linux/scripts/leaking_addresses.pl, branch v5.17-rc6Linux Kernel (branches are rebased on master from time to time)https://sre.ring0.de/linux/atom?h=v5.17-rc62021-10-15T09:25:13Zleaking_addresses: Always print a trailing newline2021-10-15T09:25:13ZKees Cookkeescook@chromium.org2021-09-29T22:02:18Zurn:sha1:cf2a85efdade117e2169d6e26641016cbbf03ef0
For files that lack trailing newlines and match a leaking address (e.g.
wchan[1]), the leaking_addresses.pl report would run together with the
next line, making things look corrupted.
Unconditionally remove the newline on input, and write it back out on
output.
[1] https://lore.kernel.org/all/20210103142726.GC30643@xsang-OptiPlex-9020/
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Link: https://lkml.kernel.org/r/20211008111626.151570317@infradead.org
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 1662019-05-30T18:26:39ZThomas Gleixnertglx@linutronix.de2019-05-27T06:55:14Zurn:sha1:4f19048fd0a0036e02443237952db5bfa5b5cdf0
Based on 1 normalized pattern(s):
licensed under the terms of the gnu gpl license version 2
extracted by the scancode license scanner the SPDX license identifier
GPL-2.0-only
has been chosen to replace the boilerplate/reference in 62 file(s).
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Reviewed-by: Allison Randal <allison@lohutok.net>
Reviewed-by: Kate Stewart <kstewart@linuxfoundation.org>
Reviewed-by: Richard Fontana <rfontana@redhat.com>
Cc: linux-spdx@vger.kernel.org
Link: https://lkml.kernel.org/r/20190527070033.929121379@linutronix.de
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
leaking_addresses: Completely remove --version flag2019-03-06T21:53:18ZTobin C. Hardingtobin@kernel.org2018-10-23T00:37:02Zurn:sha1:9ac060a708e054233265f8febfcef009ac3da826
Recently attempt to remove the '--version' flag was made, badly. We
failed to remove mention of it from the help output. And we (me) failed
to actually remove the flag from the options list.
_Completely_ remove --version flag.
leaking_addresses: Fix calls to dprint2019-03-06T21:53:18ZTobin C. Hardingtobin@kernel.org2018-10-22T23:51:08Zurn:sha1:0f2994333315f004265571eab787474b73d72ed6
Currently calls to function dprint() are non uniform and at times
incorrect.
Use uniform _correct_ call to function dprint().
Signed-off-by: Tobin C. Harding <tobin@kernel.org>
leaking_addresses: check if file name contains address2018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-03-01T21:49:55Zurn:sha1:c73dff595f259736a90f52b38cf5798abeae4a3c
Sometimes files may be created by using output from printk. As the scan
traverses the directory tree we should parse each path name and check if
it is leaking an address.
Add check for leaking address on each path name.
Suggested-by: Tycho Andersen <tycho@tycho.ws>
Acked-by: Tycho Andersen <tycho@tycho.ws>
Signed-off-by: Tobin C. Harding <me@tobin.cc>
leaking_addresses: explicitly name variable used in regex2018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-03-01T21:42:59Zurn:sha1:2306a67745ebdf3f98bc954248b74a3f1d57cdc2
Currently sub routine may_leak_address() is checking regex against Perl
special variable $_ which is _fortunately_ being set correctly in a loop
before this sub routine is called. We already have declared a variable
to hold this value '$line' we should use it.
Use $line in regex match instead of implicit $_
Signed-off-by: Tobin C. Harding <me@tobin.cc>
leaking_addresses: remove version number2018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-02-27T04:15:34Zurn:sha1:34827374492580b27c3cba29d493dab28c8c25d3
We have git now, we don't need a version number. This was originally
added because leaking_addresses.pl shamelessly (and mindlessly) copied
checkpatch.pl
Remove version number from script.
Signed-off-by: Tobin C. Harding <me@tobin.cc>
leaking_addresses: skip '/proc/1/syscall'2018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-02-27T03:14:24Zurn:sha1:2ad742939283ed0613be654ad0aaf29b797f9905
The pointers listed in /proc/1/syscall are user pointers, and negative
syscall args will show up like kernel addresses.
For example
/proc/31808/syscall: 0 0x3 0x55b107a38180 0x2000 0xffffffffffffffb0 \
0x55b107a302d0 0x55b107a38180 0x7fffa313b8e8 0x7ff098560d11
Skip parsing /proc/1/syscall
Suggested-by: Tycho Andersen <tycho@tycho.ws>
Signed-off-by: Tobin C. Harding <me@tobin.cc>
leaking_addresses: skip all /proc/PID except /proc/12018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-02-27T04:02:57Zurn:sha1:472c9e1085f20de71fc482500c8f1e4e45dff651
When the system is idle it is likely that most files under /proc/PID
will be identical for various processes. Scanning _all_ the PIDs under
/proc is unnecessary and implies that we are thoroughly scanning /proc.
This is _not_ the case because there may be ways userspace can trigger
creation of /proc files that leak addresses but were not present during
a scan. For these two reasons we should exclude all PID directories
under /proc except '1/'
Exclude all /proc/PID except /proc/1.
Signed-off-by: Tobin C. Harding <me@tobin.cc>
leaking_addresses: cache architecture name2018-04-06T22:50:34ZTobin C. Hardingme@tobin.cc2018-02-19T02:23:44Zurn:sha1:5e4bac34edc7829b4a0749e3870d4a171c1f036f
Currently we are repeatedly calling `uname -m`. This is causing the
script to take a long time to run (more than 10 seconds to parse
/proc/kallsyms). We can use Perl state variables to cache the result of
the first call to `uname -m`. With this change in place the script
scans the whole kernel in under a minute.
Cache machine architecture in state variable.
Signed-off-by: Tobin C. Harding <me@tobin.cc>