1 /* $NetBSD: subr_msan.c,v 1.14 2020/09/09 16:29:59 maxv Exp $ */
4 * Copyright (c) 2019-2020 Maxime Villard, m00nbsd.net
6 * Copyright (c) 2021 The FreeBSD Foundation
8 * Portions of this software were developed by Mark Johnston under sponsorship
9 * from the FreeBSD Foundation.
11 * This code is part of the KMSAN subsystem of the NetBSD kernel.
13 * Redistribution and use in source and binary forms, with or without
14 * modification, are permitted provided that the following conditions
16 * 1. Redistributions of source code must retain the above copyright
17 * notice, this list of conditions and the following disclaimer.
18 * 2. Redistributions in binary form must reproduce the above copyright
19 * notice, this list of conditions and the following disclaimer in the
20 * documentation and/or other materials provided with the distribution.
22 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
23 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
24 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
25 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
26 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
27 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
28 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
29 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
30 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
31 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
37 #include <sys/cdefs.h>
39 __KERNEL_RCSID(0, "$NetBSD: subr_msan.c,v 1.14 2020/09/09 16:29:59 maxv Exp $");
42 #include <sys/param.h>
43 #include <sys/systm.h>
48 #include <sys/kernel.h>
49 #include <sys/linker.h>
50 #include <sys/malloc.h>
52 #include <sys/memdesc.h>
55 #include <sys/stack.h>
56 #include <sys/sysctl.h>
62 #include <machine/msan.h>
63 #include <machine/stdarg.h>
65 void kmsan_init_arg(size_t);
66 void kmsan_init_ret(size_t);
68 /* -------------------------------------------------------------------------- */
71 * Part of the compiler ABI.
79 #define MSAN_PARAM_SIZE 800
80 #define MSAN_RETVAL_SIZE 800
82 uint8_t param_shadow[MSAN_PARAM_SIZE];
83 uint8_t retval_shadow[MSAN_RETVAL_SIZE];
84 uint8_t va_arg_shadow[MSAN_PARAM_SIZE];
85 uint8_t va_arg_origin[MSAN_PARAM_SIZE];
86 uint64_t va_arg_overflow_size;
87 msan_orig_t param_origin[MSAN_PARAM_SIZE / sizeof(msan_orig_t)];
88 msan_orig_t retval_origin;
91 /* -------------------------------------------------------------------------- */
93 #define MSAN_NCONTEXT 4
94 #define MSAN_ORIG_MASK (~0x3)
96 typedef struct kmsan_td {
98 msan_tls_t tls[MSAN_NCONTEXT];
101 static msan_tls_t dummy_tls;
104 * Use separate dummy regions for loads and stores: stores may mark the region
105 * as uninitialized, and that can trigger false positives.
107 static uint8_t msan_dummy_shad[PAGE_SIZE] __aligned(PAGE_SIZE);
108 static uint8_t msan_dummy_write_shad[PAGE_SIZE] __aligned(PAGE_SIZE);
109 static uint8_t msan_dummy_orig[PAGE_SIZE] __aligned(PAGE_SIZE);
110 static msan_td_t msan_thread0;
111 static bool kmsan_enabled __read_mostly;
113 static bool kmsan_reporting = false;
116 * Avoid clobbering any thread-local state before we panic.
118 #define kmsan_panic(f, ...) do { \
119 kmsan_enabled = false; \
120 panic(f, __VA_ARGS__); \
123 #define REPORT(f, ...) do { \
124 if (panic_on_violation) { \
125 kmsan_panic(f, __VA_ARGS__); \
130 printf(f "\n", __VA_ARGS__); \
131 stack_print_ddb(&st); \
135 FEATURE(kmsan, "Kernel memory sanitizer");
137 static SYSCTL_NODE(_debug, OID_AUTO, kmsan, CTLFLAG_RD | CTLFLAG_MPSAFE, 0,
140 static bool panic_on_violation = 1;
141 SYSCTL_BOOL(_debug_kmsan, OID_AUTO, panic_on_violation, CTLFLAG_RWTUN,
142 &panic_on_violation, 0,
143 "Panic if an invalid access is detected");
145 static MALLOC_DEFINE(M_KMSAN, "kmsan", "Kernel memory sanitizer");
147 /* -------------------------------------------------------------------------- */
149 static inline const char *
150 kmsan_orig_name(int type)
153 case KMSAN_TYPE_STACK:
155 case KMSAN_TYPE_KMEM:
157 case KMSAN_TYPE_MALLOC:
167 kmsan_report_hook(const void *addr, msan_orig_t *orig, size_t size, size_t off,
170 const char *typename;
177 if (__predict_false(KERNEL_PANICKED() || kdb_active || kmsan_reporting))
180 kmsan_reporting = true;
184 REPORT("MSan: Uninitialized memory in %s, offset %zu",
189 kmsan_md_orig_decode(*orig, &type, &ptr);
190 typename = kmsan_orig_name(type);
192 if (linker_ddb_search_symbol_name((caddr_t)ptr, buf,
193 sizeof(buf), &foff) == 0) {
194 REPORT("MSan: Uninitialized %s memory in %s, "
195 "offset %zu/%zu, addr %p, from %s+%#lx",
196 typename, hook, off, size, addr, buf, foff);
197 } else if (__builtin_memcmp((void *)ptr, "----", 4) == 0) {
199 * The format of the string is: "----var@function". Parse it to
200 * display a nice warning.
202 var = (char *)ptr + 4;
203 strlcpy(buf, var, sizeof(buf));
205 fn = strchr(buf, '@');
207 REPORT("MSan: Uninitialized %s memory in %s, offset %zu, "
208 "variable '%s' from %s", typename, hook, off, var, fn);
210 REPORT("MSan: Uninitialized %s memory in %s, "
211 "offset %zu/%zu, addr %p, PC %p",
212 typename, hook, off, size, addr, (void *)ptr);
217 kmsan_reporting = false;
221 kmsan_report_inline(msan_orig_t orig, unsigned long pc)
223 const char *typename;
230 if (__predict_false(KERNEL_PANICKED() || kdb_active || kmsan_reporting))
233 kmsan_reporting = true;
237 REPORT("MSan: uninitialized variable in %p", (void *)pc);
241 kmsan_md_orig_decode(orig, &type, &ptr);
242 typename = kmsan_orig_name(type);
244 if (linker_ddb_search_symbol_name((caddr_t)ptr, buf,
245 sizeof(buf), &foff) == 0) {
246 REPORT("MSan: Uninitialized %s memory from %s+%#lx",
247 typename, buf, foff);
248 } else if (__builtin_memcmp((void *)ptr, "----", 4) == 0) {
250 * The format of the string is: "----var@function". Parse it to
251 * display a nice warning.
