git.baikalelectronics.ru Git - kernel.git/commit

author	Victor Chibotaru <tchibo@google.com>
	Fri, 17 Nov 2017 23:30:46 +0000 (15:30 -0800)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Sat, 18 Nov 2017 00:10:04 +0000 (16:10 -0800)
commit	9c8ebf4ea65360d45de2a1058d1bbcb4e3154a40
tree	2929f22e810fcd3573892b8124735a3afb6c3058	tree \| snapshot
parent	95a73336a31feb6bc97d95b9f384d1e0de5ba49b	commit \| diff

kcov: support comparison operands collection

Enables kcov to collect comparison operands from instrumented code.
This is done by using Clang's -fsanitize=trace-cmp instrumentation
(currently not available for GCC).

The comparison operands help a lot in fuzz testing. E.g. they are used
in Syzkaller to cover the interiors of conditional statements with way
less attempts and thus make previously unreachable code reachable.

To allow separate collection of coverage and comparison operands two
different work modes are implemented. Mode selection is now done via a
KCOV_ENABLE ioctl call with corresponding argument value.

Link: http://lkml.kernel.org/r/20171011095459.70721-1-glider@google.com
Signed-off-by: Victor Chibotaru <tchibo@google.com>
Signed-off-by: Alexander Potapenko <glider@google.com>
Cc: Dmitry Vyukov <dvyukov@google.com>
Cc: Andrey Konovalov <andreyknvl@google.com>
Cc: Mark Rutland <mark.rutland@arm.com>
Cc: Alexander Popov <alex.popov@linux.com>
Cc: Andrey Ryabinin <aryabinin@virtuozzo.com>
Cc: Kees Cook <keescook@chromium.org>
Cc: Vegard Nossum <vegard.nossum@oracle.com>
Cc: Quentin Casasnovas <quentin.casasnovas@oracle.com>
Cc: <syzkaller@googlegroups.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

include/linux/kcov.h		diff \| blob \| history
include/uapi/linux/kcov.h		diff \| blob \| history
kernel/kcov.c		diff \| blob \| history