Re: [PATCH 2/3] sysctl: add support for drop_caches for individual filesystem

From: Al Viro
Date: Thu Oct 10 2024 - 13:17:32 EST

Next message: Christophe JAILLET: "Re: [PATCH] pinctrl: sophgo: fix double free in cv1800_pctrl_dt_node_to_map()"
Previous message: Catalin Marinas: "Re: [PATCH v13 11/40] arm64/gcs: Provide basic EL2 setup to allow GCS usage at EL0 and EL1"
In reply to: Thomas Weißschuh: "Re: [PATCH 2/3] sysctl: add support for drop_caches for individual filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Oct 10, 2024 at 07:25:42PM +0800, Ye Bin wrote:

> + if (sscanf(buffer, "%u:%u:%u", &major, &minor, &ctl) != 3)
> + return -EINVAL;
> +
> + if (ctl < *((int *)table->extra1) || ctl > *((int *)table->extra2))
> + return -EINVAL;
> +
> + sb = user_get_super(MKDEV(major, minor), false);
> + if (!sb)
> + return -EINVAL;

Odd user interface aside, you do realize that you've just grabbed ->s_umount
from inside a ->write() instance? Considering how much can be grabbed
under ->s_umount... Ow.

IOW, I very much doubt that doing that kind of stuff from sysctl is a good
idea - if nothing else, we'll end up with syzbot screaming its head off
about many and varied potential deadlocks, as soon as it discovers that one.
And I wouldn't swear that all of those would be false positives.

Next message: Christophe JAILLET: "Re: [PATCH] pinctrl: sophgo: fix double free in cv1800_pctrl_dt_node_to_map()"
Previous message: Catalin Marinas: "Re: [PATCH v13 11/40] arm64/gcs: Provide basic EL2 setup to allow GCS usage at EL0 and EL1"
In reply to: Thomas Weißschuh: "Re: [PATCH 2/3] sysctl: add support for drop_caches for individual filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]