| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 27 May 2013 17:16:30 +0200 From: Oleg Nesterov <oleg@...hat.com> To: Andrew Morton <akpm@...ux-foundation.org> Cc: Andi Kleen <andi@...stfloor.org>, Colin Walters <walters@...bum.org>, Denys Vlasenko <vda.linux@...glemail.com>, Jiri Slaby <jslaby@...e.cz>, Lennart Poettering <mzxreary@...inter.de>, Lucas De Marchi <lucas.de.marchi@...il.com>, Neil Horman <nhorman@...driver.com>, linux-kernel@...r.kernel.org Subject: Re: [PATCH 5/6] coredump: kill call_count, add core_name_size On 05/24, Andrew Morton wrote: > > On Wed, 15 May 2013 22:12:32 +0200 Oleg Nesterov <oleg@...hat.com> wrote: > > > Imho, "atomic_t call_count" is ugly and should die. It buys > > nothing and in fact it can grow more than necessary, expand > > doesn't check if it was already incremented by another task. > > > > Kill it, and introduce "static int core_name_size" updated by > > expand_corename(). This is obviously racy too but harmless, > > and core_name_size never grows for no reason. > > > > We do not bother to to calculate the "right" new size, we > > simply do kmalloc(size_we_need) and use ksize() to rely on > > kmalloc_index's decision. > > > > Finally change format_corename() to use expand_corename(), > > krealloc(NULL) is fine. > > The code still looks like a bunch of fluff. I look at it and think > "wtf, why doesn't it just use kasprintf()". But how? kasprintf() can't replace cn_printf(), and it can't make it simpler. If it was possible to create va_list dinamically then format_corename() could construct "char *fmt" and call kvasprintf() once. Or we can change this code to avoid *printk* altogether, we only need a very limited subset of "enum format_type". Not sure this makes sense. > If there were any comments in there at all which explained the reason > for the code's existence, perhaps I wouldn't think that. But there > aren't, so I do. If you meant "why do we need expand_corename" I can't answer because I do not know ;) I mean, if CORENAME_MAX_SIZE == 128 is not enough we can probably just increase it and simplify the code. Please see 1b0d300b "core_pattern: fix truncation by core_pattern handler with long parameters" which introduced this. And yes, we can keep "expand" but simply kill "atomic_t call_count" (replaced by core_name_size in this patch), I do not think it buys too much. But at least with this patch this logic becomes really trivial. Andrew, it seems that you missed the last patch in this series, attached below. I sent it a bit later as 7/6 because I didn't notice this problem when I started these changes. Oleg. ------------------------------------------------------------------------------- [PATCH 7/6] coredump: avoid the uninitialized cn->corename if core_pattern is empty If core_pattern is "" or "|", cn->corename is used uninitialized by filp_open() or call_usermodehelper_exec(). Signed-off-by: Oleg Nesterov <oleg@...hat.com> --- fs/coredump.c | 1 + 1 files changed, 1 insertions(+), 0 deletions(-) diff --git a/fs/coredump.c b/fs/coredump.c index 5968064..72f816d 100644 --- a/fs/coredump.c +++ b/fs/coredump.c @@ -165,6 +165,7 @@ static int format_corename(struct core_name *cn, struct coredump_params *cprm) cn->corename = NULL; if (expand_corename(cn, core_name_size)) return -ENOMEM; + cn->corename[0] = '\0'; if (ispipe) ++pat_ptr; -- 1.5.5.1 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists