Received: by 2002:ac0:aed5:0:0:0:0:0 with SMTP id t21csp5242516imb; Thu, 7 Mar 2019 10:53:45 -0800 (PST) X-Google-Smtp-Source: APXvYqz3HdwWLpRaWUBz7N4VXaJwYDIVlX84zBxkLaowAyEXcVCHkImg+1TVnFqntWRKucIyUbc2 X-Received: by 2002:a17:902:7613:: with SMTP id k19mr14015456pll.207.1551984825145; Thu, 07 Mar 2019 10:53:45 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1551984825; cv=none; d=google.com; s=arc-20160816; b=Hp6P7uYBhR9S1Z/oix7VoOwV1F1nbn/+elBg57SZPU4FmOvWnQfK0WKlwy5yglChq+ 8S9SBFIueVGMcQDqEJIq0WYscIvL2RlBPXgKCVGRlNbrOea5+GGqluDBZo25UEzjHBrs 3DdYEkl4mGrhdMwqEFFE1l9ZDxpKtjH/J+6S2VIfkqAtbMrIqE+0c82yUQSeXLP9Gitb Hdv71g++M/zYLzIQj0XwhigforM1zqxEZpWKTeS9b7OL5Ao5ZNihI/cyOKiI9TrH9ohH gKpU/K6GPontwO3/zHqtcBASs8W6K/6QUeCLDGD4Y1JxcQWDHjgW0LlIohBK3Cei8rwM Y2KA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:from:cc:to:subject :content-transfer-encoding:mime-version:references:in-reply-to :user-agent:date; bh=R4XWe/mGBLYTgAXt2jEZyU/ckB4348X+q7EZgZG6V78=; b=O63qVeC2slrQSrSEuGGFOC48O8vBaba3mZhBuGnrP4dvnoLnO60zscWralAEsrsh6d L3v9u2XCSDl8uwuO+VXCkycMzcDXUJ/7CBz2ehfh87gMQKjw0x7T1CeJE7AX7JYqy2Nh i2mRQIpnHVSphOBbse2uU+ehOJDpxhX9abr4NCrg64ilOZ3zyLw6xO9EZY8SswEK1qPx IC7RwEKKTKP3Qvb8jsVcQjDQuT9nBTvEooTKjGnI8tFdP7HHxr2FKE+p9KcURP1sMQxL zIaB28q2XdD94IIh/4erWaOyrkmSv8eJw8Bd5FpCOjxY4Ifk5eSGIzHkmUARDqoS3Kfu ZHFQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 22si4397352pgs.336.2019.03.07.10.53.30; Thu, 07 Mar 2019 10:53:45 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726561AbfCGSw4 convert rfc822-to-8bit (ORCPT + 99 others); Thu, 7 Mar 2019 13:52:56 -0500 Received: from terminus.zytor.com ([198.137.202.136]:34325 "EHLO mail.zytor.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726161AbfCGSw4 (ORCPT ); Thu, 7 Mar 2019 13:52:56 -0500 Received: from [IPv6:2607:fb90:3224:d3ed:dc53:8bcb:85c6:5b5b] ([IPv6:2607:fb90:3224:d3ed:dc53:8bcb:85c6:5b5b]) (authenticated bits=0) by mail.zytor.com (8.15.2/8.15.2) with ESMTPSA id x27Iq2dH2300868 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Thu, 7 Mar 2019 10:52:03 -0800 Date: Thu, 07 Mar 2019 10:51:59 -0800 User-Agent: K-9 Mail for Android In-Reply-To: <20190307184813.GL32477@hirez.programming.kicks-ass.net> References: <20190307114511.870090179@infradead.org> <20190307115200.697533978@infradead.org> <20190307174135.GJ32477@hirez.programming.kicks-ass.net> <20190307184813.GL32477@hirez.programming.kicks-ass.net> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8BIT Subject: Re: [PATCH 18/20] objtool: Add UACCESS validation To: Peter Zijlstra , Linus Torvalds CC: Thomas Gleixner , Julien Thierry , Will Deacon , Andy Lutomirski , Ingo Molnar , Catalin Marinas , James Morse , valentin.schneider@arm.com, Brian Gerst , Josh Poimboeuf , Andrew Lutomirski , Borislav Petkov , Denys Vlasenko , Linux List Kernel Mailing , Dmitry Vyukov , Steven Rostedt From: hpa@zytor.com Message-ID: Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On March 7, 2019 10:48:13 AM PST, Peter Zijlstra wrote: >On Thu, Mar 07, 2019 at 09:54:14AM -0800, Linus Torvalds wrote: >> On Thu, Mar 7, 2019 at 9:41 AM Peter Zijlstra >wrote: >> > > >> > > What's the call site that made you go "just add __memset() to the >list"? >> > >> > __asan_{,un}poinson_stack_memory() >> > kasan_{,un}poison_shadow() >> > __memset() >> >> Ugh. I think I almost just agree with your decision to just let that >> memset go unchecked. >> >> I'm not saying it's right, but it doesn't seem to be a fight worth >fighting. > >One think I could do; is add a filter to each function and only allow >__memset from the kasan code, and not from anywhere else. > >Another thing I need to look at is why objtool only found memset_orig >(from __memset) but not memset_erms, which if I read the code right, is >a possible alternative there. > >> Because AC vs KASAN in general ends up smelling like "not a fight >> worth fighting" to me. You've done a herculean job, but.. > >I know,.. I've been so close to doing that so many times, but it >seems like defeat, esp. since I'm so close now :-) ___memset_kasan()? -- Sent from my Android device with K-9 Mail. Please excuse my brevity.