On Fri, Aug 2, 2024 at 11:35 PM Jann Horn <jannh@xxxxxxxxxx> wrote: > > > Ah, notice another thing: this test might fail of someone enables > > CONFIG_SLUB_RCU_DEBUG with HW_TAGS, right? I think we need another > > check here. > > Why? I realize that HW_TAGS can't detect UAF in a TYPESAFE_BY_RCU slab > after an object has been reused, but here we do no other allocations, > so the object should still be free. And the kmalloc_uaf test also > doesn't check for HW_TAGS. Ah, right, all should be good, I got myself confused, sorry.
