Add scudo sanitizer support

Add support for Scudo sanitizer.

Fixes #866

Author: bkhouri

Sources/SWBCore/Settings/BuiltinMacros.swift

@@ -408,6 +408,7 @@ public final class BuiltinMacros {
     public static let ENABLE_THREAD_SANITIZER = BuiltinMacros.declareBooleanMacro("ENABLE_THREAD_SANITIZER")
     public static let ENABLE_UNDEFINED_BEHAVIOR_SANITIZER = BuiltinMacros.declareBooleanMacro("ENABLE_UNDEFINED_BEHAVIOR_SANITIZER")
     public static let ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER = BuiltinMacros.declareBooleanMacro("ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER")
+    public static let ENABLE_SCUDO_SANITIZER = BuiltinMacros.declareBooleanMacro("ENABLE_SCUDO_SANITIZER")
     public static let ENABLE_SYSTEM_SANITIZERS = BuiltinMacros.declareBooleanMacro("ENABLE_SYSTEM_SANITIZERS")
 
     // MARK: Unit testing macros
@@ -1789,6 +1790,7 @@ public final class BuiltinMacros {
         ENABLE_PRIVATE_TESTING_SEARCH_PATHS,
         ENABLE_THREAD_SANITIZER,
         ENABLE_UNDEFINED_BEHAVIOR_SANITIZER,
+        ENABLE_SCUDO_SANITIZER,
         ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER,
         DISABLE_TASK_SANDBOXING,
         ENABLE_USER_SCRIPT_SANDBOXING,

Sources/SWBCore/Settings/Settings.swift

@@ -4703,7 +4703,11 @@ private class SettingsBuilder: ProjectMatchLookup {
         }
 
         // If any sanitizer is enabled, and this product type has a runpath to its Frameworks directory defined, then we want to add that path to the runpath search path if it's not already present.
-        if scope.evaluate(BuiltinMacros.ENABLE_ADDRESS_SANITIZER) || scope.evaluate(BuiltinMacros.ENABLE_THREAD_SANITIZER) || scope.evaluate(BuiltinMacros.ENABLE_UNDEFINED_BEHAVIOR_SANITIZER) || scope.evaluate(BuiltinMacros.ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER)
+        if scope.evaluate(BuiltinMacros.ENABLE_ADDRESS_SANITIZER)
+            || scope.evaluate(BuiltinMacros.ENABLE_THREAD_SANITIZER)
+            || scope.evaluate(BuiltinMacros.ENABLE_UNDEFINED_BEHAVIOR_SANITIZER)
+            || scope.evaluate(BuiltinMacros.ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER)
+            || scope.evaluate(BuiltinMacros.ENABLE_SCUDO_SANITIZER)
         {
             if let frameworksRunpath = productType?.frameworksRunpathSearchPath(in: scope)?.str {
                 if !scope.evaluate(BuiltinMacros.LD_RUNPATH_SEARCH_PATHS).contains(frameworksRunpath) {

Sources/SWBUniversalPlatform/Specs/Clang.xcspec

@@ -2925,6 +2925,26 @@
                 };
             },
 
+            // Scudo sanitizer option
+            {
+                Name = "CLANG_SCUDO_SANITIZER";
+                Type = Boolean;
+                DefaultValue = "$(ENABLE_SCUDO_SANITIZER)";
+                CommandLineArgs = {
+                    YES = (
+                        "-fsanitize=scudo",
+                    );
+                    NO = ();
+                };
+                AdditionalLinkerArgs = {
+                    YES = (
+                        "$($(LINKER_DRIVER)_LD_SCUDO_SANITIZER)",
+                    );
+                    NO = ();
+                };
+                // Not visible in the build settings editor
+            },
+
             // Address Sanitizer options.
             {
                 Name = "CLANG_ADDRESS_SANITIZER";

Sources/SWBUniversalPlatform/Specs/Ld.xcspec

@@ -695,11 +695,58 @@
                 // Not visible in the build settings editor
             },
 
