Add some function and URLs to induce ASan crashes.

base/debug/asan_invalid_access.h

+// Copyright (c) 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+//
+// Defines some functions that intentionally do an invalid memory access in
+// order to trigger an Address Sanitizer (ASAN) error report.

[Timur Iskhodzhanov, 2014/06/05 15:32:09]

nit: AddressSanitizer (ASan)

[Sébastien Marchand, 2014/06/05 19:44:34]

Done.

+
+#ifndef BASE_DEBUG_ASAN_INVALID_ACCESS_H_
+#define BASE_DEBUG_ASAN_INVALID_ACCESS_H_
+
+#include "base/compiler_specific.h"
+
+namespace base {
+
+#if defined(ADDRESS_SANITIZER) || defined(SYZYASAN)
+
+// Generates an heap buffer overflow.
+NOINLINE void AsanHeapOverflow();
+
+// Generates an heap buffer underflow.
+NOINLINE void AsanHeapUnderflow();
+
+// Generates an use after free.
+NOINLINE void AsanHeapUseAfterFree();
+
+#endif  // ADDRESS_SANITIZER || SYZYASAN
+
+// The "corrupt-block" and "corrupt-heap" classes of bugs is specific to
+// SyzyASan.
+#if defined(SYZYASAN) && defined(COMPILER_MSVC)

[Timur Iskhodzhanov, 2014/06/05 15:32:09]

Why do you need COMPILER_MSVC here?

[Sébastien Marchand, 2014/06/05 19:44:34]

It's not needed anymore... I was using __try/__except and RaiseException in the
implementation of those function initially, which isn't supported when we build
with clang on Windows (for nacl).  I've switched to using try/catch and
CHECK(false).

Note that there's still no reason to compile this with clang on Windows... but
there's nothing preventing it.

+
+// Corrupts a memory block and makes sure that the corruption gets detected when
+// we try to free this block.
+NOINLINE void AsanCorruptHeapBlock();
+
+// Corrupts the heap and makes sure that the corruption gets detected when a
+// crash occur.
+NOINLINE void AsanCorruptHeap();
+
+#endif  // SYZYASAN
+
+}  // namespace base
+
+#endif  // BASE_DEBUG_ASAN_INVALID_ACCESS_H_