Merge "[cfi] Fix __cfi_check address calculation."

commit: 5e805526422d90c4054c9fb0f7b1b915dc49f3c8 [log] [tgz]
author: Treehugger Robot <treehugger-gerrit@google.com> Fri Sep 15 23:08:31 2017 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Fri Sep 15 23:08:31 2017 +0000
tree: b893305262bb5427733890aae45a0fffa6076417
parent: 5828840e7251091b8a2121d1ab44a53fd44dd689 [diff]
parent: ded4524cb0a2ad931468409ff0f4817f9c0a8925 [diff]
diff --git a/libdl/libdl_cfi.cpp b/libdl/libdl_cfi.cpp
index 483364f..1dd5b21 100644
--- a/libdl/libdl_cfi.cpp
+++ b/libdl/libdl_cfi.cpp

@@ -52,7 +52,10 @@
 
 static uintptr_t cfi_check_addr(uint16_t v, void* Ptr) {
   uintptr_t addr = reinterpret_cast<uintptr_t>(Ptr);
-  uintptr_t aligned_addr = align_up(addr, CFIShadow::kShadowAlign);
+  // The aligned range of [0, kShadowAlign) uses a single shadow element, therefore all pointers in
+  // this range must get the same aligned_addr below. This matches CFIShadowWriter::Add; not the
+  // same as align_up().
+  uintptr_t aligned_addr = align_down(addr, CFIShadow::kShadowAlign) + CFIShadow::kShadowAlign;
   uintptr_t p = aligned_addr - (static_cast<uintptr_t>(v - CFIShadow::kRegularShadowMin)
                                 << CFIShadow::kCfiCheckGranularity);
 #ifdef __arm__
commit	5e805526422d90c4054c9fb0f7b1b915dc49f3c8	[log] [tgz]
author	Treehugger Robot <treehugger-gerrit@google.com>	Fri Sep 15 23:08:31 2017 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Fri Sep 15 23:08:31 2017 +0000
tree	b893305262bb5427733890aae45a0fffa6076417
parent	5828840e7251091b8a2121d1ab44a53fd44dd689 [diff]
parent	ded4524cb0a2ad931468409ff0f4817f9c0a8925 [diff]