suggestion.. check for read/write/size/TASK_SIZE in kernel segment (early on) ?

public inbox for linux-kernel@vger.kernel.org
 help / color / mirror / Atom feed

From: Silvio Cesare <silvio@big.net.au>
To: linux-kernel@vger.kernel.org
Subject: suggestion.. check for read/write/size/TASK_SIZE in kernel segment (early on) ?
Date: Tue, 7 Jan 2003 17:29:08 +1100	[thread overview]
Message-ID: <20030107062908.GA5793@localhost.localdomain> (raw)

Hi.. I'm not sure if this is valid or not (or is compliant with everything),
but it seems like a reasonable suggestion IMO.

In read/write system call, check that the read/write buffer address
resides not in the kernel segment.  ie, check buffer address and TASK_SIZE,
address + size etc..

That may seem silly.. but it would stop any later problems by drivers
which dont check this themselves, or handle it incorrectly or inconsistantly..

1) clear security integrity check (so drivers etc are less worried)
2) clearly defined behaviour (error codes etc) when this occurs (easier
   on the drivers again).

If its not possible to do this in the system call directly any chance of
putting such a check early on in the generic driver code present?
perhaps the buffer in read/write means something other than a userspace
buffer/array, to someone, but i cant think of any read/write behaviour to
counter-claim this..

perhaps a dumb suggestion.. open to feedback :)

--
Silvio

                 reply	other threads:[~2003-01-07  7:48 UTC|newest]

Thread overview: [no followups] expand[flat|nested]  mbox.gz  Atom feed

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20030107062908.GA5793@localhost.localdomain \
    --to=silvio@big.net.au \
    --cc=linux-kernel@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox