Received: by 2002:a05:6a10:6744:0:0:0:0 with SMTP id w4csp4072785pxu; Tue, 20 Oct 2020 07:41:15 -0700 (PDT) X-Google-Smtp-Source: ABdhPJzNX1wp3cmitZoFx1PiUIyd3dFZ5Gh96bdF1jJ+4dyp8jcR64AG3lEgc6OzKJVjGDvkijIz X-Received: by 2002:a05:6402:b37:: with SMTP id bo23mr3016999edb.170.1603204875365; Tue, 20 Oct 2020 07:41:15 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1603204875; cv=none; d=google.com; s=arc-20160816; b=Jzg6+t2aAzGNDWkuyy4w+ROJTAdK26DTbxbrXFAgYdwGxSJB6SykcyzFWeUphSVEXP a5oAmwYImoQqD0dSntsZVEJZY/P9p/MM/c4u6vtYcwUsqz7zxyei7cUtMTtvvMtjnTF4 cuFoSm/qAT0Mn+svqKnOg0eVpV0oFFlxOlo/UEk6OsTbkSKD7O9vyTqNC4zsta+SKzNP vaAbq8QOf+RWAA4lqUO0hCtwhk/hVyXYpfoD9+UGZqyqLTdFnZ0J3AAICt1U8KOOAsLT wpiVZszHdLeXZ3571k9rZVKgluRqUsOyZ2MLxjH2s2VBq8prdNu8Wrp6szwHWYJBg3iP 184g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from; bh=PGP8moKoM94y9o8EEkWwKvUggV3UY84qiSoK4Rt7AEA=; b=cV45lKY5C9SohjcyY3jFkXaYPbYoqoQnXZxhLm+DBLAXbLTjGvvtOQs3FY8XHwDggG FpRYGOnW2UgbtLq9Y0O74Zmz9qJaziy1UDt8VoeGbeZK8HuDzJXwcaLRw4DpoRW//9iU Evw3MomOqXGpfrvhm5liTMrIpLocwxd64mTwb+66bab54sc1gW92r7scHixF6XC1NBXo 4jTMHdudpQiGkeGKy9NTpQHNYpSt45xsZgfnK7FxsXLKOS2wwo4nyOBV26/Egp8+6Rg+ AMKpbOOLJlD9XbKHHbah9wZ14cAi3KCIUtNCgFkrhch87Al5tkLzSC6AokzXZSkgPFzO sW1A== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id h10si1417360eje.596.2020.10.20.07.40.50; Tue, 20 Oct 2020 07:41:15 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1731222AbgJSTTh (ORCPT + 99 others); Mon, 19 Oct 2020 15:19:37 -0400 Received: from smtp.infotech.no ([82.134.31.41]:56029 "EHLO smtp.infotech.no" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1731050AbgJSTTf (ORCPT ); Mon, 19 Oct 2020 15:19:35 -0400 Received: from localhost (localhost [127.0.0.1]) by smtp.infotech.no (Postfix) with ESMTP id D147120424C; Mon, 19 Oct 2020 21:19:33 +0200 (CEST) X-Virus-Scanned: by amavisd-new-2.6.6 (20110518) (Debian) at infotech.no Received: from smtp.infotech.no ([127.0.0.1]) by localhost (smtp.infotech.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fvOafr9rN6Kg; Mon, 19 Oct 2020 21:19:33 +0200 (CEST) Received: from xtwo70.bingwo.ca (vpn.infotech.no [82.134.31.155]) by smtp.infotech.no (Postfix) with ESMTPA id 845D520414F; Mon, 19 Oct 2020 21:19:32 +0200 (CEST) From: Douglas Gilbert To: linux-scsi@vger.kernel.org, linux-block@vger.kernel.org, linux-kernel@vger.kernel.org Cc: martin.petersen@oracle.com, axboe@kernel.dk, bvanassche@acm.org, bostroesser@gmail.com Subject: [PATCH v3 1/4] sgl_alloc_order: remove 4 GiB limit, sgl_free() warning Date: Mon, 19 Oct 2020 15:19:25 -0400 Message-Id: <20201019191928.77845-2-dgilbert@interlog.com> X-Mailer: git-send-email 2.25.1 In-Reply-To: <20201019191928.77845-1-dgilbert@interlog.com> References: <20201019191928.77845-1-dgilbert@interlog.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This patch removes a check done by sgl_alloc_order() before it starts any allocations. The comment before the removed code says: "Check for integer overflow" arguably gives a false sense of security. The right hand side of the expression in the condition is resolved as u32 so cannot exceed UINT32_MAX (4 GiB) which means 'length' cannot exceed that amount. If that was the intention then the comment above it could be dropped and the condition rewritten more clearly as: if (length > UINT32_MAX) <>; The author's intention is to use sgl_alloc_order() to replace vmalloc(unsigned long) for a large allocation (debug ramdisk). vmalloc has no limit at 4 GiB so its seems unreasonable that: sgl_alloc_order(unsigned long long length, ....) does. sgl_s made with sgl_alloc_order(chainable=false) have equally sized segments placed in a scatter gather array. That allows O(1) navigation around a big sgl using some simple integer maths. Having previously sent a patch to fix a memory leak in sg_alloc_order() take the opportunity to put a one line comment above sgl_free()'s declaration that it is not suitable when order > 0 . The mis-use of sgl_free() when order > 0 was the reason for the memory leak. The other users of sgl_alloc_order() in the kernel where checked and found to handle free-ing properly. Signed-off-by: Douglas Gilbert --- include/linux/scatterlist.h | 1 + lib/scatterlist.c | 3 --- 2 files changed, 1 insertion(+), 3 deletions(-) diff --git a/include/linux/scatterlist.h b/include/linux/scatterlist.h index 45cf7b69d852..80178afc2a4a 100644 --- a/include/linux/scatterlist.h +++ b/include/linux/scatterlist.h @@ -302,6 +302,7 @@ struct scatterlist *sgl_alloc(unsigned long long length, gfp_t gfp, unsigned int *nent_p); void sgl_free_n_order(struct scatterlist *sgl, int nents, int order); void sgl_free_order(struct scatterlist *sgl, int order); +/* Only use sgl_free() when order is 0 */ void sgl_free(struct scatterlist *sgl); #endif /* CONFIG_SGL_ALLOC */ diff --git a/lib/scatterlist.c b/lib/scatterlist.c index c448642e0f78..d5770e7f1030 100644 --- a/lib/scatterlist.c +++ b/lib/scatterlist.c @@ -493,9 +493,6 @@ struct scatterlist *sgl_alloc_order(unsigned long long length, u32 elem_len; nent = round_up(length, PAGE_SIZE << order) >> (PAGE_SHIFT + order); - /* Check for integer overflow */ - if (length > (nent << (PAGE_SHIFT + order))) - return NULL; nalloc = nent; if (chainable) { /* Check for integer overflow */ -- 2.25.1