| Message ID | 20220519150304.1289636-1-Liam.Howlett@oracle.com (mailing list archive) |
|---|---|
| State | New |
| Headers | show
Return-Path: <owner-linux-mm@kvack.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
by smtp.lore.kernel.org (Postfix) with ESMTP id EBBA9C433F5
for <linux-mm@archiver.kernel.org>; Thu, 19 May 2022 15:03:44 +0000 (UTC)
Received: by kanga.kvack.org (Postfix)
id 2E92D6B0074; Thu, 19 May 2022 11:03:44 -0400 (EDT)
Received: by kanga.kvack.org (Postfix, from userid 40)
id 2978F6B0075; Thu, 19 May 2022 11:03:44 -0400 (EDT)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
id 0C94C6B0078; Thu, 19 May 2022 11:03:44 -0400 (EDT)
X-Delivered-To: linux-mm@kvack.org
Received: from relay.hostedemail.com (smtprelay0012.hostedemail.com
[216.40.44.12])
by kanga.kvack.org (Postfix) with ESMTP id EEDF16B0074
for <linux-mm@kvack.org>; Thu, 19 May 2022 11:03:43 -0400 (EDT)
Received: from smtpin07.hostedemail.com (a10.router.float.18 [10.200.18.1])
by unirelay12.hostedemail.com (Postfix) with ESMTP id B11B5120CE4
for <linux-mm@kvack.org>; Thu, 19 May 2022 15:03:43 +0000 (UTC)
X-FDA: 79482811926.07.25C68B4
Received: from mx0a-00069f02.pphosted.com (mx0a-00069f02.pphosted.com
[205.220.165.32])
by imf24.hostedemail.com (Postfix) with ESMTP id B96BD18000B
for <linux-mm@kvack.org>; Thu, 19 May 2022 15:03:31 +0000 (UTC)
Received: from pps.filterd (m0246617.ppops.net [127.0.0.1])
by mx0b-00069f02.pphosted.com (8.17.1.5/8.17.1.5) with ESMTP id
24JDA4M7005159;
Thu, 19 May 2022 15:03:41 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oracle.com;
h=from : to : subject :
date : message-id : content-type : content-transfer-encoding :
mime-version; s=corp-2021-07-09;
bh=6F5vyXpWMKuTS3xOOpmWgyUFLdW1hPY/0Bkf0YiojR4=;
b=airdcJCOQfJ/ix2X9El9+gbshMkfoIRBjEqws0ajVtwONVxBpQVJhnwNViikUMXxwWYb
ldRBdAt2nw8ggxGeh9PHctkXspviAYO5vI0E7wAzFUcApf5/H6WZCTdfH3GuMsueQVZs
OzhcJmrSqvPpkXan/OdWH4yE9yUpLOYy6wG+mq6K8lOlynvLLqWZsw6eG8OuQQ0UQmLO
yIKm70zzSy6DmqnXGgM6H1ry+fG2buHtRFg7EYW+tZYXMyPsK/o8z93e6OBg3FnZYlrB
bLgCySjShviANFDBfQLKf+05U7GvF96SqLBcKlniagu+kQU7oViA7j0ZAwyOBgLdRa0I nw==
Received: from iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com
(iadpaimrmta01.appoci.oracle.com [130.35.100.223])
by mx0b-00069f02.pphosted.com (PPS) with ESMTPS id 3g24ytvjng-1
(version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
Thu, 19 May 2022 15:03:40 +0000
Received: from pps.filterd
(iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com [127.0.0.1])
by iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com (8.16.1.2/8.16.1.2)
with SMTP id 24JEuUkb037656;
Thu, 19 May 2022 15:03:39 GMT
Received: from nam12-dm6-obe.outbound.protection.outlook.com
(mail-dm6nam12lp2170.outbound.protection.outlook.com [104.47.59.170])
by iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com with ESMTP id
3g22vawtb1-1
(version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK);
