From: Mitch Phillips Date: Wed, 13 Feb 2019 23:14:54 +0000 (+0000) Subject: [HWASAN] Updated HWASAN design document to better portray the chance of missing a... X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=030c82a9dbb9dbd21816f9190a86843e331f3d14;p=clang [HWASAN] Updated HWASAN design document to better portray the chance of missing a bug. Summary: Provided rule of thumb percentage chances of miss for 4 and 8 bit tag sizes. Subscribers: cfe-commits Tags: #clang Differential Revision: https://reviews.llvm.org/D58195 git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@353990 91177308-0d34-0410-b5e6-96231b3b80d8 --- diff --git a/docs/HardwareAssistedAddressSanitizerDesign.rst b/docs/HardwareAssistedAddressSanitizerDesign.rst index 6bbfcb7192..12e2cc2525 100644 --- a/docs/HardwareAssistedAddressSanitizerDesign.rst +++ b/docs/HardwareAssistedAddressSanitizerDesign.rst @@ -131,7 +131,8 @@ HWASAN: https://www.kernel.org/doc/Documentation/arm64/tagged-pointers.txt). * **Does not require redzones to detect buffer overflows**, but the buffer overflow detection is probabilistic, with roughly - `(2**TS-1)/(2**TS)` probability of catching a bug. + `1/(2**TS)` chance of missing a bug (6.25% or 0.39% with 4 and 8-bit TS + respectively). * **Does not require quarantine to detect heap-use-after-free, or stack-use-after-return**. The detection is similarly probabilistic.