[PATCH] mm/gup.c: Handling ERR within unpin_user_pages()

From: Souptick Joarder
Date: Sun Sep 13 2020 - 10:33:12 EST

Next message: John Wood: "Re: [RFC PATCH 4/6] security/fbfam: Add a new sysctl to control the crashing rate threshold"
Previous message: Alex Shi: "Re: [PATCH v18 00/32] per memcg lru_lock: reviews"
Next in thread: Matthew Wilcox: "Re: [PATCH] mm/gup.c: Handling ERR within unpin_user_pages()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It is possible that a buggy caller of unpin_user_pages()
(specially in error handling path) may end up calling it with
npages < 0 which is unnecessary.

This can be fixed by adding extra check inside unpin_user_pages().

Signed-off-by: Souptick Joarder <jrdr.linux@xxxxxxxxx>
Cc: John Hubbard <jhubbard@xxxxxxxxxx>
---
mm/gup.c | 3 +++
1 file changed, 3 insertions(+)

diff --git a/mm/gup.c b/mm/gup.c
index 0b5c308b..2e19bd6 100644
--- a/mm/gup.c
+++ b/mm/gup.c
@@ -328,6 +328,9 @@ void unpin_user_pages(struct page **pages, unsigned long npages)
{
unsigned long index;

+ if (WARN_ON_ONCE(npages < 0))
+ return;
+
/*
* TODO: this can be optimized for huge pages: if a series of pages is
* physically contiguous and part of the same compound page, then a
--
1.9.1

Next message: John Wood: "Re: [RFC PATCH 4/6] security/fbfam: Add a new sysctl to control the crashing rate threshold"
Previous message: Alex Shi: "Re: [PATCH v18 00/32] per memcg lru_lock: reviews"
Next in thread: Matthew Wilcox: "Re: [PATCH] mm/gup.c: Handling ERR within unpin_user_pages()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]