Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Michael Schmitz <schmitzmic@xxxxxxxxx>
Subject: Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
From: Al Viro <viro@xxxxxxxxxxxxxxxxxx>
Date: Mon, 21 Jun 2021 02:27:52 +0000
Cc: "Eric W. Biederman" <ebiederm@xxxxxxxxxxxx>, Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>, linux-arch <linux-arch@xxxxxxxxxxxxxxx>, Jens Axboe <axboe@xxxxxxxxx>, Oleg Nesterov <oleg@xxxxxxxxxx>, Linux Kernel Mailing List <linux-kernel@xxxxxxxxxxxxxxx>, Richard Henderson <rth@xxxxxxxxxxx>, Ivan Kokshaysky <ink@xxxxxxxxxxxxxxxxxxxx>, Matt Turner <mattst88@xxxxxxxxx>, alpha <linux-alpha@xxxxxxxxxxxxxxx>, Geert Uytterhoeven <geert@xxxxxxxxxxxxxx>, linux-m68k <linux-m68k@xxxxxxxxxxxxxxx>, Arnd Bergmann <arnd@xxxxxxxxxx>, Ley Foon Tan <ley.foon.tan@xxxxxxxxx>, Tejun Heo <tj@xxxxxxxxxx>, Kees Cook <keescook@xxxxxxxxxxxx>
In-reply-to: <393c37de-5edf-effc-3d06-d7e63f34a317@gmail.com>
References: <924ec53c-2fd9-2e1c-bbb1-3fda49809be4@gmail.com> <87eed4v2dc.fsf@disp2133> <5929e116-fa61-b211-342a-c706dcb834ca@gmail.com> <87fsxjorgs.fsf@disp2133> <87zgvqor7d.fsf_-_@disp2133> <CAHk-=wir2P6h+HKtswPEGDh+GKLMM6_h8aovpMcUHyQv2zJ5Og@mail.gmail.com> <87mtrpg47k.fsf@disp2133> <87pmwlek8d.fsf_-_@disp2133> <87k0mtek4n.fsf_-_@disp2133> <393c37de-5edf-effc-3d06-d7e63f34a317@gmail.com>

On Mon, Jun 21, 2021 at 02:01:18PM +1200, Michael Schmitz wrote:
> Hi Eric,
> 
> instrumenting get_reg on m68k and using a similar patch to yours to warn
> when unsaved registers are accessed on the switch stack, I get a hit from
> getegid and getegid32, just by running a simple ptrace on ls.
> 
> Going to wack those two moles now ...

Explain, please.  get_reg() is called by tracer; whose state are you checking?
Because you are *not* accessing the switch stack of the caller of get_reg().
And tracee should be in something like syscall_trace() or do_notify_resume();
both have SAVE_SWITCH_STACK done by the glue...

Follow-Ups:
- Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
  - From: Michael Schmitz

References:
- Re: Kernel stack read with PTRACE_EVENT_EXIT and io_uring threads
  - From: Michael Schmitz
- Re: Kernel stack read with PTRACE_EVENT_EXIT and io_uring threads
  - From: Eric W. Biederman
- Re: Kernel stack read with PTRACE_EVENT_EXIT and io_uring threads
  - From: Michael Schmitz
- Re: Kernel stack read with PTRACE_EVENT_EXIT and io_uring threads
  - From: Eric W. Biederman
- [PATCH] alpha: Add extra switch_stack frames in exit, exec, and kernel threads
  - From: Eric W. Biederman
- Re: [PATCH] alpha: Add extra switch_stack frames in exit, exec, and kernel threads
  - From: Linus Torvalds
- Re: [PATCH] alpha: Add extra switch_stack frames in exit, exec, and kernel threads
  - From: Eric W. Biederman
- [PATCH 0/2] alpha/ptrace: Improved switch_stack handling
  - From: Eric W. Biederman
- [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
  - From: Eric W. Biederman
- Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
  - From: Michael Schmitz

Prev by Date: Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
Next by Date: Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
Previous by thread: Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
Next by thread: Re: [PATCH 1/2] alpha/ptrace: Record and handle the absence of switch_stack
Index(es):
- Date
- Thread

[Index of Archives] [Linux Kernel] [Kernel Newbies] [x86 Platform Driver] [Netdev] [Linux Wireless] [Netfilter] [Bugtraq] [Linux Filesystems] [Yosemite Discussion] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Device Mapper]