253 var = (char *)ptr + 4;
254 strlcpy(buf, var, sizeof(buf));
256 fn = strchr(buf, '@');
258 REPORT("MSan: Uninitialized variable '%s' from %s", var, fn);
260 REPORT("MSan: Uninitialized %s memory, origin %x",
266 kmsan_reporting = false;
269 /* -------------------------------------------------------------------------- */
271 static inline msan_meta_t
272 kmsan_meta_get(const void *addr, size_t size, const bool write)
276 if (__predict_false(!kmsan_enabled)) {
277 ret.shad = write ? msan_dummy_write_shad : msan_dummy_shad;
278 ret.orig = (msan_orig_t *)msan_dummy_orig;
279 } else if (__predict_false(kmsan_md_unsupported((vm_offset_t)addr))) {
280 ret.shad = write ? msan_dummy_write_shad : msan_dummy_shad;
281 ret.orig = (msan_orig_t *)msan_dummy_orig;
283 ret.shad = (void *)kmsan_md_addr_to_shad((vm_offset_t)addr);
285 (msan_orig_t *)kmsan_md_addr_to_orig((vm_offset_t)addr);
286 ret.orig = (msan_orig_t *)((uintptr_t)ret.orig &
294 kmsan_origin_fill(const void *addr, msan_orig_t o, size_t size)
299 if (__predict_false(!kmsan_enabled))
301 if (__predict_false(kmsan_md_unsupported((vm_offset_t)addr)))
304 orig = (msan_orig_t *)kmsan_md_addr_to_orig((vm_offset_t)addr);
305 size += ((uintptr_t)orig & (sizeof(*orig) - 1));
306 orig = (msan_orig_t *)((uintptr_t)orig & MSAN_ORIG_MASK);
308 for (i = 0; i < size; i += 4) {
314 kmsan_shadow_fill(uintptr_t addr, uint8_t c, size_t size)
318 if (__predict_false(!kmsan_enabled))
320 if (__predict_false(kmsan_md_unsupported(addr)))
323 shad = (uint8_t *)kmsan_md_addr_to_shad(addr);
324 __builtin_memset(shad, c, size);
328 kmsan_meta_copy(void *dst, const void *src, size_t size)
330 uint8_t *orig_src, *orig_dst;
331 uint8_t *shad_src, *shad_dst;
332 msan_orig_t *_src, *_dst;
335 if (__predict_false(!kmsan_enabled))
337 if (__predict_false(kmsan_md_unsupported((vm_offset_t)dst)))
339 if (__predict_false(kmsan_md_unsupported((vm_offset_t)src))) {
340 kmsan_shadow_fill((uintptr_t)dst, KMSAN_STATE_INITED, size);
344 shad_src = (uint8_t *)kmsan_md_addr_to_shad((vm_offset_t)src);
345 shad_dst = (uint8_t *)kmsan_md_addr_to_shad((vm_offset_t)dst);
346 __builtin_memmove(shad_dst, shad_src, size);
348 orig_src = (uint8_t *)kmsan_md_addr_to_orig((vm_offset_t)src);
349 orig_dst = (uint8_t *)kmsan_md_addr_to_orig((vm_offset_t)dst);
350 for (i = 0; i < size; i++) {
351 _src = (msan_orig_t *)((uintptr_t)orig_src & MSAN_ORIG_MASK);
352 _dst = (msan_orig_t *)((uintptr_t)orig_dst & MSAN_ORIG_MASK);
360 kmsan_shadow_check(uintptr_t addr, size_t size, const char *hook)
366 if (__predict_false(!kmsan_enabled))
368 if (__predict_false(kmsan_md_unsupported(addr)))
371 shad = (uint8_t *)kmsan_md_addr_to_shad(addr);
372 for (i = 0; i < size; i++) {
373 if (__predict_true(shad[i] == 0))
375 orig = (msan_orig_t *)kmsan_md_addr_to_orig((vm_offset_t)&shad[i]);
376 orig = (msan_orig_t *)((uintptr_t)orig & MSAN_ORIG_MASK);
377 kmsan_report_hook((const char *)addr + i, orig, size, i, hook);
383 kmsan_init_arg(size_t n)
388 if (__predict_false(!kmsan_enabled))
390 if (__predict_false(curthread == NULL))
392 mtd = curthread->td_kmsan;
393 arg = mtd->tls[mtd->ctx].param_shadow;
394 __builtin_memset(arg, 0, n);
398 kmsan_init_ret(size_t n)
403 if (__predict_false(!kmsan_enabled))
405 if (__predict_false(curthread == NULL))
407 mtd = curthread->td_kmsan;
408 arg = mtd->tls[mtd->ctx].retval_shadow;
409 __builtin_memset(arg, 0, n);
413 kmsan_check_arg(size_t size, const char *hook)
420 if (__predict_false(!kmsan_enabled))
422 if (__predict_false(curthread == NULL))
424 mtd = curthread->td_kmsan;
426 arg = mtd->tls[ctx].param_shadow;
428 for (i = 0; i < size; i++) {
429 if (__predict_true(arg[i] == 0))
431 orig = &mtd->tls[ctx].param_origin[i / sizeof(msan_orig_t)];
432 kmsan_report_hook((const char *)arg + i, orig, size, i, hook);
438 kmsan_thread_alloc(struct thread *td)
447 /* We might be recycling a thread. */
448 kmsan_init_arg(sizeof(size_t) + sizeof(struct malloc_type *) +
450 mtd = malloc(sizeof(*mtd), M_KMSAN, M_WAITOK);
452 kmsan_memset(mtd, 0, sizeof(*mtd));
455 if (td->td_kstack != 0)
456 kmsan_mark((void *)td->td_kstack, ptoa(td->td_kstack_pages),
463 kmsan_thread_free(struct thread *td)
469 if (__predict_false(td == curthread))
470 kmsan_panic("%s: freeing KMSAN TLS for curthread", __func__);
473 kmsan_init_arg(sizeof(void *) + sizeof(struct malloc_type *));
478 void kmsan_intr_enter(void);
479 void kmsan_intr_leave(void);
482 kmsan_intr_enter(void)
486 if (__predict_false(!kmsan_enabled))
489 mtd = curthread->td_kmsan;
