Received: by 2002:ac0:a5b6:0:0:0:0:0 with SMTP id m51-v6csp4117544imm;
        Mon, 18 Jun 2018 09:24:44 -0700 (PDT)
X-Google-Smtp-Source: ADUXVKIzIs4XPWrgvky/Ln+nK4qUuuXtmGkiYChfQ7lzwKLF8C6fAC9Z4Ua7sYwa57JeFTCnAGaD
X-Received: by 2002:a17:902:b08a:: with SMTP id p10-v6mr1242480plr.0.1529339084090;
        Mon, 18 Jun 2018 09:24:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1529339084; cv=none;
        d=google.com; s=arc-20160816;
        b=ghZ/+H60iz4fWogXWSU8sfxOhH6D1kdr5FXBDzYgRxa12KYKi1QwCpQGQwnd8LE5HM
         R6xPlHdv8/WSer4gqnpLfx4gQ42XM8uWDvVirhS3tf42Uk/vVS8B2CPEbLJvgI3N7M0L
         gAI6Y36YDxENNSoYRxwcnuMJaLDO0sQe7a7Eek8aJyELYqNuJ/JOmmznkJzsv+tIX362
         Tiy7Ei8kxv3HTXFkm1lTfPwHz898inj2WUUSOpZ1R80VljzOBfx9gLhDxldJcYjYTtQY
         eFmAl2LVmU9JULYsxtSEu02upDqUcfjR74GAEQJwzApw785N0JoBUS8RmIML1st8Qcdf
         n8EA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:cc:to:subject:dkim-signature
         :arc-authentication-results;
        bh=/NoG4DJZQDec7Sv5FVTU/vlHksYAqrGExJ64Uu8GRTY=;
        b=Q8rys/g/VQAZ10nbT1iof39vkzjVAaR2XHqZEoWDhhsPgRaQwSbLVYPRvFb3vZ7YuI
         f/QjyZs4Flut33Xygmqid7qkx2zyaO9moBeG2XsqS35B9CxJBgUFE4y682amOU2j4mx2
         XaWn0//7FjyEd4S0dmcXgin7wJWtTnIPd/TdtH270Aal1z3O/zzXr45oXEY/f7EFGsQM
         s7rgt9D8WoUX/uyanlVvzMLapqMXgKnTg1mpGnQdiXKTs4b5riISU/lfHju3Z+1FMZxu
         NViW3F0xX8IxvSNKJk05ZekK+e/MD1IM15UtmsD+3NhrpdZeFFOLkREtz+H+6a7Fz6fp
         OS3w==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=f6GUuSpU;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id u8-v6si12362064pgr.578.2018.06.18.09.24.30;
        Mon, 18 Jun 2018 09:24:44 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel-dk.20150623.gappssmtp.com header.s=20150623 header.b=f6GUuSpU;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1755329AbeFRQXv (ORCPT <rfc822;linux.htchiang@gmail.com>
        + 99 others); Mon, 18 Jun 2018 12:23:51 -0400
Received: from mail-it0-f65.google.com ([209.85.214.65]:38842 "EHLO
        mail-it0-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1754391AbeFRQXs (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 18 Jun 2018 12:23:48 -0400
Received: by mail-it0-f65.google.com with SMTP id v83-v6so12834532itc.3
        for <linux-kernel@vger.kernel.org>; Mon, 18 Jun 2018 09:23:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=kernel-dk.20150623.gappssmtp.com; s=20150623;
        h=subject:to:cc:references:from:message-id:date:user-agent
         :mime-version:in-reply-to:content-language:content-transfer-encoding;
        bh=/NoG4DJZQDec7Sv5FVTU/vlHksYAqrGExJ64Uu8GRTY=;
        b=f6GUuSpUBRWJGnwh3jw8sRIStkd7mv3r8N46KI02lG3O69FFNdK4qAPaORb6ahilbR
         vo6OZ4foFnYKatXwo1R+gDRNoim3tDMEq0sBghfPTQKgLvZVrZe2ZpZ5QASdeuUD+JA0
         23SgnxFYAsWt86RDM15OeBQoxgRKPrgFIC5Pb1dKk+/gJjqxcve3k3MPBuFI16YWe/Z2
         wPmP6ylh/nG2XqPLelO2RrlQOgse2DQeXii6kWP7OgDFOCAMHAz+QdwztIh8Evv9ErNr
         NgTDL6MOphqItPQRavzLQHDueaFulhQXo/C8oHnbKOvJ4EoRttUwiOYmQrIu/qNNsCOT
