Re: [PATCH] lkdtm: Test KUAP directional user access unlocks on powerpc

From: Kees Cook
Date: Sat Feb 01 2020 - 11:40:43 EST

Next message: Stefan Wahren: "Re: [PATCH 6/6] net: bcmgenet: reduce severity of missing clock warnings"
Previous message: Mrs. Maureen Hinckley: "[no subject]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Jan 31, 2020 at 05:53:14PM +1100, Russell Currey wrote:
> Correct, the ACCESS_USERSPACE test does the same thing. Splitting this
> into separate R and W tests makes sense, even if it is unlikely that
> one would be broken without the other.

That would be my preference too -- the reason it wasn't separated before
was because it was one big toggle before. I just had both directions in
the test out of a desire for completeness.

Splitting into WRITE_USERSPACE and READ_USERSPACE seems good. Though if
you want to test functionality (read while only write disabled), then
I'm not sure what that should look like. Does the new
user_access_begin() API provide a way to query existing state? I'll go
read the series...

--
Kees Cook

Next message: Stefan Wahren: "Re: [PATCH 6/6] net: bcmgenet: reduce severity of missing clock warnings"
Previous message: Mrs. Maureen Hinckley: "[no subject]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]