491 if (__predict_false(mtd->ctx >= MSAN_NCONTEXT))
492 kmsan_panic("%s: mtd->ctx = %zu", __func__, mtd->ctx);
496 kmsan_intr_leave(void)
500 if (__predict_false(!kmsan_enabled))
503 mtd = curthread->td_kmsan;
504 if (__predict_false(mtd->ctx == 0))
505 kmsan_panic("%s: mtd->ctx = %zu", __func__, mtd->ctx);
509 /* -------------------------------------------------------------------------- */
512 kmsan_shadow_map(vm_offset_t addr, size_t size)
517 MPASS(addr % PAGE_SIZE == 0);
518 MPASS(size % PAGE_SIZE == 0);
525 va = kmsan_md_addr_to_shad(addr);
526 for (i = 0; i < npages; i++) {
527 pmap_san_enter(va + ptoa(i));
530 va = kmsan_md_addr_to_orig(addr);
531 for (i = 0; i < npages; i++) {
532 pmap_san_enter(va + ptoa(i));
537 kmsan_orig(const void *addr, size_t size, int type, uintptr_t pc)
541 orig = kmsan_md_orig_encode(type, pc);
542 kmsan_origin_fill(addr, orig, size);
546 kmsan_mark(const void *addr, size_t size, uint8_t c)
548 kmsan_shadow_fill((uintptr_t)addr, c, size);
552 kmsan_mark_bio(const struct bio *bp, uint8_t c)
554 kmsan_mark(bp->bio_data, bp->bio_length, c);
558 kmsan_mark_mbuf(const struct mbuf *m, uint8_t c)
561 if ((m->m_flags & M_EXTPG) == 0)
562 kmsan_mark(m->m_data, m->m_len, c);
568 kmsan_check(const void *p, size_t sz, const char *descr)
570 kmsan_shadow_check((uintptr_t)p, sz, descr);
574 kmsan_check_bio(const struct bio *bp, const char *descr)
576 kmsan_shadow_check((uintptr_t)bp->bio_data, bp->bio_length, descr);
580 kmsan_check_mbuf(const struct mbuf *m, const char *descr)
583 kmsan_shadow_check((uintptr_t)mtod(m, void *), m->m_len, descr);
584 } while ((m = m->m_next) != NULL);
593 TUNABLE_INT_FETCH("debug.kmsan.disabled", &disabled);
597 /* Initialize the TLS for curthread. */
598 msan_thread0.ctx = 0;
599 thread0.td_kmsan = &msan_thread0;
601 /* Now officially enabled. */
602 kmsan_enabled = true;
605 /* -------------------------------------------------------------------------- */
607 msan_meta_t __msan_metadata_ptr_for_load_n(void *, size_t);
608 msan_meta_t __msan_metadata_ptr_for_store_n(void *, size_t);
611 __msan_metadata_ptr_for_load_n(void *addr, size_t size)
613 return (kmsan_meta_get(addr, size, false));
617 __msan_metadata_ptr_for_store_n(void *addr, size_t size)
619 return (kmsan_meta_get(addr, size, true));
622 #define MSAN_META_FUNC(size) \
623 msan_meta_t __msan_metadata_ptr_for_load_##size(void *); \
624 msan_meta_t __msan_metadata_ptr_for_load_##size(void *addr) \
626 return (kmsan_meta_get(addr, size, false)); \
628 msan_meta_t __msan_metadata_ptr_for_store_##size(void *); \
629 msan_meta_t __msan_metadata_ptr_for_store_##size(void *addr) \
631 return (kmsan_meta_get(addr, size, true)); \
639 void __msan_instrument_asm_store(const void *, size_t);
640 msan_orig_t __msan_chain_origin(msan_orig_t);
641 void __msan_poison(const void *, size_t);
642 void __msan_unpoison(const void *, size_t);
643 void __msan_poison_alloca(const void *, uint64_t, const char *);
644 void __msan_unpoison_alloca(const void *, uint64_t);
645 void __msan_warning(msan_orig_t);
646 msan_tls_t *__msan_get_context_state(void);
649 __msan_instrument_asm_store(const void *addr, size_t size)
651 kmsan_shadow_fill((uintptr_t)addr, KMSAN_STATE_INITED, size);
655 __msan_chain_origin(msan_orig_t origin)
661 __msan_poison(const void *addr, size_t size)
663 kmsan_shadow_fill((uintptr_t)addr, KMSAN_STATE_UNINIT, size);
667 __msan_unpoison(const void *addr, size_t size)
669 kmsan_shadow_fill((uintptr_t)addr, KMSAN_STATE_INITED, size);
673 __msan_poison_alloca(const void *addr, uint64_t size, const char *descr)
677 orig = kmsan_md_orig_encode(KMSAN_TYPE_STACK, (uintptr_t)descr);
678 kmsan_origin_fill(addr, orig, size);
679 kmsan_shadow_fill((uintptr_t)addr, KMSAN_STATE_UNINIT, size);
683 __msan_unpoison_alloca(const void *addr, uint64_t size)
685 kmsan_shadow_fill((uintptr_t)addr, KMSAN_STATE_INITED, size);
689 __msan_warning(msan_orig_t origin)
691 if (__predict_false(!kmsan_enabled))
693 kmsan_report_inline(origin, KMSAN_RET_ADDR);
697 __msan_get_context_state(void)
702 * When APs are started, they execute some C code before curthread is
703 * set. We have to handle that here.
705 if (__predict_false(!kmsan_enabled || curthread == NULL))
707 mtd = curthread->td_kmsan;
708 return (&mtd->tls[mtd->ctx]);
711 /* -------------------------------------------------------------------------- */
714 * Function hooks. Mostly ASM functions which need KMSAN wrappers to handle
715 * initialized areas properly.
