Re: [PATCH 3/3] tracing/filters: Support filtering for char * strings

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Li Zefan

Subject: Re: [PATCH 3/3] tracing/filters: Support filtering for char * strings

Date: Thursday, August 6, 2009 - 8:12 pm

Steven Rostedt wrote:
quoted text> On Fri, 7 Aug 2009, Li Zefan wrote:
> 
>>>>  	if (is_string_field(field)) {
>>>> +		pred->str_len = field->size;
>>>> +
>>>>  		if (field->filter_type == FILTER_STATIC_STRING)
>>>>  			fn = filter_pred_string;
>>>> -		else
>>>> +		else if (field->filter_type == FILTER_DYN_STRING)
>>>>  			fn = filter_pred_strloc;
>>>> -		pred->str_len = field->size;
>>>> +		else {
>>>> +			fn = filter_pred_pchar;
>>>> +			pred->str_len = strlen(pred->str_val);
>>>> +		}
>>> I'm a little dense here, where do we protect against someone making a 
>>> tracepoint that points to unsafe data?
>>>
>> We can't prevent anyone from doing insane things deliberately, but
>> we prevent from doing wrong things unconsciously.
>>
>> Only if a TRACE_EVENT has a field defined as:
>>
>> 	__field_ext(char *, name, FILTER_PTR_STR)
>>
>> Here using FILTER_PTR_STR explicitly, he should know what he's doing.
>>
>> Anyway, he can make a ptr pointing to unsafe data this way:
>>
>> 	TP_STRUCT__entry(
>> 		__field(char *, name)
>> 	)
>> 	TP_printk("%s", name)
> 
> I guess the thing I'm missing is what's the difference of the two? Why 
> would a developer use __field_ext instead of doing it the unsafe way of 
> just __field?
> 
> I guess I don't see the developer doing something wrong unconsciously. 
> Well maybe I don't see this making the developer do it right 
> unconsciously.
> 
> What protection is this giving us?
> 

__field(char *) suggests it should be treated as plain pointer,
while __field_ext(char *, FILTER_PTR_STR) suggests he's aware it's
safe to dereference the pointer, for example the case in Frederic's
blk events.

In Frederic's initial version, "char *" field will always be
attached to ptr_str filter function. This is unsafe, because for
other fields defined as "char *" but not safe to dereference,
a user still can do this:

	# echo 'name == abc' > filter

Then we'll deref a pointer that can point to unsafe data.

In this patch, this won't happen, as long as the developer is
aware that his use of __field_ext(char *) is right.

Otherwise, he will just use normal __field(char *) and print
the pointer itself in TP_printk().

--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH 0/3] tracing/filters: Support specifying filter hoo ..., Li Zefan, (Wed Aug 5, 11:05 pm)

[PATCH 1/3] tracing/filters: Add filter_type to struct ftr ..., Li Zefan, (Wed Aug 5, 11:06 pm)

[PATCH 2/3] tracing/filters: Add __field_ext() to TRACE_EVENT, Li Zefan, (Wed Aug 5, 11:06 pm)

[PATCH 3/3] tracing/filters: Support filtering for char * ..., Li Zefan, (Wed Aug 5, 11:06 pm)

Re: [PATCH 2/3] tracing/filters: Add __field_ext() to TRAC ..., Steven Rostedt, (Thu Aug 6, 7:17 am)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Steven Rostedt, (Thu Aug 6, 7:21 am)

Re: [PATCH 0/3] tracing/filters: Support specifying filter ..., Steven Rostedt, (Thu Aug 6, 7:23 am)

Re: [PATCH 0/3] tracing/filters: Support specifying filter ..., Li Zefan, (Thu Aug 6, 6:08 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Li Zefan, (Thu Aug 6, 6:20 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Steven Rostedt, (Thu Aug 6, 7:54 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Li Zefan, (Thu Aug 6, 8:12 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Steven Rostedt, (Thu Aug 6, 8:22 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Li Zefan, (Thu Aug 6, 8:24 pm)

Re: [PATCH 3/3] tracing/filters: Support filtering for cha ..., Steven Rostedt, (Thu Aug 6, 8:31 pm)

Navigation

Popular discussions


linux-kernel:
Greg KH	Og dreams of kernels
Jens Axboe	[PATCH 31/33] Fusion: sg chaining support
Arnd Bergmann	Re: finding your own dead "CONFIG_" variables
Mark Brown	[PATCH 2/2] Subject: natsemi: Allow users to disable workaround for DspCfg reset
Tony Breeds	[LGUEST] Look in object dir for .config
git:
Brian Downing	Re: Git in a Nutshell guide
John Benes	Re: master has some toys
Matthias Lederhofer	[PATCH 4/7] introduce GIT_WORK_TREE to specify the work tree
Alexander Sulfrian	[RFC/PATCH] RE: git calls SSH_ASKPASS even if DISPLAY is not set
Junio C Hamano	Re: Rss produced by git is not valid xml?
git-commits-head:
Linux Kernel Mailing List	iSeries: fix section mismatch in iseries_veth
Linux Kernel Mailing List	ixbge: remove TX lock and redo TX accounting.
Linux Kernel Mailing List	ixgbe: fix several counter register errata
Linux Kernel Mailing List	b43: fix build with CONFIG_SSB_PCIHOST=n
Linux Kernel Mailing List	9p: block-based virtio client
linux-netdev:
Michael Breuer	Re: [PATCH] af_packet: Don't use skb after dev_queue_xmit()
Michael Breuer	Re: [PATCH] af_packet: Don't use skb after dev_queue_xmit()
David Daney	[PATCH 5/7] Staging: Octeon Ethernet: Convert to NAPI.
Wolfgang Grandegger	[PATCH net-next v4 1/3] can: mscan: fix improper return if dlc < 8 in start_xmi...
Amit Kumar Salecha	[PATCHv3 NEXT 2/2] NET: Add Qlogic ethernet driver for CNA devices
openbsd-misc:
Theo de Raadt	Re: Old IPSEC bug
Tomáš Bodžár	Problem with vpnc connection - check group password !
Insan Praja SW	Mandoc Compiling Error
Carl Roberso	Re: Cannot change MTU of carp interface?
Richard Daemon	Re: booting openbsd on eee without cd-rom

Colocation donated by: