diff mbox series

[v4,42/45] bpf: kmsan: initialize BPF registers with zeroes

Message ID	20220701142310.2188015-43-glider@google.com (mailing list archive)
State	New
Headers	show Return-Path: <owner-linux-mm@kvack.org> Date: Fri, 1 Jul 2022 16:23:07 +0200 In-Reply-To: <20220701142310.2188015-1-glider@google.com> Message-Id: <20220701142310.2188015-43-glider@google.com> Mime-Version: 1.0 References: <20220701142310.2188015-1-glider@google.com> Subject: [PATCH v4 42/45] bpf: kmsan: initialize BPF registers with zeroes From: Alexander Potapenko <glider@google.com> To: glider@google.com Cc: Alexander Viro <viro@zeniv.linux.org.uk>, Alexei Starovoitov <ast@kernel.org>, Andrew Morton <akpm@linux-foundation.org>, Andrey Konovalov <andreyknvl@google.com>, Andy Lutomirski <luto@kernel.org>, Arnd Bergmann <arnd@arndb.de>, Borislav Petkov <bp@alien8.de>, Christoph Hellwig <hch@lst.de>, Christoph Lameter <cl@linux.com>, David Rientjes <rientjes@google.com>, Dmitry Vyukov <dvyukov@google.com>, Eric Dumazet <edumazet@google.com>, Greg Kroah-Hartman <gregkh@linuxfoundation.org>, Herbert Xu <herbert@gondor.apana.org.au>, Ilya Leoshkevich <iii@linux.ibm.com>, Ingo Molnar <mingo@redhat.com>, Jens Axboe <axboe@kernel.dk>, Joonsoo Kim <iamjoonsoo.kim@lge.com>, Kees Cook <keescook@chromium.org>, Marco Elver <elver@google.com>, Mark Rutland <mark.rutland@arm.com>, Matthew Wilcox <willy@infradead.org>, "Michael S. Tsirkin" <mst@redhat.com>, Pekka Enberg <penberg@kernel.org>, Peter Zijlstra <peterz@infradead.org>, Petr Mladek <pmladek@suse.com>, Steven Rostedt <rostedt@goodmis.org>, Thomas Gleixner <tglx@linutronix.de>, Vasily Gorbik <gor@linux.ibm.com>, Vegard Nossum <vegard.nossum@oracle.com>, Vlastimil Babka <vbabka@suse.cz>, kasan-dev@googlegroups.com, linux-mm@kvack.org, linux-arch@vger.kernel.org, linux-kernel@vger.kernel.org Content-Type: text/plain; charset="UTF-8" Sender: owner-linux-mm@kvack.org Precedence: bulk
Series	Add KernelMemorySanitizer infrastructure \| expand [v4,00/45] Add KernelMemorySanitizer infrastructure [v4,01/45] x86: add missing include to sparsemem.h [v4,02/45] stackdepot: reserve 5 extra bits in depot_stack_handle_t [v4,03/45] instrumented.h: allow instrumenting both sides of copy_from_user() [v4,04/45] x86: asm: instrument usercopy in get_user() and __put_user_size() [v4,05/45] asm-generic: instrument usercopy in cacheflush.h [v4,06/45] kmsan: add ReST documentation [v4,07/45] kmsan: introduce __no_sanitize_memory and __no_kmsan_checks [v4,08/45] kmsan: mark noinstr as __no_sanitize_memory [v4,09/45] x86: kmsan: pgtable: reduce vmalloc space [v4,10/45] libnvdimm/pfn_dev: increase MAX_STRUCT_PAGE_SIZE [v4,11/45] kmsan: add KMSAN runtime core [v4,12/45] kmsan: disable instrumentation of unsupported common kernel code [v4,13/45] MAINTAINERS: add entry for KMSAN [v4,14/45] mm: kmsan: maintain KMSAN metadata for page operations [v4,15/45] mm: kmsan: call KMSAN hooks from SLUB code [v4,16/45] kmsan: handle task creation and exiting [v4,17/45] init: kmsan: call KMSAN initialization routines [v4,18/45] instrumented.h: add KMSAN support [v4,19/45] kmsan: unpoison @tlb in arch_tlb_gather_mmu() [v4,20/45] kmsan: add iomap support [v4,21/45] Input: libps2: mark data received in __ps2_command() as initialized [v4,22/45] dma: kmsan: unpoison DMA mappings [v4,23/45] virtio: kmsan: check/unpoison scatterlist in vring_map_one_sg() [v4,24/45] kmsan: handle memory sent to/from USB [v4,25/45] kmsan: add tests for KMSAN [v4,26/45] kmsan: disable strscpy() optimization under KMSAN [v4,27/45] crypto: kmsan: disable accelerated configs under KMSAN [v4,28/45] kmsan: disable physical page merging in biovec [v4,29/45] block: kmsan: skip bio block merging logic for KMSAN [v4,30/45] kcov: kmsan: unpoison area->list in kcov_remote_area_put() [v4,31/45] security: kmsan: fix interoperability with auto-initialization [v4,32/45] objtool: kmsan: list KMSAN API functions as uaccess-safe [v4,33/45] x86: kmsan: disable instrumentation of unsupported code [v4,34/45] x86: kmsan: skip shadow checks in __switch_to() [v4,35/45] x86: kmsan: handle open-coded assembly in lib/iomem.c [v4,36/45] x86: kmsan: use __msan_ string functions where possible [v4,37/45] x86: kmsan: sync metadata pages on page fault [v4,38/45] x86: kasan: kmsan: support CONFIG_GENERIC_CSUM on x86, enable it for KASAN/KMSAN [v4,39/45] x86: fs: kmsan: disable CONFIG_DCACHE_WORD_ACCESS [v4,40/45] x86: kmsan: don't instrument stack walking functions [v4,41/45] entry: kmsan: introduce kmsan_unpoison_entry_regs() [v4,42/45] bpf: kmsan: initialize BPF registers with zeroes [v4,43/45] namei: initialize parameters passed to step_into() [v4,44/45] mm: fs: initialize fsdata passed to write_begin/write_end interface [v4,45/45] x86: kmsan: enable KMSAN builds for x86

Commit Message

Alexander Potapenko July 1, 2022, 2:23 p.m. UTC

When executing BPF programs, certain registers may get passed
uninitialized to helper functions. E.g. when performing a JMP_CALL,
registers BPF_R1-BPF_R5 are always passed to the helper, no matter how
many of them are actually used.

Passing uninitialized values as function parameters is technically
undefined behavior, so we work around it by always initializing the
registers.

Signed-off-by: Alexander Potapenko <glider@google.com>
---
Link: https://linux-review.googlesource.com/id/I40f39d26232b14816c14ba64a0ea4a8f336f2675
---
 kernel/bpf/core.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff mbox series

Patch

diff --git a/kernel/bpf/core.c b/kernel/bpf/core.c
index 5f6f3f829b368..0ba7dd90a2ab3 100644
--- a/kernel/bpf/core.c
+++ b/kernel/bpf/core.c
@@ -2039,7 +2039,7 @@  static u64 ___bpf_prog_run(u64 *regs, const struct bpf_insn *insn)
 static unsigned int PROG_NAME(stack_size)(const void *ctx, const struct bpf_insn *insn) \
 { \
 	u64 stack[stack_size / sizeof(u64)]; \
-	u64 regs[MAX_BPF_EXT_REG]; \
+	u64 regs[MAX_BPF_EXT_REG] = {}; \
 \
 	FP = (u64) (unsigned long) &stack[ARRAY_SIZE(stack)]; \
 	ARG1 = (u64) (unsigned long) ctx; \