!3897 Some simple extensions of the kfence feature

   The KUnit test suite is very likely to fail when using a deferrable timer

   since it currently causes very unpredictable sample intervals.

The KFENCE memory pool is of fixed size, and if the pool is exhausted, no

If ``CONFIG_KFENCE_DYNAMIC_OBJECTS`` is disabled,

the KFENCE memory pool is of fixed size, and if the pool is exhausted, no

further KFENCE allocations occur. With ``CONFIG_KFENCE_NUM_OBJECTS`` (default

255), the number of available guarded objects can be controlled. Each object

requires 2 pages, one for the object itself and the other one used as a guard

page; object pages are interleaved with guard pages, and every object page is

therefore surrounded by two guard pages.

If ``CONFIG_KFENCE_DYNAMIC_OBJECTS`` is enabled,

the KFENCE memory pool size could be set via the kernel boot parameter

``kfence.num_objects``. Note, the performance will degrade due to additional

instructions(eg, load) added to the fast path of the memory allocation.

The total memory dedicated to the KFENCE memory pool can be computed as::

    ( #objects + 1 ) * 2 * PAGE_SIZE

extern bool kfence_early_init;

static inline bool arm64_kfence_can_set_direct_map(void)

{

	if (IS_ENABLED(CONFIG_KFENCE_MUST_EARLY_INIT))

		return false;

	return !kfence_early_init;

}

#else /* CONFIG_KFENCE */

	if (get_option(&arg, &val))

		kfence_early_init = !!val;

#if IS_ENABLED(CONFIG_KFENCE_MUST_EARLY_INIT)

	kfence_must_early_init = (val == -1) ? true : false;

#endif

	return 0;

}

early_param("kfence.sample_interval", parse_kfence_early_init);

extern unsigned long kfence_sample_interval;

#if IS_ENABLED(CONFIG_KFENCE_MUST_EARLY_INIT)

extern bool __ro_after_init kfence_must_early_init;

#endif

#ifdef CONFIG_KFENCE_DYNAMIC_OBJECTS

extern int kfence_num_objects;

#define KFENCE_NR_OBJECTS kfence_num_objects

#else

#define KFENCE_NR_OBJECTS CONFIG_KFENCE_NUM_OBJECTS

#endif

/*

 * We allocate an even number of pages, as it simplifies calculations to map

 * address to metadata indices; effectively, the very first page serves as an

 * extended guard page, but otherwise has no special purpose.

 */

#define KFENCE_POOL_SIZE ((CONFIG_KFENCE_NUM_OBJECTS + 1) * 2 * PAGE_SIZE)

#define KFENCE_POOL_SIZE ((KFENCE_NR_OBJECTS + 1) * 2 * PAGE_SIZE)

extern char *__kfence_pool;

DECLARE_STATIC_KEY_FALSE(kfence_allocation_key);

	  Say N if you are unsure.

config KFENCE_DYNAMIC_OBJECTS

	bool "Support dynamic configuration of the number of guarded objects"

	default n

	help

	  Enable dynamic configuration of the number of KFENCE guarded objects.

	  If this config is enabled, the number of KFENCE guarded objects could

	  be overridden via boot parameter "kfence.num_objects". Note that the

	  performance will degrade due to additional instructions(eg, load)

	  added to the fast path of the memory allocation.

	  Say N if you are unsure.

config KFENCE_MUST_EARLY_INIT

	bool "Require kfence_pool to be pre-allocated on arm64."

	depends on ARM64

	help

	  To support KFENCE late init, arm64 will convert block mapping to

	  page-level mappings, which leads to performance degradation and

	  increased memory consumption.

	  If this config is enabled, only KFENCE memory early init for arm64

	  is supported, extending sample_interval to implement late enable. When

	  "kfence.sample_interval" is set to -1 or 0, KFENCE will not be enabled.

	  Only when "kfence.sample_interval" is set to -1, it can be enabled by

	  setting it to a non-zero value.

	  Say N if you are unsure.

config KFENCE_STATIC_KEYS

	bool "Use static keys to set up allocations" if EXPERT

	depends on JUMP_LABEL