| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <202507281251.8989493D@keescook>
Date: Mon, 28 Jul 2025 17:01:33 -0700
From: Kees Cook <kees@...nel.org>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: linux-kernel@...r.kernel.org,
Andy Shevchenko <andriy.shevchenko@...ux.intel.com>,
Dan Williams <dan.j.williams@...el.com>,
David Gow <davidgow@...gle.com>,
"Gustavo A. R. Silva" <gustavoars@...nel.org>,
Heiko Carstens <hca@...ux.ibm.com>,
Huacai Chen <chenhuacai@...ngson.cn>,
Ingo Molnar <mingo@...nel.org>,
Jannik Glückert <jannik.glueckert@...il.com>,
Kees Cook <kees@...nel.org>, kernel test robot <lkp@...el.com>,
Lee Jones <lee@...nel.org>,
Linux Kernel Functional Testing <lkft@...aro.org>,
Marco Elver <elver@...gle.com>,
Nathan Chancellor <nathan@...nel.org>,
Nicolas Schier <n.schier@....de>, Nishanth Menon <nm@...com>,
Ritesh Harjani <ritesh.list@...il.com>,
Thorsten Blum <thorsten.blum@...ux.dev>,
Youling Tang <tangyouling@...inos.cn>
Subject: [GIT PULL] hardening updates for v6.17-rc1
Hi Linus,
Please pull these hardening updates for v6.17-rc1. Some notable things
that stand out diffstat: there are many scattered changes across arch code
to clean up __init vs KCOV instrumentation. Most are landing here via
the hardening tree but 2 landed separately in their respective trees:
loongarch in v6.16 already, and platform-drivers-x86 that is queued
for merging:
https://lore.kernel.org/all/pdx86-pr-20250728141420-2408727195@linux.intel.com/
Also the stackleak feature has gained native Clang support, and got
renamed as part of the refactoring work, which ends up touching all the
arch Kconfig and Makefile files.
Thanks!
-Kees
The following changes since commit e04c78d86a9699d136910cfc0bdcf01087e3267e:
Linux 6.16-rc2 (2025-06-15 13:49:41 -0700)
are available in the Git repository at:
https://git.kernel.org/pub/scm/linux/kernel/git/kees/linux.git tags/hardening-v6.17-rc1
for you to fetch changes up to 32e42ab9fc88a884435c27527a433f61c4d2b61b:
sched/task_stack: Add missing const qualifier to end_of_stack() (2025-07-26 14:28:35 -0700)
----------------------------------------------------------------
hardening updates for v6.17-rc1
- Introduce and start using TRAILING_OVERLAP() helper for fixing
embedded flex array instances (Gustavo A. R. Silva)
- mux: Convert mux_control_ops to a flex array member in mux_chip
(Thorsten Blum)
- string: Group str_has_prefix() and strstarts() (Andy Shevchenko)
- Remove KCOV instrumentation from __init and __head (Ritesh Harjani,
Kees Cook)
- Refactor and rename stackleak feature to support Clang
- Add KUnit test for seq_buf API
- Fix KUnit fortify test under LTO
----------------------------------------------------------------
Andy Shevchenko (1):
string: Group str_has_prefix() and strstarts()
Gustavo A. R. Silva (2):
stddef: Introduce TRAILING_OVERLAP() helper macro
acpi: nfit: intel: avoid multiple -Wflex-array-member-not-at-end warnings
Kees Cook (17):
kunit/fortify: Add back "volatile" for sizeof() constants
seq_buf: Introduce KUnit tests
stackleak: Rename STACKLEAK to KSTACK_ERASE
stackleak: Rename stackleak_track_stack to __sanitizer_cov_stack_depth
stackleak: Split KSTACK_ERASE_CFLAGS from GCC_PLUGINS_CFLAGS
configs/hardening: Enable CONFIG_KSTACK_ERASE
configs/hardening: Enable CONFIG_INIT_ON_FREE_DEFAULT_ON
mips: Handle KCOV __init vs inline mismatch
arm: Handle KCOV __init vs inline mismatches
s390: Handle KCOV __init vs inline mismatches
arm64: Handle KCOV __init vs inline mismatches
x86: Handle KCOV __init vs inline mismatches
kstack_erase: Disable kstack_erase for all of arm compressed boot code
init.h: Disable sanitizer coverage for __init and __head
kstack_erase: Add -mgeneral-regs-only to silence Clang warnings
kstack_erase: Support Clang stack depth tracking
sched/task_stack: Add missing const qualifier to end_of_stack()
Ritesh Harjani (IBM) (1):
powerpc/mm/book3s64: Move kfence and debug_pagealloc related calls to __init section
Thorsten Blum (1):
mux: Convert mux_control_ops to a flex array member in mux_chip
arch/Kconfig | 4 +-
arch/arm/Kconfig | 2 +-
arch/arm64/Kconfig | 2 +-
arch/loongarch/Kconfig | 2 +-
arch/riscv/Kconfig | 2 +-
arch/s390/Kconfig | 2 +-
arch/x86/Kconfig | 2 +-
lib/Kconfig.debug | 9 +
security/Kconfig.hardening | 45 +++--
Makefile | 1 +
arch/arm/boot/compressed/Makefile | 2 +-
arch/arm/vdso/Makefile | 2 +-
arch/arm64/kernel/pi/Makefile | 2 +-
arch/arm64/kernel/vdso/Makefile | 3 +-
arch/arm64/kvm/hyp/nvhe/Makefile | 2 +-
arch/riscv/kernel/pi/Makefile | 2 +-
arch/riscv/purgatory/Makefile | 2 +-
arch/sparc/vdso/Makefile | 3 +-
arch/x86/entry/vdso/Makefile | 3 +-
arch/x86/purgatory/Makefile | 2 +-
drivers/firmware/efi/libstub/Makefile | 8 +-
drivers/misc/lkdtm/Makefile | 2 +-
kernel/Makefile | 11 +-
lib/Makefile | 2 +-
lib/tests/Makefile | 1 +
scripts/Makefile.gcc-plugins | 16 +-
scripts/Makefile.kstack_erase | 21 +++
scripts/gcc-plugins/stackleak_plugin.c | 52 +++---
Documentation/admin-guide/sysctl/kernel.rst | 4 +-
Documentation/arch/x86/x86_64/mm.rst | 2 +-
Documentation/security/self-protection.rst | 2 +-
.../zh_CN/security/self-protection.rst | 2 +-
arch/arm64/include/asm/acpi.h | 2 +-
arch/mips/include/asm/time.h | 2 +-
arch/s390/hypfs/hypfs.h | 2 +-
arch/s390/hypfs/hypfs_diag.h | 2 +-
arch/x86/entry/calling.h | 4 +-
arch/x86/include/asm/acpi.h | 4 +-
arch/x86/include/asm/init.h | 2 +-
arch/x86/include/asm/realmode.h | 2 +-
include/linux/acpi.h | 4 +-
include/linux/bootconfig.h | 2 +-
include/linux/efi.h | 2 +-
include/linux/init.h | 4 +-
include/linux/{stackleak.h => kstack_erase.h} | 20 +-
include/linux/memblock.h | 2 +-
include/linux/mfd/dbx500-prcmu.h | 2 +-
include/linux/mux/driver.h | 4 +-
include/linux/sched.h | 4 +-
include/linux/sched/task_stack.h | 2 +-
include/linux/smp.h | 2 +-
include/linux/stddef.h | 20 ++
include/linux/string.h | 20 +-
arch/arm/kernel/entry-common.S | 2 +-
arch/arm64/kernel/entry.S | 2 +-
arch/riscv/kernel/entry.S | 2 +-
arch/s390/kernel/entry.S | 2 +-
arch/arm/mm/cache-feroceon-l2.c | 2 +-
arch/arm/mm/cache-tauros2.c | 2 +-
arch/powerpc/mm/book3s64/hash_utils.c | 6 +-
arch/powerpc/mm/book3s64/radix_pgtable.c | 4 +-
arch/s390/mm/init.c | 2 +-
arch/x86/kernel/kvm.c | 2 +-
arch/x86/mm/init_64.c | 2 +-
drivers/acpi/nfit/intel.c | 119 ++++++------
drivers/clocksource/timer-orion.c | 2 +-
drivers/misc/lkdtm/{stackleak.c => kstack_erase.c} | 26 +--
drivers/mux/core.c | 7 +-
drivers/soc/ti/pm33xx.c | 2 +-
fs/proc/base.c | 6 +-
kernel/fork.c | 2 +-
kernel/kexec_handover.c | 4 +-
kernel/{stackleak.c => kstack_erase.c} | 22 +--
lib/tests/fortify_kunit.c | 4 +-
lib/tests/seq_buf_kunit.c | 208 +++++++++++++++++++++
tools/objtool/check.c | 4 +-
tools/testing/selftests/lkdtm/config | 2 +-
MAINTAINERS | 6 +-
kernel/configs/hardening.config | 6 +
79 files changed, 514 insertions(+), 259 deletions(-)
create mode 100644 scripts/Makefile.kstack_erase
rename include/linux/{stackleak.h => kstack_erase.h} (81%)
rename drivers/misc/lkdtm/{stackleak.c => kstack_erase.c} (89%)
rename kernel/{stackleak.c => kstack_erase.c} (87%)
create mode 100644 lib/tests/seq_buf_kunit.c
--
Kees Cook
Powered by blists - more mailing lists