xref: /freebsd/tools/test/stress2/misc/getrandom2.sh (revision 4d846d260e2b9a3d4d0a701462568268cbfe7a5b) 
18a272653SPeter Holm#!/bin/sh
28a272653SPeter Holm
38a272653SPeter Holm#
4*4d846d26SWarner Losh# SPDX-License-Identifier: BSD-2-Clause
58a272653SPeter Holm#
68a272653SPeter Holm# Copyright (c) 2020 Peter Holm
78a272653SPeter Holm#
88a272653SPeter Holm# Redistribution and use in source and binary forms, with or without
98a272653SPeter Holm# modification, are permitted provided that the following conditions
108a272653SPeter Holm# are met:
118a272653SPeter Holm# 1. Redistributions of source code must retain the above copyright
128a272653SPeter Holm#    notice, this list of conditions and the following disclaimer.
138a272653SPeter Holm# 2. Redistributions in binary form must reproduce the above copyright
148a272653SPeter Holm#    notice, this list of conditions and the following disclaimer in the
158a272653SPeter Holm#    documentation and/or other materials provided with the distribution.
168a272653SPeter Holm#
178a272653SPeter Holm# THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
188a272653SPeter Holm# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
198a272653SPeter Holm# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
208a272653SPeter Holm# ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
218a272653SPeter Holm# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
228a272653SPeter Holm# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
238a272653SPeter Holm# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
248a272653SPeter Holm# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
258a272653SPeter Holm# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
268a272653SPeter Holm# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
278a272653SPeter Holm# SUCH DAMAGE.
288a272653SPeter Holm#
298a272653SPeter Holm
308a272653SPeter Holm# getrandom(2) DoS scenario.
318a272653SPeter Holm
328a272653SPeter Holm# panic: pmap_growkernel: no memory to grow kernel
338a272653SPeter Holm# cpuid = 8
348a272653SPeter Holm# time = 1582102582
358a272653SPeter Holm# KDB: stack backtrace:
368a272653SPeter Holm# db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe03e6992450
378a272653SPeter Holm# vpanic() at vpanic+0x185/frame 0xfffffe03e69924b0
388a272653SPeter Holm# panic() at panic+0x43/frame 0xfffffe03e6992510
398a272653SPeter Holm# pmap_growkernel() at pmap_growkernel+0x2d4/frame 0xfffffe03e6992550
408a272653SPeter Holm# vm_map_insert() at vm_map_insert+0x296/frame 0xfffffe03e69925f0
418a272653SPeter Holm# vm_map_find() at vm_map_find+0x617/frame 0xfffffe03e69926d0
428a272653SPeter Holm# kva_import() at kva_import+0x3c/frame 0xfffffe03e6992710
438a272653SPeter Holm# vmem_try_fetch() at vmem_try_fetch+0xde/frame 0xfffffe03e6992760
448a272653SPeter Holm# vmem_xalloc() at vmem_xalloc+0x4bb/frame 0xfffffe03e69927e0
458a272653SPeter Holm# kva_import_domain() at kva_import_domain+0x36/frame 0xfffffe03e6992810
468a272653SPeter Holm# vmem_try_fetch() at vmem_try_fetch+0xde/frame 0xfffffe03e6992860
478a272653SPeter Holm# vmem_xalloc() at vmem_xalloc+0x4bb/frame 0xfffffe03e69928e0
488a272653SPeter Holm# vmem_alloc() at vmem_alloc+0x8a/frame 0xfffffe03e6992930
