kmem: Add KASAN state transitions
ClosedPublic
Actions

Authored by markj on Mar 27 2021, 11:29 PM.

Details

Reviewers: None
Commits: rG2b914b85ddf4: kmem: Add KASAN state transitions

Summary

Memory allocated with kmem_* is unmapped upon free, so KASAN doesn't
provide a ton of benefit, but since allocations are always a multiple of
the page size we can create a redzone.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markj created this revision.Mar 27 2021, 11:29 PM

Herald added a subscriber: imp. · View Herald TranscriptMar 27 2021, 11:29 PM

markj requested review of this revision.Mar 27 2021, 11:29 PM

Harbormaster completed remote builds in B38129: Diff 86415.Mar 27 2021, 11:29 PM

markj added a parent revision: D29457: kstack: Add KASAN state transitions.Mar 27 2021, 11:29 PM

markj added a child revision: D29459: vfs: Add KASAN state transitions for vnodes.

emaste added a subscriber: emaste.Mar 28 2021, 6:00 PM

andrew added a subscriber: andrew.Mar 29 2021, 12:20 PM

andrew added inline comments.

sys/vm/vm_kern.c
422–423	Does this mean we don't get buffer overflow checks when `size` is a multiple of `PAGE_SIZE`?

markj added inline comments.Mar 29 2021, 3:09 PM

sys/vm/vm_kern.c
422–423	That's correct. I thought about padding it by one page but was a bit wary about doing so for contig allocs, since that could conceivably result in an impossible allocation request. For instance, suppose that `high - low == size`, we wouldn't be able to add padding. And we have to either pad all allocations or none. One thing we could do is add a guard page instead, so that overflows result in a page fault. That's not KASAN-specific, of course, but it'd make sense to enable that when KASAN is enabled. Any thoughts?