Received: by 2002:a25:c205:0:0:0:0:0 with SMTP id s5csp4956435ybf; Wed, 4 Mar 2020 14:15:39 -0800 (PST) X-Google-Smtp-Source: ADFU+vsn0VgQXueO7U4r4LsY2luVxddhvsb7fNtGS9Uyzh1Sdfm6Es9a8YIMHuQgtBD9rV02QZuA X-Received: by 2002:aca:cf94:: with SMTP id f142mr3250180oig.31.1583360138994; Wed, 04 Mar 2020 14:15:38 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1583360138; cv=none; d=google.com; s=arc-20160816; b=Zg2pBCzXuPoi5ioUjKYMfC74WR9UdTHuHvA4i1ZUZRBRFQQH7o/ZkGZ/Yd0+O/Ip5y mnL2OqoCh3Q3o1yIDsemSj3rN+oyGzI7WH/Bdh4hHnQjEDD0aAZ6TM44dmOwSUV+DqFo F1bIHJFG44FBIbt+I6JKxm0Vnmz7T8Sd0SqbEO2Snv4G8rfLUbglzk6efSlhublT22Qc u3ocpFIXapW3QOYXO8b2V1/UaBw89aWzzixEzKipJEY1/LiqeSWRlpPwFFxoSkSa/TYY i9ymsZLRbaZsMfN3GyxKP6owusAAwQ+Eui7JYVCQ+p1iTAzfa5FOxG4kuIVxDbmFf4HO q2Bw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-language :content-transfer-encoding:in-reply-to:mime-version:user-agent:date :message-id:from:references:cc:to:subject; bh=M3V8tx1Rx7HCLmoKpUb7KVrixy6dZgc0jCM8iTLj8T0=; b=PX/xLuVs58rHq8xF5Da4Ra9BBnNra38CkIdxu8Mv7uQINXciF3mboP0YHvrBQznuEk b7M4Gbt9PdcXvUnCc4XHKTyX2pEWAtPmRMWPe8iAHKvyviVYTT2+gN+Dbh9lqq2WVyOd 4acSqJ4FqYfJVqbUMVkWUcUMU7dX7ob9Mu+93j5YA5nCJBRK/cnwKDYliZPm7GgssTPT KjXJjI8jsh97G7lVqIrQNWPCNc52EJ1MSkVgU2IaYgNgGpboW/aVEp5yIssDH06Wnyfd v0UzJGPqdunUYqU9ePD2ZCV2LREZAiTjjp9xD01IGW2OSazUSog1uqaD8APTg6UQIMM1 IuHg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id w10si2022844otm.273.2020.03.04.14.15.27; Wed, 04 Mar 2020 14:15:38 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2388545AbgCDWOi (ORCPT + 99 others); Wed, 4 Mar 2020 17:14:38 -0500 Received: from smtp03.smtpout.orange.fr ([80.12.242.125]:36925 "EHLO smtp.smtpout.orange.fr" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2388338AbgCDWOi (ORCPT ); Wed, 4 Mar 2020 17:14:38 -0500 Received: from [192.168.42.210] ([93.22.132.175]) by mwinf5d06 with ME id ANEZ2200C3nCjhH03NEZnp; Wed, 04 Mar 2020 23:14:34 +0100 X-ME-Helo: [192.168.42.210] X-ME-Auth: Y2hyaXN0b3BoZS5qYWlsbGV0QHdhbmFkb28uZnI= X-ME-Date: Wed, 04 Mar 2020 23:14:34 +0100 X-ME-IP: 93.22.132.175 Subject: Re: AW: [PATCH 5.5 110/176] MIPS: VPE: Fix a double free and a memory leak in release_vpe() To: Walter Harms , Greg Kroah-Hartman , "linux-kernel@vger.kernel.org" Cc: "stable@vger.kernel.org" , Paul Burton , "ralf@linux-mips.org" , "linux-mips@vger.kernel.org" , "kernel-janitors@vger.kernel.org" References: <20200303174304.593872177@linuxfoundation.org> <20200303174317.555620066@linuxfoundation.org> From: Christophe JAILLET Message-ID: <33446ca8-0ace-e081-47fa-ceddf7fe80df@wanadoo.fr> Date: Wed, 4 Mar 2020 23:14:30 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Le 04/03/2020 à 22:28, Walter Harms a écrit : > ________________________________________ > Von: kernel-janitors-owner@vger.kernel.org im Auftrag von Greg Kroah-Hartman > Gesendet: Dienstag, 3. März 2020 18:42 > An: linux-kernel@vger.kernel.org > Cc: Greg Kroah-Hartman; stable@vger.kernel.org; Christophe JAILLET; Paul Burton; ralf@linux-mips.org; linux-mips@vger.kernel.org; kernel-janitors@vger.kernel.org > Betreff: [PATCH 5.5 110/176] MIPS: VPE: Fix a double free and a memory leak in release_vpe() > > From: Christophe JAILLET > > commit bef8e2dfceed6daeb6ca3e8d33f9c9d43b926580 upstream. > > Pointer on the memory allocated by 'alloc_progmem()' is stored in > 'v->load_addr'. So this is this memory that should be freed by > 'release_progmem()'. > > 'release_progmem()' is only a call to 'kfree()'. > > With the current code, there is both a double free and a memory leak. > Fix it by passing the correct pointer to 'release_progmem()'. > > Fixes: e01402b115ccc ("More AP / SP bits for the 34K, the Malta bits and things. Still wants") > Signed-off-by: Christophe JAILLET > Signed-off-by: Paul Burton > Cc: ralf@linux-mips.org > Cc: linux-mips@vger.kernel.org > Cc: linux-kernel@vger.kernel.org > Cc: kernel-janitors@vger.kernel.org > Signed-off-by: Greg Kroah-Hartman > > --- > arch/mips/kernel/vpe.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > --- a/arch/mips/kernel/vpe.c > +++ b/arch/mips/kernel/vpe.c > @@ -134,7 +134,7 @@ void release_vpe(struct vpe *v) > { > list_del(&v->list); > if (v->load_addr) > - release_progmem(v); > + release_progmem(v->load_addr); > kfree(v); > } > > > since release_progmem() is kfree() it is also possible to drop "if (v->load_addr)" > > jm2c > > re, > wh Agreed. My patch had the following comment after the patch description: --- The 'if (v->load_addr)' looks also redundant, but, well, the code is old and I feel lazy tonight to send another patch for only that. --- git log shows nearly no update since end of 2015, so I kept my proposal as minimal :) CJ