Strona główna Odkrywaj Pomoc
Zaloguj się
nnesse
/
minwin-gcc-5-2
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Oczekujące zmiany 0 Wiki
Drzewo: f5de7b477e
Gałęzie Tagi
minwin-gcc-5-2
/
libvtv
/
testsuite
/
other-tests
/
temp_deriv3.cc

temp_deriv3.cc 2.2 KB
Historia Czysty

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. // Compile with /home/llozano/local2/proj/vtable/gcc-root/usr/local/bin/g++ -m32 -fvtable-verify=std -fpic -rdynamic -Wl,-R,/home/llozano/local2/proj/vtable/gcc-root/usr/local/lib32:./lib32 -I/home/llozano/local2/proj/vtable/vt2/gcc-4_6-mobile-vtable-security//libstdc++-v3/libsupc++ temp_deriv.cc -O0 -ldl -lpthread -Wl,--whole-archive,-lvtv_init,--no-whole-archive,-z,relro -DTPID=0 -g
    2. 

  2. // Look at assembly with: objdump -drl a.out
    3. 

  3. 

  4. #include <dlfcn.h>
    5. 

  5. #include <assert.h>
    6. 

  6. #include <stdlib.h>
    7. 

  7. 

  8. extern "C" int printf(const char *, ...);
    9. 

  9. 

  10. static int counter = 0;
    11. 

  11. 

  12. int i = TPID;
    13. 

  13. struct base
    14. 

  14. {
    15. 

  15.   virtual void inc() { counter += i; }
    16. 

  16. };
    17. 

  17. 

  18. struct derived: public base
    19. 

  19. {
    20. 

  20.   virtual void inc() { counter += (10*i); }
    21. 

  21. };
    22. 

  22. 

  23. // We don't use this class. It is just here so that the
    24. 

  24. // compiler does not devirtualize calls to derived::inc()
    25. 

  25. struct derived2: public derived
    26. 

  26. {
    27. 

  27.   virtual void inc() { counter += (20*i); }
    28. 

  28. };
    29. 

  29. 

  30. static base * bp = new base();
    31. 

  31. static derived * dp = new derived();
    32. 

  32. static base * dbp = new derived();
    33. 

  33. 

  34. typedef void * vtptr;
    35. 

  35. 

  36. vtptr get_vtptr(void * object_ptr)
    37. 

  37. {
    38. 

  38.   vtptr * object_vtptr_ptr = (vtptr *)object_ptr;
    39. 

  39.   return *object_vtptr_ptr;
    40. 

  40. }
    41. 

  41. 

  42. void set_vptr(void * object_ptr, vtptr vtp)
    43. 

  43. {
    44. 

  44.   vtptr * object_vtptr_ptr = (vtptr *)object_ptr;
    45. 

  45.   *object_vtptr_ptr = vtp;
    46. 

  46. }
    47. 

  47. 

  48. // Given 2 pointers to C++ objects (non PODs), exchange the pointers to vtable
    49. 

  49. void exchange_vtptr(void * object1_ptr, void * object2_ptr)
    50. 

  50. {
    51. 

  51.   vtptr object1_vtptr = get_vtptr(object1_ptr);
    52. 

  52.   vtptr object2_vtptr = get_vtptr(object2_ptr);
    53. 

  53.   set_vptr(object1_ptr, object2_vtptr);
    54. 

  54.   set_vptr(object2_ptr, object1_vtptr);
    55. 

  55. }
    56. 

  56. 

  57. main()
    58. 

  58. {
    59. 

  59.   int prev_counter;
    60. 

  60. 

  61.   counter = 0;
    62. 

  62.   bp->inc();
    63. 

  63.   dp->inc();
    64. 

  64.   dbp->inc();
    65. 

  65.   assert(counter == (TPID + 10*TPID + 10*TPID));
    66. 

  66. 

  67.   prev_counter = counter;
    68. 

  68.   printf("before ex bp vptr=%x dp vptr=%x\n", get_vtptr(bp), get_vtptr(dp));
    69. 

  69.   exchange_vtptr(bp, dp);
    70. 

  70.   printf("after ex bp vptr=%x dp vptr=%x\n", get_vtptr(bp), get_vtptr(dp));
    71. 

  71.   bp->inc(); // This one should not abort but it is calling the wrong member
    72. 

  72.   assert(counter == (prev_counter + 10*TPID));
    73. 

  73.   printf("Pass first attack! Expected!\n");
    74. 

  74.   printf("TPDI=%d counter %d\n", TPID, counter);
    75. 

  75.   dp->inc();
    76. 

  76.   printf("Pass second attack! SHOULD NOT BE HERE!\n");
    77. 

  77.   printf("TPDI=%d counter %d\n", TPID, counter);
    78. 

  78.   exit(1);
    79. 

  79. }
    80. 

  80.