lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date:   Wed, 6 Mar 2019 21:13:24 +0800
From:   Hongbo Yao <yaohongbo@...wei.com>
To:     <tglx@...utronix.de>, <edumazet@...gle.com>,
        <linux-kernel@...r.kernel.org>, <yaohongbo@...wei.com>
Subject: [RFC PATCH 0/2] add ktime_sub_safe() to avoid undefined behaviour

When I ran Syzkaller testsuite, I got some UBSAN warnings with
ktime_sub().

Instead of putting overflow checks into each place, add a function
which does the sanity checking and convert all affected callers to use
it.

Hongbo Yao (2):
  ktime: add ktime_sub_safe() to avoid undefined behaviour
  hrtimer: Prevent overflow for relative refrences

 include/linux/ktime.h |  8 ++++++++
 kernel/time/hrtimer.c | 21 +++++++++++++++++++--
 2 files changed, 27 insertions(+), 2 deletions(-)

-- 
2.20.1

Powered by blists - more mailing lists