Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: "Theodore Ts'o" <tytso@xxxxxxx>
Subject: Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
From: Jason Gunthorpe <jgg@xxxxxxxxxx>
Date: Fri, 28 Apr 2023 15:50:20 -0300
Cc: David Hildenbrand <david@xxxxxxxxxx>, Lorenzo Stoakes <lstoakes@xxxxxxxxx>, linux-mm@xxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>, Jens Axboe <axboe@xxxxxxxxx>, Matthew Wilcox <willy@xxxxxxxxxxxxx>, Dennis Dalessandro <dennis.dalessandro@xxxxxxxxxxxxxxxxxxxx>, Leon Romanovsky <leon@xxxxxxxxxx>, Christian Benvenuti <benve@xxxxxxxxx>, Nelson Escobar <neescoba@xxxxxxxxx>, Bernard Metzler <bmt@xxxxxxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Arnaldo Carvalho de Melo <acme@xxxxxxxxxx>, Mark Rutland <mark.rutland@xxxxxxx>, Alexander Shishkin <alexander.shishkin@xxxxxxxxxxxxxxx>, Jiri Olsa <jolsa@xxxxxxxxxx>, Namhyung Kim <namhyung@xxxxxxxxxx>, Ian Rogers <irogers@xxxxxxxxxx>, Adrian Hunter <adrian.hunter@xxxxxxxxx>, Bjorn Topel <bjorn@xxxxxxxxxx>, Magnus Karlsson <magnus.karlsson@xxxxxxxxx>, Maciej Fijalkowski <maciej.fijalkowski@xxxxxxxxx>, Jonathan Lemon <jonathan.lemon@xxxxxxxxx>, "David S . Miller" <davem@xxxxxxxxxxxxx>, Eric Dumazet <edumazet@xxxxxxxxxx>, Jakub Kicinski <kuba@xxxxxxxxxx>, Paolo Abeni <pabeni@xxxxxxxxxx>, Christian Brauner <brauner@xxxxxxxxxx>, Richard Cochran <richardcochran@xxxxxxxxx>, Alexei Starovoitov <ast@xxxxxxxxxx>, Daniel Borkmann <daniel@xxxxxxxxxxxxx>, Jesper Dangaard Brouer <hawk@xxxxxxxxxx>, John Fastabend <john.fastabend@xxxxxxxxx>, linux-fsdevel@xxxxxxxxxxxxxxx, linux-perf-users@xxxxxxxxxxxxxxx, netdev@xxxxxxxxxxxxxxx, bpf@xxxxxxxxxxxxxxx, Oleg Nesterov <oleg@xxxxxxxxxx>, John Hubbard <jhubbard@xxxxxxxxxx>, Jan Kara <jack@xxxxxxx>, "Kirill A . Shutemov" <kirill@xxxxxxxxxxxxx>, Pavel Begunkov <asml.silence@xxxxxxxxx>, Mika Penttila <mpenttil@xxxxxxxxxx>, David Howells <dhowells@xxxxxxxxxx>, Christoph Hellwig <hch@xxxxxx>
In-reply-to: <ZEwPscQu68kx32zF@mit.edu>

On Fri, Apr 28, 2023 at 02:25:53PM -0400, Theodore Ts'o wrote:
> On Fri, Apr 28, 2023 at 11:35:32AM -0300, Jason Gunthorpe wrote:
> > 
> > It has been years now, I think we need to admit a fix is still years
> > away. Blocking the security problem may even motivate more people to
> > work on a fix.
> 
> Do we think we can still trigger a kernel crash, or maybe even some
> more exciting like an arbitrary buffer overrun, via the
> process_vm_writev(2) system call into a file-backed mmap'ed region?

Jens? You blocked it from io_uring, did you have a specific attack in
mind?

Jason

Follow-Ups:
- Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
  - From: Theodore Ts'o

References:
- [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
  - From: Lorenzo Stoakes
- Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
  - From: David Hildenbrand
- Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
  - From: Jason Gunthorpe
- Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
  - From: Theodore Ts'o

Prev by Date: Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
Next by Date: [PATCH v10 03/11] proc: Use lsmids instead of lsm names for attrs
Previous by thread: Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
Next by thread: Re: [PATCH v5] mm/gup: disallow GUP writing to file-backed mappings by default
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [NTFS 3] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [NTFS 3] [Samba] [Device Mapper] [CEPH Development]