diff options
author | Marcin Koscielnicki <koriakin@0x04.net> | 2016-04-14 12:56:24 +0000 |
---|---|---|
committer | Marcin Koscielnicki <koriakin@0x04.net> | 2016-04-14 12:56:24 +0000 |
commit | 0f9d2c5fef1ad3d92f6153570477ada540056b58 (patch) | |
tree | c63ab20dc1615c1cc8647198e5b30d3316f0c25a /lib/tsan | |
parent | 5cfe468b044eba18d668cc7ace45932f558a6d77 (diff) |
[sanitizer] [SystemZ] Abort if the kernel might be vulnerable to CVE-2016-2143.
In short, CVE-2016-2143 will crash the machine if a process uses both >4TB
virtual addresses and fork(). ASan, TSan, and MSan will, by necessity, map
a sizable chunk of virtual address space, which is much larger than 4TB.
Even worse, sanitizers will always use fork() for llvm-symbolizer when a bug
is detected. Disable all three by aborting on process initialization if
the running kernel version is not known to contain a fix.
Unfortunately, there's no reliable way to detect the fix without crashing
the kernel. So, we rely on whitelisting - I've included a list of upstream
kernel versions that will work. In case someone uses a distribution kernel
or applied the fix themselves, an override switch is also included.
Differential Revision: http://reviews.llvm.org/D18915
git-svn-id: https://llvm.org/svn/llvm-project/compiler-rt/trunk@266297 91177308-0d34-0410-b5e6-96231b3b80d8
Diffstat (limited to 'lib/tsan')
-rw-r--r-- | lib/tsan/rtl/tsan_platform_linux.cc | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/tsan/rtl/tsan_platform_linux.cc b/lib/tsan/rtl/tsan_platform_linux.cc index c10fce563..e5c1ee04d 100644 --- a/lib/tsan/rtl/tsan_platform_linux.cc +++ b/lib/tsan/rtl/tsan_platform_linux.cc @@ -247,6 +247,9 @@ static void InitDataSeg() { #endif // #ifndef SANITIZER_GO void InitializePlatformEarly() { +#ifdef __s390x__ + AvoidCVE_2016_2143(); +#endif #ifdef TSAN_RUNTIME_VMA vmaSize = (MostSignificantSetBitIndex(GET_CURRENT_FRAME()) + 1); |