• Kees Cook's avatar
    lib: Introduce test_stackinit module · 50ceaa95
    Kees Cook authored
    Adds test for stack initialization coverage. We have several build options
    that control the level of stack variable initialization. This test lets us
    visualize which options cover which cases, and provide tests for some of
    the pathological padding conditions the compiler will sometimes fail to
    initialize.
    
    All options pass the explicit initialization cases and the partial
    initializers (even with padding):
    
    test_stackinit: u8_zero ok
    test_stackinit: u16_zero ok
    test_stackinit: u32_zero ok
    test_stackinit: u64_zero ok
    test_stackinit: char_array_zero ok
    test_stackinit: small_hole_zero ok
    test_stackinit: big_hole_zero ok
    test_stackinit: trailing_hole_zero ok
    test_stackinit: packed_zero ok
    test_stackinit: small_hole_dynamic_partial ok
    test_stackinit: big_hole_dynamic_partial ok
    test_stackinit: trailing_hole_dynamic_partial ok
    test_stackinit: packed_dynamic_partial ok
    test_stackinit: small_hole_static_partial ok
    test_stackinit: big_hole_static_partial ok
    test_stackinit: trailing_hole_static_partial ok
    test_stackinit: packed_static_partial ok
    test_stackinit: packed_static_all ok
    test_stackinit: packed_dynamic_all ok
    test_stackinit: packed_runtime_all ok
    
    The results of the other tests (which contain no explicit initialization),
    change based on the build's configured compiler instrumentation.
    
    No options:
    
    test_stackinit: small_hole_static_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_static_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_static_all FAIL (uninit bytes: 7)
    test_stackinit: small_hole_dynamic_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_dynamic_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_dynamic_all FAIL (uninit bytes: 7)
    test_stackinit: small_hole_runtime_partial FAIL (uninit bytes: 23)
    test_stackinit: big_hole_runtime_partial FAIL (uninit bytes: 127)
    test_stackinit: trailing_hole_runtime_partial FAIL (uninit bytes: 24)
    test_stackinit: packed_runtime_partial FAIL (uninit bytes: 24)
    test_stackinit: small_hole_runtime_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_runtime_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_runtime_all FAIL (uninit bytes: 7)
    test_stackinit: u8_none FAIL (uninit bytes: 1)
    test_stackinit: u16_none FAIL (uninit bytes: 2)
    test_stackinit: u32_none FAIL (uninit bytes: 4)
    test_stackinit: u64_none FAIL (uninit bytes: 8)
    test_stackinit: char_array_none FAIL (uninit bytes: 16)
    test_stackinit: switch_1_none FAIL (uninit bytes: 8)
    test_stackinit: switch_2_none FAIL (uninit bytes: 8)
    test_stackinit: small_hole_none FAIL (uninit bytes: 24)
    test_stackinit: big_hole_none FAIL (uninit bytes: 128)
    test_stackinit: trailing_hole_none FAIL (uninit bytes: 32)
    test_stackinit: packed_none FAIL (uninit bytes: 32)
    test_stackinit: user FAIL (uninit bytes: 32)
    test_stackinit: failures: 25
    
    CONFIG_GCC_PLUGIN_STRUCTLEAK_USER=y
    This only tries to initialize structs with __user markings, so
    only the difference from above is now the "user" test passes:
    
