arch_ptrace() question

public inbox for linux-m68k@lists.linux-m68k.org
 help / color / mirror / Atom feed

* arch_ptrace() question
@ 2010-10-04 19:35 Geert Uytterhoeven
  2010-10-04 20:46 ` Andreas Schwab
  0 siblings, 1 reply; 2+ messages in thread
From: Geert Uytterhoeven @ 2010-10-04 19:35 UTC (permalink / raw)
  To: Linux/m68k

arch/m68k/kernel/ptrace.c:arch_ptrace() has:

|        case PTRACE_PEEKUSR:
|               ...
|               } else if (addr >= 21 && addr < 49) {
|                        tmp = child->thread.fp[addr - 21];
|               ...
|         case PTRACE_POKEUSR:    /* write the word at location addr
in the USER area */
|               ...
|                } else if (addr >= 21 && addr < 48) {
|               ...
|                        child->thread.fp[addr - 21] = data;

This allows to access the fp[] (index 21..44) and fpcntl[] (index
45..47) fields in struct thread_struct:

struct thread_struct {
        unsigned long  ksp;             /* kernel stack pointer */
        unsigned long  usp;             /* user stack pointer */
        unsigned short sr;              /* saved status register */
        unsigned short fs;              /* saved fs (sfc, dfc) */
        unsigned long  crp[2];          /* cpu root pointer */
        unsigned long  esp0;            /* points to SR of stack frame */
        unsigned long  faddr;           /* info about last fault */
        int            signo, code;
        unsigned long  fp[8*3];
        unsigned long  fpcntl[3];       /* fp control regs */
        unsigned char  fpstate[FPSTATESIZE];  /* floating point state */
        struct thread_info info;
};

However, in the PTRACE_PEEKUSR case, the limit is 49, not 48, so it
allows to access the
first 4 bytes of fpstate[], too.

Is this intentional (anyone remembers?), or Just A Bug(tm)?
According to full-history-linux, it's been like that since this source
file entered mainline (1.3.94).

Gr{oetje,eeting}s,

                        Geert

--
Geert Uytterhoeven -- There's lots of Linux beyond ia32 -- geert@linux-m68k.org

In personal conversations with technical people, I call myself a hacker. But
when I'm talking to journalists I just say "programmer" or something like that.
                                -- Linus Torvalds

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: arch_ptrace() question
  2010-10-04 19:35 arch_ptrace() question Geert Uytterhoeven
@ 2010-10-04 20:46 ` Andreas Schwab
  0 siblings, 0 replies; 2+ messages in thread
From: Andreas Schwab @ 2010-10-04 20:46 UTC (permalink / raw)
  To: Geert Uytterhoeven; +Cc: Linux/m68k

Geert Uytterhoeven <geert@linux-m68k.org> writes:

> However, in the PTRACE_PEEKUSR case, the limit is 49, not 48, so it
> allows to access the
> first 4 bytes of fpstate[], too.
>
> Is this intentional

Yes, I think it is.  It allows to check whether the state is NULL or
not, thus whether the fpu registers are actually valid.

Andreas.

-- 
Andreas Schwab, schwab@linux-m68k.org
GPG Key fingerprint = 58CA 54C7 6D53 942B 1756  01D3 44D5 214B 8276 4ED5
"And now for something completely different."

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2010-10-04 20:46 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-10-04 19:35 arch_ptrace() question Geert Uytterhoeven
2010-10-04 20:46 ` Andreas Schwab

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox