f7dd250789
In the Linux kernel, struct type variables are rarely passed by-value, and so functions that initialize such variables typically take an input reference to the variable rather than returning a value that can subsequently be used in an assignment. If the initalization function is not part of the same compilation unit, the lack of an assignment operation defeats any analysis the compiler can perform as to whether the variable may be used before having been initialized. This means we may end up passing on such variables uninitialized, resulting in potential information leaks. So extend the existing structleak GCC plugin so it will [optionally] apply to all struct type variables that have their address taken at any point, rather than only to variables of struct types that have a __user annotation. Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> Signed-off-by: Kees Cook <keescook@chromium.org> |
||
|---|---|---|
| .. | ||
| .gitignore | ||
| cyc_complexity_plugin.c | ||
| gcc-common.h | ||
| gcc-generate-gimple-pass.h | ||
| gcc-generate-ipa-pass.h | ||
| gcc-generate-rtl-pass.h | ||
| gcc-generate-simple_ipa-pass.h | ||
| gen-random-seed.sh | ||
| latent_entropy_plugin.c | ||
| Makefile | ||
| randomize_layout_plugin.c | ||
| sancov_plugin.c | ||
| structleak_plugin.c | ||