[PATCH] Fix sysenter (%ebp) fault handling

Currently syscall_badsys is called to handle faults when reading the sixth parameter in sysenter; however that routine assumes that registers have already been pushed on the stack, and this is not the case (in other words, it will currently try to pop beyond the end of the thread stack). This patch adds a new "function", syscall_fault, that saves register and returns. The return value is changed to EFAULT, which seems more appropriate than ENOSYS.

[PATCH] Fix sysenter (%ebp) fault handling
Currently syscall_badsys is called to handle faults when reading the sixth parameter in sysenter; however that routine assumes that registers have already been pushed on the stack, and this is not the case (in other words, it will currently try to pop beyond the end of the thread stack). This patch adds a new "function", syscall_fault, that saves register and returns. The return value is changed to EFAULT, which seems more appropriate than ENOSYS.
a7df6f33 · Luca Barbieri · Linus Torvalds · 2afbee76 · a7df6f33
Commit a7df6f33 authored Jan 05, 2003 by Luca Barbieri Committed by Linus Torvalds Jan 05, 2003
Hide whitespace changes
Inline Side-by-side

Showing with 10 additions and 2 deletions

arch/i386/kernel/entry.S arch/i386/kernel/entry.S +10 -2

No files found.
--- a/arch/i386/kernel/entry.S
+++ b/arch/i386/kernel/entry.S
@@ -253,11 +253,11 @@ ENTRY(sysenter_entry)
 * Careful about security.
 */
 	cmpl $__PAGE_OFFSET-3,%ebp
-	jae syscall_badsys
+	jae syscall_fault
 1:	movl (%ebp),%ebp
 .section __ex_table,"a"
 	.align 4
-	.long 1b,syscall_badsys
+	.long 1b,syscall_fault
 .previous

 	pushl %eax
@@ -366,6 +366,14 @@ syscall_exit_work:
 	call do_syscall_trace
 	jmp resume_userspace

+	ALIGN
+syscall_fault:
+	pushl %eax			# save orig_eax
+	SAVE_ALL
+	GET_THREAD_INFO(%ebx)
+	movl $-EFAULT,EAX(%esp)
+	jmp resume_userspace
+
 	ALIGN
 syscall_badsys:
 	movl $-ENOSYS,EAX(%esp)