Bug 198661 - KASAN: add checks to DMA transfers
Summary: KASAN: add checks to DMA transfers
Status: NEW
Alias: None
Product: Memory Management
Classification: Unclassified
Component: Sanitizers (show other bugs)
Hardware: All Linux
: P1 enhancement
Assignee: Dmitry Vyukov
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-02-04 11:07 UTC by Dmitry Vyukov
Modified: 2018-09-19 09:03 UTC (History)
1 user (show)

See Also:
Kernel Version: ALL
Subsystem:
Regression: No
Bisected commit-id:


Attachments

Description Dmitry Vyukov 2018-02-04 11:07:43 UTC
We have a case where [presumably] DMA transfers in ATA corrupt memory:
https://groups.google.com/forum/#!topic/syzkaller/9RNr9Gu0MyY
That's left unnoticed and then causes dozens of assorted crashes everywhere.
We should add KASAN checks to the places where DMA commands are issued and check that they are issued for valid memory ranges.
Need to check if we need similar checks for i2c/spi/virtio/etc.

Note You need to log in before you can comment on or make changes to this bug.