Re: [PATCH 05/10] lkdtm: disable set_fs-based tests for !CONFIG_SET_FS

From: Kees Cook
Date: Tue Sep 01 2020 - 14:57:48 EST

Next message: Guenter Roeck: "Re: [PATCH 4.4 00/62] 4.4.235-rc1 review"
Previous message: Tejun Heo: "[PATCH 02/27] blk-stat: make q->stats->lock irqsafe"
In reply to: Kees Cook: "Re: [PATCH 05/10] lkdtm: disable set_fs-based tests for !CONFIG_SET_FS"
Next in thread: Christoph Hellwig: "Re: [PATCH 05/10] lkdtm: disable set_fs-based tests for !CONFIG_SET_FS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Aug 29, 2020 at 11:24:06AM +0200, Christoph Hellwig wrote:
> On Thu, Aug 27, 2020 at 11:06:28AM -0700, Linus Torvalds wrote:
> > On Thu, Aug 27, 2020 at 8:00 AM Christoph Hellwig <hch@xxxxxx> wrote:
> > >
> > > Once we can't manipulate the address limit, we also can't test what
> > > happens when the manipulation is abused.
> >
> > Just remove these tests entirely.
> >
> > Once set_fs() doesn't exist on x86, the tests no longer make any sense
> > what-so-ever, because test coverage will be basically zero.
> >
> > So don't make the code uglier just to maintain a fiction that
> > something is tested when it isn't really.
>
> Sure fine with me unless Kees screams.

To clarify: if any of x86, arm64, arm, powerpc, riscv, and s390 are
using set_fs(), I want to keep this test. "ugly" is fine in lkdtm. :)

--
Kees Cook

Next message: Guenter Roeck: "Re: [PATCH 4.4 00/62] 4.4.235-rc1 review"
Previous message: Tejun Heo: "[PATCH 02/27] blk-stat: make q->stats->lock irqsafe"
In reply to: Kees Cook: "Re: [PATCH 05/10] lkdtm: disable set_fs-based tests for !CONFIG_SET_FS"
Next in thread: Christoph Hellwig: "Re: [PATCH 05/10] lkdtm: disable set_fs-based tests for !CONFIG_SET_FS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]