Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1753725AbdHKR0X (ORCPT <rfc822;w@1wt.eu>);
        Fri, 11 Aug 2017 13:26:23 -0400
Received: from resqmta-ch2-06v.sys.comcast.net ([69.252.207.38]:39642 "EHLO
        resqmta-ch2-06v.sys.comcast.net" rhost-flags-OK-OK-OK-OK)
        by vger.kernel.org with ESMTP id S1753703AbdHKR0V (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 11 Aug 2017 13:26:21 -0400
Date: Fri, 11 Aug 2017 12:26:19 -0500 (CDT)
From: Christopher Lameter <cl@linux.com>
X-X-Sender: cl@nuc-kabylake
To: Alexander Popov <alex.popov@linux.com>
cc: Kees Cook <keescook@chromium.org>,
        Andrew Morton <akpm@linux-foundation.org>,
        Pekka Enberg <penberg@kernel.org>,
        David Rientjes <rientjes@google.com>,
        Joonsoo Kim <iamjoonsoo.kim@lge.com>,
        Paul E McKenney <paulmck@linux.vnet.ibm.com>,
        Ingo Molnar <mingo@kernel.org>, Tejun Heo <tj@kernel.org>,
        Andy Lutomirski <luto@kernel.org>,
        Nicolas Pitre <nicolas.pitre@linaro.org>, linux-mm@kvack.org,
        Rik van Riel <riel@redhat.com>, Tycho Andersen <tycho@docker.com>,
        linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com
Subject: Re: [linux-next][PATCH v2] mm/slub.c: add a naive detection of double
 free or corruption
In-Reply-To: <1502468246-1262-1-git-send-email-alex.popov@linux.com>
Message-ID: <alpine.DEB.2.20.1708111225560.3131@nuc-kabylake>
References: <1502468246-1262-1-git-send-email-alex.popov@linux.com>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
X-CMAE-Envelope: MS4wfO/ZWO7s8S0RC5tTH9dbtKRPkpAs/fa+ITu7MtD7IaTMxYkK4IOQrRe8piRQ4EM+ysRzPF0AMCwW0SedeKW2VStO4SG8rUW+TdR3igmy6xgP1x+UfygQ
 F0Bwuod/41bUWNjxvt8EfecBhvMW9ydrgCfiASx+gy9U0uvyz+u3RlebpjYzX6roNWwhr7fU1C10Xgwzjribrr2ODWvuWEAJ6WwoYRSKSQ617eOy52cwdi4z
 5M3VmShTgxM8ybV7cYnbVcBmQteVD9k3kOpgFWGB3sCxF8vmLDkoR7/iGLmmoptlx8rXaKz+8P64it23/oT1n8184YMKziNEhNBepTRwYRdB2e8uZJuBfNdg
 sz78tJ1CHLNbHdDK7w/B12Us++ZoKfLMXdNAvmEmmS7d+FX2g+O+PmK+GMT1J2vY5nRGoIHc2efi62vL712fZn0l9ktB7iJrBuAfGwakYhrvf18IjttTLK1u
 UGZDH9FmgK4ej7cn/PkxbovaQ+DDKe3j8ET68TBbPSe3f1s2UvQw8VHrRhGRIEuUwt8Jl5Y3BxWJDDRCiNP+OW+mrjiJahDAn0mMzYMEQdF7TsBMODTBX8TT
 zhHvMGaa5L7t03yRbRCtZ/d6x6z+HChL9WlqkgINcgHFg+pkqgz9iZjXH2+GydHbPMM=
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 381
Lines: 8

On Fri, 11 Aug 2017, Alexander Popov wrote:

> Add an assertion similar to "fasttop" check in GNU C Library allocator
> as a part of SLAB_FREELIST_HARDENED feature. An object added to a singly
> linked freelist should not point to itself. That helps to detect some
> double free errors (e.g. CVE-2017-2636) without slub_debug and KASAN.

Acked-by: Christoph Lameter <cl@linux.com>