mm/slub.c: add a naive detection of double free or corruption - wireguard-linux

diff options

author	Alexander Popov <alex.popov@linux.com>	2017-09-06 16:19:22 -0700
committer	Linus Torvalds <torvalds@linux-foundation.org>	2017-09-06 17:27:24 -0700
commit	ce6fa91b93630396ca220c33dd38ffc62686d499 (patch)
tree	939b1ef1b6399f6656f3f7764227b4db7e8dee24 /include/linux/shrinker.h
parent	mm: add SLUB free list pointer obfuscation (diff)
download	wireguard-linux-ce6fa91b93630396ca220c33dd38ffc62686d499.tar.xz wireguard-linux-ce6fa91b93630396ca220c33dd38ffc62686d499.zip

mm/slub.c: add a naive detection of double free or corruption

Add an assertion similar to "fasttop" check in GNU C Library allocator as a part of SLAB_FREELIST_HARDENED feature. An object added to a singly linked freelist should not point to itself. That helps to detect some double free errors (e.g. CVE-2017-2636) without slub_debug and KASAN. Link: http://lkml.kernel.org/r/1502468246-1262-1-git-send-email-alex.popov@linux.com Signed-off-by: Alexander Popov <alex.popov@linux.com> Acked-by: Christoph Lameter <cl@linux.com> Cc: Kees Cook <keescook@chromium.org> Cc: Pekka Enberg <penberg@kernel.org> Cc: David Rientjes <rientjes@google.com> Cc: Joonsoo Kim <iamjoonsoo.kim@lge.com> Cc: Paul E McKenney <paulmck@linux.vnet.ibm.com> Cc: Ingo Molnar <mingo@kernel.org> Cc: Tejun Heo <tj@kernel.org> Cc: Andy Lutomirski <luto@kernel.org> Cc: Nicolas Pitre <nicolas.pitre@linaro.org> Cc: Rik van Riel <riel@redhat.com> Cc: Tycho Andersen <tycho@docker.com> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

Diffstat (limited to 'include/linux/shrinker.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: