diff options
| author | Siddhesh Poyarekar <siddhesh@gotplt.org> | 2022-12-13 16:54:36 -0500 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2022-12-14 17:49:47 +0100 |
| commit | 7929e180aa47a2692ad4f053afac2857d7198758 (patch) | |
| tree | 75acc7c7959371ca5106891f13df1d8662a2685d /src/basic/alloc-util.c | |
| parent | cc137d53e36da5e57b060be5e621864f572b2cac (diff) | |
| download | systemd-7929e180aa47a2692ad4f053afac2857d7198758.tar.gz | |
Use dummy allocator to make accesses defined as per standard
systemd uses malloc_usable_size() everywhere to use memory blocks
obtained through malloc, but that is abuse since the
malloc_usable_size() interface isn't meant for this kind of use, it is
for diagnostics only. This is also why systemd behaviour is flaky when
built with _FORTIFY_SOURCE.
One way to make this more standard (and hence safer) is to, at every
malloc_usable_size() call, also 'reallocate' the block so that the
compiler can see the larger size. This is done through a dummy
reallocator whose only purpose is to tell the compiler about the larger
usable size, it doesn't do any actual reallocation.
Florian Weimer pointed out that this doesn't solve the problem of an
allocator potentially growing usable size at will, which will break the
implicit assumption in systemd use that the value returned remains
constant as long as the object is valid. The safest way to fix that is
for systemd to step away from using malloc_usable_size() like this.
Resolves #22801.
Diffstat (limited to 'src/basic/alloc-util.c')
| -rw-r--r-- | src/basic/alloc-util.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/basic/alloc-util.c b/src/basic/alloc-util.c index b030f454b2..6063943c88 100644 --- a/src/basic/alloc-util.c +++ b/src/basic/alloc-util.c @@ -102,3 +102,7 @@ void* greedy_realloc0( return q; } + +void *expand_to_usable(void *ptr, size_t newsize _unused_) { + return ptr; +} |