Bug 218316

Summary: KASAN (generic): quarantine page_alloc and large kmalloc allocations
Product: Memory Management Reporter: Andrey Konovalov (andreyknvl)
Component: SanitizersAssignee: MM/Sanitizers virtual assignee (mm_sanitizers)
Status: NEW ---    
Severity: normal CC: kasan-dev
Priority: P3    
Hardware: All   
OS: Linux   
Kernel Version: Subsystem:
Regression: No Bisected commit-id:

Description Andrey Konovalov 2023-12-25 17:53:29 UTC 
Currently, KASAN uses quarantine only for slab and normal kmalloc allocations.

We can also quarantine page_alloc and large kmalloc allocations (the ones that fall back onto page_alloc) to increase the chance of detecting use-after-free bugs in them.

Adding quarantine for mempool allocations is questionable: most of the time, mempool allocations are taken directly from slab/page_alloc.

Adding quarantine for vmalloc/vmap allocations is questionable as well: they are unmapped when freed, but the same memory can still be remapped for another allocation.

Also see this somewhat related issue: https://bugzilla.kernel.org/show_bug.cgi?id=212167 (KASAN: don't proceed with invalid page_alloc and large kmalloc frees).