lkdtm: add bad USER_DS test (e22aa9d7) · Commits · 戴 / test

drivers/misc/lkdtm.h

+1 −0

Original line number	Diff line number	Diff line
		@@ -27,6 +27,7 @@ void lkdtm_REFCOUNT_ZERO_SUB(void);
		void lkdtm_REFCOUNT_ZERO_ADD(void);
		void lkdtm_CORRUPT_LIST_ADD(void);
		void lkdtm_CORRUPT_LIST_DEL(void);
		void lkdtm_CORRUPT_USER_DS(void);

		/* lkdtm_heap.c */
		void lkdtm_OVERWRITE_ALLOCATION(void);

+11 −0

Original line number	Diff line number	Diff line
		@@ -8,6 +8,8 @@
		#include <linux/list.h>
		#include <linux/refcount.h>
		#include <linux/sched.h>
		#include <linux/sched/signal.h>
		#include <linux/uaccess.h>

		struct lkdtm_list {
		struct list_head node;
		@@ -279,3 +281,12 @@ void lkdtm_CORRUPT_LIST_DEL(void)
		else
		pr_err("list_del() corruption not detected!\n");
		}

		void lkdtm_CORRUPT_USER_DS(void)
		{
		pr_info("setting bad task size limit\n");
		set_fs(KERNEL_DS);

		/* Make sure we do not keep running with a KERNEL_DS! */
		force_sig(SIGKILL, current);
		}

+1 −0

Original line number	Diff line number	Diff line
		@@ -199,6 +199,7 @@ struct crashtype crashtypes[] = {
		CRASHTYPE(OVERFLOW),
		CRASHTYPE(CORRUPT_LIST_ADD),
		CRASHTYPE(CORRUPT_LIST_DEL),
		CRASHTYPE(CORRUPT_USER_DS),
		CRASHTYPE(CORRUPT_STACK),
		CRASHTYPE(UNALIGNED_LOAD_STORE_WRITE),
		CRASHTYPE(OVERWRITE_ALLOCATION),