| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 05 Jul 2008 23:49:26 -0700 From: ebiederm@...ssion.com (Eric W. Biederman) To: Al Viro <viro@...IV.linux.org.uk> Cc: Marcin Slusarz <marcin.slusarz@...il.com>, LKML <linux-kernel@...r.kernel.org>, Frans Pop <elendil@...net.nl> Subject: Re: [PATCH] parport/ppdev: fix registration of sysctl entries Al Viro <viro@...IV.linux.org.uk> writes: > On Sun, Jul 06, 2008 at 01:11:48AM +0100, Al Viro wrote: >> On Sun, Jul 06, 2008 at 12:51:48AM +0100, Al Viro wrote: >> >> > I don't believe that it's right. Note that if you *do* race there, you >> > are fucked regardless of sysctls - ppdev.c::register_device() racing >> > with itself will do tons of fun things all by itself (starting with two >> > threads allocating different pdev and both setting pp->pdev). >> > >> > IOW, *if* that's what we are hitting here, you've only papered over the >> > visible symptom. >> >> BTW, with your patch you'll have 100% reproducible double registration if >> you do PPCLAIM/PPRELEASE/PPCLAIN on one file descriptor. > > FWIW, here's what's going on in ppdev: > a) we *are* allowed to create several pardevice over the same > port, one per each open(). Each is essentially a parport scheduling > entity. So far, so good. > b) creation is actually delayed until an ioclt (PPCLAIM). That > appears to be a result of shitty API (another ioctl (PPEXCL) instead of > just using O_EXCL at open() time, as any normal driver would). In any > case, it's badly racy - two tasks doing PPCLAIM on the same struct file > (e.g. one had opened it, then called fork(), then both child and parent > had called ioctl(fd, PPCLAIM, 0)) can race, leading to rather nasty > effects. Check for delayed registration + register_device() call should > be atomic. That's solvable by a mutex. > c) *HOWEVER*, all races aside, we have a genuinely fscked up > API. Each of these parport scheduling entities has a parameter - timeslice. > That parameter is exposed as sysctl. And we definitely want these per-open, > not per-port. And we get everything for the same port mapped to the same > sysctl. It isn't quite that bad. Every other user of parport_register_device uses a compile time unique name. Only ppdev allows multiple callers to reuse the same name. So our choices appear to be. - Change the name in sysctl so each parport device always has a unique name. - Only allow one opener of ppdev for a given port. - Take the approach of the initial patch and export to sysctl when we claim the port and unexport when we release the port. - Give up and simply don't register with sysctl for ppdev. I did a quick google search and I could not find any hits (except for this bug report on devices/ppdev) so I am inclined just to special case ppdev and not even bother registering with sysctl. I did not see any other fields that would have problems with a duplicate name. The only other backwards compatible and viable approach appears to be registering ppdev parport devices when they are claimed. The only reason we would be able to change the name without breakage is if no one uses the /proc interface in which case I don't see a point in continuing to provide it for ppdev. Eric -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists