From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1754166AbdK1TlL (ORCPT ); Tue, 28 Nov 2017 14:41:11 -0500 Received: from mga02.intel.com ([134.134.136.20]:18191 "EHLO mga02.intel.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752417AbdK1TlK (ORCPT ); Tue, 28 Nov 2017 14:41:10 -0500 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.44,468,1505804400"; d="scan'208";a="181652302" From: Andi Kleen To: js1304@gmail.com Cc: Andrew Morton , Andrey Ryabinin , Alexander Potapenko , Dmitry Vyukov , kasan-dev@googlegroups.com, linux-mm@kvack.org, linux-kernel@vger.kernel.org, Namhyung Kim , Wengang Wang , Joonsoo Kim Subject: Re: [PATCH 02/18] vchecker: introduce the valid access checker References: <1511855333-3570-1-git-send-email-iamjoonsoo.kim@lge.com> <1511855333-3570-3-git-send-email-iamjoonsoo.kim@lge.com> Date: Tue, 28 Nov 2017 11:41:08 -0800 In-Reply-To: <1511855333-3570-3-git-send-email-iamjoonsoo.kim@lge.com> (js's message of "Tue, 28 Nov 2017 16:48:37 +0900") Message-ID: <87k1yajinf.fsf@linux.intel.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org js1304@gmail.com writes: > From: Joonsoo Kim Looks useful. Essentially unlimited hardware break points, combined with slab. Didn't do a full review, but noticed some things below. > + > + buf = kmalloc(PAGE_SIZE, GFP_KERNEL); > + if (!buf) > + return -ENOMEM; > + > + if (copy_from_user(buf, ubuf, cnt)) { > + kfree(buf); > + return -EFAULT; > + } > + > + if (isspace(buf[0])) > + remove = true; and that may be uninitialized. and the space changes the operation? That's a strange syntax. > + buf[cnt - 1] = '\0'; That's an underflow of one byte if cnt is 0. -Andi