Re: AUDIT of 2.5.15 copy_to/from_user

Hugh Dickins (hugh@veritas.com)
Sun, 19 May 2002 18:01:31 +0100 (BST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Pavel Machek: "suspend-to-{RAM,disk} for 2.5.16"
Previous message: Ron Gage: "[PATCH][RFQ] - Kernel Janitor Project - Compiler Cleanups"
In reply to: Alan Cox: "Re: AUDIT of 2.5.15 copy_to/from_user"
Next in thread: David Woodhouse: "Re: AUDIT of 2.5.15 copy_to/from_user"

On Sun, 19 May 2002, Alan Cox wrote:
> >
> > On the emu10k1 driver we use access_ok(VERIFY_READ) once at the beginning
> > of the write() routine to check we can access the user buffer. After that
> > we always use __copy_from_user() and we trust it not to fail. Is this
> > correct, or not?
>
> This is correct

Am I right to read that as "This is a correct description of what is
currently done in the emu10k1 driver, but what it is doing is incorrect"?

> Static once off checks are done in access_ok
> Dynamic checks are doing in __copy_from_*
>
> Which are which depends on the platform. On x86 for example access_ok
> is basically a check for 0->0xBFFFFFFF range and no more

Hugh

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Pavel Machek: "suspend-to-{RAM,disk} for 2.5.16"
Previous message: Ron Gage: "[PATCH][RFQ] - Kernel Janitor Project - Compiler Cleanups"
In reply to: Alan Cox: "Re: AUDIT of 2.5.15 copy_to/from_user"
Next in thread: David Woodhouse: "Re: AUDIT of 2.5.15 copy_to/from_user"