         tT1w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:subject:to:cc:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=/NoG4DJZQDec7Sv5FVTU/vlHksYAqrGExJ64Uu8GRTY=;
        b=h4wqM28p9AdlCY9x4p8YGWnf9/ASm086AxTL1xdUOy4B5eOgWgB46rXl0cO2+4m9Zz
         HvPrZgc1Q22NuJOQXJ7cDeuRPOgC5T/WgDPG5Jra8sz7x+Z3nWGJHI3zN2wdsD5aHTCc
         lOm7apQNZwoStDcLgIl0bD4odD+SvySR3F7beOJvUXh66c6r45ri0XgEWENWM9L9GzLK
         eON4qKAayI7rxiQhblKagZUw0GhKa0EeUn+/GNlp7CFkN3GoqDeGD/nYJS87/08mguoB
         o6s/O2v/v3tSPBEszB/TfSjnNxrSNUCHm+ihnK9s1kbMrIRMsULMT7eRU5/HPwMOkJja
         n6Fw==
X-Gm-Message-State: APt69E1JADloIW2BLBg4w4SO+lYoxgJO3bJpTptFRF4jOUldrHzNMknY
        E3gRZf4cYOzan6X4N5L4FDtAcQ==
X-Received: by 2002:a24:1d8f:: with SMTP id 137-v6mr10694956itj.41.1529339028007;
        Mon, 18 Jun 2018 09:23:48 -0700 (PDT)
Received: from [192.168.1.167] ([216.160.245.98])
        by smtp.gmail.com with ESMTPSA id b128-v6sm4496097itb.3.2018.06.18.09.23.45
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Mon, 18 Jun 2018 09:23:46 -0700 (PDT)
Subject: Re: [PATCH] sg, bsg: mitigate read/write abuse, block uaccess in
 release
To:     Al Viro <viro@ZenIV.linux.org.uk>
Cc:     dgilbert@interlog.com, Jann Horn <jannh@google.com>,
        FUJITA Tomonori <fujita.tomonori@lab.ntt.co.jp>,
        "James E.J. Bottomley" <jejb@linux.vnet.ibm.com>,
        "Martin K. Petersen" <martin.petersen@oracle.com>,
        linux-block@vger.kernel.org, linux-scsi@vger.kernel.org,
        linux-kernel@vger.kernel.org, kernel-hardening@lists.openwall.com,
        security@kernel.org
References: <20180615152335.208202-1-jannh@google.com>
 <20180615164009.GD30522@ZenIV.linux.org.uk>
 <90063ef3-68fa-e983-9b47-838e6076b0f4@interlog.com>
 <813e817b-bb2f-4a47-6225-9e39f19be278@kernel.dk>
 <20180618161657.GP30522@ZenIV.linux.org.uk>
From:   Jens Axboe <axboe@kernel.dk>
Message-ID: <229a6637-3f9e-e8ed-d94a-cafbbd47f140@kernel.dk>
Date:   Mon, 18 Jun 2018 10:23:45 -0600
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101
 Thunderbird/60.0
MIME-Version: 1.0
In-Reply-To: <20180618161657.GP30522@ZenIV.linux.org.uk>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 6/18/18 10:16 AM, Al Viro wrote:
> On Mon, Jun 18, 2018 at 09:37:01AM -0600, Jens Axboe wrote:
> 
>>> The folks responsible are no longer active in kernel development ***
>>> but as far as I know the async write(command), read(response) were
>>> added to bsg over 10 years ago as proof-of-concept and never properly
>>> worked in this async mode. The biggest design problem with it that I'm
>>
>> It was born with that mode, but I don't think anyone ever really used it.
>> So it might feasible to simply yank it. That said, just doing a prune
>> mode at ->release() time doesn't seem like such a hard task.
> 
> "prune mode" being...?

Basically what Jann posted, not doing any copy-back of data. Need to
verify if the bio unmapping is handled correctly, as some of those
will also copy when the end_io handling is invoked.

-- 
Jens Axboe