| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 10 Dec 2013 05:01:16 +0200 From: Octavian Purdila <tavi.purdila@...il.com> To: Arve Hjønnevåg <arve@...roid.com> Cc: Greg KH <gregkh@...uxfoundation.org>, Colin Cross <ccross@...roid.com>, "devel@...verdev.osuosl.org" <devel@...verdev.osuosl.org>, Ian Rogers <irogers@...gle.com>, Serban Constantinescu <serban.constantinescu@....com>, lkml <linux-kernel@...r.kernel.org>, John Stultz <john.stultz@...aro.org>, David Butcher <Dave.Butcher@....com>, romlem@...roid.com Subject: Re: [PATCH v1 9/9] staging: android: binder: Add binder compat layer On Thu, Dec 5, 2013 at 4:02 AM, Arve Hjønnevåg <arve@...roid.com> wrote: > On Wed, Dec 4, 2013 at 2:02 PM, Greg KH <gregkh@...uxfoundation.org> wrote: >> On Wed, Dec 04, 2013 at 01:55:34PM -0800, Colin Cross wrote: >>> On Wed, Dec 4, 2013 at 1:43 PM, Greg KH <gregkh@...uxfoundation.org> wrote: >>> > On Wed, Dec 04, 2013 at 12:46:42PM -0800, Colin Cross wrote: >>> >> On Wed, Dec 4, 2013 at 10:35 AM, Greg KH <gregkh@...uxfoundation.org> wrote: >>> >> <snip> >>> >> >>> >> > And finally, is this all really needed? Why not just fix the structures >>> >> > to be "correct", and then fix userspace to use the correct structures as >>> >> > well, thereby not needing a compat layer at all? >>> >> >>> >> Some of the binder ioctls take userspace pointers. Are you suggesting >>> >> storing those pointers in a __u64 to avoid having to have a >>> >> compat_ioctl? >>> > >>> > Yes, that's the best way to solve the issue, right? >>> >>> It's the least code, but in exchange you lose all the type safety and >>> warnings when copying in and out of the pointers, as well as sparse >>> checking on the __user attribute. >> >> Not if you make the cast right at the beginning, when you first "touch" >> the data, but yes, it does take some of the type saftey away, at the >> expense of simpler code to mess up :) >> >>> That doesn't seem like a good tradeoff to me. In addition it requires >>> modifying the existing heavily used 32 bit api, which means a >>> mostly-equivalent compat layer added in libbinder to support old >>> kernels. >> >> Wait, I thought that libbinder would have to be changed anyway here, to >> handle 64bit kernels (in both 32 and 64bit userspace). Since you are >> already changing it, why not just "do it correctly"? >> > > Yes libbinder will have to be changed to support calls between 32 bit > and 64 bit processes, so I don't see much value in a patchset that > only supports all 32 bit or all 64 bit processes. If user space is > fixed to use 64 bit pointers on a 64 bit system, then much of the code > added in this patchset becomes useless (and probably harmful as it > appears to prevent 32 bit processes from communicating with 64 bit > processes). > Hi, Coincidentally, I have been working on a compat layer myself lately. It is implemented in the binder driver with no changes in libbinder and it includes support for mixed mode. Unless you think that the kernel compat layer is a dead end, I can post the patches here for review. IMO the kernel compat layer gives you greater flexibility because it keeps the 32bit ABI unchanged. Of course it comes with the price of increased complexity. Thanks, Tavi -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists