potential user/kernel-address confusion

From: David Mosberger <davidm_at_napali.hpl.hp.com>
Date: 2004-10-05 01:39:33

While running the sparse checker, I discovered a potential problem:

In elfcore32.h, elf_core_copy_task_fpregs() calls save_ia32_fpstate(),
which expects to be copying to user-memory.  However, the ELF
coredumping code will pass you a pointer to kernel-memory and as far
as I can tell, save_ia32_fpstate() probably fail in that case (I don't
see any set_fs(KERNEL_DS), at least).

On a related note:

 - Isn't ia32_sigsuspend() missing a call to set_fs(KERNEL_DS)?  &mask
   is a kernel pointer, after all.

 - Isn't sys32_rt_sigreturn() missing a call to set_fs(KERNEL_DS)
   before the call to do_sigaltstack()?  &st is a kernel pointer, after all.

To unsubscribe from this list: send the line "unsubscribe linux-ia64" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Received on Mon Oct 4 11:44:58 2004

This archive was generated by hypermail 2.1.8 : 2005-08-02 09:20:31 EST