lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20190304174802.GA6629@beast>
Date:   Mon, 4 Mar 2019 09:48:02 -0800
From:   Kees Cook <keescook@...omium.org>
To:     Linus Torvalds <torvalds@...ux-foundation.org>
Cc:     linux-kernel@...r.kernel.org,
        Ard Biesheuvel <ard.biesheuvel@...aro.org>
Subject: [GIT PULL] gcc-plugin updates for v5.1-rc1

Hi Linus,

Please pull these gcc-plugin changes for v5.1-rc1. This adds additional
type coverage to the existing structleak plugin and adds a large set of
selftests to help evaluate stack variable zero-initialization coverage
(which can be used to test whatever instrumentation might be performing
zero-initialization: either with the structleak plugin or with Clang's
coming "-ftrivial-auto-var-init=zero" option).

Note that there is a minor conflict seen in linux-next with KASAN changes
in -mm, which removes the !KASAN_EXTRA depends from structleak. sfr's
resolution is correct:
https://lkml.kernel.org/r/20190213170345.656c3030@canb.auug.org.au

Thanks!

-Kees

The following changes since commit 49a57857aeea06ca831043acbb0fa5e0f50602fd:

  Linux 5.0-rc3 (2019-01-21 13:14:44 +1300)

are available in the Git repository at:

  https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/gcc-plugins-v5.1-rc1

for you to fetch changes up to 50ceaa95ea09703722b30b4afa617c972071cd7f:

  lib: Introduce test_stackinit module (2019-03-04 09:29:52 -0800)

----------------------------------------------------------------
increased structleak coverage

- And scalar and array initialization coverage
- Refactor Kconfig to make options more clear
- Add self-test module for testing automatic initialization

----------------------------------------------------------------
Kees Cook (2):
      gcc-plugins: structleak: Generalize to all variable types
      lib: Introduce test_stackinit module

 lib/Kconfig.debug                       |  10 +
 lib/Makefile                            |   1 +
 lib/test_stackinit.c                    | 378 ++++++++++++++++++++++++++++++++
 scripts/Makefile.gcc-plugins            |   2 +
 scripts/gcc-plugins/Kconfig             |  58 ++++-
 scripts/gcc-plugins/structleak_plugin.c |  36 ++-
 6 files changed, 463 insertions(+), 22 deletions(-)
 create mode 100644 lib/test_stackinit.c

-- 
Kees Cook

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