https://github.com/bigb4ng created https://github.com/llvm/llvm-project/pull/100937
Follow-up to #92593. Also makes #92611, https://github.com/google/sanitizers/issues/1130 obsolete. >From e37995b0c83ee6b090ea7a2042e8a2b82799ac4e Mon Sep 17 00:00:00 2001 From: bigb4ng <130478744+bigb...@users.noreply.github.com> Date: Sun, 28 Jul 2024 18:26:38 +0300 Subject: [PATCH] [sanitizer] Document AddressSanitizer security considerations Follow-up to PR #92593 --- clang/docs/AddressSanitizer.rst | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/clang/docs/AddressSanitizer.rst b/clang/docs/AddressSanitizer.rst index e1997153f2037..d543b49d64c05 100644 --- a/clang/docs/AddressSanitizer.rst +++ b/clang/docs/AddressSanitizer.rst @@ -313,6 +313,14 @@ Limitations usually expected. * Static linking of executables is not supported. +Security Considerations +======================= + +AddressSanitizer is a bug detection tool and is not meant to be linked +against production executables. While it may be useful for testing, +AddressSanitizer's runtime was not developed with security-sensitive +constraints in mind and may compromise the security of the resulting executable. + Supported Platforms =================== _______________________________________________ cfe-commits mailing list cfe-commits@lists.llvm.org https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits