Received: by 2002:a05:6358:7058:b0:131:369:b2a3 with SMTP id 24csp5953680rwp; Mon, 17 Jul 2023 12:11:08 -0700 (PDT) X-Google-Smtp-Source: APBJJlFgsipAf+lT9/noZ0Sb81p3ECheXRjK4oILwNEDZBHe6kOOTxbLVwYhGqxSMlYdZA8If6P8 X-Received: by 2002:a05:6830:1195:b0:6b9:815c:1dc6 with SMTP id u21-20020a056830119500b006b9815c1dc6mr11990133otq.5.1689621068397; Mon, 17 Jul 2023 12:11:08 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1689621068; cv=none; d=google.com; s=arc-20160816; b=kS5a8O30QSxLCFhT0gqzf9uZ3cT4jpIapUY76/7dc9zCBv8GOQKv6bWrR7nCzWwmZ2 FyjfDYH5Eq9eMPQeNrGFZX6pimA2Bcf0A3SjxQ+pCMgyQ+lNGBpNrM1UR2EsqFkCafhC FiN35Hd8k6TYxpHNY4i5G9VV4dynRj4yT9ihD17tTBmQLHYfPLDQtKWktpSJ1ZebUtAV vq8aOxggkjpFlbuLR/I3C7FigV+caAoybFw1qjtyhJ/yYVbezRo11GkYpjpVda5fb1Ia g8T/tpMMjvO4RPIBWEpGxzmVmXjaOBduNB+vpP3CfkGCrqp9a3WH2hMJznUlgJvsFgMS lgHA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:in-reply-to:content-disposition:mime-version :references:message-id:subject:cc:to:from:date:sender:dkim-signature; bh=jAlFdhdYimT7TnDfeJ0lD67idJ1017L3UN8Mf00CzHI=; fh=82aV1JyaMB9YeRiTLf5696TN1PRT4+PBzQMbeofmSYc=; b=wnKpcEUHbbKpxXYPvzyBimfEm9VK8YHBBcb7Rtz77hMXEg6vaU+H+ejXJO2zhskkMA flnjtgnlDrkJhvoYtFSDQyPslqcYLBv21nKusTXXEz1yKcA+WGQ7G1L7jr7Od1CROOy+ ZVFQ3RUuF6Avhvnl4OXs6UETbPH0ROMxETZYtJqCHZD0kytJUt206dVUyzIqqGvvbM+M z74VRM53ftrvHICOWCMEyqgxj1AwTiasdeGqIXhBC/ZHirX3OwKdkgap7ZMyyGp5ua2r znmiv3UnIPFyXXLZyD6RncPKjfBg17BnG0NIit7ubp3FksFDXivGVgiTIZxTQ1c8IGXc hxcA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=ED+Djowc; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id u19-20020a63ef13000000b0055b76613808si216786pgh.214.2023.07.17.12.10.48; Mon, 17 Jul 2023 12:11:08 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20221208 header.b=ED+Djowc; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230361AbjGQSvq (ORCPT + 99 others); Mon, 17 Jul 2023 14:51:46 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45518 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229974AbjGQSvo (ORCPT ); Mon, 17 Jul 2023 14:51:44 -0400 Received: from mail-il1-x130.google.com (mail-il1-x130.google.com [IPv6:2607:f8b0:4864:20::130]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 93CF399; Mon, 17 Jul 2023 11:51:42 -0700 (PDT) Received: by mail-il1-x130.google.com with SMTP id e9e14a558f8ab-345f4a3ff76so26854495ab.2; Mon, 17 Jul 2023 11:51:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1689619902; x=1692211902; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:sender:from:to:cc:subject:date:message-id :reply-to; bh=jAlFdhdYimT7TnDfeJ0lD67idJ1017L3UN8Mf00CzHI=; b=ED+Djowc/2dcO/tE9axqFc9b4Hjf+ViIX4s7d5D7pjvK1iWZfrjCWS6eMWepFGnc2A OiqqVO9dlfjFQXKsVX9cG7py+y6+JafDVDhRNiKNAin1agC3Bt3jvN1MGjLFOcCCok97 qo3IZkDLh7at2TsXebl4uUAwQlbV3eZDF1JIohTInR63rLLc8I6LhdR2Vzczjj5Yv1Pt TpIrmmUwNXD+PmlOmV6GRX+BxxVLNBSTV/dtkIyOEDxSVdFoeJpbwF7/EH7gfTmF9STn 6SCpIRFjuxYHYV1GUWBsTQIkn9/X05A74eDB8drJInQsPX4VrLNPPXSV9bhatuePiG5O 7DzQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1689619902; x=1692211902; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:sender:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=jAlFdhdYimT7TnDfeJ0lD67idJ1017L3UN8Mf00CzHI=; b=hUaq/Go/74hIATqFJctwIxgiy3sCY0/Q1xfpvYubKqCyIHYbDRo7DqodZpGgFrRPy0 nPFWt920vn4Pq35iqZp1fudX/55N3QEKM8EkWZSWluYAdhY/zuPp04sQ1is6B+lw1qPF I6ChvPdXU0iFwDrqG4Q+mBs0dTzqylhAVpcyhLMT8Hk3oURJTj8BkF4x+KndYRqga1oB WzdS/VShqDZdpux9sQiKhFQ+mEAnXr+TZOHcHDx/DyvdjC+AZ6uFmOH+9BWqJgEfSRLP jVy8UGLxNm+VRDYGFCaCrVxrnXXyQ9DOngLtgXsE5QhY8qNOX9B1SeaCsgLi+Tzm0VKr QuSQ== X-Gm-Message-State: ABy/qLZD0fY+bAq9VjeBAL7nk6mVUbIAr11XbBCR0rHUjbhYuaIGcU1i rsOIlAa8sdjDwH5kbCNEKbk= X-Received: by 2002:a92:c568:0:b0:346:776:bd23 with SMTP id b8-20020a92c568000000b003460776bd23mr574857ilj.5.1689619901778; Mon, 17 Jul 2023 11:51:41 -0700 (PDT) Received: from localhost (dhcp-72-235-13-41.hawaiiantel.net. [72.235.13.41]) by smtp.gmail.com with ESMTPSA id k3-20020a92c9c3000000b003421231fb8csm120719ilq.74.2023.07.17.11.51.41 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Mon, 17 Jul 2023 11:51:41 -0700 (PDT) Sender: Tejun Heo Date: Mon, 17 Jul 2023 08:51:39 -1000 From: Tejun Heo To: Haitao Huang Cc: jarkko@kernel.org, dave.hansen@linux.intel.com, linux-kernel@vger.kernel.org, linux-sgx@vger.kernel.org, cgroups@vger.kernel.org, Zefan Li , Johannes Weiner , vipinsh@google.com, kai.huang@intel.com, reinette.chatre@intel.com, zhiquan1.li@intel.com, kristen@linux.intel.com Subject: Re: [PATCH] cgroup/misc: Fix an overflow Message-ID: References: <20230717184719.85523-1-haitao.huang@linux.intel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20230717184719.85523-1-haitao.huang@linux.intel.com> X-Spam-Status: No, score=-1.5 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_EF,FREEMAIL_FORGED_FROMDOMAIN,FREEMAIL_FROM, HEADER_FROM_DIFFERENT_DOMAINS,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE, SPF_PASS,T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Jul 17, 2023 at 11:47:19AM -0700, Haitao Huang wrote: > The variable 'new_usage' in misc_cg_try_charge() may overflow if it > becomes above INT_MAX. This was observed when I implement the new SGX > EPC cgroup[1] as a misc cgroup and test on a platform with large SGX EPC > sizes. > > Change type of new_usage to long from int and check overflow. > - int new_usage; > + long new_usage; > > if (!(valid_type(type) && cg && READ_ONCE(misc_res_capacity[type]))) > return -EINVAL; > @@ -153,10 +153,10 @@ int misc_cg_try_charge(enum misc_res_type type, struct misc_cg *cg, > > for (i = cg; i; i = parent_misc(i)) { > res = &i->res[type]; > - > new_usage = atomic_long_add_return(amount, &res->usage); > if (new_usage > READ_ONCE(res->max) || > - new_usage > READ_ONCE(misc_res_capacity[type])) { > + new_usage > READ_ONCE(misc_res_capacity[type]) || > + new_usage < 0) { Applying to cgroup/for-6.6 (as none of the current users are affected by this) but I think the right thing to do here is using explicit 64bit types (s64 or u64) for the resource counters rather than depending on the long width. Thanks. -- tejun