From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mx0a-00069f02.pphosted.com (mx0a-00069f02.pphosted.com [205.220.165.32]) by sourceware.org (Postfix) with ESMTPS id CB6683858D20 for ; Tue, 30 May 2023 15:43:39 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org CB6683858D20 Authentication-Results: sourceware.org; dmarc=pass (p=none dis=none) header.from=oracle.com Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=oracle.com Received: from pps.filterd (m0333521.ppops.net [127.0.0.1]) by mx0b-00069f02.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 34UE4jHc021692; Tue, 30 May 2023 15:43:35 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oracle.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=corp-2023-03-30; bh=h2R7aWvfjDyBfhv7ojafWChYfBHUVcsohQuvnBDbZoo=; b=r1lpYMNQOQlrOTIQO2lvdRVUwgZh9JulK3fIFJChW0HYf0fTdx7axh7rSojZz2NlChbK KBz5FC5s/ldBAomA27E38Cjj4Cf5zsHBYwJrd5+Mmm7CYFIIqY0UeFenI6Q+aYgZqHcm NBxEgTtUH2JSMZR4FAnfQWfQhu1Zyv6YLrr+6kkobgSs9HZE1eAQbavj388kIaSUYZ0L Xu+jE7RO/06NvuI0Md+pGyEgsJeM0yVP9MorHOltNjFlLSw7YQfq9MiJh6bbbLrMDNqJ bZrEFGZw7xRuB0/7C8QbUE5wDimbkDiW2sbM8h/1iOhbtqciLFRhhntEwaCtFPn6ruEE rg== Received: from iadpaimrmta02.imrmtpd1.prodappiadaev1.oraclevcn.com (iadpaimrmta02.appoci.oracle.com [147.154.18.20]) by mx0b-00069f02.pphosted.com (PPS) with ESMTPS id 3qvhjh33jg-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Tue, 30 May 2023 15:43:35 +0000 Received: from pps.filterd (iadpaimrmta02.imrmtpd1.prodappiadaev1.oraclevcn.com [127.0.0.1]) by iadpaimrmta02.imrmtpd1.prodappiadaev1.oraclevcn.com (8.17.1.19/8.17.1.19) with ESMTP id 34UEj4Ij000342; Tue, 30 May 2023 15:43:33 GMT Received: from nam12-mw2-obe.outbound.protection.outlook.com (mail-mw2nam12lp2049.outbound.protection.outlook.com [104.47.66.49]) by iadpaimrmta02.imrmtpd1.prodappiadaev1.oraclevcn.com (PPS) with ESMTPS id 3qu8q8j70e-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Tue, 30 May 2023 15:43:33 +0000 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bR7vN3AS47uhlN5OMd8nU83Njq9D1Vp1Rmtmk5/bqCv2OAl6rGw7No/Nm1Hs7DCAaeG0+vKGaGvaWL3OIetOAsrA38BczlVEZG8xFzlLLNo3OPVT62ZNnWrwRWRLYBk7Azdymwgop0hCozljKejRPrMG7H3rYZeObQQfGckKkJjIzQmnHc4eZgD8m3Z2PyVu+DJRwdliXl5Y+eihLbWv5VEHYw0UDTGruP9TwacQkZaf2S89P+hKgaqSpKr/seSfzuvBIj2CNYGxISgrWF95WP6puzvjfS3iyhwce6dLj/pjxfBWljdGptixALy40y+BUyx3MALFvVpszmskZmfD+A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=h2R7aWvfjDyBfhv7ojafWChYfBHUVcsohQuvnBDbZoo=; b=NAovFkuojyM2jCeHrkmGVXGoV8mTNJd9p3G9k9UNaMLfU4n2G1XcCKfNttYm0v2Kd9YhhOI869wPecMlHs7ZycbEJtcQhEAsTEJ1Mp+6Sga9uWUYYkPumKVSGrODIGANPn0KyL7igqe47exs5W4TUOXO+MVCr0tUNsWsgsABa1M7v5vJB/gqzEGxBDYVtslewXKy5TT9RpwLk22RoXRQkrhyIfM5ZlJyRxp3RayViWAUFHW4at7J5xjNsg1PACAEf1DZqFA95lvsKtYW/8hBLGsLNSH9utZ8jch1yVZfDL3sBxiP2TyfjxzJmz7SlpdmK5HIiKt7ltPmPqnmScovYg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=oracle.com; dmarc=pass action=none header.from=oracle.com; dkim=pass header.d=oracle.