On Thu, 02 Jan 2025 23:38:07 +0100,
Geoffrey D. Bennett wrote:
>
> Hi Takashi,
>
> Static buffers in the ioctl structs didn't seem to be the right way to
> go, so I followed the instructions in
> Documentation/drivers-api/ioctl.rst and the ioctls now work with
> 32-bit userspace on 64-bit kernels.
Actually it's rather trivial if you use a variable length array and
passes the header to the ioctl struct. e.g.
struct fcp_cmd {
__u16 size;
__u16 resp_size;
u8 data[];
};
then you can simply do copy_from_user() from the data field. And
write back to the data field again for the response if resp_size is
non-zero, too.
The above can be used for most of your needed I/O in general, I
suppose.
> I added suspend/resume handling and all the suspend/resume cases that
> I tried now work too.
Thanks. The code used for suspend is same for the fcp_private_free(),
and they can be factored out.
Now, considering this implementation again, a fundamental question is
whether we really should go to this direction or not.
Usually the driver implements an ioctl per certain limited task
(except for some debugging purpose). But we open all doors fully.
This gives the most flexibility, of course. OTOH, it has a
significant risk that every program may screw up your device easily by
sending some malicious ioctls.
So one another possible way would be to provide more tailored ioctls
that are specific to each task. Or we may introduce some sanity
checks of the possible registers or whatever parameters instead of
accepting all as is. Of course those would decrease the flexibility;
when some new feature is needed, you'd need to adjust the kernel side
as well. That's the cost for safety.
I'm not sure about this design decision yet.
thanks,
Takashi
[Index of Archives]
[Pulseaudio]
[Linux Audio Users]
[ALSA Devel]
[Fedora Desktop]
[Fedora SELinux]
[Big List of Linux Books]
[Yosemite News]
[KDE Users]