From mboxrd@z Thu Jan  1 00:00:00 1970
Reply-To: kernel-hardening@lists.openwall.com
MIME-Version: 1.0
Sender: keescook@google.com
In-Reply-To: <20170118203534.GA22446@kroah.com>
References: <1484730707-29313-1-git-send-email-elena.reshetova@intel.com>
 <20170118103031.GB15169@kroah.com> <CAGXu5jJyTpsq_=nz2CWQGk1iUtvC8-PqNqxHJ0chowbnB5Y-Xg@mail.gmail.com>
 <20170118203534.GA22446@kroah.com>
From: Kees Cook <keescook@chromium.org>
Date: Wed, 18 Jan 2017 12:57:42 -0800
Message-ID: <CAGXu5jKamL82TiC7RG4aUdLcHK5EjhOMXwm5XRbXuP3nyXW_3A@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8
Subject: [kernel-hardening] Re: [RFCv2 PATCH 00/18] refcount_t API + usage
To: Greg KH <gregkh@linuxfoundation.org>, Peter Zijlstra <peterz@infradead.org>
Cc: Elena Reshetova <elena.reshetova@intel.com>, "kernel-hardening@lists.openwall.com" <kernel-hardening@lists.openwall.com>, Arnd Bergmann <arnd@arndb.de>, Thomas Gleixner <tglx@linutronix.de>, Ingo Molnar <mingo@redhat.com>, "H. Peter Anvin" <h.peter.anvin@intel.com>, Will Deacon <will.deacon@arm.com>, David Windsor <dwindsor@gmail.com>
List-ID: <kernel-hardening.lists.openwall.com>

On Wed, Jan 18, 2017 at 12:35 PM, Greg KH <gregkh@linuxfoundation.org> wrote:
> On Wed, Jan 18, 2017 at 12:06:19PM -0800, Kees Cook wrote:
>> On Wed, Jan 18, 2017 at 2:30 AM, Greg KH <gregkh@linuxfoundation.org> wrote:
>> > On Wed, Jan 18, 2017 at 11:11:29AM +0200, Elena Reshetova wrote:
>> >> Changes since v1:
>> >>  - kref INIT fixes are moved to a proper separate commit
>> >>  - Peter's commits are now properly integrated into series
>> >>  - various small fixes are incorporated based on testing
>> >>    results and feedback
>> >>
>> >> This patch series is build on top of Peter's Zijlstra patches
>> >> that provide refcount_t type and API definition.
>> >> The rest of patches convert various places of kernel subsystems
>> >> where atomic_t was used for reference counting to new refcount_t type and API.
>> >> By doing this, we make sure that underflows and overflows
>> >> cannot occur in these places and therefore no use-after-free situation
>> >> can be created and misused by an attacker.
>> >
>> > Your first 7 patches are fine, and most of them are already in the tip
>> > tree and getting use in linux-next now.  I'd recommend submitting the
>>
>> Where do you see this? I haven't seen refcount_t land in -next yet.
>
> The patches leading up to refcount_t are in the tip tree.

Ah, I see it here:

http://git.kernel.org/cgit/linux/kernel/git/tip/tip.git/log/?h=locking/core

I wonder why it hasn't appeared in -next.

>> Should I carry these in the KSPP tree, or who should take them?
>
> I think the refcount_t patch should also go to tip given it depends on
> the kref patches.  But that's up to Peter, he would know best...

Yeah, agreed. Peter, can you add that to tip? Then we can base more work off it.

Thanks!

-Kees

-- 
Kees Cook
Nexus Security