719 kmsan_memcpy(void *dst, const void *src, size_t len)
721 /* No kmsan_check_arg, because inlined. */
722 kmsan_init_ret(sizeof(void *));
723 if (__predict_true(len != 0)) {
724 kmsan_meta_copy(dst, src, len);
726 return (__builtin_memcpy(dst, src, len));
730 kmsan_memcmp(const void *b1, const void *b2, size_t len)
732 const uint8_t *_b1 = b1, *_b2 = b2;
735 kmsan_check_arg(sizeof(b1) + sizeof(b2) + sizeof(len),
737 kmsan_init_ret(sizeof(int));
739 for (i = 0; i < len; i++) {
741 kmsan_shadow_check((uintptr_t)b1, i + 1,
743 kmsan_shadow_check((uintptr_t)b2, i + 1,
745 return (*_b1 - *_b2);
754 kmsan_memset(void *dst, int c, size_t len)
756 /* No kmsan_check_arg, because inlined. */
757 kmsan_shadow_fill((uintptr_t)dst, KMSAN_STATE_INITED, len);
758 kmsan_init_ret(sizeof(void *));
759 return (__builtin_memset(dst, c, len));
763 kmsan_memmove(void *dst, const void *src, size_t len)
765 /* No kmsan_check_arg, because inlined. */
766 if (__predict_true(len != 0)) {
767 kmsan_meta_copy(dst, src, len);
769 kmsan_init_ret(sizeof(void *));
770 return (__builtin_memmove(dst, src, len));
773 __strong_reference(kmsan_memcpy, __msan_memcpy);
774 __strong_reference(kmsan_memset, __msan_memset);
775 __strong_reference(kmsan_memmove, __msan_memmove);
778 kmsan_strcpy(char *dst, const char *src)
780 const char *_src = src;
784 kmsan_check_arg(sizeof(dst) + sizeof(src), "strcpy():args");
794 kmsan_shadow_check((uintptr_t)_src, len, "strcpy():arg2");
795 kmsan_shadow_fill((uintptr_t)_dst, KMSAN_STATE_INITED, len);
796 kmsan_init_ret(sizeof(char *));
801 kmsan_strcmp(const char *s1, const char *s2)
803 const char *_s1 = s1, *_s2 = s2;
806 kmsan_check_arg(sizeof(s1) + sizeof(s2), "strcmp():args");
807 kmsan_init_ret(sizeof(int));
814 kmsan_shadow_check((uintptr_t)_s1, len, "strcmp():arg1");
815 kmsan_shadow_check((uintptr_t)_s2, len, "strcmp():arg2");
821 kmsan_shadow_check((uintptr_t)_s1, len, "strcmp():arg1");
822 kmsan_shadow_check((uintptr_t)_s2, len, "strcmp():arg2");
824 return (*(const unsigned char *)s1 - *(const unsigned char *)s2);
828 kmsan_strlen(const char *str)
832 kmsan_check_arg(sizeof(str), "strlen():args");
841 kmsan_shadow_check((uintptr_t)str, (size_t)(s - str) + 1, "strlen():arg1");
842 kmsan_init_ret(sizeof(size_t));
846 int kmsan_copyin(const void *, void *, size_t);
847 int kmsan_copyout(const void *, void *, size_t);
848 int kmsan_copyinstr(const void *, void *, size_t, size_t *);
851 kmsan_copyin(const void *uaddr, void *kaddr, size_t len)
855 kmsan_check_arg(sizeof(uaddr) + sizeof(kaddr) + sizeof(len),
857 ret = copyin(uaddr, kaddr, len);
859 kmsan_shadow_fill((uintptr_t)kaddr, KMSAN_STATE_INITED, len);
860 kmsan_init_ret(sizeof(int));
865 kmsan_copyout(const void *kaddr, void *uaddr, size_t len)
867 kmsan_check_arg(sizeof(kaddr) + sizeof(uaddr) + sizeof(len),
869 kmsan_shadow_check((uintptr_t)kaddr, len, "copyout():arg1");
870 kmsan_init_ret(sizeof(int));
871 return (copyout(kaddr, uaddr, len));
875 kmsan_copyinstr(const void *uaddr, void *kaddr, size_t len, size_t *done)
880 kmsan_check_arg(sizeof(uaddr) + sizeof(kaddr) +
881 sizeof(len) + sizeof(done), "copyinstr():args");
882 ret = copyinstr(uaddr, kaddr, len, &_done);
884 kmsan_shadow_fill((uintptr_t)kaddr, KMSAN_STATE_INITED, _done);
887 kmsan_shadow_fill((uintptr_t)done, KMSAN_STATE_INITED, sizeof(size_t));
889 kmsan_init_ret(sizeof(int));
893 /* -------------------------------------------------------------------------- */
896 kmsan_fubyte(volatile const void *base)
900 kmsan_check_arg(sizeof(base), "fubyte(): args");
902 kmsan_init_ret(sizeof(int));
907 kmsan_fuword16(volatile const void *base)
911 kmsan_check_arg(sizeof(base), "fuword16(): args");
912 ret = fuword16(base);
913 kmsan_init_ret(sizeof(int));
918 kmsan_fueword(volatile const void *base, long *val)
922 kmsan_check_arg(sizeof(base) + sizeof(val), "fueword(): args");
923 ret = fueword(base, val);
925 kmsan_shadow_fill((uintptr_t)val, KMSAN_STATE_INITED,
927 kmsan_init_ret(sizeof(int));
932 kmsan_fueword32(volatile const void *base, int32_t *val)
936 kmsan_check_arg(sizeof(base) + sizeof(val), "fueword32(): args");
937 ret = fueword32(base, val);
939 kmsan_shadow_fill((uintptr_t)val, KMSAN_STATE_INITED,
941 kmsan_init_ret(sizeof(int));
946 kmsan_fueword64(volatile const void *base, int64_t *val)
950 kmsan_check_arg(sizeof(base) + sizeof(val), "fueword64(): args");
951 ret = fueword64(base, val);
953 kmsan_shadow_fill((uintptr_t)val, KMSAN_STATE_INITED,
955 kmsan_init_ret(sizeof(int));
960 kmsan_subyte(volatile void *base, int byte)
964 kmsan_check_arg(sizeof(base) + sizeof(byte), "subyte():args");
965 ret = subyte(base, byte);
966 kmsan_init_ret(sizeof(int));
971 kmsan_suword(volatile void *base, long word)
975 kmsan_check_arg(sizeof(base) + sizeof(word), "suword():args");
976 ret = suword(base, word);
977 kmsan_init_ret(sizeof(int));
982 kmsan_suword16(volatile void *base, int word)
986 kmsan_check_arg(sizeof(base) + sizeof(word), "suword16():args");
987 ret = suword16(base, word);
988 kmsan_init_ret(sizeof(int));
993 kmsan_suword32(volatile void *base, int32_t word)
997 kmsan_check_arg(sizeof(base) + sizeof(word), "suword32():args");
998 ret = suword32(base, word);
999 kmsan_init_ret(sizeof(int));
1004 kmsan_suword64(volatile void *base, int64_t word)
1008 kmsan_check_arg(sizeof(base) + sizeof(word), "suword64():args");
1009 ret = suword64(base, word);
1010 kmsan_init_ret(sizeof(int));
1015 kmsan_casueword32(volatile uint32_t *base, uint32_t oldval, uint32_t *oldvalp,
1020 kmsan_check_arg(sizeof(base) + sizeof(oldval) + sizeof(oldvalp) +
1021 sizeof(newval), "casueword32(): args");
1022 ret = casueword32(base, oldval, oldvalp, newval);
1023 kmsan_shadow_fill((uintptr_t)oldvalp, KMSAN_STATE_INITED,
1025 kmsan_init_ret(sizeof(int));
1030 kmsan_casueword(volatile u_long *base, u_long oldval, u_long *oldvalp,
1035 kmsan_check_arg(sizeof(base) + sizeof(oldval) + sizeof(oldvalp) +
1036 sizeof(newval), "casueword32(): args");
1037 ret = casueword(base, oldval, oldvalp, newval);
1038 kmsan_shadow_fill((uintptr_t)oldvalp, KMSAN_STATE_INITED,
1040 kmsan_init_ret(sizeof(int));
1044 /* -------------------------------------------------------------------------- */
1046 #include <machine/atomic.h>
1047 #include <sys/atomic_san.h>
1049 #define _MSAN_ATOMIC_FUNC_ADD(name, type) \
1050 void kmsan_atomic_add_##name(volatile type *ptr, type val) \
1052 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1053 "atomic_add_" #name "():args"); \
1054 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1055 "atomic_add_" #name "():ptr"); \
1056 atomic_add_##name(ptr, val); \
1059 #define MSAN_ATOMIC_FUNC_ADD(name, type) \
1060 _MSAN_ATOMIC_FUNC_ADD(name, type) \
1061 _MSAN_ATOMIC_FUNC_ADD(acq_##name, type) \
1062 _MSAN_ATOMIC_FUNC_ADD(rel_##name, type)
1064 #define _MSAN_ATOMIC_FUNC_SUBTRACT(name, type) \
1065 void kmsan_atomic_subtract_##name(volatile type *ptr, type val) \
1067 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1068 "atomic_subtract_" #name "():args"); \
1069 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1070 "atomic_subtract_" #name "():ptr"); \
1071 atomic_subtract_##name(ptr, val); \
1074 #define MSAN_ATOMIC_FUNC_SUBTRACT(name, type) \
1075 _MSAN_ATOMIC_FUNC_SUBTRACT(name, type) \
1076 _MSAN_ATOMIC_FUNC_SUBTRACT(acq_##name, type) \
1077 _MSAN_ATOMIC_FUNC_SUBTRACT(rel_##name, type)
1079 #define _MSAN_ATOMIC_FUNC_SET(name, type) \
1080 void kmsan_atomic_set_##name(volatile type *ptr, type val) \
1082 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1083 "atomic_set_" #name "():args"); \
1084 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1085 "atomic_set_" #name "():ptr"); \
1086 atomic_set_##name(ptr, val); \
1089 #define MSAN_ATOMIC_FUNC_SET(name, type) \
1090 _MSAN_ATOMIC_FUNC_SET(name, type) \
1091 _MSAN_ATOMIC_FUNC_SET(acq_##name, type) \
1092 _MSAN_ATOMIC_FUNC_SET(rel_##name, type)
1094 #define _MSAN_ATOMIC_FUNC_CLEAR(name, type) \
1095 void kmsan_atomic_clear_##name(volatile type *ptr, type val) \
1097 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1098 "atomic_clear_" #name "():args"); \
1099 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1100 "atomic_clear_" #name "():ptr"); \
1101 atomic_clear_##name(ptr, val); \
1104 #define MSAN_ATOMIC_FUNC_CLEAR(name, type) \
1105 _MSAN_ATOMIC_FUNC_CLEAR(name, type) \
1106 _MSAN_ATOMIC_FUNC_CLEAR(acq_##name, type) \
1107 _MSAN_ATOMIC_FUNC_CLEAR(rel_##name, type)
1109 #define MSAN_ATOMIC_FUNC_FETCHADD(name, type) \
1110 type kmsan_atomic_fetchadd_##name(volatile type *ptr, type val) \
1112 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1113 "atomic_fetchadd_" #name "():args"); \
1114 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1115 "atomic_fetchadd_" #name "():ptr"); \
1116 kmsan_init_ret(sizeof(type)); \
1117 return (atomic_fetchadd_##name(ptr, val)); \
1120 #define MSAN_ATOMIC_FUNC_READANDCLEAR(name, type) \
1121 type kmsan_atomic_readandclear_##name(volatile type *ptr) \
1123 kmsan_check_arg(sizeof(ptr), \
1124 "atomic_readandclear_" #name "():args"); \
1125 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1126 "atomic_readandclear_" #name "():ptr"); \
1127 kmsan_init_ret(sizeof(type)); \
1128 return (atomic_readandclear_##name(ptr)); \
1131 #define MSAN_ATOMIC_FUNC_TESTANDCLEAR(name, type) \
1132 int kmsan_atomic_testandclear_##name(volatile type *ptr, u_int v) \
1134 kmsan_check_arg(sizeof(ptr) + sizeof(v), \
1135 "atomic_testandclear_" #name "():args"); \
1136 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1137 "atomic_testandclear_" #name "():ptr"); \
1138 kmsan_init_ret(sizeof(int)); \
1139 return (atomic_testandclear_##name(ptr, v)); \
1142 #define MSAN_ATOMIC_FUNC_TESTANDSET(name, type) \
1143 int kmsan_atomic_testandset_##name(volatile type *ptr, u_int v) \
1145 kmsan_check_arg(sizeof(ptr) + sizeof(v), \
1146 "atomic_testandset_" #name "():args"); \
1147 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1148 "atomic_testandset_" #name "():ptr"); \
1149 kmsan_init_ret(sizeof(int)); \
1150 return (atomic_testandset_##name(ptr, v)); \
1153 #define MSAN_ATOMIC_FUNC_SWAP(name, type) \
1154 type kmsan_atomic_swap_##name(volatile type *ptr, type val) \
1156 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1157 "atomic_swap_" #name "():args"); \
1158 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1159 "atomic_swap_" #name "():ptr"); \
1160 kmsan_init_ret(sizeof(type)); \
1161 return (atomic_swap_##name(ptr, val)); \
1164 #define _MSAN_ATOMIC_FUNC_CMPSET(name, type) \
1165 int kmsan_atomic_cmpset_##name(volatile type *ptr, type oval, \
1168 kmsan_check_arg(sizeof(ptr) + sizeof(oval) + \
1169 sizeof(nval), "atomic_cmpset_" #name "():args"); \
1170 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1171 "atomic_cmpset_" #name "():ptr"); \
1172 kmsan_init_ret(sizeof(int)); \
1173 return (atomic_cmpset_##name(ptr, oval, nval)); \
1176 #define MSAN_ATOMIC_FUNC_CMPSET(name, type) \
1177 _MSAN_ATOMIC_FUNC_CMPSET(name, type) \
1178 _MSAN_ATOMIC_FUNC_CMPSET(acq_##name, type) \
1179 _MSAN_ATOMIC_FUNC_CMPSET(rel_##name, type)
1181 #define _MSAN_ATOMIC_FUNC_FCMPSET(name, type) \
1182 int kmsan_atomic_fcmpset_##name(volatile type *ptr, type *oval, \
1185 kmsan_check_arg(sizeof(ptr) + sizeof(oval) + \
1186 sizeof(nval), "atomic_fcmpset_" #name "():args"); \
1187 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1188 "atomic_fcmpset_" #name "():ptr"); \
1189 kmsan_init_ret(sizeof(int)); \
1190 return (atomic_fcmpset_##name(ptr, oval, nval)); \
1193 #define MSAN_ATOMIC_FUNC_FCMPSET(name, type) \
1194 _MSAN_ATOMIC_FUNC_FCMPSET(name, type) \
1195 _MSAN_ATOMIC_FUNC_FCMPSET(acq_##name, type) \
1196 _MSAN_ATOMIC_FUNC_FCMPSET(rel_##name, type)
1198 #define MSAN_ATOMIC_FUNC_THREAD_FENCE(name) \
1199 void kmsan_atomic_thread_fence_##name(void) \
1201 atomic_thread_fence_##name(); \
1204 #define _MSAN_ATOMIC_FUNC_LOAD(name, type) \
1205 type kmsan_atomic_load_##name(volatile type *ptr) \
1207 kmsan_check_arg(sizeof(ptr), \
1208 "atomic_load_" #name "():args"); \
1209 kmsan_shadow_check((uintptr_t)ptr, sizeof(type), \
1210 "atomic_load_" #name "():ptr"); \
1211 kmsan_init_ret(sizeof(type)); \
1212 return (atomic_load_##name(ptr)); \
1215 #define MSAN_ATOMIC_FUNC_LOAD(name, type) \
1216 _MSAN_ATOMIC_FUNC_LOAD(name, type) \
1217 _MSAN_ATOMIC_FUNC_LOAD(acq_##name, type)
1219 #define _MSAN_ATOMIC_FUNC_STORE(name, type) \
1220 void kmsan_atomic_store_##name(volatile type *ptr, type val) \
1222 kmsan_check_arg(sizeof(ptr) + sizeof(val), \
1223 "atomic_store_" #name "():args"); \
1224 kmsan_shadow_fill((uintptr_t)ptr, KMSAN_STATE_INITED, \
1226 atomic_store_##name(ptr, val); \
1229 #define MSAN_ATOMIC_FUNC_STORE(name, type) \
1230 _MSAN_ATOMIC_FUNC_STORE(name, type) \
1231 _MSAN_ATOMIC_FUNC_STORE(rel_##name, type)
1233 MSAN_ATOMIC_FUNC_ADD(8, uint8_t);
1234 MSAN_ATOMIC_FUNC_ADD(16, uint16_t);
1235 MSAN_ATOMIC_FUNC_ADD(32, uint32_t);
1236 MSAN_ATOMIC_FUNC_ADD(64, uint64_t);
1237 MSAN_ATOMIC_FUNC_ADD(int, u_int);
1238 MSAN_ATOMIC_FUNC_ADD(long, u_long);
1239 MSAN_ATOMIC_FUNC_ADD(ptr, uintptr_t);
1241 MSAN_ATOMIC_FUNC_SUBTRACT(8, uint8_t);
1242 MSAN_ATOMIC_FUNC_SUBTRACT(16, uint16_t);
1243 MSAN_ATOMIC_FUNC_SUBTRACT(32, uint32_t);
1244 MSAN_ATOMIC_FUNC_SUBTRACT(64, uint64_t);
1245 MSAN_ATOMIC_FUNC_SUBTRACT(int, u_int);
1246 MSAN_ATOMIC_FUNC_SUBTRACT(long, u_long);
1247 MSAN_ATOMIC_FUNC_SUBTRACT(ptr, uintptr_t);
1249 MSAN_ATOMIC_FUNC_SET(8, uint8_t);
1250 MSAN_ATOMIC_FUNC_SET(16, uint16_t);
1251 MSAN_ATOMIC_FUNC_SET(32, uint32_t);
1252 MSAN_ATOMIC_FUNC_SET(64, uint64_t);
1253 MSAN_ATOMIC_FUNC_SET(int, u_int);
