www.infradead.org Git - users/willy/linux.git/commit

author	Andrey Konovalov <andreyknvl@google.com>
	Wed, 5 Dec 2018 00:13:22 +0000 (11:13 +1100)
committer	Stephen Rothwell <sfr@canb.auug.org.au>
	Wed, 5 Dec 2018 00:13:22 +0000 (11:13 +1100)
commit	c4ad1562d52bcf69e7e2692823ab28b3f74ef61c
tree	3b662fc7342ded0e5c7aa980eadbe588b5e10395	tree
parent	8421469750c928df567dec458585382f21d6d713	commit \| diff

kasan: preassign tags to objects with ctors or SLAB_TYPESAFE_BY_RCU

An object constructor can initialize pointers within this objects based on
the address of the object. Since the object address might be tagged, we
need to assign a tag before calling constructor.

The implemented approach is to assign tags to objects with constructors
when a slab is allocated and call constructors once as usual. The
downside is that such object would always have the same tag when it is
reallocated, so we won't catch use-after-frees on it.

Also pressign tags for objects from SLAB_TYPESAFE_BY_RCU caches, since
they can be validy accessed after having been freed.

Link: http://lkml.kernel.org/r/b2c17b6674f1737f981ffa6dca7fdfc059a88435.1543337629.git.andreyknvl@google.com
Signed-off-by: Andrey Konovalov <andreyknvl@google.com>
Reviewed-by: Andrey Ryabinin <aryabinin@virtuozzo.com>
Reviewed-by: Dmitry Vyukov <dvyukov@google.com>
Cc: Mark Rutland <mark.rutland@arm.com>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Stephen Rothwell <sfr@canb.auug.org.au>

mm/slab.c		diff \| blob \| history
mm/slub.c		diff \| blob \| history