summaryrefslogtreecommitdiff
path: root/share/man/man4/kubsan.4
blob: c22ebf9b962d9f25ae535509229bed2505280787 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
.\"	$OpenBSD: kubsan.4,v 1.3 2019/05/24 18:53:25 anton Exp $
.\"
.\" Copyright (c) 2019 Anton Lindqvist <anton@openbsd.org>
.\"
.\" Permission to use, copy, modify, and distribute this software for any
.\" purpose with or without fee is hereby granted, provided that the above
.\" copyright notice and this permission notice appear in all copies.
.\"
.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
.Dd $Mdocdate: May 24 2019 $
.Dt KUBSAN 4
.Os
.Sh NAME
.Nm kubsan
.Nd kernel undefined behavior sanitizer
.Sh SYNOPSIS
.Cd option KUBSAN
.Sh DESCRIPTION
.Nm
detects undefined behavior at runtime inside the kernel.
Detected undefined behavior is printed to the system console,
including the offending line in the source code.
.Pp
By default,
.Nm
is not enabled but instead requires the following line to be present in the
kernel configuration:
.Bd -literal -offset indent
option KUBSAN
.Ed
.Pp
The following undefined behavior is detected:
.Bl -tag -width 4n
.It Integer overflow
The result of an arithmetic computation on two integer operands cannot be
represented by the destination type.
.It Negate overflow
Negation of an integer cannot be represented by the destination type.
.It Pointer overflow
Pointer arithmetic overflow.
.It Out of bounds
Array indexing out of bounds, limited to cases where the size of the array
can be statically determined.
.It Shift out of bounds
Undefined logical shift caused by:
.Bl -dash
.It
The shift amount being negative.
.It
The shift operand being negative.
.It
The shift amount exceeds the number of bits as given by the shift operand
type.
.It
The result of the shift computation cannot be represented by the destination
type.
.El
.It Non-null argument
Passing
.Dv NULL
as the value for a function argument annotated with
.Dv __nonnull__ .
.It Invalid load
Loading a value that cannot be represented by the destination type.
.It Type mismatch
Mismatch between pointer and value type caused by:
.Bl -dash
.It
A pointer which does not fulfill the alignment requirements of the value type.
.It
A pointer to an address which lacks sufficient space to store the value type.
.El
.It Unreachable
Execution reached passed a function annotated with
.Dv __dead .
.El
.Sh SEE ALSO
.Xr options 4
.Sh HISTORY
The
.Nm
implementation
is derived from
.Nx
and first appeared in
.Ox 6.5 .
.Sh AUTHORS
The
.Nm
implementation was written by
.An Anton Lindqvist Aq Mt anton@openbsd.org .
.Sh CAVEATS
The
.Nm
implementation is limited to architectures using
.Xr clang 1
as their default compiler.