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oracle.onmicrosoft.com; s=selector2-oracle-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=h2R7aWvfjDyBfhv7ojafWChYfBHUVcsohQuvnBDbZoo=; b=EuSvyYjT7fzRrFzuBZTYExrRp+Q1WjjL5uaGVz6SZS27Ftjzbj+6hqWsyCoOGczYLTkjHDP4X9tL8udO9PGXUlx4yZK6+rqnaahkCZjjVR0yDOKC7/Sy37DrIKDAP+QE+nNQQ9SVWgxU2slNuebZCBFmzvQkxbQIGHVB4E+DYhQ= Received: from CH2PR10MB4344.namprd10.prod.outlook.com (2603:10b6:610:af::19) by PH8PR10MB6480.namprd10.prod.outlook.com (2603:10b6:510:22c::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6433.23; Tue, 30 May 2023 15:43:28 +0000 Received: from CH2PR10MB4344.namprd10.prod.outlook.com ([fe80::346b:de36:41d7:b1e4]) by CH2PR10MB4344.namprd10.prod.outlook.com ([fe80::346b:de36:41d7:b1e4%4]) with mapi id 15.20.6433.022; Tue, 30 May 2023 15:43:28 +0000 From: Qing Zhao To: Kees Cook CC: "joseph@codesourcery.com" , "richard.guenther@gmail.com" , "jakub@redhat.com" , "gcc-patches@gcc.gnu.org" , "siddhesh@gotplt.org" , "uecker@tugraz.at" , "isanbard@gmail.com" Subject: Re: [V1][PATCH 0/3] New attribute "element_count" to annotate bounds for C99 FAM(PR108896) Thread-Topic: [V1][PATCH 0/3] New attribute "element_count" to annotate bounds for C99 FAM(PR108896) Thread-Index: AQHZjyQM4cZ0Nx0hq0Cg9tjYZZoL4q9tBmcAgAX2RIA= Date: Tue, 30 May 2023 15:43:28 +0000 Message-ID: References: <20230525161450.3704901-1-qing.zhao@oracle.com> <202305261218.2420AB8E0@keescook> In-Reply-To: <202305261218.2420AB8E0@keescook> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-mailer: Apple Mail (2.3696.120.41.1.3) x-ms-publictraffictype: Email x-ms-traffictypediagnostic: CH2PR10MB4344:EE_|PH8PR10MB6480:EE_ x-ms-office365-filtering-correlation-id: ca5eae92-8839-4532-e5c9-08db61249d0a x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:CH2PR10MB4344.namprd10.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230028)(39860400002)(376002)(366004)(396003)(136003)(346002)(451199021)(122000001)(38100700002)(41300700001)(38070700005)(316002)(6512007)(6916009)(4326008)(71200400001)(33656002)(86362001)(2906002)(6486002)(8676002)(8936002)(2616005)(91956017)(66946007)(76116006)(66446008)(66556008)(53546011)(66476007)(36756003)(64756008)(54906003)(44832011)(6506007)(83380400001)(966005)(478600001)(5660300002)(186003)(45980500001);DIR:OUT;SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?cyHCtQWs1jtpTXbyNf7pefpBPJ6QCN1TWa0fTPy48qEpLKUr+/ZeZw1f+hLs?= =?us-ascii?Q?bMse7UydUcA9kPrPqu/7X5dk4thS3qiwRO2r6Uc7dg0NjHlS/8ujGajca06g?