Re: [PATCH 1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length

From: Christoph Hellwig
Date: Wed Oct 07 2020 - 08:35:55 EST

Next message: Michal Hocko: "Re: [RFC PATCH] kernel: allow to configure PREEMPT_NONE, PREEMPT_VOLUNTARY on kernel command line"
Previous message: Dan Carpenter: "Re: [PATCH] PCI: fix a potential uninitentional integer overflow issue"
In reply to: Khalid Aziz: "Re: [PATCH 2/2] sparc: Check VMA range in sparc_validate_prot()"
Next in thread: Jann Horn: "Re: [PATCH 1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Oct 07, 2020 at 09:39:31AM +0200, Jann Horn wrote:
> diff --git a/arch/powerpc/kernel/syscalls.c b/arch/powerpc/kernel/syscalls.c
> index 078608ec2e92..b1fabb97d138 100644
> --- a/arch/powerpc/kernel/syscalls.c
> +++ b/arch/powerpc/kernel/syscalls.c
> @@ -43,7 +43,7 @@ static inline long do_mmap2(unsigned long addr, size_t len,
> {
> long ret = -EINVAL;
>
> - if (!arch_validate_prot(prot, addr))
> + if (!arch_validate_prot(prot, addr, len))

This call isn't under mmap lock. I also find it rather weird as the
generic code only calls arch_validate_prot from mprotect, only powerpc
also calls it from mmap.

This seems to go back to commit ef3d3246a0d0
("powerpc/mm: Add Strong Access Ordering support")

Next message: Michal Hocko: "Re: [RFC PATCH] kernel: allow to configure PREEMPT_NONE, PREEMPT_VOLUNTARY on kernel command line"
Previous message: Dan Carpenter: "Re: [PATCH] PCI: fix a potential uninitentional integer overflow issue"
In reply to: Khalid Aziz: "Re: [PATCH 2/2] sparc: Check VMA range in sparc_validate_prot()"
Next in thread: Jann Horn: "Re: [PATCH 1/2] mm/mprotect: Call arch_validate_prot under mmap_lock and with length"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]