Re: [PATCH v2] Fixes a race in iopt_unmap_iova_range

Next message: Changhuang Liang: "Re: [PATCH v1 03/13] clk: starfive: Add system-0 domain PLL clock driver"
Previous message: Jakub Kicinski: "Re: [net-next v8 01/10] net: tso: Introduce tso_dma_map and helpers"
In reply to: Jason Gunthorpe: "Re: [PATCH v2] Fixes a race in iopt_unmap_iova_range"
Next in thread: Jason Gunthorpe: "Re: [PATCH v2] Fixes a race in iopt_unmap_iova_range"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Sina Hassani

Date: Mon Apr 06 2026 - 21:18:31 EST

On Mon, Apr 6, 2026 at 6:12 PM Jason Gunthorpe <jgg@xxxxxxxx> wrote:
>
> On Mon, Apr 06, 2026 at 04:07:01PM -0700, Sina Hassani wrote:
>
> > io_pagetable *iopt, unsigned long start,
> > unmapped_bytes += area_last - area_first + 1;
> >
> > down_write(&iopt->iova_rwsem);
> > +
> > + /* Do not reconsider things already unmapped in case of
> > + * concurrent allocation */
> > + start = area_last + 1;
>
> area_last can be ULONG_MAX so this literally overflows to 0. It is why
> I formed the suggestion I gave as I did
>
Yes, in which case the if (start < area_last) that follows will catch
it. Are you suggesting I compare against ULONG_MAX instead?
> Jason