Bug#502816: [PATCH] snapshot: Implement compat_ioctl

To: Ben Hutchings <ben@decadent.org.uk>
Cc: 502816@bugs.debian.org, Pavel Machek <pavel@ucw.cz>, linux-pm@vger.kernel.org
Subject: Bug#502816: [PATCH] snapshot: Implement compat_ioctl
From: "Rafael J. Wysocki" <rjw@sisk.pl>
Date: Fri, 30 Dec 2011 00:52:11 +0100
Message-id: <[🔎] 201112300052.11690.rjw@sisk.pl>
Reply-to: "Rafael J. Wysocki" <rjw@sisk.pl>, 502816@bugs.debian.org
In-reply-to: <[🔎] 1325202169.13595.57.camel@deadeye>
References: <[🔎] 1325018001.2327.13.camel@deadeye> <[🔎] 201112292333.31303.rjw@sisk.pl> <[🔎] 1325202169.13595.57.camel@deadeye>

On Friday, December 30, 2011, Ben Hutchings wrote:
> On Thu, 2011-12-29 at 23:33 +0100, Rafael J. Wysocki wrote:
> > On Thursday, December 29, 2011, Ben Hutchings wrote:
> > > On Tue, 2011-12-27 at 21:33 +0100, Ben Hutchings wrote:
> > > > This allows uswsusp built for i386 to run on an x86_64 kernel (tested
> > > > with Debian package version 1.0+20110509-2).
> > > 
> > > Now I wonder whether all this code was necessary.
> > > 
> > > [...]
> > > > +#ifdef CONFIG_COMPAT
> > > > +
> > > > +struct compat_resume_swap_area {
> > > > +	compat_loff_t offset;
> > > > +	u32 dev;
> > > > +} __packed;
> > > [...]
> > > 
> > > Is there actually any case where this doesn't have compatible layout
> > > with struct resume_swap_area?  It may have lower alignment, but
> > > misalignment is dealt with automatically when copying in/out of
> > > userland.
> > 
> > Quite frankly, I'm not 100% sure.
> 
> If it wasn't for the '__packed' in the declaration of struct
> resume_swap_area, there would be 4 trailing bytes of padding on 64-bit
> architectures and none on most 32-bit architectures.   But __packed
> should inhibit that padding.
> 
> I was apparently mistaken about put_user(); that would need to be
> changed to put_user_unaligned() if we want to handle compat_loff_t
> without a wrapper.
> 
> > > If the structure size was variable then the ioctl number would be as
> > > well, and commit cf007e3526a785a95a738d5a8fba44f1f4fe33e0 is supposed to
> > > have removed the last ioctls that had that problem.
> > > 
> > > So maybe the compat function can be as simple as:
> > > 
> > > static long
> > > snapshot_compat_ioctl(struct file *file, unsigned int cmd, unsigned long arg)
> > > {
> > > 	BUILD_BUG_ON(sizeof(loff_t) != sizeof(compat_loff_t));
> > > 	BUILD_BUG_ON(sizeof(struct resume_swap_area) !=
> > > 		     sizeof(struct compat_resume_swap_area));
> > > 
> > 
> > Well, I'd prefer to fail the ioctl in the above situations instead of crashing
> > the kernel.
> 
> This is a compile-time check...

That's correct, sorry.

> > > 	switch (cmd) {
> > > 	case SNAPSHOT_SET_SWAP_AREA:
> > > 	case SNAPSHOT_GET_IMAGE_SIZE:
> > > 	case SNAPSHOT_CREATE_IMAGE:
> > > 	case SNAPSHOT_AVAIL_SWAP_SIZE:
> > > 	case SNAPSHOT_ALLOC_SWAP_PAGE:
> > > 		return snapshot_ioctl(file, cmd,
> > > 				      (unsigned long) compat_ptr(arg));
> > > 
> > > 	default:
> > > 		return snapshot_ioctl(file, cmd, arg);
> > > 	}
> > > }
> > 
> > Does it acutally work?
> 
> I haven't tested, but in any case testing on x86 wouldn't prove that
> this works for any other 32/64-bit architecture pair.

Well, if it doesn't work on x86, it will prove something. :-)

Thanks,
Rafael

Reply to:

References:
- Bug#502816: [PATCH] snapshot: Implement compat_ioctl
  - From: Ben Hutchings <ben@decadent.org.uk>
- Bug#502816: [PATCH] snapshot: Implement compat_ioctl
  - From: "Rafael J. Wysocki" <rjw@sisk.pl>
- Bug#502816: [PATCH] snapshot: Implement compat_ioctl
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Bug#502816: [PATCH] snapshot: Implement compat_ioctl
Next by Date: Processed: severity of 652505 is normal
Previous by thread: Bug#502816: [PATCH] snapshot: Implement compat_ioctl
Next by thread: Processed: tagging 653314
Index(es):
- Date
- Thread