Re: [PATCH] coccinelle: misc: add array_size_dup script to detect missed overlow checks

From: Kees Cook
Date: Mon Jun 15 2020 - 14:23:27 EST

Next message: Nick Desaulniers: "Re: [PATCH] security: fix the key_permission LSM hook function type"
Previous message: Kees Cook: "Re: [PATCH] security: fix the key_permission LSM hook function type"
In reply to: Denis Efremov: "[PATCH] coccinelle: misc: add array_size_dup script to detect missed overlow checks"
Next in thread: Denis Efremov: "Re: [PATCH] coccinelle: misc: add array_size_dup script to detect missed overlow checks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Jun 15, 2020 at 01:20:45PM +0300, Denis Efremov wrote:
> Detect an opencoded expression that is used before or after
> array_size()/array3_size()/struct_size() to compute the same size.
>
> Cc: Kees Cook <keescook@xxxxxxxxxxxx>
> Signed-off-by: Denis Efremov <efremov@xxxxxxxxx>

Oh, very cool! How much does this find currently?

--
Kees Cook

Next message: Nick Desaulniers: "Re: [PATCH] security: fix the key_permission LSM hook function type"
Previous message: Kees Cook: "Re: [PATCH] security: fix the key_permission LSM hook function type"
In reply to: Denis Efremov: "[PATCH] coccinelle: misc: add array_size_dup script to detect missed overlow checks"
Next in thread: Denis Efremov: "Re: [PATCH] coccinelle: misc: add array_size_dup script to detect missed overlow checks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]