= =?us-ascii?Q?FAubjINm/oA4Scr/f1pfC/xTRyjQxHnG55MCZWzSH3YKrTwgC0Q5Vrunqpnz?= =?us-ascii?Q?1vFdkRWk/k80GP3txajilRUE7f4xH5y9STjMMo7h2Wm4ZHgIofVi17ezQPPJ?= =?us-ascii?Q?s4N0W9nywLUw43xPstm5pFZflq6joj7+f2CaOl5zBSTaCaTkv4CtzmsQVGLs?= =?us-ascii?Q?I4D1Atu19BaC8Wysat2J2EbtlwY/eDAaO0x8sYC354gx8m3ZumiYRFkSIdO7?= =?us-ascii?Q?QrpXLKCJxaLgCMHqQz1FBLfTOCAilfW1/gOviSICnZuSYsVT8cCSUc3+4tTn?= =?us-ascii?Q?QCCDEku9L78BeM7OlMSOPF1Ukw8tZjB/MF08ZtD2vu+e4qSl3QWqt3KLdvwe?= =?us-ascii?Q?LrFTK71VarD9Q2yO3vyTj+K0pTIpNlgmpqbdX4gPiUnQ6jO6v0WV3jUl9H8Q?= =?us-ascii?Q?SSTMHGdIxWdv1/Y0H4FuMmXT/Z6g6mdJG4QXQjhrKNUG/6/jCQ2FWgNqKsv1?= =?us-ascii?Q?DmnXX+0g2CdfuN15NrzzFXuNPhwodqeqFBXEL6uaD+bdnS5fUhTfgawn/aeX?= =?us-ascii?Q?PyarQDKEIhEpTy5H1ZwwOFD5TfKlPRUWcfqCmGqPhpGb5PFvt+K3c2zm5s7V?= =?us-ascii?Q?4OLQZhAwmZQsOu/NJlbNUD3Xdg7krckH2+sKIAmRr33/EgS8YczkKK3KpNs/?= =?us-ascii?Q?s18Ygs8dn3skI6d3YYwP5V9CpioauXrJlENP3a0ffv/CY7NYjlWdlsqRscbF?= =?us-ascii?Q?23cNZT8lht98c1IWk+vNZRqBZYio6AeKgfhuMJwUIqMXkxfE0iWyblIM/UZy?= =?us-ascii?Q?wI29jOqee1KgGXg3ENpCY+h/0djWa7lQTgAKHSOywWuRt+BaVlihKuA5qFSa?= =?us-ascii?Q?ii1oXTwTLCmiyKF/0XSZVqksaVceGafBgjHhw++dbLGC+aZO4rEhQheLCwgy?= =?us-ascii?Q?kOr9MeOx4ZJAlNxRVnEaz1OlHFr0q/rqVmuEdO/wf8ZO7369Fn7tRt4/d38c?= =?us-ascii?Q?FMh4Gpmk4RTQmm240KDHx2+rDeRg0nKPjRgDO6Q9Qqwld08EaYaRrybNEbhS?= =?us-ascii?Q?PMU3D66DywxXuvwXiR4bm1pamxHRPO58s3rPRjfclTMhZboUIWCASJeIjafy?= =?us-ascii?Q?xI2KAp0odb5Q421v3U7PaTvV++YlHJIZtDm/racPgxEC7xM7L0XjLIJrUP6M?= =?us-ascii?Q?/Z/gl+S3pGIDYg1bq6Bk+NtZ8tZXC89xtkO3SsPwIBzcg+ikhTyOVzlfTvx6?= =?us-ascii?Q?5mzmfNeXTmFnVUHi4nxsy69slA9l+aamZdEnzp7Noi7BAZoPr5A78d6JU+Mv?= =?us-ascii?Q?rF0zpvYyUvDRBktAGR7vWMXHpqOqjxME5fbzr5eJeE32iBDkfVqSitW8IO7+?= =?us-ascii?Q?Bf0jWVVzvkmW94Nu23Mc3AeMK6Lr1Xw2ilYxtLt/AX3aZgjlGlpIm3k8z788?= =?us-ascii?Q?tmPJ9P1Vc99fvcAKdiHkY5lW4nB3H8wB9KCHNGdStfpfLCdM486D8Wle5fmB?= =?us-ascii?Q?Mm/qPfL0JFi4KrMdpnG8TnMdlV+n7yZufRhhAph3OCacSVImM9YVbFYykn7a?= =?us-ascii?Q?15RA1kRRKulPJftR58qPAKo=3D?= Content-Type: text/plain; charset="us-ascii" Content-ID: <6520CB035DBC9D4C8EF7A035CABC1E21@namprd10.prod.outlook.com> Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: =?us-ascii?Q?8UdxvNpv5A6UZ3dPznCviKdtiNmK8u02pk/0Q/+nk1oB2mxOgjkNLqyvO8cz?= =?us-ascii?Q?ZgOHnC5g/38JLOg1uRWRaZQuz/CHkh3Jb3oetU4XKAYu/XC53Ghhd+EpIwoz?= =?us-ascii?Q?WxUGoTaKVX4bDq1dfirO8c9WHCmEJbQOB2hnIyXNrrvE2XAYgtHn+TXYOgNQ?= =?us-ascii?Q?xEbrUr98zrsrM/Jtf51BXiIJHCpoYP6wKO6YhGH8vSe/PC4x9pgFFLONRInL?= =?us-ascii?Q?uwVHg1RtRf/CSh+dRAkM0Bbx5UplBxXHTUatUTZqkWdCms1IbDfvaDdh9s6h?= =?us-ascii?Q?uR4M2w6/pZT9n7y5MQ3nvE0P93ZgqkxZ1zJhGN0I1PnQarUXcXIp/nea9QSp?= =?us-ascii?Q?uY+GT3kcM8sEF2qdY6LxQu6m1imOPw434e75bNG4zW0eP4O7op0jT1lTxaC2?= =?us-ascii?Q?HoV6eXuT4f2/uZX3kOWrf/Fb+giAwu6UupWLF+h8TvRpaWZAaN9yUgKj+8zX?= =?us-ascii?Q?U/zJWHCDBFyqU/Y/kYiiAm4I8fTiRr3NPC0PpdFr9cfBdAL5C2SzqAPK3Kdf?= =?us-ascii?Q?HYZGGhVzfTbzaJoWBOLKC+dbY3wM8Bxmooznm/fmpCPMVM/X0BBjr9j9UDea?= =?us-ascii?Q?YRfjCWdXrpEaIExaETO7DdPgRK/cNsytTT6NZOdkjTYa6BwsRYXRyqxhZEVN?= =?us-ascii?Q?tGjmuyVsjM8+LFvpSaXK+V5fqVdHnzM7Pb+LpKJh2BWjQPctxrZ707XUccIX?= =?us-ascii?Q?bIc3JodCutSSYowwPBohZfJJVh+v4nPuFuvFusLsWQ0fBEQ18t06Jz9k32MJ?= =?us-ascii?Q?gItJJ1y+RLcWjWJbJyO61VA2VP8DQaOaEdLxDQxJQWEmV1hemdk2iYc9DRZ3?= =?us-ascii?Q?ZKEG2AN7oP9NwhL+04wNfgHn3p6+j83Q6TVsF3xPUuKowY83mpoiY50K3orn?= =?us-ascii?Q?FvJVdA75Hh49/99MpUOK08Op+cccOph6p+MXHXvXDlNl3gjZzHpoBed6s9wp?= X-OriginatorOrg: oracle.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: CH2PR10MB4344.namprd10.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: ca5eae92-8839-4532-e5c9-08db61249d0a X-MS-Exchange-CrossTenant-originalarrivaltime: 30 May 2023 15:43:28.4246 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 4e2c6054-71cb-48f1-bd6c-3a9705aca71b X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kikXHN77iUG0AhenZfZMZaJ450aIxt2ciOa+ATCEzoVMYbmfpVhRzxi630sWqvHPK3k4XmNk/xK+PI4TbQxzJQ== X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH8PR10MB6480 X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.957,Hydra:6.0.573,FMLib:17.11.176.26 definitions=2023-05-30_11,2023-05-30_01,2023-05-22_02 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 mlxscore=0 mlxlogscore=999 suspectscore=0 malwarescore=0 adultscore=0 phishscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2304280000 definitions=main-2305300125 X-Proofpoint-GUID: QJPhYJTEO_P8NupHcLjSQplaacFEr1f- X-Proofpoint-ORIG-GUID: QJPhYJTEO_P8NupHcLjSQplaacFEr1f- X-Spam-Status: No, score=-5.4 required=5.0 tests=BAYES_00,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,KAM_SHORT,RCVD_IN_DNSWL_LOW,RCVD_IN_MSPIKE_H5,RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,SPF_NONE,TXREP,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org List-Id: > On May 26, 2023, at 4:40 PM, Kees Cook wrote: >=20 > On Thu, May 25, 2023 at 04:14:47PM +0000, Qing Zhao wrote: >> GCC will pass the number of elements info from the attached attribute to= both=20 >> __builtin_dynamic_object_size and bounds sanitizer to check the out-of-b= ounds >> or dynamic object size issues during runtime for flexible array members. >>=20 >> This new feature will provide nice protection to flexible array members = (which >> currently are completely ignored by both __builtin_dynamic_object_size a= nd >> bounds sanitizers). >=20 > Testing went pretty well, though I think I found some bdos issues: >=20 > - some things that bdos can't know the size