Page MenuHomeFreeBSD

sysctl: Add a regression test which runs sysctl -a
ClosedPublic

Authored by markj on Jan 24 2025, 4:52 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Oct 19, 1:04 AM
Unknown Object (File)
Thu, Oct 16, 5:22 AM
Unknown Object (File)
Wed, Oct 15, 12:04 PM
Unknown Object (File)
Wed, Oct 15, 12:04 PM
Unknown Object (File)
Tue, Oct 14, 3:57 PM
Unknown Object (File)
Sep 18 2025, 6:05 PM
Unknown Object (File)
Sep 10 2025, 12:42 AM
Unknown Object (File)
Sep 3 2025, 9:26 AM
Subscribers

Details

Summary

Run sysctl -a during the test suite so that KASAN/KMSAN have a chance to
catch something.

Inspired by https://jprx.io/cve-2024-54507/

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj requested review of this revision.Jan 24 2025, 4:52 PM

Go a bit further: add a test which does the same thing in a jail.

emaste added inline comments.
sbin/sysctl/tests/sysctl_test.sh
36

I'm not sure if "Verify" is correct here as we don't actually care about the results. Something like "Exercise kernel code via -a" or so? And a comment referencing KASAN/KMSAN.

This revision is now accepted and ready to land.Jan 24 2025, 4:56 PM

Improve test descriptions.

This revision now requires review to proceed.Jan 24 2025, 4:59 PM
This revision is now accepted and ready to land.Jan 24 2025, 5:00 PM

I wonder if you want to run with -x -a as well or instead?

Add -x to the sysctl flags

This revision now requires review to proceed.Jan 27 2025, 2:53 PM
This revision is now accepted and ready to land.Jan 27 2025, 3:12 PM
  • Use -o instead of -x: with the latter sysctl(8) will print a huge amount of output and is a couple orders of magnitude slower. We get the same kernel coverage with -o, so just use that.
  • Avoid using atf_check: it causes kyua to buffer all of the output in memory and then store it in the test results DB, which is somewhat unwieldy. Check the exit status manually.
This revision now requires review to proceed.Jan 27 2025, 5:51 PM

does sysctl -o still pass all the data to userspace but then only print the first bit?

This revision is now accepted and ready to land.Jan 27 2025, 6:13 PM

does sysctl -o still pass all the data to userspace but then only print the first bit?

Yeah, the only difference is in how sysctl(8) formats and outputs the data.