Re: [PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family

[PATCH v4 0/6] slab: Introduce dedicated bucket allocator · Kees Cook <kees@kernel.org> · 2024-05-31
[PATCH v4 1/6] mm/slab: Introduce kmem_buckets typedef · Kees Cook <kees@kernel.org> · 2024-05-31
[PATCH v4 3/6] mm/slab: Introduce kvmalloc_buckets_node() that can take kmem_buckets argument · Kees Cook <kees@kernel.org> · 2024-05-31
[PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family · Kees Cook <kees@kernel.org> · 2024-05-31
Re: [PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family · Simon Horman <horms@kernel.org> · 2024-06-04
Re: [PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family · Tycho Andersen <tycho@tycho.pizza> · 2024-06-04
Re: [PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family · Kees Cook <kees@kernel.org> · 2024-06-05
Re: [PATCH v4 4/6] mm/slab: Introduce kmem_buckets_create() and family · Simon Horman <horms@kernel.org> · 2024-06-05
[PATCH v4 2/6] mm/slab: Plumb kmem_buckets into __do_kmalloc_node() · Kees Cook <kees@kernel.org> · 2024-05-31
Re: [PATCH v4 2/6] mm/slab: Plumb kmem_buckets into __do_kmalloc_node() · Vlastimil Babka <hidden> · 2024-06-03
Re: [PATCH v4 2/6] mm/slab: Plumb kmem_buckets into __do_kmalloc_node() · Kees Cook <kees@kernel.org> · 2024-06-03
Re: [PATCH v4 2/6] mm/slab: Plumb kmem_buckets into __do_kmalloc_node() · Vlastimil Babka <hidden> · 2024-06-04
[PATCH v4 5/6] ipc, msg: Use dedicated slab buckets for alloc_msg() · Kees Cook <kees@kernel.org> · 2024-05-31
[PATCH v4 6/6] mm/util: Use dedicated slab buckets for memdup_user() · Kees Cook <kees@kernel.org> · 2024-05-31

From: Tycho Andersen <tycho@tycho.pizza>
Date: 2024-06-04 22:13:40
Also in: linux-hardening, linux-mm, lkml

On Tue, Jun 04, 2024 at 04:02:28PM +0100, Simon Horman wrote:

On Fri, May 31, 2024 at 12:14:56PM -0700, Kees Cook wrote:

quoted

+	for (idx = 0; idx < ARRAY_SIZE(kmalloc_caches[KMALLOC_NORMAL]); idx++) {
+		char *short_size, *cache_name;
+		unsigned int cache_useroffset, cache_usersize;
+		unsigned int size;
+
+		if (!kmalloc_caches[KMALLOC_NORMAL][idx])
+			continue;
+
+		size = kmalloc_caches[KMALLOC_NORMAL][idx]->object_size;
+		if (!size)
+			continue;
+
+		short_size = strchr(kmalloc_caches[KMALLOC_NORMAL][idx]->name, '-');
+		if (WARN_ON(!short_size))
+			goto fail;
+
+		cache_name = kasprintf(GFP_KERNEL, "%s-%s", name, short_size + 1);
+		if (WARN_ON(!cache_name))
+			goto fail;
+
+		if (useroffset >= size) {
+			cache_useroffset = 0;
+			cache_usersize = 0;
+		} else {
+			cache_useroffset = useroffset;
+			cache_usersize = min(size - cache_useroffset, usersize);
+		}
+		(*b)[idx] = kmem_cache_create_usercopy(cache_name, size,
+					align, flags, cache_useroffset,
+					cache_usersize, ctor);
+		kfree(cache_name);
+		if (WARN_ON(!(*b)[idx]))
+			goto fail;
+	}
+
+	return b;
+
+fail:
+	for (idx = 0; idx < ARRAY_SIZE(kmalloc_caches[KMALLOC_NORMAL]); idx++) {
+		if ((*b)[idx])
+			kmem_cache_destroy((*b)[idx]);

nit: I don't think it is necessary to guard this with a check for NULL.

Isn't it? What if a kasprintf() fails halfway through the loop?

Tycho

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help