1254 MSAN_ATOMIC_FUNC_SET(long, u_long);
1255 MSAN_ATOMIC_FUNC_SET(ptr, uintptr_t);
1257 MSAN_ATOMIC_FUNC_CLEAR(8, uint8_t);
1258 MSAN_ATOMIC_FUNC_CLEAR(16, uint16_t);
1259 MSAN_ATOMIC_FUNC_CLEAR(32, uint32_t);
1260 MSAN_ATOMIC_FUNC_CLEAR(64, uint64_t);
1261 MSAN_ATOMIC_FUNC_CLEAR(int, u_int);
1262 MSAN_ATOMIC_FUNC_CLEAR(long, u_long);
1263 MSAN_ATOMIC_FUNC_CLEAR(ptr, uintptr_t);
1265 MSAN_ATOMIC_FUNC_FETCHADD(32, uint32_t);
1266 MSAN_ATOMIC_FUNC_FETCHADD(64, uint64_t);
1267 MSAN_ATOMIC_FUNC_FETCHADD(int, u_int);
1268 MSAN_ATOMIC_FUNC_FETCHADD(long, u_long);
1270 MSAN_ATOMIC_FUNC_READANDCLEAR(32, uint32_t);
1271 MSAN_ATOMIC_FUNC_READANDCLEAR(64, uint64_t);
1272 MSAN_ATOMIC_FUNC_READANDCLEAR(int, u_int);
1273 MSAN_ATOMIC_FUNC_READANDCLEAR(long, u_long);
1274 MSAN_ATOMIC_FUNC_READANDCLEAR(ptr, uintptr_t);
1276 MSAN_ATOMIC_FUNC_TESTANDCLEAR(32, uint32_t);
1277 MSAN_ATOMIC_FUNC_TESTANDCLEAR(64, uint64_t);
1278 MSAN_ATOMIC_FUNC_TESTANDCLEAR(int, u_int);
1279 MSAN_ATOMIC_FUNC_TESTANDCLEAR(long, u_long);
1281 MSAN_ATOMIC_FUNC_TESTANDSET(32, uint32_t);
1282 MSAN_ATOMIC_FUNC_TESTANDSET(64, uint64_t);
1283 MSAN_ATOMIC_FUNC_TESTANDSET(int, u_int);
1284 MSAN_ATOMIC_FUNC_TESTANDSET(long, u_long);
1286 MSAN_ATOMIC_FUNC_SWAP(32, uint32_t);
1287 MSAN_ATOMIC_FUNC_SWAP(64, uint64_t);
1288 MSAN_ATOMIC_FUNC_SWAP(int, u_int);
1289 MSAN_ATOMIC_FUNC_SWAP(long, u_long);
1290 MSAN_ATOMIC_FUNC_SWAP(ptr, uintptr_t);
1292 MSAN_ATOMIC_FUNC_CMPSET(8, uint8_t);
1293 MSAN_ATOMIC_FUNC_CMPSET(16, uint16_t);
1294 MSAN_ATOMIC_FUNC_CMPSET(32, uint32_t);
1295 MSAN_ATOMIC_FUNC_CMPSET(64, uint64_t);
1296 MSAN_ATOMIC_FUNC_CMPSET(int, u_int);
1297 MSAN_ATOMIC_FUNC_CMPSET(long, u_long);
1298 MSAN_ATOMIC_FUNC_CMPSET(ptr, uintptr_t);
1300 MSAN_ATOMIC_FUNC_FCMPSET(8, uint8_t);
1301 MSAN_ATOMIC_FUNC_FCMPSET(16, uint16_t);
1302 MSAN_ATOMIC_FUNC_FCMPSET(32, uint32_t);
1303 MSAN_ATOMIC_FUNC_FCMPSET(64, uint64_t);
1304 MSAN_ATOMIC_FUNC_FCMPSET(int, u_int);
1305 MSAN_ATOMIC_FUNC_FCMPSET(long, u_long);
1306 MSAN_ATOMIC_FUNC_FCMPSET(ptr, uintptr_t);
1308 _MSAN_ATOMIC_FUNC_LOAD(bool, bool);
1309 MSAN_ATOMIC_FUNC_LOAD(8, uint8_t);
1310 MSAN_ATOMIC_FUNC_LOAD(16, uint16_t);
1311 MSAN_ATOMIC_FUNC_LOAD(32, uint32_t);
1312 MSAN_ATOMIC_FUNC_LOAD(64, uint64_t);
1313 MSAN_ATOMIC_FUNC_LOAD(char, u_char);
1314 MSAN_ATOMIC_FUNC_LOAD(short, u_short);
1315 MSAN_ATOMIC_FUNC_LOAD(int, u_int);
1316 MSAN_ATOMIC_FUNC_LOAD(long, u_long);
1317 MSAN_ATOMIC_FUNC_LOAD(ptr, uintptr_t);
1319 _MSAN_ATOMIC_FUNC_STORE(bool, bool);
1320 MSAN_ATOMIC_FUNC_STORE(8, uint8_t);
1321 MSAN_ATOMIC_FUNC_STORE(16, uint16_t);
1322 MSAN_ATOMIC_FUNC_STORE(32, uint32_t);
1323 MSAN_ATOMIC_FUNC_STORE(64, uint64_t);
1324 MSAN_ATOMIC_FUNC_STORE(char, u_char);
1325 MSAN_ATOMIC_FUNC_STORE(short, u_short);
1326 MSAN_ATOMIC_FUNC_STORE(int, u_int);
1327 MSAN_ATOMIC_FUNC_STORE(long, u_long);
1328 MSAN_ATOMIC_FUNC_STORE(ptr, uintptr_t);
1330 MSAN_ATOMIC_FUNC_THREAD_FENCE(acq);
1331 MSAN_ATOMIC_FUNC_THREAD_FENCE(rel);
1332 MSAN_ATOMIC_FUNC_THREAD_FENCE(acq_rel);
1333 MSAN_ATOMIC_FUNC_THREAD_FENCE(seq_cst);
1336 kmsan_atomic_interrupt_fence(void)
1338 atomic_interrupt_fence();
1341 /* -------------------------------------------------------------------------- */
1343 #include <sys/bus.h>
1344 #include <machine/bus.h>
1345 #include <sys/bus_san.h>
1348 kmsan_bus_space_map(bus_space_tag_t tag, bus_addr_t hnd, bus_size_t size,
1349 int flags, bus_space_handle_t *handlep)
1351 return (bus_space_map(tag, hnd, size, flags, handlep));
1355 kmsan_bus_space_unmap(bus_space_tag_t tag, bus_space_handle_t hnd,
1358 bus_space_unmap(tag, hnd, size);
1362 kmsan_bus_space_subregion(bus_space_tag_t tag, bus_space_handle_t hnd,
1363 bus_size_t offset, bus_size_t size, bus_space_handle_t *handlep)
1365 return (bus_space_subregion(tag, hnd, offset, size, handlep));
1369 kmsan_bus_space_free(bus_space_tag_t tag, bus_space_handle_t hnd,
1372 bus_space_free(tag, hnd, size);
1376 kmsan_bus_space_barrier(bus_space_tag_t tag, bus_space_handle_t hnd,
1377 bus_size_t offset, bus_size_t size, int flags)
1379 bus_space_barrier(tag, hnd, offset, size, flags);
1382 /* XXXMJ x86-specific */
1383 #define MSAN_BUS_READ_FUNC(func, width, type) \
1384 type kmsan_bus_space_read##func##_##width(bus_space_tag_t tag, \
1385 bus_space_handle_t hnd, bus_size_t offset) \
1388 if ((tag) != X86_BUS_SPACE_IO) \
1389 kmsan_shadow_fill((uintptr_t)(hnd + offset), \
1390 KMSAN_STATE_INITED, (width)); \
1391 ret = bus_space_read##func##_##width(tag, hnd, offset); \
1392 kmsan_init_ret(sizeof(type)); \