498a272653SPeter Holm# kmem_malloc_domainset() at kmem_malloc_domainset+0x92/frame 0xfffffe03e69929a0
508a272653SPeter Holm# malloc() at malloc+0x162/frame 0xfffffe03e69929f0
518a272653SPeter Holm# read_random_uio() at read_random_uio+0xa5/frame 0xfffffe03e6992a40
528a272653SPeter Holm# sys_getrandom() at sys_getrandom+0x7b/frame 0xfffffe03e6992ac0
538a272653SPeter Holm# amd64_syscall() at amd64_syscall+0x183/frame 0xfffffe03e6992bf0
548a272653SPeter Holm# fast_syscall_common() at fast_syscall_common+0x101/frame 0xfffffe03e6992bf0
558a272653SPeter Holm# --- syscall (563, FreeBSD ELF64, sys_getrandom), rip = 0x80041899a, rsp = 0x7ffffffc3cb8, rbp = 0x7ffffffc3cd0 ---
568a272653SPeter Holm# KDB: enter: panic
578a272653SPeter Holm# [ thread pid 12095 tid 186584 ]
588a272653SPeter Holm# Stopped at      kdb_enter+0x37: movq    $0,0x1084916(%rip)
598a272653SPeter Holm# db> x/s version
608a272653SPeter Holm# version:        FreeBSD 13.0-CURRENT #0 r358094: Wed Feb 19 06:25:16 CET 2020\012    pho@t2.osted.lan:/usr/src/sys/amd64/compile/PHO\012
618a272653SPeter Holm# db>
628a272653SPeter Holm
638a272653SPeter Holm. ../default.cfg
648a272653SPeter Holm
658a272653SPeter Holmdir=/tmp
668a272653SPeter Holmodir=`pwd`
678a272653SPeter Holmcd $dir
688a272653SPeter Holmsed '1,/^EOF/d' < $odir/$0 > $dir/getrandom2.c
698a272653SPeter Holmmycc -o getrandom2 -Wall -Wextra -O0 -g getrandom2.c || exit 1
708a272653SPeter Holmrm -f getrandom2.c
718a272653SPeter Holmcd $odir
728a272653SPeter Holm
738a272653SPeter Holmcd /tmp
748a272653SPeter Holm$dir/getrandom2
758a272653SPeter Holms=$?
768a272653SPeter Holm[ -f getrandom2.core -a $s -eq 0 ] &&
778a272653SPeter Holm    { ls -l getrandom2.core; s=1; }
788a272653SPeter Holmcd $odir
798a272653SPeter Holm
808a272653SPeter Holmrm -rf $dir/getrandom2
818a272653SPeter Holmexit $s
828a272653SPeter Holm
838a272653SPeter HolmEOF
848a272653SPeter Holm#include <sys/param.h>
858a272653SPeter Holm#include <sys/mman.h>
868a272653SPeter Holm#include <sys/random.h>
878a272653SPeter Holm#include <sys/resource.h>
888a272653SPeter Holm#include <sys/stat.h>
898a272653SPeter Holm#include <sys/sysctl.h>
908a272653SPeter Holm#include <sys/wait.h>
918a272653SPeter Holm
928a272653SPeter Holm#include <err.h>
938a272653SPeter Holm#include <errno.h>
948a272653SPeter Holm#include <fcntl.h>
958a272653SPeter Holm#include <stdatomic.h>
968a272653SPeter Holm#include <stdio.h>
978a272653SPeter Holm#include <stdlib.h>
988a272653SPeter Holm#include <time.h>
998a272653SPeter Holm#include <unistd.h>
1008a272653SPeter Holm
1018a272653SPeter Holmstatic size_t mx;
1028a272653SPeter Holmstatic _Atomic(int) *share;
1038a272653SPeter Holmstatic int parallel;
1048a272653SPeter Holmstatic char *bp;
1058a272653SPeter Holm
1068a272653SPeter Holm#define PARALLEL 40000   /* Arbitrary cap */
1078a272653SPeter Holm#define SYNC 0
1088a272653SPeter Holm
1098a272653SPeter Holmstatic void
1108a272653SPeter Holmtest(void)
1118a272653SPeter Holm{
1128a272653SPeter Holm	int i;
1138a272653SPeter Holm
1148a272653SPeter Holm	alarm(180);
1158a272653SPeter Holm	(void)atomic_fetch_add(&share[SYNC], 1);
1168a272653SPeter Holm	while (atomic_load(&share[SYNC]) != parallel)
