Received: by 2002:a25:1506:0:0:0:0:0 with SMTP id 6csp1014216ybv; Fri, 7 Feb 2020 12:41:04 -0800 (PST) X-Google-Smtp-Source: APXvYqzfMgAc/Krvtb2dBZgSt7u2jS0bFHSxdpdkmNkbXiik9+SYjEFacjRdReKNe5snf2qOGhcu X-Received: by 2002:aca:cdd5:: with SMTP id d204mr3311320oig.134.1581108064341; Fri, 07 Feb 2020 12:41:04 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1581108064; cv=none; d=google.com; s=arc-20160816; b=aQFwLkA/CpnRB3NmY26+JvlRViNiueH96X91+h/OhMj3B06k9ZHOUPluqlOi+cccNA /bKzQYZbOe6YJWldND1goXpXgpQoORYKT/WIqnFzQXnnrOavoNAwbF4Dg/gVBMNzxSEz DZ5mmjtDFhqv586iDayCy8bmTUSFWOjs8dv5ND7cvWfBFvH2MGa0gI2rh/eHVQ1rxd5M 0817T1Q3Ji8Ko8XoXlV7XsjQJQop0gVdqcurehShn2czJqJWl+P/njCsHQJAyRnfi4MF cw1WnWR0piieq8LOGSjzx079pVPXpQXkdmx23BJ1w7iX9QYa9yeMn854vc1hmApnPoMs svzA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=rSg7JMFRzPtoE945qQnjffCeXnLroF1u5VJV3uyBQCE=; b=n1Hkj9ULh30oe3Enb6oIoriXjeiOKAE7ZWVLwK3V+vr0pNHsYJHOnA6+5+SQIB0gSq muzlIUmDdZwQOkfRZ/SpFqIg1SUjS7RJibsZTuDvBjVZpSc/3wTpS9LlCSEqWOZlMmLJ LPCKy9RDtjsKcWE9Xq19UF+OCU1m9YzJPv4d6qzaBFJnPVFQWzSvQOLeG9szle3YR+jR deoBJktI1WMkoDZ9GupnKyLGXx0rtVXznZNGFjb6/JUeSQeuAeRxM2NzsUA2UERvEIab 1luqSgFNPx+gjsLmUGy7+FuGGCUyM0FNUPR/hMiArMtZO/t1gQR+PIC/3zo7J95qnlZD 1Vmw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=TIVoYpqK; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i5si4481364oif.211.2020.02.07.12.40.51; Fri, 07 Feb 2020 12:41:04 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=TIVoYpqK; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727347AbgBGUit (ORCPT + 99 others); Fri, 7 Feb 2020 15:38:49 -0500 Received: from mail-wm1-f67.google.com ([209.85.128.67]:39505 "EHLO mail-wm1-f67.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727303AbgBGUit (ORCPT ); Fri, 7 Feb 2020 15:38:49 -0500 Received: by mail-wm1-f67.google.com with SMTP id c84so4195482wme.4 for ; Fri, 07 Feb 2020 12:38:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=rSg7JMFRzPtoE945qQnjffCeXnLroF1u5VJV3uyBQCE=; b=TIVoYpqKWPU4FbaHxrhBJ1Bwm+O6hvlv52zIi5d26xjDUTZ4yMC+K1iis5YbHTIZVl 9dHFuS4jNiXqxsq3FgyR0QBYCDDX0K20dUQm3BjtPvApP9txtUUaqU1OO0GhGh3Nep+F BPgz1uHXGrOg8F5sRqAfUFY9p4EvycZiJalM+RzKSVOw2pxxJOS10UZf+ODEOwWn1KTt ZqDzRMDMRWAmKXYblY7qJmxgBJymQDI6UbiK7qjXtkJzZqMTb1XCaabdFiCYMXNc+Ehz aCcOFiv0DV4rUQziYOvUisKifEZCM89iODF4OZ09LVnQd9aS0sQtw75L6vLrgV6rGOTX LtsA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=rSg7JMFRzPtoE945qQnjffCeXnLroF1u5VJV3uyBQCE=; b=Xkh2GcP2jwDP6XqmUW3a7g73OxXRtzKeOIWyjXi1y0dyPmveBZ+xonemW46fQ3rlES ejVdlTyDrgiJ3hOUHVfW4gSZ4tDfoDPT2GRvoMC9j4hB+HaVeA4yx7a1fyiJm/8ijBXa xZ0aVfGzzjbeymR7J3ahHlMYpB492SgFOItEVst/uVM6pn9rjN+5ZZGRPGSEjgYDI/qi N7ifR3oAv8JP+3YZjl/qJlLBeo/VzXuqEuN+KakxT/QOXeDE14ToO2dxpQ9p8qjgHrRs 1NEbT0TvIhlQ1qiKd2jmBVYr50LnsYb8m+71K95RXHqWEExZkLhiiR8aU+Jf92Of0Wzq wviA== X-Gm-Message-State: APjAAAVg3muRmEzOEFMXQ+CdKu2bCOaonKddW6z5GcfHV7yfBB8asCen u+kBEMSUKD9xGdaGJ+xiI0Uk1LPX5ZIKdXFUoho= X-Received: by 2002:a1c:488a:: with SMTP id v132mr81301wma.153.1581107927512; Fri, 07 Feb 2020 12:38:47 -0800 (PST) MIME-Version: 1.0 References: <20200120074344.504-1-dja@axtens.net> <20200120074344.504-6-dja@axtens.net> In-Reply-To: <20200120074344.504-6-dja@axtens.net> From: Daniel Micay Date: Fri, 7 Feb 2020 15:38:22 -0500 Message-ID: Subject: Re: [PATCH 5/5] [RFC] mm: annotate memory allocation functions with their sizes To: Daniel Axtens Cc: Kernel Hardening , Linux-MM , Kees Cook , kernel list , Andrew Morton Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org There are some uses of ksize in the kernel making use of the real usable size of memory allocations rather than only the requested amount. It's incorrect when mixed with alloc_size markers, since if a number like 14 is passed that's used as the upper bound, rather than a rounded size like 16 returned by ksize. It's unlikely to trigger any issues with only CONFIG_FORTIFY_SOURCE, but it becomes more likely with -fsanitize=object-size or other library-based usage of __builtin_object_size.