of, and correctly returned > SIZE_MAX in the past, now thinks are 0-sized. Will check this issue and fix it. > - while bdos correctly knows the size of an element_count-annotated > flexible array, it doesn't know the size of the containing object > (i.e. it returns SIZE_MAX). This is a known issue I found during the implementation, and filed a bug: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=3D109557 for it And turned out that this was expected behavior.=20 >=20 > Also, I think I found a precedence issue: >=20 > - if both __alloc_size and 'element_count' are in use, the _smallest_ > of the two is what I would expect to be enforced by the sanitizer > and reported by __bdos. As is, alloc_size appears to be used when > it is available, regardless of what 'element_count' shows. Will check on this and fix it. >=20 > I've updated my test cases to show it more clearly, but here is the > before/after: >=20 >=20 > GCC 13 (correctly does not implement "element_count"): >=20 > $ ./array-bounds 2>&1 | grep -v ^'#' > TAP version 13 > 1..12 > ok 1 global.fixed_size_seen_by_bdos > ok 2 global.fixed_size_enforced_by_sanitizer > ok 3 global.unknown_size_unknown_to_bdos > ok 4 global.unknown_size_ignored_by_sanitizer > ok 5 global.alloc_size_seen_by_bdos > ok 6 global.alloc_size_enforced_by_sanitizer > not ok 7 global.element_count_seen_by_bdos > not ok 8 global.element_count_enforced_by_sanitizer > not ok 9 global.alloc_size_with_smaller_element_count_seen_by_bdos > not ok 10 global.alloc_size_with_smaller_element_count_enforced_by_saniti= zer > ok 11 global.alloc_size_with_bigger_element_count_seen_by_bdos > ok 12 global.alloc_size_with_bigger_element_count_enforced_by_sanitizer >=20 >=20 > ToT GCC + this element_count series: >=20 > $ ./array-bounds 2>&1 | grep -v ^'#' > TAP version 13 > 1..12 > ok 1 global.fixed_size_seen_by_bdos > ok 2 global.fixed_size_enforced_by_sanitizer > not ok 3 global.unknown_size_unknown_to_bdos > not ok 4 global.unknown_size_ignored_by_sanitizer > ok 5 global.alloc_size_seen_by_bdos > ok 6 global.alloc_size_enforced_by_sanitizer > not ok 7 global.element_count_seen_by_bdos > ok 8 global.element_count_enforced_by_sanitizer > not ok 9 global.alloc_size_with_smaller_element_count_seen_by_bdos > not ok 10 global.alloc_size_with_smaller_element_count_enforced_by_saniti= zer > ok 11 global.alloc_size_with_bigger_element_count_seen_by_bdos > ok 12 global.alloc_size_with_bigger_element_count_enforced_by_sanitizer >=20 >=20 > Test suite is here: > https://github.com/kees/kernel-tools/blob/trunk/fortify/array-bounds.c Thanks a lot for the testing, this is really helpful. Will study and fix all these issues. Qing >=20 > --=20 > Kees Cook