Thu, 19 May 2022 15:03:39 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=U4yBhQP2IEHRfxfmblyOqAjGooLVs4ruPZbsgsMnilWethWzmK6ITLoh6oV9NlVa365svnRQVF27BXFzfi3jgEHHCUWUSZ0g3+ueBUG1AVBoEwJzROjOpw4Sx/Mpq3++udwCmE36PO+TXKCH6bfsHnutrTOh1l2d/O5F4R9hbK6Tl+0V4YAuUCCgSXZYqGadFqHDxTW9e8ePAA/D3XN9TvhrxPbcpgA4VEkDB6bD8AYxKMZ7LB9of6tUoOtw8WqFLQ+0nW4IO2nP7awrX87EC88Gl/mebJLJMD8ItNbkbBC9gzBikToXkx450HyjpwZ9phk1ER47Mt2kMnmlQtXpBQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
bh=6F5vyXpWMKuTS3xOOpmWgyUFLdW1hPY/0Bkf0YiojR4=;
b=eybNhqYIOF+ec7RZOnWQi1LPJ9/Hw00u/OQsdUjwb2qrkMlT2HbBV1MloQIvmztN99ycPlMHEKAneSa0EEQU+bbc0qFHbppQI2HE9uUzYbiUv7LssAwQhiFEJf0xAj+tgABJnQ0alfiK48IwTvSJPE/OQKpqguM0cZpqhODczOyLySdS/drM36Kv75ZrGleiTFCD4TSaigIsNy+qHva5S0qAJ0mOplkz5eu9E6BhJTF9dihZFlZ/jQ0CCSBRybwitT23RemW8qLwdNm/mpfFeuqlQmKEGiOzmoggAXYn0NaYQ7t0Axp9r/IZc6+cCp/YsM9Mfhzotbw1S6Mu/emu7Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
smtp.mailfrom=oracle.com; dmarc=pass action=none header.from=oracle.com;
dkim=pass header.d=oracle.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=oracle.onmicrosoft.com; s=selector2-oracle-onmicrosoft-com;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=6F5vyXpWMKuTS3xOOpmWgyUFLdW1hPY/0Bkf0YiojR4=;
b=kib/vP0CUhK1kN3EqjkiCS/a8TjKGS0E2PnjgEwzAMv1r2SS1ZdmFwWQSbaM2MHnrg7Lw5D7xFLUiRcWLRMNRXc8rQI+8G7m5anr+z1/QVE3HknAjlVRAyIPUyiwO8yGYisfoXn5yfG0tTT7ppk1vG2mCcQDzPCRoUcLle9vpoE=
Received: from SN6PR10MB3022.namprd10.prod.outlook.com (2603:10b6:805:d8::25)
by BN6PR10MB1316.namprd10.prod.outlook.com (2603:10b6:404:49::20) with
Microsoft SMTP Server (version=TLS1_2,
cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5273.14; Thu, 19 May
2022 15:03:37 +0000
Received: from SN6PR10MB3022.namprd10.prod.outlook.com
([fe80::e1df:2e42:6674:313e]) by SN6PR10MB3022.namprd10.prod.outlook.com
([fe80::e1df:2e42:6674:313e%7]) with mapi id 15.20.5273.016; Thu, 19 May 2022
15:03:37 +0000
From: Liam Howlett <liam.howlett@oracle.com>
To: "maple-tree@lists.infradead.org" <maple-tree@lists.infradead.org>,
"linux-mm@kvack.org" <linux-mm@kvack.org>,
"linux-kernel@vger.kernel.org"
<linux-kernel@vger.kernel.org>,
Andrew Morton <akpm@linux-foundation.org>
Subject: [PATCH] maple_tree: Fix potential out of range offset on
mas_next()/mas_prev()
Thread-Topic: [PATCH] maple_tree: Fix potential out of range offset on
mas_next()/mas_prev()
Thread-Index: AQHYa5GePuPt66PSxkCo8B0sPrPz2w==
Date: Thu, 19 May 2022 15:03:37 +0000
Message-ID: <20220519150304.1289636-1-Liam.Howlett@oracle.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: git-send-email 2.35.1
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e84623ae-73aa-4e46-a1d6-08da39a8c09b
x-ms-traffictypediagnostic: BN6PR10MB1316:EE_
x-microsoft-antispam-prvs:
<BN6PR10MB1316F3D22F44C8BAE8D468DBFDD09@BN6PR10MB1316.namprd10.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info:
