From: Andy Lutomirski <luto@kernel.org>
To: "H. Peter Anvin" <h.peter.anvin@intel.com>
Cc: LKML <linux-kernel@vger.kernel.org>,
"H. Peter Anvin" <hpa@linux.intel.com>,
"H. Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@kernel.org>,
Thomas Gleixner <tglx@linutronix.de>,
Andrew Lutomirski <luto@kernel.org>,
"Bae, Chang Seok" <chang.seok.bae@intel.com>,
"Metzger, Markus T" <markus.t.metzger@intel.com>
Subject: Re: [PATCH v3 6/7] x86/tls,ptrace: provide regset access to the GDT
Date: Fri, 22 Jun 2018 07:43:47 -0700 [thread overview]
Message-ID: <CALCETrV-cmjyFmuf-AdrdZU4J1Gq88cEC3JLKme3oxm9Jy_PMQ@mail.gmail.com> (raw)
In-Reply-To: <20180621211754.12757-7-h.peter.anvin@intel.com>
On Thu, Jun 21, 2018 at 2:18 PM H. Peter Anvin, Intel
<h.peter.anvin@intel.com> wrote:
>
> From: "H. Peter Anvin" <hpa@linux.intel.com>
>
> Provide access to the user-visible part of the GDT via a regset in
> ptrace(). Note that we already provide a regset for the TLS area part
> of the GDT; these can trivially be unified by looking at the contents
> of the regset structure, especially since the TLS area is the only
> user-modifiable part of the GDT.
This seems reasonable, although I'm not sure I see the point of making
REGSET_GDT writable. (I see the point of making the LDT writable, but
that's a different story.)
> +static int gdt_get(struct task_struct *target,
> + const struct user_regset *regset,
> + unsigned int pos, unsigned int count,
> + void *kbuf, void __user *ubuf)
> +{
> + struct desc_struct gdt_copy[GDT_LAST_USER + 1];
> + const struct desc_struct *p;
> + struct user_desc udesc;
> + unsigned int index, endindex;
> + int err;
> +
> + if (pos % sizeof(struct user_desc))
> + return -EINVAL;
> +
> + /* Get a snapshot of the GDT from an arbitrary CPU */
> + memcpy(gdt_copy, get_current_gdt_ro(), sizeof(gdt_copy));
> +
> + /* Copy over the TLS area */
> + memcpy(&gdt_copy[GDT_ENTRY_TLS_MIN], target->thread.tls_array,
> + sizeof(target->thread.tls_array));
> +
> + /* Descriptor zero is never accessible */
> + memset(&gdt_copy[0], 0, sizeof(gdt_copy[0]));
I think you should also mask out all system segments and all RPL != 3 segments.
> +static int gdt_active(struct task_struct *target,
> + const struct user_regset *regset)
> +{
> + (void)target;
> + return GDT_LAST_USER + 1;
> +}
I can't find the code, if any, that calls ->active. But, if it
exists, is the result exposed to user space at all? If so, I think
this should return the maximum theoretical size of the GDT.
> + [REGSET_GDT] = {
> + .core_note_type = NT_X86_GDT,
> + .n = LDT_ENTRIES, /* Theoretical maximum */
> + .size = sizeof(struct user_desc),
> + .align = sizeof(struct user_desc),
> + .active = gdt_active,
> + .get = gdt_get, .set = regset_gdt_set
As above, barring a reason why it's useful, I think that removing .set
would make sense.
--Andy
next prev parent reply other threads:[~2018-06-22 14:44 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-06-21 21:17 [PATCH v3 0/7] x86/ptrace: regset access to the GDT and LDT H. Peter Anvin, Intel
2018-06-21 21:17 ` [PATCH v3 1/7] x86/ldt: refresh %fs and %gs in refresh_ldt_segments() H. Peter Anvin, Intel
2018-06-22 14:24 ` Andy Lutomirski
2018-06-22 18:29 ` H. Peter Anvin
2018-06-22 18:47 ` Andy Lutomirski
2018-06-27 18:19 ` Andy Lutomirski
2018-06-27 18:22 ` hpa
2018-06-27 18:33 ` hpa
2018-06-28 20:33 ` Andy Lutomirski
2018-06-28 20:39 ` hpa
2018-06-21 21:17 ` [PATCH v3 2/7] x86/ldt: use a common value for read_default_ldt() H. Peter Anvin, Intel
2018-06-21 21:17 ` [PATCH v3 3/7] x86: move fill_user_desc() from tls.c to desc.h and add validity check H. Peter Anvin, Intel
2018-06-21 21:17 ` [PATCH v3 4/7] x86/tls: create an explicit config symbol for the TLS area in the GDT H. Peter Anvin, Intel
2018-06-21 21:17 ` [PATCH v3 5/7] x86/segment: add #define for the last user-visible GDT slot H. Peter Anvin, Intel
2018-06-21 21:17 ` [PATCH v3 6/7] x86/tls,ptrace: provide regset access to the GDT H. Peter Anvin, Intel
2018-06-22 14:43 ` Andy Lutomirski [this message]
2018-06-21 21:17 ` [PATCH v3 7/7] x86/ldt,ptrace: provide regset access to the LDT H. Peter Anvin, Intel
2018-06-22 14:49 ` Andy Lutomirski
2018-06-22 15:05 ` hpa
2018-06-22 15:30 ` Andy Lutomirski
2018-06-22 1:58 ` [PATCH v3 0/7] x86/ptrace: regset access to the GDT and LDT Ingo Molnar
2018-06-22 2:25 ` hpa
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CALCETrV-cmjyFmuf-AdrdZU4J1Gq88cEC3JLKme3oxm9Jy_PMQ@mail.gmail.com \
--to=luto@kernel.org \
--cc=chang.seok.bae@intel.com \
--cc=h.peter.anvin@intel.com \
--cc=hpa@linux.intel.com \
--cc=hpa@zytor.com \
--cc=linux-kernel@vger.kernel.org \
--cc=markus.t.metzger@intel.com \
--cc=mingo@kernel.org \
--cc=tglx@linutronix.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.