From: Roland McGrath <roland@redhat.com>
Date: Sat, 28 Feb 2009 03:03:24 +0000 (-0800)
Subject: x86-64: syscall-audit: fix 32/64 syscall hole
X-Git-Tag: v2.6.29-rc7~20
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=ccbe495caa5e604b04d5a31d7459a6f6a76a756c;p=pandora-kernel.git

x86-64: syscall-audit: fix 32/64 syscall hole

On x86-64, a 32-bit process (TIF_IA32) can switch to 64-bit mode with
ljmp, and then use the "syscall" instruction to make a 64-bit system
call.  A 64-bit process make a 32-bit system call with int $0x80.

In both these cases, audit_syscall_entry() will use the wrong system
call number table and the wrong system call argument registers.  This
could be used to circumvent a syscall audit configuration that filters
based on the syscall numbers or argument details.

Signed-off-by: Roland McGrath <roland@redhat.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
---

Reading git-diff-tree failed