Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse

[PATCH v6 00/11] arm64: untag user pointers passed to the kernel · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 01/11] arm64: add type casts to untagged_addr macro · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 02/11] uaccess: add untagged_addr definition for other arches · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 04/11] mm, arm64: untag user addresses in mm/gup.c · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 05/11] lib, arm64: untag addrs passed to strncpy_from_user and strnlen_user · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 06/11] arm64: untag user address in __do_user_fault · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 08/11] usb, arm64: untag user addresses in devio · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 09/11] arm64: update Documentation/arm64/tagged-pointers.txt · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 10/11] selftests, arm64: add a selftest for passing tagged pointers to kernel · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Andrey Konovalov <hidden> · 2018-08-30
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Luc Van Oostenryck <hidden> · 2018-08-31
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Al Viro <viro@ZenIV.linux.org.uk> · 2018-08-31
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Andrey Konovalov <hidden> · 2018-09-03
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Vincenzo Frascino <vincenzo.frascino@arm.com> · 2018-09-03
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Luc Van Oostenryck <hidden> · 2018-09-03
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Vincenzo Frascino <vincenzo.frascino@arm.com> · 2018-09-04
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Luc Van Oostenryck <hidden> · 2018-09-05
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Vincenzo Frascino <vincenzo.frascino@arm.com> · 2018-09-06
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Luc Van Oostenryck <hidden> · 2018-09-06
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Al Viro <viro@ZenIV.linux.org.uk> · 2018-09-03
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Linus Torvalds <torvalds@linux-foundation.org> · 2018-09-06
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Linus Torvalds <torvalds@linux-foundation.org> · 2018-09-06
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Luc Van Oostenryck <hidden> · 2018-09-06
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Catalin Marinas <catalin.marinas@arm.com> · 2018-09-07
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Linus Torvalds <torvalds@linux-foundation.org> · 2018-09-07
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Catalin Marinas <catalin.marinas@arm.com> · 2018-09-11
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Andrey Konovalov <hidden> · 2018-09-17
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Andrey Konovalov <hidden> · 2018-09-24
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Catalin Marinas <catalin.marinas@arm.com> · 2018-09-28
Re: [PATCH v6 11/11] arm64: annotate user pointers casts detected by sparse · Andrey Konovalov <hidden> · 2018-10-02
[PATCH v6 07/11] fs, arm64: untag user address in copy_mount_options · Andrey Konovalov <hidden> · 2018-08-30
[PATCH v6 03/11] arm64: untag user addresses in access_ok and __uaccess_mask_ptr · Andrey Konovalov <hidden> · 2018-08-30
Re: [PATCH v6 00/11] arm64: untag user pointers passed to the kernel · Andrey Konovalov <hidden> · 2018-08-30

From: Linus Torvalds <torvalds@linux-foundation.org>
Date: 2018-09-06 21:13:56
Also in: linux-arch, linux-arm-kernel, linux-kselftest, linux-mm, lkml

On Thu, Aug 30, 2018 at 4:41 AM Andrey Konovalov [off-list ref] wrote:

This patch adds __force annotations for __user pointers casts detected by
sparse with the -Wcast-from-as flag enabled (added in [1]).

No, several of these are wrong, and just silence a warning that shows a problem.

So for example:

 static inline compat_uptr_t ptr_to_compat(void __user *uptr)
 {
-       return (u32)(unsigned long)uptr;
+       return (u32)(__force unsigned long)uptr;
 }

this actually looks correct.

But:

quoted hunk ↗ jump to hunk

--- a/arch/arm64/include/asm/uaccess.h
+++ b/arch/arm64/include/asm/uaccess.h

@@ -76,7 +76,7 @@ static inline unsigned long __range_ok(const void __user *addr, unsigned long si
 {
        unsigned long ret, limit = current_thread_info()->addr_limit;

-       __chk_user_ptr(addr);
+       __chk_user_ptr((void __force *)addr);

This looks actively wrong. The whole - and only - point of
"__chk_user_ptr()" is that it warns about a lack of a "__user *" type.

So the above makes no sense at all.

There are other similar "that makes no sense what-so-ever", like this one:

-               struct compat_group_req __user *gr32 = (void *)optval;
+               struct compat_group_req __user *gr32 = (__force void *)optval;

no, the additionl of __force is not the right thing, the problem, is
that a __user pointer is cast to a non-user 'void *' only to be
assigned to another user type.

The fix should have been to use (void __user *) as the cast instead,
no __force needed.

In general, I think the patch shows all the signs of "mindlessly just
add casts", which is exactly the wrong thing to do to sparse warnings.

                   Linus

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help