1178a272653SPeter Holm		usleep(200000);
1188a272653SPeter Holm	for (i = 0; i < 10; i++)
1198a272653SPeter Holm		getrandom(bp, mx, 0);
1208a272653SPeter Holm//		close(66);
1218a272653SPeter Holm
1228a272653SPeter Holm	_exit(0);
1238a272653SPeter Holm}
1248a272653SPeter Holm
1258a272653SPeter Holmint
1268a272653SPeter Holmmain(void)
1278a272653SPeter Holm{
1288a272653SPeter Holm	pid_t *pids;
1298a272653SPeter Holm	struct rlimit rlp;
1308a272653SPeter Holm	size_t len;
1318a272653SPeter Holm        size_t f, vsz;
1328a272653SPeter Holm        u_int pages;
1338a272653SPeter Holm	int e, i, status;
1348a272653SPeter Holm
1358a272653SPeter Holm	e = 0;
1368a272653SPeter Holm	len = PAGE_SIZE;
1378a272653SPeter Holm	if ((share = mmap(NULL, len, PROT_READ | PROT_WRITE,
1388a272653SPeter Holm	    MAP_ANON | MAP_SHARED, -1, 0)) == MAP_FAILED)
1398a272653SPeter Holm		err(1, "mmap");
1408a272653SPeter Holm
1418a272653SPeter Holm	if (getrlimit(RLIMIT_NPROC, &rlp) < 0)
1428a272653SPeter Holm		err(1, "getrlimit");
1438a272653SPeter Holm	parallel = rlp.rlim_cur / 100 * 80;
1448a272653SPeter Holm	if (parallel > PARALLEL)
1458a272653SPeter Holm		parallel = PARALLEL;
1468a272653SPeter Holm	pids = calloc(parallel, sizeof(pid_t));
1478a272653SPeter Holm
1488a272653SPeter Holm        vsz = sizeof(pages);
1498a272653SPeter Holm        if (sysctlbyname("vm.stats.vm.v_free_count", &pages, &vsz, NULL, 0) != 0)
1508a272653SPeter Holm                err(1, "sysctl(vm.stats.vm.v_free_count)");
1518a272653SPeter Holm	f = pages;
1528a272653SPeter Holm	f *= PAGE_SIZE;
1538a272653SPeter Holm
1548a272653SPeter Holm	if (getrlimit(RLIMIT_DATA, &rlp) < 0)
1558a272653SPeter Holm		err(1,"getrlimit");
1568a272653SPeter Holm	mx = rlp.rlim_cur;
1578a272653SPeter Holm	if (mx > f / parallel)
1588a272653SPeter Holm		mx = f / parallel;
1598a272653SPeter Holm	if ((bp = mmap(NULL, mx, PROT_READ | PROT_WRITE, MAP_ANON, -1,
1608a272653SPeter Holm	    0)) == MAP_FAILED)
1618a272653SPeter Holm		err(1, "mmap");
1628a272653SPeter Holm	for (;;) {
1638a272653SPeter Holm		if (getrandom(bp, mx, 0) != -1)
1648a272653SPeter Holm			break;
1658a272653SPeter Holm		mx = mx / 2;
1668a272653SPeter Holm	}
1678a272653SPeter Holm	printf("Max getrandom() buffer size is %zu, %d threads\n", mx,
1688a272653SPeter Holm	    parallel);
1698a272653SPeter Holm	for (i = 0; i < parallel; i++) {
1708a272653SPeter Holm		if ((pids[i] = fork()) == 0)
1718a272653SPeter Holm			test();
1728a272653SPeter Holm		if (pids[i] == -1)
1738a272653SPeter Holm			err(1, "fork()");
1748a272653SPeter Holm	}
1758a272653SPeter Holm	for (i = 0; i < parallel; i++) {
1768a272653SPeter Holm		if (waitpid(pids[i], &status, 0) == -1)
1778a272653SPeter Holm			err(1, "waitpid(%d)", pids[i]);
1788a272653SPeter Holm		if (status != 0) {
1798a272653SPeter Holm			if (WIFSIGNALED(status))
1808a272653SPeter Holm				fprintf(stderr,
1818a272653SPeter Holm				    "pid %d exit signal %d\n",
1828a272653SPeter Holm				    pids[i], WTERMSIG(status));
1838a272653SPeter Holm		}
1848a272653SPeter Holm		e += status == 0 ? 0 : 1;
1858a272653SPeter Holm	}
1868a272653SPeter Holm
1878a272653SPeter Holm	return (e);
1888a272653SPeter Holm}
189