From: Petr Vorel <pvorel@suse.cz>
To: ltp@lists.linux.it
Subject: [LTP] [PATCH v2 2/4] Add tst_pollute_memory() helper function
Date: Wed, 2 Sep 2020 19:05:03 +0200 [thread overview]
Message-ID: <20200902170503.GA26811@dell5510> (raw)
In-Reply-To: <20200825160735.24602-3-mdoucha@suse.cz>
Hi Martin,
> tst_pollute_memory() fills available RAM up to specified limit with given fill
> byte. Useful for testing data disclosure vulnerablities.
Looks nice.
Minor note below.
Reviewed-by: Petr Vorel <pvorel@suse.cz>
...
> +++ b/lib/tst_memutils.c
> @@ -0,0 +1,62 @@
> +// SPDX-License-Identifier: GPL-2.0-or-later
> +/*
> + * Copyright (c) 2020 SUSE LLC <mdoucha@suse.cz>
> + */
> +
> +#include <unistd.h>
> +#include <limits.h>
> +#include <sys/sysinfo.h>
> +#include <stdlib.h>
> +
> +#define TST_NO_DEFAULT_MAIN
> +#include "tst_test.h"
> +
> +#define BLOCKSIZE (16 * 1024 * 1024)
> +
> +void tst_pollute_memory(size_t maxsize, int fillchar)
> +{
> + size_t i, map_count = 0, safety = 0, blocksize = BLOCKSIZE;
> + void **map_blocks;
> + struct sysinfo info;
> +
> + SAFE_SYSINFO(&info);
> + safety = 4096 * SAFE_SYSCONF(_SC_PAGESIZE) / info.mem_unit;
Out of curiosity, how did you figure out safety?
> +
> + if (info.freeswap > safety)
> + safety = 0;
> +
> + /* Not enough free memory to avoid invoking OOM killer */
> + if (info.freeram <= safety)
Maybe print TINFO / TWARN here?
> + return;
> +
> + if (!maxsize)
> + maxsize = SIZE_MAX;
> +
> + if (info.freeram - safety < maxsize / info.mem_unit)
> + maxsize = (info.freeram - safety) * info.mem_unit;
Don't we also want to use info.bufferram ?
> +
> + blocksize = MIN(maxsize, blocksize);
> + map_count = maxsize / blocksize;
> + map_blocks = SAFE_MALLOC(map_count * sizeof(void *));
> +
> + /*
> + * Keep allocating until the first failure. The address space may be
> + * too fragmented or just smaller than maxsize.
> + */
> + for (i = 0; i < map_count; i++) {
> + map_blocks[i] = mmap(NULL, blocksize, PROT_READ | PROT_WRITE,
> + MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);
> +
> + if (map_blocks[i] == MAP_FAILED) {
> + map_count = i;
> + break;
> + }
> +
> + memset(map_blocks[i], fillchar, blocksize);
> + }
> +
> + for (i = 0; i < map_count; i++)
> + SAFE_MUNMAP(map_blocks[i], blocksize);
> +
> + free(map_blocks);
> +}
Kind regards,
Petr
next prev parent reply other threads:[~2020-09-02 17:05 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-08-25 16:07 [LTP] [PATCH v2 0/4] Improve reliability of ioctl_sg01 Martin Doucha
2020-08-25 16:07 ` [LTP] [PATCH v2 1/4] Add SAFE_SYSINFO() macro Martin Doucha
2020-09-02 11:39 ` Petr Vorel
2020-08-25 16:07 ` [LTP] [PATCH v2 2/4] Add tst_pollute_memory() helper function Martin Doucha
2020-09-02 17:05 ` Petr Vorel [this message]
2020-08-25 16:07 ` [LTP] [PATCH v2 3/4] ioctl_sg01: Pollute free memory in setup Martin Doucha
2020-09-02 17:13 ` Petr Vorel
2020-08-25 16:07 ` [LTP] [PATCH v2 4/4] ioctl_sg01: Loop data leak check 100 times Martin Doucha
2020-09-02 17:17 ` Petr Vorel
2020-09-03 13:19 ` Martin Doucha
2020-09-03 14:03 ` Petr Vorel
2020-09-03 14:22 ` [LTP] [PATCH v2 0/4] Improve reliability of ioctl_sg01 Petr Vorel
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200902170503.GA26811@dell5510 \
--to=pvorel@suse.cz \
--cc=ltp@lists.linux.it \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.