Commit 0ee1dd9f authored by Josh Poimboeuf's avatar Josh Poimboeuf Committed by Ingo Molnar
Browse files

x86/dumpstack: Remove raw stack dump 



For mostly historical reasons, the x86 oops dump shows the raw stack
values:

  ...
  [registers]
  Stack:
   ffff880079af7350 ffff880079905400 0000000000000000 ffffc900008f3ae0
   ffffffffa0196610 0000000000000001 00010000ffffffff 0000000087654321
   0000000000000002 0000000000000000 0000000000000000 0000000000000000
  Call Trace:
  ...

This seems to be an artifact from long ago, and probably isn't needed
anymore.  It generally just adds noise to the dump, and it can be
actively harmful because it leaks kernel addresses.

Linus says:

  "The stack dump actually goes back to forever, and it used to be
   useful back in 1992 or so. But it used to be useful mainly because
   stacks were simpler and we didn't have very good call traces anyway. I
   definitely remember having used them - I just do not remember having
   used them in the last ten+ years.

   Of course, it's still true that if you can trigger an oops, you've
   likely already lost the security game, but since the stack dump is so
   useless, let's aim to just remove it and make games like the above
   harder."

This also removes the related 'kstack=' cmdline option and the
'kstack_depth_to_print' sysctl.

Suggested-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: default avatarJosh Poimboeuf <jpoimboe@redhat.com>
Cc: Andy Lutomirski <luto@kernel.org>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Brian Gerst <brgerst@gmail.com>
Cc: Denys Vlasenko <dvlasenk@redhat.com>
Cc: H. Peter Anvin <hpa@zytor.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Link: http://lkml.kernel.org/r/e83bd50df52d8fe88e94d2566426ae40d813bf8f.1477405374.git.jpoimboe@redhat.com


Signed-off-by: default avatarIngo Molnar <mingo@kernel.org>
parent bb5e5ce5

Documentation/kernel-parameters.txt

+0 −3
Original line number Diff line number Diff line
@@ -1958,9 +1958,6 @@ bytes respectively. Such letter suffixes can also be entirely omitted. 
			kmemcheck=2 (one-shot mode)

			Default: 2 (one-shot mode)



	kstack=N	[X86] Print N words from the kernel stack

			in oops dumps.



	kvm.ignore_msrs=[KVM] Ignore guest accesses to unhandled MSRs.

			Default is 0 (don't ignore, but inject #GP)

Documentation/sysctl/kernel.txt

+0 −8
Original line number Diff line number Diff line
@@ -40,7 +40,6 @@ show up in /proc/sys/kernel: 
- hung_task_warnings

- kexec_load_disabled

- kptr_restrict

- kstack_depth_to_print       [ X86 only ]

- l2cr                        [ PPC only ]

- modprobe                    ==> Documentation/debugging-modules.txt

- modules_disabled
@@ -395,13 +394,6 @@ When kptr_restrict is set to (2), kernel pointers printed using 


==============================================================



kstack_depth_to_print: (X86 only)



Controls the number of words to print when dumping the raw

kernel stack.



==============================================================



l2cr: (PPC only)



This flag controls the L2 cache of G3 processor boards. If

Documentation/x86/x86_64/boot-options.txt

+0 −4
Original line number Diff line number Diff line
@@ -277,10 +277,6 @@ IOMMU (input/output memory management unit) 
    space might stop working. Use this option if you have devices that

    are accessed from userspace directly on some PCI host bridge.



Debugging



  kstack=N	Print N words from the kernel stack in oops dumps.



Miscellaneous



	nogbpages

arch/x86/include/asm/stacktrace.h

+0 −5
Original line number Diff line number Diff line
@@ -43,8 +43,6 @@ static inline bool on_stack(struct stack_info *info, void *addr, size_t len) 
		addr + len > begin && addr + len <= end);

}



extern int kstack_depth_to_print;



#ifdef CONFIG_X86_32

#define STACKSLOTS_PER_LINE 8

#else
@@ -86,9 +84,6 @@ get_stack_pointer(struct task_struct *task, struct pt_regs *regs) 
void show_trace_log_lvl(struct task_struct *task, struct pt_regs *regs,

			unsigned long *stack, char *log_lvl);



void show_stack_log_lvl(struct task_struct *task, struct pt_regs *regs,

			unsigned long *sp, char *log_lvl);



extern unsigned int code_bytes;



/* The form of the top of the frame on the stack */

arch/x86/kernel/dumpstack.c

+2 −19
Original line number Diff line number Diff line
@@ -22,7 +22,6 @@ 
int panic_on_unrecovered_nmi;

int panic_on_io_nmi;

unsigned int code_bytes = 64;

int kstack_depth_to_print = 3 * STACKSLOTS_PER_LINE;

static int die_counter;



bool in_task_stack(unsigned long *stack, struct task_struct *task,
@@ -171,12 +170,12 @@ void show_stack(struct task_struct *task, unsigned long *sp) 
	if (!sp && task == current)

		sp = get_stack_pointer(current, NULL);



	show_stack_log_lvl(task, NULL, sp, KERN_DEFAULT);

	show_trace_log_lvl(task, NULL, sp, KERN_DEFAULT);

}



void show_stack_regs(struct pt_regs *regs)

{

	show_stack_log_lvl(current, regs, NULL, KERN_DEFAULT);

	show_trace_log_lvl(current, regs, NULL, KERN_DEFAULT);

}



static arch_spinlock_t die_lock = __ARCH_SPIN_LOCK_UNLOCKED;
@@ -295,22 +294,6 @@ void die(const char *str, struct pt_regs *regs, long err) 
	oops_end(flags, regs, sig);

}



static int __init kstack_setup(char *s)

{

	ssize_t ret;

	unsigned long val;



	if (!s)

		return -EINVAL;



	ret = kstrtoul(s, 0, &val);

	if (ret)

		return ret;

	kstack_depth_to_print = val;

	return 0;

}

early_param("kstack", kstack_setup);



static int __init code_bytes_setup(char *s)

{

	ssize_t ret;

CRA Git | Maintained and supported by SUSTech CRA and CCSE