Bug 202009 - KASAN: make compatible with VMAP_STACK
Summary: KASAN: make compatible with VMAP_STACK
Alias: None
Product: Memory Management
Classification: Unclassified
Component: Sanitizers (show other bugs)
Hardware: All Linux
: P2 enhancement
Assignee: Dmitry Vyukov
Depends on:
Reported: 2018-12-17 15:05 UTC by Dmitry Vyukov
Modified: 2020-02-18 16:26 UTC (History)
1 user (show)

See Also:
Kernel Version: ALL
Tree: Mainline
Regression: No


Description Dmitry Vyukov 2018-12-17 15:05:43 UTC
Currently KASAN is incompatible with VMAP_STACK and stack overflows silently smash whatever happens to be after the stack.

For some context see:

And for actual bug where it happened and caused a WARNING in rcu subsystem:

We either need to support VMAP_STACK with KASAN, or provide some equivalent detection.
An easy but unreliable option is to poison some region at the end of the stack and hope that some stack accesses will trap on it.
A more reliable option would be to extend compiler instrumentation to probe first/last frame bytes on function entry.
A simpler and equally reliable option would be to mprotect the last stack page, but without moving it to vmap area. Yes, wastes a page, but simple to do.
Comment 1 Dmitry Vyukov 2020-02-18 16:26:58 UTC
This is fixed by the following commit (and some subsequent fixes):

commit 0609ae011deb41c9629b7f5fd626dfa1ac9d16b0
Author: Daniel Axtens
Date:   Sat Nov 30 17:55:00 2019 -0800

    x86/kasan: support KASAN_VMALLOC

Note You need to log in before you can comment on or make changes to this bug.