All of lore.kernel.org
 help / color / mirror / Atom feed
* [PATCH v5 0/6] ubsan: Split out bounds checker
@ 2020-02-27 19:35 Kees Cook
  2020-02-27 19:35 ` [PATCH v5 1/6] ubsan: Add trap instrumentation option Kees Cook
                   ` (5 more replies)
  0 siblings, 6 replies; 10+ messages in thread
From: Kees Cook @ 2020-02-27 19:35 UTC (permalink / raw)
  To: Andrew Morton
  Cc: Kees Cook, Andrey Ryabinin, Elena Petrova, Andrey Konovalov,
	Alexander Potapenko, Dan Carpenter, Gustavo A. R. Silva,
	Arnd Bergmann, Ard Biesheuvel, kasan-dev, linux-mm, linux-kernel,
	kernel-hardening, syzkaller

Argh, v4 missed uncommitted changes. v5 brown paper bag release! :)

This splits out the bounds checker so it can be individually used. This
is enabled in Android and hopefully for syzbot. Includes LKDTM tests for
behavioral corner-cases (beyond just the bounds checker), and adjusts
ubsan and kasan slightly for correct panic handling.

-Kees

v5:
 - _actually_ use hyphenated bug class names (andreyknvl)
v4: https://lore.kernel.org/lkml/20200227184921.30215-1-keescook@chromium.org
v3: https://lore.kernel.org/lkml/20200116012321.26254-1-keescook@chromium.org
v2: https://lore.kernel.org/lkml/20191121181519.28637-1-keescook@chromium.org
v1: https://lore.kernel.org/lkml/20191120010636.27368-1-keescook@chromium.org


Kees Cook (6):
  ubsan: Add trap instrumentation option
  ubsan: Split "bounds" checker from other options
  lkdtm/bugs: Add arithmetic overflow and array bounds checks
  ubsan: Check panic_on_warn
  kasan: Unset panic_on_warn before calling panic()
  ubsan: Include bug type in report header

 drivers/misc/lkdtm/bugs.c  | 75 ++++++++++++++++++++++++++++++++++++++
 drivers/misc/lkdtm/core.c  |  3 ++
 drivers/misc/lkdtm/lkdtm.h |  3 ++
 lib/Kconfig.ubsan          | 49 +++++++++++++++++++++----
 lib/Makefile               |  2 +
 lib/ubsan.c                | 47 +++++++++++++-----------
 mm/kasan/report.c          | 10 ++++-
 scripts/Makefile.ubsan     | 16 ++++++--
 8 files changed, 172 insertions(+), 33 deletions(-)

-- 
2.20.1


^ permalink raw reply	[flat|nested] 10+ messages in thread
* [PATCH v5 0/6] ubsan: Split out bounds checker
@ 2020-02-27 23:05 Kees Cook
  0 siblings, 0 replies; 10+ messages in thread
From: Kees Cook @ 2020-02-27 23:05 UTC (permalink / raw)
  To: signatures

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

dfb1f097-592a898c-1c97dd13:
  i: dfb1f097729412272ba048e0f88cd94c5fe9de9835802e0a510a49ea409be204
  m: 592a898cb277bfaba3c8821b6427df1a35140b8ff576d5ea803ab3f69a5af73e
  p: 1c97dd13a67c2b2966a6d3af4487ece389a575fd4a037c4d5e7dad42d565aa85
e5a74941-7ca011b7-016032b3:
  i: e5a74941c6573eb99a1632fbddcb09a18ca0e80730f5168aa99c20db7509dcf5
  m: 7ca011b71f302210a122a8a717d25571f5fce64be624f8aebdec9986c6653ef7
  p: 016032b34c877b669b4f5437b2b4d5d8b86815d0a7cc111d80e246d422107cc6
e966d033-05c6a7fa-219a3791:
  i: e966d033a481dd98263773d7176b8c34803a28c2c3fc444305eeaf3d5d133106
  m: 05c6a7fab3c9ef8631535fd2e6d538b34ee5387ff7fbc4203dd62ec7487597c0
  p: 219a3791b260b0cae1d8402ab9120aa6053a532572851b00654251bfa0765ef4
4ce8111e-c4f8d354-92edbefb:
  i: 4ce8111eaa7b00b95bea414480277ef0b50da21a7ea93960ed8d074e27c02d79
  m: c4f8d354ebe5f2ec234eded7853132f322be02e04ed540bf884527af77645116
  p: 92edbefbdd2aabff7b99b1eafe7af75f3016ad21d631c6df51c2a5ff8c76dd0f
8f7e089e-09b3d70d-2a4cabd6:
  i: 8f7e089ea7bb6b997e71859a51a2a08c1b82436eab5f60854b0b1cec4f2e63a6
  m: 09b3d70dffc71b91126ebad13359f57b1e6294e7d3728ef4d1d09767e887bbbb
  p: 2a4cabd64d71bdf21c156c1605229dca952a20a9b9e870086a266bd5225042a5
33003112-b5042641-3708c83a:
  i: 33003112ab9ac2d3120dc9bbe862688e46d64e44379ea98945227deb9ad34528
  m: b50426418f123b74ed06afb85b64881058cefb8766ca940f0d41daf094359a2e
  p: 3708c83ad11dbc3402f74ba939382a1dc3de2c38cc920d094c87236ccdb8e511
-----BEGIN PGP SIGNATURE-----
Comment: Kees Cook <kees@outflux.net>
Comment: att-fmt-ver: 0.1
Comment: att-hash: sha256
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=RkL0
-----END PGP SIGNATURE-----

-- 
Kees Cook

^ permalink raw reply	[flat|nested] 10+ messages in thread

end of thread, other threads:[~2020-02-28 12:45 UTC | newest]

Thread overview: 10+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-02-27 19:35 [PATCH v5 0/6] ubsan: Split out bounds checker Kees Cook
2020-02-27 19:35 ` [PATCH v5 1/6] ubsan: Add trap instrumentation option Kees Cook
2020-02-27 19:35 ` [PATCH v5 2/6] ubsan: Split "bounds" checker from other options Kees Cook
2020-02-27 19:35 ` [PATCH v5 3/6] lkdtm/bugs: Add arithmetic overflow and array bounds checks Kees Cook
2020-02-27 19:35 ` [PATCH v5 4/6] ubsan: Check panic_on_warn Kees Cook
2020-02-27 19:35 ` [PATCH v5 5/6] kasan: Unset panic_on_warn before calling panic() Kees Cook
2020-02-27 19:35 ` [PATCH v5 6/6] ubsan: Include bug type in report header Kees Cook
2020-02-28 12:45   ` Andrey Konovalov
2020-02-28 12:45     ` Andrey Konovalov
2020-02-27 23:05 [PATCH v5 0/6] ubsan: Split out bounds checker Kees Cook

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.