kernel/drivers/misc/lkdtm/fortify.c, branch linux-6.2.yHosts the 0x221E linux distro kernel.https://universe.0xinfinity.dev/distro/kernel/atom?h=linux-6.2.y2022-09-07T23:37:27Zlkdtm: Update tests for memcpy() run-time warnings2022-09-07T23:37:27ZKees Cookkeescook@chromium.org2022-09-01T06:05:01Zurn:sha1:325bf6d84bad3fc641b94fad6e69c70e960fdf2e
Clarify the LKDTM FORTIFY tests, and add tests for the mem*() family of
functions, now that run-time checking is distinct.
Cc: Arnd Bergmann <arnd@arndb.de>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Cc: Shuah Khan <shuah@kernel.org>
Cc: linux-kselftest@vger.kernel.org
Signed-off-by: Kees Cook <keescook@chromium.org>
lkdtm: Move crashtype definitions into each category2022-04-12T23:16:48ZKees Cookkeescook@chromium.org2022-03-04T00:31:16Zurn:sha1:73f62e60d80c2d74491933ca49006b9e70563738
It's long been annoying that to add a new LKDTM test one had to update
lkdtm.h and core.c to get it "registered". Switch to a per-category
list and update the crashtype walking code in core.c to handle it.
This also means that all the lkdtm_* tests themselves can be static now.
Cc: Arnd Bergmann <arnd@arndb.de>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Kees Cook <keescook@chromium.org>
lkdtm/fortify: Swap memcpy() for strncpy()2022-02-25T11:11:01ZKees Cookkeescook@chromium.org2022-02-16T20:25:48Zurn:sha1:f4e335f34519ba8e1271f779a7bc7db168e4488d
The memcpy() runtime defenses are still not landed, so test with
strncpy() for now.
Cc: Arnd Bergmann <arnd@arndb.de>
Cc: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Reported-by: Muhammad Usama Anjum <usama.anjum@collabora.com>
Reviewed-by: Muhammad Usama Anjum <usama.anjum@collabora.com>
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20220216202548.2093883-1-keescook@chromium.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
lkdtm/fortify: Consolidate FORTIFY_SOURCE tests2021-08-18T20:28:51ZKees Cookkeescook@chromium.org2021-08-18T17:48:53Zurn:sha1:fe8e353bfda6d6c8cefd0a933640025ad3d302e5
The FORTIFY_SOURCE tests were split between bugs.c and fortify.c. Move
tests into fortify.c, standardize their naming, add CONFIG hints, and
add them to the lkdtm selftests.
Cc: Arnd Bergmann <arnd@arndb.de>
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20210818174855.2307828-3-keescook@chromium.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
lkdtm: Add CONFIG hints in errors where possible2021-06-24T13:32:08ZKees Cookkeescook@chromium.org2021-06-23T20:39:34Zurn:sha1:5b777131bd8005acaf7e9d6e7690214155f42890
For various failure conditions, try to include some details about where
to look for reasons about the failure.
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20210623203936.3151093-8-keescook@chromium.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
drivers/misc/lkdtm: add new file in LKDTM to test fortified strscpy2020-12-16T06:46:16ZFrancis Laniellaniel_francis@privacyrequired.com2020-12-16T04:43:54Zurn:sha1:febebaf366868a4204deb3955ef5dda17f676fc1
This new test ensures that fortified strscpy has the same behavior than
vanilla strscpy (e.g. returning -E2BIG when src content is truncated).
Finally, it generates a crash at runtime because there is a write overflow
in destination string.
Link: https://lkml.kernel.org/r/20201122162451.27551-5-laniel_francis@privacyrequired.com
Signed-off-by: Francis Laniel <laniel_francis@privacyrequired.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Cc: Daniel Axtens <dja@axtens.net>
Cc: Daniel Micay <danielmicay@gmail.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>