Re: [PATCH] intel-iommu: Fix use after release during device attach

From: Jan Kiszka
Date: Sun Nov 14 2010 - 04:18:53 EST

Next message: Vasiliy Kulikov: "[PATCH v2] infiniband: core: fix information leak to userspace"
Previous message: Raistlin: "Re: [RFC][PATCH 07/22] sched: SCHED_DEADLINE push and pull logic"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am 02.11.2010 08:31, Sheng Yang wrote:
> On Tuesday 02 November 2010 15:05:51 Jan Kiszka wrote:
>> From: Jan Kiszka <jan.kiszka@xxxxxxxxxxx>
>>
>> Obtail the new pgd pointer before releasing the page containing this
>> value.
>>
>> Signed-off-by: Jan Kiszka <jan.kiszka@xxxxxxxxxxx>
>> ---
>>
>> Who is taking care of this? The kvm tree?
>>
>> drivers/pci/intel-iommu.c | 2 +-
>> 1 files changed, 1 insertions(+), 1 deletions(-)
>>
>> diff --git a/drivers/pci/intel-iommu.c b/drivers/pci/intel-iommu.c
>> index 4789f8e..35463dd 100644
>> --- a/drivers/pci/intel-iommu.c
>> +++ b/drivers/pci/intel-iommu.c
>> @@ -3627,9 +3627,9 @@ static int intel_iommu_attach_device(struct
>> iommu_domain *domain,
>>
>> pte = dmar_domain->pgd;
>> if (dma_pte_present(pte)) {
>> - free_pgtable_page(dmar_domain->pgd);
>> dmar_domain->pgd = (struct dma_pte *)
>> phys_to_virt(dma_pte_addr(pte));
>> + free_pgtable_page(pte);
>> }
>> dmar_domain->agaw--;
>> }
>
> Reviewed-by: Sheng Yang <sheng@xxxxxxxxxxxxxxx>
>
> CC iommu mailing list and David.

Ping...

I think this fix also qualifies for stable (.35 and .36).

Jan

Attachment: signature.asc
Description: OpenPGP digital signature

Next message: Vasiliy Kulikov: "[PATCH v2] infiniband: core: fix information leak to userspace"
Previous message: Raistlin: "Re: [RFC][PATCH 07/22] sched: SCHED_DEADLINE push and pull logic"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]