Closed lancerchao closed 8 years ago
I suppose that it occurs with TLS.
The kernel has to validate user buffers before accessing them. copy_page_to_iter does this for you, but the decryption api does not.
why was this issue closed?
Patch is available here. [https://github.com/lancerchao/af_ktls/commit/fe9c547c39a46587324aabcee2894571b3897849]
Btw, it is not necessary in ktls with revamped buffer management since those keep decrypted data in skbuffs and never decrypts straight to user memory.
I will take a look at your implementation ASAP.
Not to forget about this, reopening since fix is not available in ktls/af_ktls master.
Fixed, no longer needed now that using skbs
If a client makes a syscall like this:
And the decryption is done straight to user memory (the else{} in tls_recvmsg) a kernel fault is triggered http://pastebin.com/XjGu0dHx