Re: compat_netbsd32 swapctl

To: tech-kern%netbsd.org@localhost
Subject: Re: compat_netbsd32 swapctl
From: christos%astron.com@localhost (Christos Zoulas)
Date: Wed, 29 Jan 2014 22:32:06 +0000 (UTC)

In article <20140129153713.GL5645%homeworld.netbsd.org@localhost>,
Emmanuel Dreyfus  <manu%netbsd.org@localhost> wrote:
>On Wed, Jan 29, 2014 at 01:48:35PM +0100, Martin Husemann wrote:
>> My vote for this special case: hard code it #ifdef __x86_64__.
>> If we run into other instances, we can add a define (like: DEV_T_ALIGN_32).
>
>Here is a patch that fixes the problem.
>
>+              default:
>+                      panic("unexpected cmd = %d", SCARG(&ua, cmd));
>+                      break;

Anyone can panic the kernel now...

>+              }
>+
>+              *retval = 0;
>+              SCARG(&ssa, cmd) = SCARG(&ua, cmd);
>+              SCARG(&ssa, misc) = 1;
>+
>+              for (i = 0; i < SCARG(&ua, misc); i++) {
>+                      SCARG(&ssa, arg) = 
>+                          (char *)SCARG(&ua, arg) + (i * swapctl32_len);
>+
>+                      if ((error = sys_swapctl(l, &ssa, &rv)) != 0) {
>+                              *retval = rv;
>+                              break;
>+                      }

I think you probably want to do some struct conversion because if sys_swapctl
expects to write to a bigger buffer, you can end up trashing the user's stack.

christos

References:
- Re: compat_netbsd32 swapctl
  - From: Martin Husemann
- Re: compat_netbsd32 swapctl
  - From: Emmanuel Dreyfus
- Re: compat_netbsd32 swapctl
  - From: Martin Husemann
- Re: compat_netbsd32 swapctl
  - From: Emmanuel Dreyfus

Prev by Date: Re: compat_netbsd32 swapctl
Next by Date: Re: The lamentation of proplib(3)
Previous by Thread: Re: compat_netbsd32 swapctl
Next by Thread: re: compat_netbsd32 swapctl
Indexes:

Home | Main Index | Thread Index | Old Index