From 06c27ff56b460864b5195bc0668d1d582df3cbf8 Mon Sep 17 00:00:00 2001
From: Dmitry Vyukov <dvyukov@google.com>
Date: Tue, 4 May 2021 11:54:36 +0200
Subject: dashboard/config/linux: enable PAGE_OWNER

PAGE_OWNER allows to get alloc/free stacks for UAFs on freed pages,
which is useful for debugging of such reports.
---
 dashboard/config/linux/bits/base.yml  | 2 +-
 dashboard/config/linux/bits/kasan.yml | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

(limited to 'dashboard/config/linux/bits')

diff --git a/dashboard/config/linux/bits/base.yml b/dashboard/config/linux/bits/base.yml
index 2198eff87..c6f8d22da 100644
--- a/dashboard/config/linux/bits/base.yml
+++ b/dashboard/config/linux/bits/base.yml
@@ -19,7 +19,7 @@ config:
  - DEBUG_KERNEL
 
  # panic=86400: prevents kernel from rebooting so that we don't get reboot output in all crash reports.
- - CMDLINE: "earlyprintk=serial net.ifnames=0 sysctl.kernel.hung_task_all_cpu_backtrace=1 ima_policy=tcb nf-conntrack-ftp.ports=20000 nf-conntrack-tftp.ports=20000 nf-conntrack-sip.ports=20000 nf-conntrack-irc.ports=20000 nf-conntrack-sane.ports=20000 binder.debug_mask=0 rcupdate.rcu_expedited=1 no_hash_pointers"
+ - CMDLINE: "earlyprintk=serial net.ifnames=0 sysctl.kernel.hung_task_all_cpu_backtrace=1 ima_policy=tcb nf-conntrack-ftp.ports=20000 nf-conntrack-tftp.ports=20000 nf-conntrack-sip.ports=20000 nf-conntrack-irc.ports=20000 nf-conntrack-sane.ports=20000 binder.debug_mask=0 rcupdate.rcu_expedited=1 no_hash_pointers page_owner=on"
 
  # This config can be used to enable any additional temporal debugging features in linux-next tree.
  - DEBUG_AID_FOR_SYZBOT: [linux-next]
diff --git a/dashboard/config/linux/bits/kasan.yml b/dashboard/config/linux/bits/kasan.yml
index 8bc491f05..03b457e07 100644
--- a/dashboard/config/linux/bits/kasan.yml
+++ b/dashboard/config/linux/bits/kasan.yml
@@ -12,6 +12,9 @@ config:
  - SPARSEMEM_VMEMMAP: [-arm]
  # This is required to enable SPARSEMEM_VMEMMAP.
  - SPARSEMEM_MANUAL: [-arm, -s390]
+ # This allows to get alloc/free stacks for UAFs on freed pages.
+ # This also needs page_owner=on in cmdline.
+ - PAGE_OWNER
 
  - UBSAN: [v5.8]
  - UBSAN_SANITIZE_ALL: [v5.8, -arm, -riscv]
-- 
cgit mrf-deployment