    test_stackinit: small_hole_static_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_static_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_static_all FAIL (uninit bytes: 7)
    test_stackinit: small_hole_dynamic_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_dynamic_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_dynamic_all FAIL (uninit bytes: 7)
    test_stackinit: small_hole_runtime_partial FAIL (uninit bytes: 23)
    test_stackinit: big_hole_runtime_partial FAIL (uninit bytes: 127)
    test_stackinit: trailing_hole_runtime_partial FAIL (uninit bytes: 24)
    test_stackinit: packed_runtime_partial FAIL (uninit bytes: 24)
    test_stackinit: small_hole_runtime_all FAIL (uninit bytes: 3)
    test_stackinit: big_hole_runtime_all FAIL (uninit bytes: 61)
    test_stackinit: trailing_hole_runtime_all FAIL (uninit bytes: 7)
    test_stackinit: u8_none FAIL (uninit bytes: 1)
    test_stackinit: u16_none FAIL (uninit bytes: 2)
    test_stackinit: u32_none FAIL (uninit bytes: 4)
    test_stackinit: u64_none FAIL (uninit bytes: 8)
    test_stackinit: char_array_none FAIL (uninit bytes: 16)
    test_stackinit: switch_1_none FAIL (uninit bytes: 8)
    test_stackinit: switch_2_none FAIL (uninit bytes: 8)
    test_stackinit: small_hole_none FAIL (uninit bytes: 24)
    test_stackinit: big_hole_none FAIL (uninit bytes: 128)
    test_stackinit: trailing_hole_none FAIL (uninit bytes: 32)
    test_stackinit: packed_none FAIL (uninit bytes: 32)
    test_stackinit: user ok
    test_stackinit: failures: 24
    
    CONFIG_GCC_PLUGIN_STRUCTLEAK_BYREF=y
    This initializes all structures passed by reference (scalars and strings
    remain uninitialized):
    
    test_stackinit: small_hole_static_all ok
    test_stackinit: big_hole_static_all ok
    test_stackinit: trailing_hole_static_all ok
    test_stackinit: small_hole_dynamic_all ok
    test_stackinit: big_hole_dynamic_all ok
    test_stackinit: trailing_hole_dynamic_all ok
    test_stackinit: small_hole_runtime_partial ok
    test_stackinit: big_hole_runtime_partial ok
    test_stackinit: trailing_hole_runtime_partial ok
    test_stackinit: packed_runtime_partial ok
    test_stackinit: small_hole_runtime_all ok
    test_stackinit: big_hole_runtime_all ok
    test_stackinit: trailing_hole_runtime_all ok
    test_stackinit: u8_none FAIL (uninit bytes: 1)
    test_stackinit: u16_none FAIL (uninit bytes: 2)
    test_stackinit: u32_none FAIL (uninit bytes: 4)
    test_stackinit: u64_none FAIL (uninit bytes: 8)
    test_stackinit: char_array_none FAIL (uninit bytes: 16)
    test_stackinit: switch_1_none FAIL (uninit bytes: 8)
    test_stackinit: switch_2_none FAIL (uninit bytes: 8)
    test_stackinit: small_hole_none ok
    test_stackinit: big_hole_none ok
    test_stackinit: trailing_hole_none ok
    test_stackinit: packed_none ok
    test_stackinit: user ok
    test_stackinit: failures: 7
    
    CONFIG_GCC_PLUGIN_STRUCTLEAK_BYREF_ALL=y
    This initializes all variables, so it matches above with the scalars
    and arrays included:
    
    test_stackinit: small_hole_static_all ok
    test_stackinit: big_hole_static_all ok
    test_stackinit: trailing_hole_static_all ok
    test_stackinit: small_hole_dynamic_all ok
    test_stackinit: big_hole_dynamic_all ok
    test_stackinit: trailing_hole_dynamic_all ok
    test_stackinit: small_hole_runtime_partial ok
    test_stackinit: big_hole_runtime_partial ok
    test_stackinit: trailing_hole_runtime_partial ok
    test_stackinit: packed_runtime_partial ok
    test_stackinit: small_hole_runtime_all ok
    test_stackinit: big_hole_runtime_all ok
    test_stackinit: trailing_hole_runtime_all ok
    test_stackinit: u8_none ok
    test_stackinit: u16_none ok
    test_stackinit: u32_none ok
    test_stackinit: u64_none ok
    test_stackinit: char_array_none ok
    test_stackinit: switch_1_none ok
    test_stackinit: switch_2_none ok
    test_stackinit: small_hole_none ok
    test_stackinit: big_hole_none ok
    test_stackinit: trailing_hole_none ok
    test_stackinit: packed_none ok
    test_stackinit: user ok
    test_stackinit: all tests passed!
    Signed-off-by: default avatarKees Cook <keescook@chromium.org>
    Reviewed-by: default avatarArd Biesheuvel <ard.biesheuvel@linaro.org>
    50ceaa95
Kconfig.debug 69.3 KB