Commit 0f9aee0c authored by Christophe Leroy's avatar Christophe Leroy Committed by Michael Ellerman
Browse files

powerpc/mm: Don't log user reads to 0xffffffff 



Running vdsotest leaves many times the following log:

  [   79.629901] vdsotest[396]: User access of kernel address (ffffffff) - exploit attempt? (uid: 0)

A pointer set to (-1) is likely a programming error similar to
a NULL pointer and is not worth logging as an exploit attempt.

Don't log user accesses to 0xffffffff.

Signed-off-by: default avatarChristophe Leroy <christophe.leroy@c-s.fr>
Signed-off-by: default avatarMichael Ellerman <mpe@ellerman.id.au>
Link: https://lore.kernel.org/r/0728849e826ba16f1fbd6fa7f5c6cc87bd64e097.1577087627.git.christophe.leroy@c-s.fr
parent cd08f109

arch/powerpc/mm/fault.c

+3 −0
Original line number Diff line number Diff line
@@ -350,6 +350,9 @@ static void sanity_check_fault(bool is_write, bool is_user, 
	 * Userspace trying to access kernel address, we get PROTFAULT for that.

	 */

	if (is_user && address >= TASK_SIZE) {

		if ((long)address == -1)

			return;



		pr_crit_ratelimited("%s[%d]: User access of kernel address (%lx) - exploit attempt? (uid: %d)\n",

				   current->comm, current->pid, address,

				   from_kuid(&init_user_ns, current_uid()));

CRA Git | Maintained and supported by SUSTech CRA and CCSE