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
x-forefront-antispam-report:
CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:SN6PR10MB3022.namprd10.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230001)(366004)(5660300002)(38100700002)(8936002)(6486002)(38070700005)(508600001)(83380400001)(2616005)(71200400001)(316002)(122000001)(1076003)(26005)(44832011)(91956017)(86362001)(6512007)(36756003)(64756008)(66476007)(186003)(66446008)(76116006)(66946007)(8676002)(110136005)(6506007)(2906002)(66556008);DIR:OUT;SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?iso-8859-1?q?IQitiN+OnsgfjXgh1VEnDlE?=
=?iso-8859-1?q?XAYqPMeLlw9/MgSVUSGoMDUj8JGqoicRM9a6dvqQlgA2wtK8CenhLjBlkTGo?=
=?iso-8859-1?q?Byge0YVU6uQsCeyWsI+Q3oLASXrfbM3aaoJWc9MF1De3BCw05BfHlRUh4Tws?=
=?iso-8859-1?q?3qI8OsOyyZBiOvTniFEfJaNJ8amMhQvvpgi1KQ6EnYzqjgZKSF2kkNZrlxmY?=
=?iso-8859-1?q?LmBeW+GPiL+h4xRTgvAxs2jPdi0Flf3Ak19nY+HKLg12UCStkRr088X7IcJN?=
=?iso-8859-1?q?5tD2D5BuwGxiIFt86T+7B5Rh3yiYhl/j/sbDsqLCYi/vTWSwF/lj/pxTjaVZ?=
=?iso-8859-1?q?zdVpoWZsDQN2Njt3CRJD7Mf+zahPpfJjfxL+xUQi3w/IwJugwXbVdFefbVPD?=
=?iso-8859-1?q?3LDwbPwx3VSSdTWwENqD0qxjw8HKIu/ae0cMnyPrZM8LdnBN+bOK9HzH/BrE?=
=?iso-8859-1?q?3uYQjQN7LaMch2gGUYyE9BNH7ei+EzP/sdNZ59AxMwvrbN86QeKq/whbT7Dd?=
=?iso-8859-1?q?LIqhr0oNHOz5i90lGlg4fVLQwdFG56c9byhWpNAornrz9VpZ4JGHepbXY5wP?=
=?iso-8859-1?q?bTGrM6R1VtPItIub/Vjrvt9KrnqldwWLGM8kdieKZ8kjRdDiHviIj/D+rZDH?=
=?iso-8859-1?q?utAy/08h5UY1YETIKbTKEyw8TxA9v997pK/qUMm93Q1l0wy6gyTRRK64wL+Y?=
=?iso-8859-1?q?4pMWY9S1GgslpiFbS6KMOCVq1uxPMbo7Utxjys9K6EGgVu9g2WO0rOCNX+ZJ?=
=?iso-8859-1?q?eCa5DKkMO+d1LpCa6BEz3N1cW3HuEcGDh37VMPgsmE97dGoEJoMarebeP6O2?=
=?iso-8859-1?q?m1iJGHaa+v49GtLk2pLorU2BuAJOirgj4Lsy7E9981BtQoI9DjThFwnHx/M+?=
=?iso-8859-1?q?TJzSEjNU/Cz+q8Nk1Q/cPnCfjRuNVUrRZmwMeaO4SUhE2SJXPyslFf2+36S2?=
=?iso-8859-1?q?yFZLFVT/GhKrthAKXvtem3HKI2sT9K0XsNbg5+2rpdZbxwj9fca7ynQ7ZLlu?=
=?iso-8859-1?q?7do+MIXYWRtIakBy5mHpOWYPCHnfql2MJZSUbMPh7/e2HtcT5/0rzFzPKRvz?=
=?iso-8859-1?q?d3otjBqzC0PvCmstCthmehxYzgyP/r3DHD8bL/3EMzOFIvKvfZK/o9euz8mn?=
=?iso-8859-1?q?Y1acsKjWQDe1P9AXd0xbCkKgRG6yDa8KN1aZCzSyXAyZhIK9oI5VDEUtRsS+?=
=?iso-8859-1?q?XgRYfILMiTyIO1/fwSFxb7WaVwEx5RLoheQJv2u5EXloJkI71gjHpH+xEbxM?=
=?iso-8859-1?q?G2cL7Fu7ZrVv0dpCFEpS8danfnj0YoRU6Gl20YmssAHPb/c0QD0CKJA1jx3o?=
=?iso-8859-1?q?sZwU0yII3FjHvwlQroR19TPCPA/X/TXCjXaeJlbzJUGrfA3aCBsxVY77BSWS?=
=?iso-8859-1?q?HyK5/Yb3vk9K3HbAh6R/Db98ldSoGWeiSDCQrxd6CHafdtddHNHu7CCmCdKF?=
=?iso-8859-1?q?xbG4MhjCpFA4I/73NmoaSW9lqDBcJqJmTTWycKiLv3e0EVNC78cxw/jjNrDH?=
=?iso-8859-1?q?YJv4BvTQNO8ln3GPYwqx1RCDYBstf2PLDppUWz2Te5ccZmk/sMFu01V+4ZHd?=
=?iso-8859-1?q?qrIwYuy++YFIdXEAcIkE8g+T1WNnFhyLNbdbrJZbQbcKqkZTXEyHVAZiMxwC?=
=?iso-8859-1?q?Qh9ajUftilh9pUjArcOzHsFnn8QuDoX7OYcbgYkC4nLTa4+kSjlMeuRlkx0n?=
=?iso-8859-1?q?wCk3wfASxL9KnB/SxTRtTcESA8/OK53TNsMa4ae9lo3PvdjpFE4KpFbAXjnf?=
=?iso-8859-1?q?6Jc6THb9q2iZmC24lpNW0vCpF5ppmcpE/Ofl7xgFgKOvRxWO+pi+16HfecvT?=
