[v2,3/5] params: Use size_add() for kmalloc()

Message ID	20231002124856.2455696-4-andriy.shevchenko@linux.intel.com (mailing list archive)
State	New, archived
Headers	show Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id E9DAE11C83 for <linux-modules@vger.kernel.org>; Mon, 2 Oct 2023 12:49:10 +0000 (UTC) From: Andy Shevchenko <andriy.shevchenko@linux.intel.com> To: Andy Shevchenko <andriy.shevchenko@linux.intel.com>, linux-modules@vger.kernel.org, linux-kernel@vger.kernel.org Cc: Luis Chamberlain <mcgrof@kernel.org>, Kees Cook <keescook@chromium.org>, Greg Kroah-Hartman <gregkh@linuxfoundation.org> Subject: [PATCH v2 3/5] params: Use size_add() for kmalloc() Date: Mon, 2 Oct 2023 15:48:54 +0300 Message-Id: <20231002124856.2455696-4-andriy.shevchenko@linux.intel.com> In-Reply-To: <20231002124856.2455696-1-andriy.shevchenko@linux.intel.com> References: <20231002124856.2455696-1-andriy.shevchenko@linux.intel.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	params: harden string ops and allocatio ops \| expand [v2,0/5] params: harden string ops and allocatio ops [v2,1/5] params: Introduce the param_unknown_fn type [v2,2/5] params: Do not go over the limit when getting the string length [v2,3/5] params: Use size_add() for kmalloc() [v2,4/5] params: Sort headers [v2,5/5] params: Fix multi-line comment style

Message ID

20231002124856.2455696-4-andriy.shevchenko@linux.intel.com (mailing list archive)

State

New, archived

Headers

From: Andy Shevchenko <andriy.shevchenko@linux.intel.com>
To: Andy Shevchenko <andriy.shevchenko@linux.intel.com>,
	linux-modules@vger.kernel.org,
	linux-kernel@vger.kernel.org
Cc: Luis Chamberlain <mcgrof@kernel.org>,
	Kees Cook <keescook@chromium.org>,
	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Subject: [PATCH v2 3/5] params: Use size_add() for kmalloc()
Date: Mon,  2 Oct 2023 15:48:54 +0300
Message-Id: <20231002124856.2455696-4-andriy.shevchenko@linux.intel.com>
In-Reply-To: <20231002124856.2455696-1-andriy.shevchenko@linux.intel.com>
References: <20231002124856.2455696-1-andriy.shevchenko@linux.intel.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

params: harden string ops and allocatio ops | expand

Commit Message

Andy Shevchenko Oct. 2, 2023, 12:48 p.m. UTC

Prevent allocations from integer overflow by using size_add().

Signed-off-by: Andy Shevchenko <andriy.shevchenko@linux.intel.com>
---
 kernel/params.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/kernel/params.c b/kernel/params.c
index f8e3c4139854..c3a029fe183d 100644
--- a/kernel/params.c
+++ b/kernel/params.c
@@ -11,6 +11,7 @@ 
 #include <linux/moduleparam.h>
 #include <linux/device.h>
 #include <linux/err.h>
+#include <linux/overflow.h>
 #include <linux/slab.h>
 #include <linux/ctype.h>
 #include <linux/security.h>
@@ -48,7 +49,7 @@  static void *kmalloc_parameter(unsigned int size)
 {
 	struct kmalloced_param *p;
 
-	p = kmalloc(sizeof(*p) + size, GFP_KERNEL);
+	p = kmalloc(size_add(sizeof(*p), size), GFP_KERNEL);
 	if (!p)
 		return NULL;

[v2,3/5] params: Use size_add() for kmalloc()

Commit Message

Patch