+            // Scudo Sanitizer options
+            {
+                Name = "LD_SCUDO_SANITIZER";
+                Type = Boolean;
+                DefaultValue = "$(ENABLE_SCUDO_SANITIZER)";
+            },
+            {
+                Name = "CLANG_LD_SCUDO_SANITIZER";
+                Type = Boolean;
+                DefaultValue = "$(LD_SCUDO_SANITIZER)";
+                Architectures = (
+                    x86_64,
+                    x86_64h,
+                    aarch64,
+                    arm64,
+                    arm64e,
+                );
+                Condition = "$(LINKER_DRIVER) == clang";
+                CommandLineArgs = {
+                    YES = (
+                        "-fsanitize=scudo",
+                    );
+                    NO = ();
+                };
+                // Not visible in the build settings editor
+            },
+            {
+                Name = "SWIFTC_LD_SCUDO_SANITIZER";
+                Type = Boolean;
+                DefaultValue = "$(LD_SCUDO_SANITIZER)";
+                Architectures = (
+                    x86_64,
+                    x86_64h,
+                    aarch64,
+                    arm64,
+                    arm64e,
+                );
+                Condition = "$(LINKER_DRIVER) == swiftc";
+                CommandLineArgs = {
+                    YES = (
+                        "-sanitize=scudo",
+                    );
+                    NO = ();
+                };
+                // Not visible in the build settings editor
+            },
+
             {
                 Name = "LD_DEBUG_VARIANT";
                 Type = Boolean;
                 DefaultValue = YES;
-                Condition = "$(ENABLE_ADDRESS_SANITIZER) || $(ENABLE_THREAD_SANITIZER) || $(ENABLE_SANITIZER_COVERAGE) || $(ENABLE_UNDEFINED_BEHAVIOR_SANITIZER) || $(ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER) || $(CLANG_COVERAGE_MAPPING)";
+                Condition = "$(ENABLE_ADDRESS_SANITIZER) || $(ENABLE_THREAD_SANITIZER) || $(ENABLE_SANITIZER_COVERAGE) || $(ENABLE_UNDEFINED_BEHAVIOR_SANITIZER) || $(ENABLE_SCUDO_SANITIZER) || $(ENABLE_MEMORY_TAGGING_ADDRESS_SANITIZER) || $(CLANG_COVERAGE_MAPPING)";
                 CommandLineArgs = {
                     YES = (
                         "-Xlinker",

Sources/SWBUniversalPlatform/Specs/Swift.xcspec

@@ -1255,6 +1255,26 @@
                 DisplayName = "Reflection Metadata Level";
             },
 
+            // Address sanitizer options
+            {
+                Name = "SWIFT_SCUDO_SANITIZER";
+                Type = Boolean;
+                DefaultValue = "$(ENABLE_SCUDO_SANITIZER)";
+                CommandLineArgs = {
+                    YES = (
+                        "-sanitize=scudo",
+                    );
+                    NO = ();
+                };
+                AdditionalLinkerArgs = {
+                    YES = (
+                        "$($(LINKER_DRIVER)_LD_SCUDO_SANITIZER)",
+                    );
+                    NO = ();
+                };
+                // Not visible in the build settings editor
+            },
+
             // Fuzzer option.
             {
                 Name = "SWIFT_LIBFUZZER";

Tests/SWBTaskConstructionTests/TaskConstructionTests.swift

@@ -4065,16 +4065,20 @@ fileprivate struct TaskConstructionTests: CoreBasedTests {
     }
 
     /// Test that we properly generate commands for the compiler sanitizer features.
+
+    static let sanitizersTestData = [
+        (linkerDriver: "clang", expectedAddressArgument: "-fsanitize=address", expectedScudoArgument: "-fsanitize=scudo"),
+        (linkerDriver: "swiftc", expectedAddressArgument: "-sanitize=address", expectedScudoArgument: "-sanitize=scudo"),
+    ]
+
     @Test(
         .requireSDKs(.macOS),
-        arguments:[
-            (linkerDriver: "clang", expectedArgument: "-fsanitize=address"),
-            (linkerDriver: "swiftc", expectedArgument: "-sanitize=address"),
-        ],
+        arguments: Self.sanitizersTestData,
     )
     func sanitizers(
         linkerDriver: String,
-        expectedArgument: String,
+        expectedAddressArgument: String,
+        expectedScudoArgument: String,
     ) async throws {
         try await withTemporaryDirectory { tmpDir in
             let targetName = "AppTarget"
@@ -4154,7 +4158,7 @@ fileprivate struct TaskConstructionTests: CoreBasedTests {
                     results.checkTask(.matchTarget(target), .matchRuleType("Ld")) { task in
                         task.checkCommandLineContains(
                             [
-                                expectedArgument,
+                                expectedAddressArgument,
                                 "-fsanitize-stable-abi",
                                 "\(SRCROOT)/build/Debug/\(targetName).app/Contents/MacOS/\(targetName)",
                             ]
@@ -4447,6 +4451,114 @@ fileprivate struct TaskConstructionTests: CoreBasedTests {
         }
     }
 
+    @Test(
+        arguments: Self.sanitizersTestData,
+    )
+    func scudoSanitizer(
+        linkerDriver: String,
+        expectedAddressArgument: String,
+        expectedScudoArgument: String,
+    ) async throws {
+        let swiftVersion = try await self.swiftVersion
+        try await withTemporaryDirectory { tmpDir in
+            let targetName = "TestTargetname"
+            let testProject = TestProject(
+                "aProject",
+                sourceRoot: tmpDir,
+                groupTree: TestGroup(
+                    "SomeFiles",
+                    path: "Sources",
+                    children: [
+                        TestFile("C_file.c"),
+                        TestFile("SwiftFile.swift"),
+                    ]),
+                buildConfigurations: [
+                    TestBuildConfiguration(
+                        "Debug",
+                        buildSettings: [
+                            "INFOPLIST_FILE": "Info.plist",
+                            "PRODUCT_NAME": "$(TARGET_NAME)",
+                            "SWIFT_VERSION": swiftVersion,
+                            "CLANG_USE_RESPONSE_FILE": "NO",
+                        ],
+                    ),
+                ],
+                targets: [
+                    TestStandardTarget(
+                        targetName,
+                        type: .commandLineTool,
+                        buildConfigurations: [
+                            TestBuildConfiguration("Debug"),
+                        ],
+                        buildPhases: [
+                            TestSourcesBuildPhase([
+                                "C_file.c",
+                                "SwiftFile.swift",
+                            ]),
+                        ],
+                    ),
+                ],
+            )
+            let core = try await getCore()
+            let tester = try TaskConstructionTester(core, testProject)
+            let SRCROOT = tester.workspace.projects[0].sourceRoot.str
+
+            // Use the local filesystem since the sanitizer logic needs to access clang.
+            let fs = localFS
+
+            try fs.write(Path(SRCROOT).join("Info.plist"), contents: "<dict/>")
+
+            let toolchain = try #require(tester.core.toolchainRegistry.defaultToolchain)
+            let toolchainDirectory: Path = toolchain.path
+            let clangBinary = toolchainDirectory.join("./usr/bin").join(core.hostOperatingSystem.imageFormat.executableName(basename: "clang")).normalize()
+            let swiftcBinary = toolchainDirectory.join("./usr/bin").join(core.hostOperatingSystem.imageFormat.executableName(basename: "swiftc")).normalize()
+
+            // Check the Scudo sanitizer
+            await tester.checkBuild(
+                BuildParameters(
+                    configuration: "Debug",
+                    overrides: [
+                        "ENABLE_SCUDO_SANITIZER": "YES",
+                        "LINKER_DRIVER": linkerDriver,
+                    ],
+                ),
+                runDestination: .host,
+                fs: fs,
+            ) { results in
+                results.checkTarget(targetName) { target in
+                    // There should be one Ld task.
+                    results.checkTask(.matchTarget(target), .matchRuleType("Ld")) { task in
+                        task.checkCommandLineContains(
+                            [
+                                expectedScudoArgument,
+                            ],
+                        )
+                        task.checkCommandLineDoesNotContain("YES")
+                        task.checkCommandLineDoesNotContain("NO")
+                    }
+                    results.checkTask(.matchTarget(target), .matchRuleType("CompileC")) { task in
+                        task.checkCommandLineContains([
+                            clangBinary.str,
+                            "-fsanitize=scudo",
+                        ])
+                        task.checkCommandLineDoesNotContain("YES")
+                        task.checkCommandLineDoesNotContain("NO")
+                    }
+                    results.checkTask(.matchTarget(target), .matchRuleType("SwiftDriver Compilation")) { task in
+                        task.checkCommandLineContains([
+                            swiftcBinary.str,
+                            "-sanitize=scudo",
+                        ])
+                        task.checkCommandLineDoesNotContain("YES")
+                        task.checkCommandLineDoesNotContain("NO")
+                    }
+                }
+                results.checkNoDiagnostics()
+            }
+        }
+    }
+
+
     /// Check that missing target GUIDs are legal, not crashes.
     ///
     /// This is important because we allowing this to be valid can simplify the client logic in some situations.