Re: SMP races in proc with thread_struct

From: Keith Owens (kaos@ocs.com.au)
Date: Fri May 04 2001 - 18:27:28 EST

Next message: Manfred Spraul: "Re: [PATCH] 3 one-liner bugfixes"
Previous message: David Brownell: "Re: [linux-usb-devel] pegasus + MediaGX: Oops in khubd, the continuing story?"
In reply to: Andreas Schwab: "Re: SMP races in proc with thread_struct"
Next in thread: Andreas Ferber: "Re: SMP races in proc with thread_struct"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 04 May 2001 15:11:37 +0200,
Andreas Schwab <schwab@suse.de> wrote:
>Keith Owens <kaos@ocs.com.au> writes:
>|> Wrap the reference to the parent task structure with exception table
>|> recovery code, like copy_from_user().
>
>Exception tables only protect accesses to user virtual memory. Kernel
>memory references must always be valid in the first place.

Wrong. Exception tables say that if the kernel gets an exception
between labels A and B then branch to fixup label C. See show_regs()
in arch/i386/kernel/process.c and wrmsr_eio() in arch/i386/kernel/msr.c
for examples which do not depend on user virtual memory.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Manfred Spraul: "Re: [PATCH] 3 one-liner bugfixes"
Previous message: David Brownell: "Re: [linux-usb-devel] pegasus + MediaGX: Oops in khubd, the continuing story?"
In reply to: Andreas Schwab: "Re: SMP races in proc with thread_struct"
Next in thread: Andreas Ferber: "Re: SMP races in proc with thread_struct"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon May 07 2001 - 21:00:21 EST