Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751655Ab2BQGd2 (ORCPT ); Fri, 17 Feb 2012 01:33:28 -0500 Received: from mail-bk0-f46.google.com ([209.85.214.46]:61545 "EHLO mail-bk0-f46.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751301Ab2BQGd1 (ORCPT ); Fri, 17 Feb 2012 01:33:27 -0500 Date: Fri, 17 Feb 2012 09:33:19 +0300 From: Alexey Dobriyan To: David Windsor Cc: Kees Cook , Greg KH , pageexec@freemail.hu, Ubuntu security discussion , spender@grsecurity.net, linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com Subject: Re: [ubuntu-hardened] Add overflow protection to kref Message-ID: <20120217063318.GA3330@p183.telecom.by> References: <20120216204515.GH20420@outflux.net> <20120217002405.GB7746@kroah.com> <20120217010624.GA6541@outflux.net> <20120217014008.GA18763@kroah.com> <20120217021109.GC6541@outflux.net> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.5.21 (2010-09-15) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 1146 Lines: 30 On Thu, Feb 16, 2012 at 09:48:38PM -0500, David Windsor wrote: > > > >> > >> I have yet to see a patch, so why are we arguing about this? ?:) > >> > >> Again, I don't know of any kref overflows that have ever happened, so > >> trying to "protect" this type of thing, seems odd to me. > > > > Well, I think the issue was to protect counting things (which seems to > > be what PaX was after originally), and that kref seemed like the place > > to put it. I'll let David take it further. > > > > Patches are forthcoming that will first introduce overflow protection > to kref. Patches have already been posted: http://marc.info/?l=linux-kernel&m=132337541830590&w=4 They were dropped for various (uninteresting) reasons, though. > Once that's in place, I'll move a few refcount users from > atomic_t to kref as a reference for other subsystems; This sucks because dtor argument is mandatory. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/