Isi ihe a na-emepe emepe Linux 5.12 включена реализация механизма KFence (Kernel Electric Fence), который проверяет работу с памятью, отлавливая выход за границы буферов, обращения к памяти после освобождения и другие ошибки подобного класса.
Ọrụ yiri nke ahụ adịlarị na kernel n'ụdị nhọrọ nrụpụta KASAN (kernel address sanitizer, na-eji Address Sanitizer na gcc ọgbara ọhụrụ na clang) - agbanyeghị, edobere ya maka iji debugging. Usoro nke KFence dị iche na KASAN na ọsọ ọsọ ya dị elu, nke na-eme ka o kwe omume iji njirimara a ọbụna na cores na sistemụ arụ ọrụ.
Ngwa na sistemu mmepụta ga-eme ka o kwe omume ijide njehie ebe nchekwa na-apụtaghị na ule ule na-apụta naanị n'oge arụ ọrụ ma ọ bụ n'oge ọrụ ogologo oge (na nnukwu oge). Na mgbakwunye, iji KFence na sistemu mmepụta ga-eme ka o kwe omume ịbawanye ọnụ ọgụgụ igwe ndị na-etinye aka na-elele ọrụ kernel na ebe nchekwa.
KFence na-enweta obere ibu na-adabere n'elu site na ịtinye ibe nchekwa n'ime ikpo ahụ n'oge a kapịrị ọnụ. Mgbe oge nchekwa na-esote agwụla, KFence, site na sistemụ oke ebe nchekwa ọkọlọtọ (SLAB ma ọ bụ SLUB allocator), na-agbakwunye ibe nchebe na-esote site na ọdọ mmiri KFence, wee malite akụkọ ngụ oge ọhụrụ. Ihe ọ bụla KFence dị na ibe ebe nchekwa dị iche, na ibe ebe nchekwa dị n'akụkụ aka ekpe na aka nri na-etolite ibe nchekwa, nke a na-ahọrọ na-enweghị usoro.
Ya mere, ibe ndị nwere ihe na-ekewapụ ibe ha site na ibe nchebe, nke a na-ahazi iji mepụta "mmejọ ibe" na ịnweta ọ bụla. Iji chọpụta ihe na-abụghị oke na-ede n'ime ibe ihe, a na-ejikwa “mpaghara uhie” dabere n'ụkpụrụ, nke na-eburu ebe nchekwa ihe anaghị eji ya, nke na-afọdụ mgbe agbakọnyere nha ibe ebe nchekwa. —+—————————————————————————————— | xxxxxxxxx | O: | xxxxxxxxx | :O | xxxxxxxxx | | xxxxxxxxx | B: | xxxxxxxxx | :B | xxxxxxxxx | | x NCHE x | J : RED- | x NCHE x | RED- : J | x NCHE x | | xxxxxxxxx | E: Mpaghara | xxxxxxxxx | ONYE: E | xxxxxxxxx | | xxxxxxxxx | C: | xxxxxxxxx | :C | xxxxxxxxx | | xxxxxxxxx | T: | xxxxxxxxx | :T | xxxxxxxxx | —+—————————————————————————————
Ọ bụrụ na a na-eme mgbalị iji nweta mpaghara n'èzí ókèala nchekwa ahụ, ọrụ ahụ na-emetụta ibe nchebe, nke na-eduga na ọgbọ nke "mmejọ ibe", nke na-egbochi KFence ma dekọọ ozi gbasara nsogbu ahụ. Site na ndabara, KFence anaghị egbochi njehie ma gosipụta naanị ịdọ aka ná ntị na ndekọ, mana enwere ntọala “panic_on_warn” nke na-enye gị ohere itinye kernel n'ọnọdụ ụjọ ma ọ bụrụ na achọpụtara njehie.
isi: opennet.ru
