mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git
synced 2025-01-07 14:32:23 +00:00
8ed691b02a
The testing module triggers KMSAN warnings in different cases and checks that the errors are properly reported, using console probes to capture the tool's output. Link: https://lkml.kernel.org/r/20220915150417.722975-25-glider@google.com Signed-off-by: Alexander Potapenko <glider@google.com> Cc: Alexander Viro <viro@zeniv.linux.org.uk> Cc: Alexei Starovoitov <ast@kernel.org> Cc: Andrey Konovalov <andreyknvl@gmail.com> Cc: Andrey Konovalov <andreyknvl@google.com> Cc: Andy Lutomirski <luto@kernel.org> Cc: Arnd Bergmann <arnd@arndb.de> Cc: Borislav Petkov <bp@alien8.de> Cc: Christoph Hellwig <hch@lst.de> Cc: Christoph Lameter <cl@linux.com> Cc: David Rientjes <rientjes@google.com> Cc: Dmitry Vyukov <dvyukov@google.com> Cc: Eric Biggers <ebiggers@google.com> Cc: Eric Biggers <ebiggers@kernel.org> Cc: Eric Dumazet <edumazet@google.com> Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Cc: Herbert Xu <herbert@gondor.apana.org.au> Cc: Ilya Leoshkevich <iii@linux.ibm.com> Cc: Ingo Molnar <mingo@redhat.com> Cc: Jens Axboe <axboe@kernel.dk> Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com> Cc: Kees Cook <keescook@chromium.org> Cc: Marco Elver <elver@google.com> Cc: Mark Rutland <mark.rutland@arm.com> Cc: Matthew Wilcox <willy@infradead.org> Cc: Michael S. Tsirkin <mst@redhat.com> Cc: Pekka Enberg <penberg@kernel.org> Cc: Peter Zijlstra <peterz@infradead.org> Cc: Petr Mladek <pmladek@suse.com> Cc: Stephen Rothwell <sfr@canb.auug.org.au> Cc: Steven Rostedt <rostedt@goodmis.org> Cc: Thomas Gleixner <tglx@linutronix.de> Cc: Vasily Gorbik <gor@linux.ibm.com> Cc: Vegard Nossum <vegard.nossum@oracle.com> Cc: Vlastimil Babka <vbabka@suse.cz> Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
63 lines
2.3 KiB
Plaintext
63 lines
2.3 KiB
Plaintext
# SPDX-License-Identifier: GPL-2.0-only
|
|
config HAVE_ARCH_KMSAN
|
|
bool
|
|
|
|
config HAVE_KMSAN_COMPILER
|
|
# Clang versions <14.0.0 also support -fsanitize=kernel-memory, but not
|
|
# all the features necessary to build the kernel with KMSAN.
|
|
depends on CC_IS_CLANG && CLANG_VERSION >= 140000
|
|
def_bool $(cc-option,-fsanitize=kernel-memory -mllvm -msan-disable-checks=1)
|
|
|
|
config KMSAN
|
|
bool "KMSAN: detector of uninitialized values use"
|
|
depends on HAVE_ARCH_KMSAN && HAVE_KMSAN_COMPILER
|
|
depends on SLUB && DEBUG_KERNEL && !KASAN && !KCSAN
|
|
select STACKDEPOT
|
|
select STACKDEPOT_ALWAYS_INIT
|
|
help
|
|
KernelMemorySanitizer (KMSAN) is a dynamic detector of uses of
|
|
uninitialized values in the kernel. It is based on compiler
|
|
instrumentation provided by Clang and thus requires Clang to build.
|
|
|
|
An important note is that KMSAN is not intended for production use,
|
|
because it drastically increases kernel memory footprint and slows
|
|
the whole system down.
|
|
|
|
See <file:Documentation/dev-tools/kmsan.rst> for more details.
|
|
|
|
if KMSAN
|
|
|
|
config HAVE_KMSAN_PARAM_RETVAL
|
|
# -fsanitize-memory-param-retval is supported only by Clang >= 14.
|
|
depends on HAVE_KMSAN_COMPILER
|
|
def_bool $(cc-option,-fsanitize=kernel-memory -fsanitize-memory-param-retval)
|
|
|
|
config KMSAN_CHECK_PARAM_RETVAL
|
|
bool "Check for uninitialized values passed to and returned from functions"
|
|
default y
|
|
depends on HAVE_KMSAN_PARAM_RETVAL
|
|
help
|
|
If the compiler supports -fsanitize-memory-param-retval, KMSAN will
|
|
eagerly check every function parameter passed by value and every
|
|
function return value.
|
|
|
|
Disabling KMSAN_CHECK_PARAM_RETVAL will result in tracking shadow for
|
|
function parameters and return values across function borders. This
|
|
is a more relaxed mode, but it generates more instrumentation code and
|
|
may potentially report errors in corner cases when non-instrumented
|
|
functions call instrumented ones.
|
|
|
|
config KMSAN_KUNIT_TEST
|
|
tristate "KMSAN integration test suite" if !KUNIT_ALL_TESTS
|
|
default KUNIT_ALL_TESTS
|
|
depends on TRACEPOINTS && KUNIT
|
|
help
|
|
Test suite for KMSAN, testing various error detection scenarios,
|
|
and checking that reports are correctly output to console.
|
|
|
|
Say Y here if you want the test to be built into the kernel and run
|
|
during boot; say M if you want the test to build as a module; say N
|
|
if you are unsure.
|
|
|
|
endif
|