Re: [PATCH v4 10/10] powerpc/uaccess: Implement masked user access

[PATCH v4 00/10] powerpc: Implement masked user access · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 06/10] powerpc/uaccess: Remove {allow/prevent}_{read/write/read_write}_{from/to/}_user() · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 08/10] powerpc/32s: Fix segments setup when TASK_SIZE is not a multiple of 256M · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 09/10] powerpc/32: Automatically adapt TASK_SIZE based on constraints · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 05/10] powerpc/uaccess: Remove unused size and from parameters from allow_access_user() · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 10/10] powerpc/uaccess: Implement masked user access · Christophe Leroy <hidden> · 2025-11-06
Re: [PATCH v4 10/10] powerpc/uaccess: Implement masked user access · Peter Zijlstra <peterz@infradead.org> · 2025-11-06
Re: [PATCH v4 10/10] powerpc/uaccess: Implement masked user access · David Laight <hidden> · 2025-11-06
[PATCH v4 01/10] iter: Avoid barrier_nospec() in copy_from_user_iter() · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 03/10] uaccess: Use masked_user_{read/write}_access_begin when required · Christophe Leroy <hidden> · 2025-11-06
Re: [PATCH v4 03/10] uaccess: Use masked_user_{read/write}_access_begin when required · Thomas Gleixner <hidden> · 2025-11-15
Re: [PATCH v4 03/10] uaccess: Use masked_user_{read/write}_access_begin when required · "Christophe Leroy (CS GROUP)" <chleroy@kernel.org> · 2025-11-17
[PATCH v4 07/10] powerpc/uaccess: Refactor user_{read/write/}_access_begin() · Christophe Leroy <hidden> · 2025-11-06
[PATCH v4 02/10] uaccess: Add speculation barrier to copy_from_user_iter() · Christophe Leroy <hidden> · 2025-11-06
Re: [PATCH v4 02/10] uaccess: Add speculation barrier to copy_from_user_iter() · Thomas Gleixner <hidden> · 2025-11-15
Re: [PATCH v4 02/10] uaccess: Add speculation barrier to copy_from_user_iter() · "Christophe Leroy (CS GROUP)" <chleroy@kernel.org> · 2025-11-17
[PATCH v4 04/10] powerpc/uaccess: Move barrier_nospec() out of allow_read_{from/write}_user() · Christophe Leroy <hidden> · 2025-11-06
Re: [PATCH v4 00/10] powerpc: Implement masked user access · Madhavan Srinivasan <maddy@linux.ibm.com> · 2025-11-13

From: David Laight <hidden>
Date: 2025-11-06 13:43:02
Also in: linux-block, linux-fsdevel, linuxppc-dev, lkml

On Thu, 6 Nov 2025 13:35:50 +0100
Peter Zijlstra [off-list ref] wrote:

On Thu, Nov 06, 2025 at 12:31:28PM +0100, Christophe Leroy wrote:

quoted

On 32 bits it is more tricky. In theory user space can go up to
0xbfffffff while kernel will usually start at 0xc0000000. So a gap
needs to be added in-between. Allthough in theory a single 4k page

                                  Although

quoted

would suffice, it is easier and more efficient to enforce a 128k gap
below kernel, as it simplifies the masking.

Do we have the requirement that the first access of a masked pointer is
within 4k of the initial address?

Suppose the pointer is to an 16k array, and the memcpy happens to like
going backwards. Then a 4k hole just won't do.

I think that requiring the accesses be within 4k of the base (or previous
access) is a reasonable restriction.
It is something that needs verifying before code is changed to use
these accessors.

Documenting a big gap is almost more likely to lead to errors!
If 128k is ok, no one is really going to notice code that might
offset by 130k.
OTOH if the (documented) limit is 256 bytes then you don't have to be
careful about accessing structures sequentially, and can safely realign
pointers.
I suspect the mk-1 brain treats 4k and 256 as muchthe same value.

Requiring fully sequential accesses (which the original x86-64 required
because it converted kernel addresses to ~0) would require policing by
the compiler - I tried it once, it horrid.

	David

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help