1 files changed, 12 insertions, 5 deletions
diff --git a/kernel/trace/trace_kprobe.c b/kernel/trace/trace_kprobe.c
index 70b632c3bd0..d8db9357489 100644
--- a/kernel/trace/trace_kprobe.c
+++ b/kernel/trace/trace_kprobe.c
@@ -1149,18 +1149,23 @@ static __kprobes int kprobe_profile_func(struct kprobe *kp,
        struct trace_probe *tp = container_of(kp, struct trace_probe, rp.kp);
        struct ftrace_event_call *call = &tp->call;
        struct kprobe_trace_entry *entry;
-        int size, i, pc;
+        int size, __size, i, pc;
        unsigned long irq_flags;
        local_save_flags(irq_flags);
        pc = preempt_count();
-        size = SIZEOF_KPROBE_TRACE_ENTRY(tp->nr_args);
+        __size = SIZEOF_KPROBE_TRACE_ENTRY(tp->nr_args);
+        size = ALIGN(__size + sizeof(u32), sizeof(u64));
+        size -= sizeof(u32);
        do {
                char raw_data[size];
                struct trace_entry *ent;
+                /*
+                 * Zero dead bytes from alignment to avoid stack leak
+                 * to userspace
+                 */
                *(u64 *)(&raw_data[size - sizeof(u64)]) = 0ULL;
                entry = (struct kprobe_trace_entry *)raw_data;
                ent = &entry->ent;
@@ -1183,13 +1188,15 @@ static __kprobes int kretprobe_profile_func(struct kretprobe_instance *ri,
        struct trace_probe *tp = container_of(ri->rp, struct trace_probe, rp);
        struct ftrace_event_call *call = &tp->call;
        struct kretprobe_trace_entry *entry;
-        int size, i, pc;
+        int size, __size, i, pc;
        unsigned long irq_flags;
        local_save_flags(irq_flags);
        pc = preempt_count();
-        size = SIZEOF_KRETPROBE_TRACE_ENTRY(tp->nr_args);
+        __size = SIZEOF_KRETPROBE_TRACE_ENTRY(tp->nr_args);
+        size = ALIGN(__size + sizeof(u32), sizeof(u64));
+        size -= sizeof(u32);
        do {
                char raw_data[size];

diff --git a/kernel/trace/trace_kprobe.c b/kernel/trace/trace_kprobe.c index 70b632c3bd0..d8db9357489 100644 --- a/kernel/trace/trace_kprobe.c +++ b/kernel/trace/trace_kprobe.c
@@ -1149,18 +1149,23 @@ static __kprobes int kprobe_profile_func(struct kprobe *kp,
1149	struct trace_probe *tp = container_of(kp, struct trace_probe, rp.kp);	1149	struct trace_probe *tp = container_of(kp, struct trace_probe, rp.kp);
1150	struct ftrace_event_call *call = &tp->call;	1150	struct ftrace_event_call *call = &tp->call;
1151	struct kprobe_trace_entry *entry;	1151	struct kprobe_trace_entry *entry;
1152	int size, i, pc;	1152	int size, __size, i, pc;
1153	unsigned long irq_flags;	1153	unsigned long irq_flags;
1154		1154
1155	local_save_flags(irq_flags);	1155	local_save_flags(irq_flags);
1156	pc = preempt_count();	1156	pc = preempt_count();
1157		1157
1158	size = SIZEOF_KPROBE_TRACE_ENTRY(tp->nr_args);	1158	__size = SIZEOF_KPROBE_TRACE_ENTRY(tp->nr_args);
		1159	size = ALIGN(__size + sizeof(u32), sizeof(u64));
		1160	size -= sizeof(u32);
1159		1161
1160	do {	1162	do {
1161	char raw_data[size];	1163	char raw_data[size];
1162	struct trace_entry *ent;	1164	struct trace_entry *ent;
1163		1165	/*
		1166	* Zero dead bytes from alignment to avoid stack leak
		1167	* to userspace
		1168	*/
1164	(u64 )(&raw_data[size - sizeof(u64)]) = 0ULL;	1169	(u64 )(&raw_data[size - sizeof(u64)]) = 0ULL;
1165	entry = (struct kprobe_trace_entry *)raw_data;	1170	entry = (struct kprobe_trace_entry *)raw_data;
1166	ent = &entry->ent;	1171	ent = &entry->ent;
@@ -1183,13 +1188,15 @@ static __kprobes int kretprobe_profile_func(struct kretprobe_instance *ri,
1183	struct trace_probe *tp = container_of(ri->rp, struct trace_probe, rp);	1188	struct trace_probe *tp = container_of(ri->rp, struct trace_probe, rp);
1184	struct ftrace_event_call *call = &tp->call;	1189	struct ftrace_event_call *call = &tp->call;
1185	struct kretprobe_trace_entry *entry;	1190	struct kretprobe_trace_entry *entry;
1186	int size, i, pc;	1191	int size, __size, i, pc;
1187	unsigned long irq_flags;	1192	unsigned long irq_flags;
1188		1193
1189	local_save_flags(irq_flags);	1194	local_save_flags(irq_flags);
1190	pc = preempt_count();	1195	pc = preempt_count();
1191		1196
1192	size = SIZEOF_KRETPROBE_TRACE_ENTRY(tp->nr_args);	1197	__size = SIZEOF_KRETPROBE_TRACE_ENTRY(tp->nr_args);
		1198	size = ALIGN(__size + sizeof(u32), sizeof(u64));
		1199	size -= sizeof(u32);
1193		1200
1194	do {	1201	do {
1195	char raw_data[size];	1202	char raw_data[size];