)* @realloc to i32* 19 %calloc_ptr = bitcast i32 (i32, i32)* @calloc to i32* 20 %free_ptr = bitcast void (i32)* @free to i32* 21 22 %malloc_addr = ptrtoint i32 (i32)* @malloc to i32 23 %realloc_addr = ptrtoint i32 (i32, i32)* @realloc to i32 24 %calloc_addr = ptrtoint i32 (i32, i32)* @calloc to i32 25 %free_addr = ptrtoint void (i32)* @free to i32 26 27 store i32 %malloc_addr, i32* %store_dest, align 1 28 store i32 %realloc_addr, i32* %store_dest, align 1 29 store i32 %calloc_addr, i32* %store_dest, align 1 30 store i32 %free_addr, i32* %store_dest, align 1 31 32 %local_malloc = load i32, i32* %malloc_ptr, align 1 33 %local_realloc = load i32, i32* %realloc_ptr, align 1 34 %local_calloc = load i32, i32* %calloc_ptr, align 1 35 %local_free = load i32, i32* %free_ptr, align 1 36 37 %local_mallocfunc = inttoptr i32 %local_malloc to i32 (i32)* 38 %local_reallocfunc = inttoptr i32 %local_realloc to i32 (i32, i32)* 39 %local_callocfunc = inttoptr i32 %local_calloc to i32 (i32, i32)* 40 %local_freefunc = inttoptr i32 %local_free to void (i32)* 41 42 %buf = call i32 %local_mallocfunc(i32 42) 43 call void %local_freefunc(i32 %buf) 44 ret void 45} 46 47; DUMP-LABEL: ================ Instrumented CFG ================ 48; DUMP-NEXT: @func(i32 %store_loc) { 49; DUMP-NEXT: __0: 50; DUMP-NEXT: call void @__asan_check_store(i32 %store_loc, i32 4) 51; DUMP-NEXT: store i32 @__asan_malloc, i32* %store_loc, align 1 52; DUMP-NEXT: store i32 @__asan_realloc, i32* %store_loc, align 1 53; DUMP-NEXT: store i32 @__asan_calloc, i32* %store_loc, align 1 54; DUMP-NEXT: store i32 @__asan_free, i32* %store_loc, align 1 55; DUMP-NEXT: call void @__asan_check_load(i32 @__asan_malloc, i32 4) 56; DUMP-NEXT: %local_malloc = load i32, i32* @__asan_malloc, align 1 57; DUMP-NEXT: call void @__asan_check_load(i32 @__asan_realloc, i32 4) 58; DUMP-NEXT: %local_realloc = load i32, i32* @__asan_realloc, align 1 59; DUMP-NEXT: call void @__asan_check_load(i32 @__asan_calloc, i32 4) 60; DUMP-NEXT: %local_calloc = load i32, i32* @__asan_calloc, align 1 61; DUMP-NEXT: call void @__asan_check_load(i32 @__asan_free, i32 4) 62; DUMP-NEXT: %local_free = load i32, i32* @__asan_free, align 1 63; DUMP-NEXT: %buf = call i32 %local_malloc(i32 42) 64; DUMP-NEXT: call void %local_free(i32 %buf) 65; DUMP-NEXT: ret void 66; DUMP-NEXT: } 67