1396 #define MSAN_BUS_READ_PTR_FUNC(func, width, type) \
1397 void kmsan_bus_space_read_##func##_##width(bus_space_tag_t tag, \
1398 bus_space_handle_t hnd, bus_size_t size, type *buf, \
1401 kmsan_shadow_fill((uintptr_t)buf, KMSAN_STATE_INITED, \
1403 bus_space_read_##func##_##width(tag, hnd, size, buf, \
1407 MSAN_BUS_READ_FUNC(, 1, uint8_t)
1408 MSAN_BUS_READ_FUNC(_stream, 1, uint8_t)
1409 MSAN_BUS_READ_PTR_FUNC(multi, 1, uint8_t)
1410 MSAN_BUS_READ_PTR_FUNC(multi_stream, 1, uint8_t)
1411 MSAN_BUS_READ_PTR_FUNC(region, 1, uint8_t)
1412 MSAN_BUS_READ_PTR_FUNC(region_stream, 1, uint8_t)
1414 MSAN_BUS_READ_FUNC(, 2, uint16_t)
1415 MSAN_BUS_READ_FUNC(_stream, 2, uint16_t)
1416 MSAN_BUS_READ_PTR_FUNC(multi, 2, uint16_t)
1417 MSAN_BUS_READ_PTR_FUNC(multi_stream, 2, uint16_t)
1418 MSAN_BUS_READ_PTR_FUNC(region, 2, uint16_t)
1419 MSAN_BUS_READ_PTR_FUNC(region_stream, 2, uint16_t)
1421 MSAN_BUS_READ_FUNC(, 4, uint32_t)
1422 MSAN_BUS_READ_FUNC(_stream, 4, uint32_t)
1423 MSAN_BUS_READ_PTR_FUNC(multi, 4, uint32_t)
1424 MSAN_BUS_READ_PTR_FUNC(multi_stream, 4, uint32_t)
1425 MSAN_BUS_READ_PTR_FUNC(region, 4, uint32_t)
1426 MSAN_BUS_READ_PTR_FUNC(region_stream, 4, uint32_t)
1428 MSAN_BUS_READ_FUNC(, 8, uint64_t)
1430 #define MSAN_BUS_WRITE_FUNC(func, width, type) \
1431 void kmsan_bus_space_write##func##_##width(bus_space_tag_t tag, \
1432 bus_space_handle_t hnd, bus_size_t offset, type value) \
1434 bus_space_write##func##_##width(tag, hnd, offset, value);\
1437 #define MSAN_BUS_WRITE_PTR_FUNC(func, width, type) \
1438 void kmsan_bus_space_write_##func##_##width(bus_space_tag_t tag,\
1439 bus_space_handle_t hnd, bus_size_t size, const type *buf, \
1442 kmsan_shadow_check((uintptr_t)buf, sizeof(type) * count,\
1443 "bus_space_write()"); \
1444 bus_space_write_##func##_##width(tag, hnd, size, buf, \
1448 MSAN_BUS_WRITE_FUNC(, 1, uint8_t)
1449 MSAN_BUS_WRITE_FUNC(_stream, 1, uint8_t)
1450 MSAN_BUS_WRITE_PTR_FUNC(multi, 1, uint8_t)
1451 MSAN_BUS_WRITE_PTR_FUNC(multi_stream, 1, uint8_t)
1452 MSAN_BUS_WRITE_PTR_FUNC(region, 1, uint8_t)
1453 MSAN_BUS_WRITE_PTR_FUNC(region_stream, 1, uint8_t)
1455 MSAN_BUS_WRITE_FUNC(, 2, uint16_t)
1456 MSAN_BUS_WRITE_FUNC(_stream, 2, uint16_t)
1457 MSAN_BUS_WRITE_PTR_FUNC(multi, 2, uint16_t)
1458 MSAN_BUS_WRITE_PTR_FUNC(multi_stream, 2, uint16_t)
1459 MSAN_BUS_WRITE_PTR_FUNC(region, 2, uint16_t)
1460 MSAN_BUS_WRITE_PTR_FUNC(region_stream, 2, uint16_t)
1462 MSAN_BUS_WRITE_FUNC(, 4, uint32_t)
1463 MSAN_BUS_WRITE_FUNC(_stream, 4, uint32_t)
1464 MSAN_BUS_WRITE_PTR_FUNC(multi, 4, uint32_t)
1465 MSAN_BUS_WRITE_PTR_FUNC(multi_stream, 4, uint32_t)
1466 MSAN_BUS_WRITE_PTR_FUNC(region, 4, uint32_t)
1467 MSAN_BUS_WRITE_PTR_FUNC(region_stream, 4, uint32_t)
1469 MSAN_BUS_WRITE_FUNC(, 8, uint64_t)
1471 #define MSAN_BUS_SET_FUNC(func, width, type) \
1472 void kmsan_bus_space_set_##func##_##width(bus_space_tag_t tag, \
1473 bus_space_handle_t hnd, bus_size_t offset, type value, \
1476 bus_space_set_##func##_##width(tag, hnd, offset, value, \
1480 MSAN_BUS_SET_FUNC(multi, 1, uint8_t)
1481 MSAN_BUS_SET_FUNC(region, 1, uint8_t)
1482 MSAN_BUS_SET_FUNC(multi_stream, 1, uint8_t)
1483 MSAN_BUS_SET_FUNC(region_stream, 1, uint8_t)
1485 MSAN_BUS_SET_FUNC(multi, 2, uint16_t)
1486 MSAN_BUS_SET_FUNC(region, 2, uint16_t)
1487 MSAN_BUS_SET_FUNC(multi_stream, 2, uint16_t)
1488 MSAN_BUS_SET_FUNC(region_stream, 2, uint16_t)
1490 MSAN_BUS_SET_FUNC(multi, 4, uint32_t)
1491 MSAN_BUS_SET_FUNC(region, 4, uint32_t)
1492 MSAN_BUS_SET_FUNC(multi_stream, 4, uint32_t)
1493 MSAN_BUS_SET_FUNC(region_stream, 4, uint32_t)
1495 /* -------------------------------------------------------------------------- */
1498 kmsan_bus_dmamap_sync(struct memdesc *desc, bus_dmasync_op_t op)
1501 * Some drivers, e.g., nvme, use the same code path for loading device
1502 * read and write requests, and will thus specify both flags. In this
1503 * case we should not do any checking since it will generally lead to
1506 if ((op & (BUS_DMASYNC_PREREAD | BUS_DMASYNC_PREWRITE)) ==
1507 BUS_DMASYNC_PREWRITE) {
1508 switch (desc->md_type) {
1510 kmsan_check(desc->u.md_vaddr, desc->md_len,
1514 kmsan_check_mbuf(desc->u.md_mbuf, "dmasync");
1519 kmsan_panic("%s: unhandled memdesc type %d", __func__,
1523 if ((op & BUS_DMASYNC_POSTREAD) != 0) {
1524 switch (desc->md_type) {
1526 kmsan_mark(desc->u.md_vaddr, desc->md_len,
1527 KMSAN_STATE_INITED);
1530 kmsan_mark_mbuf(desc->u.md_mbuf, KMSAN_STATE_INITED);
1535 kmsan_panic("%s: unhandled memdesc type %d", __func__,
projects / FreeBSD / FreeBSD.git / blob