| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAGXu5jLFHjybsJOcTCZOtgaifmYYioJK0Tm0dvSA7d31HMRwHA@mail.gmail.com> Date: Wed, 15 Aug 2012 11:43:34 -0700 From: Kees Cook <keescook@...omium.org> To: Alan Cox <alan@...rguk.ukuu.org.uk> Cc: Oleg Nesterov <oleg@...hat.com>, Peter Zijlstra <a.p.zijlstra@...llo.nl>, Fengguang Wu <fengguang.wu@...el.com>, LKML <linux-kernel@...r.kernel.org> Subject: Re: yama_ptrace_access_check(): possible recursive locking detected On Wed, Aug 15, 2012 at 11:44 AM, Alan Cox <alan@...rguk.ukuu.org.uk> wrote: >> It sounds like get_task_comm shouldn't have locking at all then? It >> should just do a length-limited copy and make sure there is a trailing >> 0-byte? > > It has locking so that it has a consistent state and more importantly it > has an accessor function > > Directly accessing it is asking for bugs in future. If you hold the > needed lock then just add an > > __get_task_comm() > > method that asserts the lock is held. That way the rest of the behaviour > remains properly encapsulated for when someone changes it. But what's been discussed is that no lock is needed if the caller doesn't care about the accuracy of the contents, which is the situation I'm in. Looking at other readers of ->comm, they just either use it directly or copy it directly. Only when accuracy matters does the kernel use get_task_comm. -Kees -- Kees Cook Chrome OS Security -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists