1 | // Test haystack overflow in strstr function |
2 | // RUN: %clang_asan %s -o %t && %env_asan_opts=strict_string_checks=true not %run %t 2>&1 | FileCheck %s |
3 | |
4 | // Test intercept_strstr asan option |
5 | // Disable other interceptors because strlen may be called inside strstr |
6 | // RUN: %env_asan_opts=intercept_strstr=false:replace_str=false %run %t 2>&1 |
7 | |
8 | #include <assert.h> |
9 | #include <string.h> |
10 | #include <sanitizer/asan_interface.h> |
11 | |
12 | int main(int argc, char **argv) { |
13 | char *r = 0; |
14 | char s2[] = "c" ; |
15 | char s1[4] = "acb" ; |
16 | __asan_poison_memory_region (addr: (char *)&s1[2], size: 2); |
17 | r = strstr(haystack: s1, needle: s2); |
18 | // CHECK:'s1'{{.*}} <== Memory access at offset {{[0-9]+}} {{partially overflows this variable|is inside this variable}} |
19 | assert(r == s1 + 1); |
20 | return 0; |
21 | } |
22 | |