From: sashiko-bot@kernel.org
To: "SeongJae Park" <sj@kernel.org>
Cc: damon@lists.linux.dev
Subject: Re: [RFC PATCH 03/13] mm/damon/core: use damon_nr_accesses_mvsum() in __damos_valid_target()
Date: Fri, 19 Jun 2026 19:49:07 +0000 [thread overview]
Message-ID: <20260619194908.4A7911F000E9@smtp.kernel.org> (raw)
In-Reply-To: <20260619193415.73833-4-sj@kernel.org>
Thank you for your contribution! Sashiko AI review found 1 potential issue(s) to consider:
- [High] Divide-by-zero kernel panic in damon_nr_accesses_mvsum() when aggr_interval is configured to 0.
--
commit 9675c26c9e91a5b3df67520a05b7e2a8a6a589a7
Author: SeongJae Park <sj@kernel.org>
mm/damon/core: use damon_nr_accesses_mvsum() in __damos_valid_target()
This commit modifies __damos_valid_target() to use the helper function
damon_nr_accesses_mvsum() instead of directly reading the nr_accesses_bp
field.
> diff --git a/mm/damon/core.c b/mm/damon/core.c
> index bc8b102d700a7..f45f030a72d82 100644
> --- a/mm/damon/core.c
> +++ b/mm/damon/core.c
> @@ -2118,10 +2118,11 @@ static void kdamond_tune_intervals(struct damon_ctx *c)
> damon_set_attrs(c, &new_attrs);
> }
>
> -static bool __damos_valid_target(struct damon_region *r, struct damos *s)
> +static bool __damos_valid_target(struct damon_region *r, struct damos *s,
> + struct damon_ctx *c)
> {
> unsigned long sz;
> - unsigned int nr_accesses = r->nr_accesses_bp / 10000;
> + unsigned int nr_accesses = damon_nr_accesses_mvsum(r, c);
[Severity: High]
Does this introduce a divide-by-zero risk if aggr_interval is configured to 0?
If an administrator writes 0 to both sample_us and aggr_us via the
DAMON sysfs interface, damon_set_attrs() allows it because the
validation check (attrs->sample_interval > attrs->aggr_interval)
evaluates to false (0 > 0).
When __damos_valid_target() evaluates active schemes, it now executes
damon_nr_accesses_mvsum(). Inside that function, window_len is calculated
like this:
damon_nr_accesses_mvsum() {
...
sample_interval = ctx->attrs.sample_interval ? : 1;
window_len = ctx->attrs.aggr_interval / sample_interval;
left_window = ctx->next_aggregation_sis - ctx->passed_sample_intervals;
left_window_bp = mult_frac(left_window, 10000, window_len);
...
}
If aggr_interval is 0, window_len evaluates to 0. It is then passed
as the denominator to mult_frac().
Could this result in an exact integer division by zero panic, and should
the zero-values be protected against here or in the configuration interfaces?
[ ... ]
--
Sashiko AI review · https://sashiko.dev/#/patchset/20260619193415.73833-1-sj@kernel.org?part=3
next prev parent reply other threads:[~2026-06-19 19:49 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-06-19 19:33 [RFC PATCH 00/13] mm/damon: optimize out nr_accesses_bp SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 01/13] mm/damon: introduce damon_nr_accesses_mvsum() SeongJae Park
2026-06-19 19:44 ` sashiko-bot
2026-06-19 19:52 ` SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 02/13] mm/damon/tests/core-kunit: test damon_mvsum() SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 03/13] mm/damon/core: use damon_nr_accesses_mvsum() in __damos_valid_target() SeongJae Park
2026-06-19 19:49 ` sashiko-bot [this message]
2026-06-19 19:33 ` [RFC PATCH 04/13] mm/damon/core: use damon_nr_accesses_mvsum() for damos region tracing SeongJae Park
2026-06-19 19:51 ` sashiko-bot
2026-06-19 20:17 ` SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 05/13] mm/damon/sysfs-schemes: use damon_nr_accesses_mvsum() for damo regions SeongJae Park
2026-06-19 19:47 ` sashiko-bot
2026-06-19 19:55 ` SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 06/13] mm/damon/core: remove damon_warn_fix_nr_accesses_corruption() SeongJae Park
2026-06-19 19:47 ` sashiko-bot
2026-06-19 19:56 ` SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 07/13] mm/damon/core: remove damon_verify_reset_aggregated() SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 08/13] mm/damon/core: remove damon_verify_merge_regions_of() SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 09/13] mm/damon/tests/core-kunit: remove nr_accesses_bp setup and tests SeongJae Park
2026-06-19 19:52 ` sashiko-bot
2026-06-19 20:24 ` SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 10/13] selftests/damon/drgn_dump_damon_status: do not dump nr_accesses_bp SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 11/13] mm/damon/core: remove nr_accesses_bp setups and updates SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 12/13] mm/damon/core: remove damon_moving_sum() and its unit test SeongJae Park
2026-06-19 19:33 ` [RFC PATCH 13/13] mm/damon: remove damon_region->nr_accesses_bp SeongJae Park
2026-06-19 19:49 ` sashiko-bot
2026-06-19 20:36 ` SeongJae Park
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260619194908.4A7911F000E9@smtp.kernel.org \
--to=sashiko-bot@kernel.org \
--cc=damon@lists.linux.dev \
--cc=sashiko-reviews@lists.linux.dev \
--cc=sj@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.