Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()

From: Linus Torvalds
Date: Sat May 09 2020 - 20:58:33 EST

Next message: Bart Van Assche: "Re: [PATCH v4 3/5] blktrace: fix debugfs use after free"
Previous message: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
In reply to: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
Next in thread: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, May 9, 2020 at 5:51 PM Tetsuo Handa
<penguin-kernel@xxxxxxxxxxxxxxxxxxx> wrote:
>
> I think that this access_ok() check helps reducing partial writes (either
> "whole amount was processed" or "not processed at all" unless -ENOMEM).

No it doesn't.

"access_ok()" only checks the range being a valid user address range.

It doesn't actually help at all if the worry is "what if we take a
page fault in the middle". Because it simply doesn't check those
kinds of things.

Now, if somebody passes actual invalid ranges (ie kernel addresses or
other crazy stuff), they only have themselves to blame. The invalid
range will be noticed when actually doing the user copy, and then
you'll get EFAULT there. But there's no point in trying to figure that
out early - it's only adding overhead, and it doesn't help any normal
case.

Linus

Next message: Bart Van Assche: "Re: [PATCH v4 3/5] blktrace: fix debugfs use after free"
Previous message: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
In reply to: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
Next in thread: Tetsuo Handa: "Re: [PATCH 05/20] tomoyo_write_control(): get rid of pointless access_ok()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]