Re: [PATCH net-next] net: devmem: drop iterator type check

From: Stanislav Fomichev
Date: Mon May 19 2025 - 10:42:08 EST

Next message: Hans Zhang: "Re: [PATCH 0/4] pci: implement "pci=aer_panic""
Previous message: André Draszik: "Re: [PATCH v4 00/32] Samsung S2MPG10 PMIC MFD-based drivers"
In reply to: Pavel Begunkov: "Re: [PATCH net-next] net: devmem: drop iterator type check"
Next in thread: Pavel Begunkov: "Re: [PATCH net-next] net: devmem: drop iterator type check"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 05/19, Pavel Begunkov wrote:
> On 5/16/25 23:54, Stanislav Fomichev wrote:
> > sendmsg() with a single iov becomes ITER_UBUF, sendmsg() with multiple
> > iovs becomes ITER_IOVEC. Instead of adjusting the check to include
> > ITER_UBUF, drop the check completely. The callers are guaranteed
> > to happen from system call side and we don't need to pay runtime
> > cost to verify it.
>
> I asked for this because io_uring can pass bvecs. Only sendzc can
> pass that with cmsg, so probably you won't be able to hit any
> real issue, but io_uring needs and soon will have bvec support for
> normal sends as well. One can argue we should care as it isn't
> merged yet, but there is something very very wrong if an unrelated
> and legal io_uring change is able to open a vulnerability in the
> devmem path.

Any reason not to filter these out on the io_uring side? Or you'll
have to interpret sendmsg flags again which is not nice?

Next message: Hans Zhang: "Re: [PATCH 0/4] pci: implement "pci=aer_panic""
Previous message: André Draszik: "Re: [PATCH v4 00/32] Samsung S2MPG10 PMIC MFD-based drivers"
In reply to: Pavel Begunkov: "Re: [PATCH net-next] net: devmem: drop iterator type check"
Next in thread: Pavel Begunkov: "Re: [PATCH net-next] net: devmem: drop iterator type check"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]