Re: [PATCH] usercopy: Skip HIGHMEM page checking

From: Matthew Wilcox
Date: Mon Sep 16 2019 - 20:34:08 EST

Next message: Raj, Ashok: "Re: [PATCH] x86/microcode: Add an option to reload microcode even if revision is unchanged"
Previous message: Dmitry Torokhov: "Re: [PATCH 00/11] Add support for software nodes to gpiolib"
In reply to: Kees Cook: "[PATCH] usercopy: Skip HIGHMEM page checking"
Next in thread: Kees Cook: "Re: [PATCH] usercopy: Skip HIGHMEM page checking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Sep 16, 2019 at 02:32:56PM -0700, Kees Cook wrote:
> When running on a system with >512MB RAM with a 32-bit kernel built with:
>
> CONFIG_DEBUG_VIRTUAL=y
> CONFIG_HIGHMEM=y
> CONFIG_HARDENED_USERCOPY=y
>
> all execve()s will fail due to argv copying into kmap()ed pages, and on
> usercopy checking the calls ultimately of virt_to_page() will be looking
> for "bad" kmap (highmem) pointers due to CONFIG_DEBUG_VIRTUAL=y:

I don't understand why you want to skip the check. We must not cross a
page boundary of a kmapped page.

Next message: Raj, Ashok: "Re: [PATCH] x86/microcode: Add an option to reload microcode even if revision is unchanged"
Previous message: Dmitry Torokhov: "Re: [PATCH 00/11] Add support for software nodes to gpiolib"
In reply to: Kees Cook: "[PATCH] usercopy: Skip HIGHMEM page checking"
Next in thread: Kees Cook: "Re: [PATCH] usercopy: Skip HIGHMEM page checking"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]