commit 07b047fc2466249aff7cdb23fa0b0955a7a00d48
author akpm@osdl.org <akpm@osdl.org> Thu Jan 12 01:05:41 2006 -0800
committer Linus Torvalds <torvalds@g5.osdl.org> Thu Jan 12 09:08:52 2006 -0800
tree af22cc80470f8aff6d0c25276ef8fae2b3f537a7
parent 06b425d80f56280e698b3e8487c372e0d39d9ba1

[PATCH] i386: fix task_pt_regs()


)

From: Al Viro <viro@ftp.linux.org.uk>

task_pt_regs() needs the same offset-by-8 to match copy_thread()

Signed-off-by: Al Viro <viro@zeniv.linux.org.uk>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>

include/asm-i386/processor.h

diff --git a/include/asm-i386/processor.h b/include/asm-i386/processor.h
index 13ecf66..29ad87e 100644
--- a/include/asm-i386/processor.h
+++ b/include/asm-i386/processor.h
@@ -561,10 +561,20 @@
        (unsigned long)(&__ptr[THREAD_SIZE_LONGS]);                     \
 })
 
+/*
+ * The below -8 is to reserve 8 bytes on top of the ring0 stack.
+ * This is necessary to guarantee that the entire "struct pt_regs"
+ * is accessable even if the CPU haven't stored the SS/ESP registers
+ * on the stack (interrupt gate does not save these registers
+ * when switching to the same priv ring).
+ * Therefore beware: accessing the xss/esp fields of the
+ * "struct pt_regs" is possible, but they may contain the
+ * completely wrong values.
+ */
 #define task_pt_regs(task)                                             \
 ({                                                                     \
        struct pt_regs *__regs__;                                       \
-       __regs__ = (struct pt_regs *)KSTK_TOP((task)->thread_info);     \
+       __regs__ = (struct pt_regs *)(KSTK_TOP((task)->thread_info)-8); \
        __regs__ - 1;                                                   \
 })