=?iso-8859-1?q?mgegBBZs=3D?=
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: oracle.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN6PR10MB3022.namprd10.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id:
e84623ae-73aa-4e46-a1d6-08da39a8c09b
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 May 2022 15:03:37.4747
(UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4e2c6054-71cb-48f1-bd6c-3a9705aca71b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname:
6TQ5oI/7L5YVQG7FUfSAcJKvWa2VQVlX28FE0CTnvbiBPEsJJusbc0erl+WxPG98mJ191s3vmKrquNUT9/vnyQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR10MB1316
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.486,18.0.874
definitions=2022-05-19_04:2022-05-19,2022-05-19 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 malwarescore=0
spamscore=0 mlxscore=0
phishscore=0 suspectscore=0 mlxlogscore=999 adultscore=0 bulkscore=0
classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2202240000
definitions=main-2205190089
X-Proofpoint-GUID: skOp8MYI3E80Dj8N4TkM39_CDaU_okcp
X-Proofpoint-ORIG-GUID: skOp8MYI3E80Dj8N4TkM39_CDaU_okcp
X-Stat-Signature: ocrmbq15sorp7d5yptq8wurx5z61xgki
Authentication-Results: imf24.hostedemail.com;
dkim=pass header.d=oracle.com header.s=corp-2021-07-09 header.b=airdcJCO;
dkim=pass header.d=oracle.onmicrosoft.com
header.s=selector2-oracle-onmicrosoft-com header.b="kib/vP0C";
spf=none (imf24.hostedemail.com: domain of liam.howlett@oracle.com has no SPF
policy when checking 205.220.165.32) smtp.mailfrom=liam.howlett@oracle.com;
dmarc=pass (policy=none) header.from=oracle.com
X-Rspam-User:
X-Rspamd-Server: rspam01
X-Rspamd-Queue-Id: B96BD18000B
X-HE-Tag: 1652972611-718328
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>
|
| Series |
maple_tree: Fix potential out of range offset on mas_next()/mas_prev()
|
expand
|
diff --git a/lib/maple_tree.c b/lib/maple_tree.c index 8cde2edcb4f8..9f8d3ee792d1 100644 --- a/lib/maple_tree.c +++ b/lib/maple_tree.c @@ -4628,8 +4628,10 @@ static inline void *mas_next_entry(struct ma_state *mas, unsigned long limit) node = mas_mn(mas); mt = mte_node_type(mas->node); mas->offset++; - if (unlikely(mas->offset >= mt_slots[mt])) + if (unlikely(mas->offset >= mt_slots[mt])) { + mas->offset = mt_slots[mt] - 1; goto next_node; + } while (!mas_is_none(mas)) { entry = mas_next_nentry(mas, node, limit, mt); @@ -4687,6 +4689,9 @@ static inline void *mas_prev_nentry(struct ma_state *mas, unsigned long limit, mn = mas_mn(mas); mt = mte_node_type(mas->node); offset = mas->offset - 1; + if (offset >= mt_slots[mt]) + offset = mt_slots[mt] - 1; + slots = ma_slots(mn, mt); pivots = ma_pivots(mn, mt); if (offset == mt_pivots[mt])
When going between next/prev, be more careful to stay within the nodes range. Signed-off-by: Liam R. Howlett <Liam.Howlett@oracle.com> --- lib/maple_tree.c | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-)