Re: [PATCH 3/3] usercopy: Add find_vmap_area_try() to avoid deadlocks

From: Kees Cook
Date: Fri Sep 16 2022 - 11:09:31 EST

Next message: Jeff Layton: "Re: [man-pages RFC PATCH v4] statx, inode: document the new STATX_INO_VERSION field"
Previous message: Ruffalo Lavoisier: "[PATCH 2] liquidio: CN23XX: delete repeated words, add missing words and fix typo in comment"
In reply to: Matthew Wilcox: "Re: [PATCH 3/3] usercopy: Add find_vmap_area_try() to avoid deadlocks"
Next in thread: Matthew Wilcox: "Re: [PATCH 3/3] usercopy: Add find_vmap_area_try() to avoid deadlocks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 16, 2022 at 03:46:07PM +0100, Matthew Wilcox wrote:
> On Fri, Sep 16, 2022 at 06:59:57AM -0700, Kees Cook wrote:
> > The check_object_size() checks under CONFIG_HARDENED_USERCOPY need to be
> > more defensive against running from interrupt context. Use a best-effort
> > check for VMAP areas when running in interrupt context
>
> I had something more like this in mind:

Yeah, I like -EAGAIN. I'd like to keep the interrupt test to choose lock
vs trylock, otherwise it's trivial to bypass the hardening test by having
all the other CPUs beating on the spinlock.

Thanks!

-Kees

--
Kees Cook

Next message: Jeff Layton: "Re: [man-pages RFC PATCH v4] statx, inode: document the new STATX_INO_VERSION field"
Previous message: Ruffalo Lavoisier: "[PATCH 2] liquidio: CN23XX: delete repeated words, add missing words and fix typo in comment"
In reply to: Matthew Wilcox: "Re: [PATCH 3/3] usercopy: Add find_vmap_area_try() to avoid deadlocks"
Next in thread: Matthew Wilcox: "Re: [PATCH 3/3] usercopy: Add find_vmap_area_try() to avoid deadlocks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]