From: Ye Liu <ye.liu@linux.dev>
To: Dev Jain <dev.jain@arm.com>,
Andrew Morton <akpm@linux-foundation.org>,
David Hildenbrand <david@redhat.com>,
Lorenzo Stoakes <lorenzo.stoakes@oracle.com>
Cc: Ye Liu <liuye@kylinos.cn>, Xu Xin <xu.xin16@zte.com.cn>,
Chengming Zhou <chengming.zhou@linux.dev>,
Rik van Riel <riel@surriel.com>,
"Liam R. Howlett" <Liam.Howlett@oracle.com>,
Vlastimil Babka <vbabka@suse.cz>,
Harry Yoo <harry.yoo@oracle.com>,
linux-mm@kvack.org, linux-kernel@vger.kernel.org
Subject: Re: [PATCH] mm/rmap: Add NULL checks for rmap_walk_control callbacks
Date: Thu, 19 Jun 2025 16:28:53 +0800 [thread overview]
Message-ID: <fa3c7352-f089-4a7b-8d4b-f6d371c236ce@linux.dev> (raw)
In-Reply-To: <9454603f-c187-4386-8244-69f304197954@arm.com>
Hi Lorenzo and Dev,
Thanks for your feedback. I understand all your points and will drop this patch.
Best regards,
Ye Liu
On 2025/6/19 16:17, Dev Jain wrote:
>
> On 19/06/25 1:20 pm, Ye Liu wrote:
>> From: Ye Liu <liuye@kylinos.cn>
>>
>> Add NULL pointer checks for rmap_one callback in rmap_walk operations
>> to prevent potential NULL pointer dereferences. Also clean up some
>> code by removing redundant comments and caching folio_nr_pages().
>>
>> Signed-off-by: Ye Liu <liuye@kylinos.cn>
>> ---
>
> Don't really see the point of this patch. The rmap_one call back will
> always be there as we need a way to define how to unmap/do the reverse
> map walk for one VMA at a time. And the folio_nr_pages() will probably
> get cached by the compiler anyways.
>
>> mm/ksm.c | 2 +-
>> mm/rmap.c | 14 +++++++-------
>> 2 files changed, 8 insertions(+), 8 deletions(-)
>>
>> diff --git a/mm/ksm.c b/mm/ksm.c
>> index 18b3690bb69a..22ad069d1860 100644
>> --- a/mm/ksm.c
>> +++ b/mm/ksm.c
>> @@ -3068,7 +3068,7 @@ void rmap_walk_ksm(struct folio *folio, struct rmap_walk_control *rwc)
>> if (rwc->invalid_vma && rwc->invalid_vma(vma, rwc->arg))
>> continue;
>> - if (!rwc->rmap_one(folio, vma, addr, rwc->arg)) {
>> + if (rwc->rmap_one && !rwc->rmap_one(folio, vma, addr, rwc->arg)) {
>> anon_vma_unlock_read(anon_vma);
>> return;
>> }
>> diff --git a/mm/rmap.c b/mm/rmap.c
>> index fb63d9256f09..17d43d104a0d 100644
>> --- a/mm/rmap.c
>> +++ b/mm/rmap.c
>> @@ -1202,8 +1202,7 @@ int mapping_wrprotect_range(struct address_space *mapping, pgoff_t pgoff,
>> if (!mapping)
>> return 0;
>> - __rmap_walk_file(/* folio = */NULL, mapping, pgoff, nr_pages, &rwc,
>> - /* locked = */false);
>> + __rmap_walk_file(NULL, mapping, pgoff, nr_pages, &rwc, false);
>> return state.cleaned;
>> }
>> @@ -2806,6 +2805,7 @@ static void rmap_walk_anon(struct folio *folio,
>> struct anon_vma *anon_vma;
>> pgoff_t pgoff_start, pgoff_end;
>> struct anon_vma_chain *avc;
>> + unsigned long nr_pages;
>> if (locked) {
>> anon_vma = folio_anon_vma(folio);
>> @@ -2817,13 +2817,13 @@ static void rmap_walk_anon(struct folio *folio,
>> if (!anon_vma)
>> return;
>> + nr_pages = folio_nr_pages(folio);
>> pgoff_start = folio_pgoff(folio);
>> - pgoff_end = pgoff_start + folio_nr_pages(folio) - 1;
>> + pgoff_end = pgoff_start + nr_pages - 1;
>> anon_vma_interval_tree_foreach(avc, &anon_vma->rb_root,
>> pgoff_start, pgoff_end) {
>> struct vm_area_struct *vma = avc->vma;
>> - unsigned long address = vma_address(vma, pgoff_start,
>> - folio_nr_pages(folio));
>> + unsigned long address = vma_address(vma, pgoff_start, nr_pages);
>> VM_BUG_ON_VMA(address == -EFAULT, vma);
>> cond_resched();
>> @@ -2831,7 +2831,7 @@ static void rmap_walk_anon(struct folio *folio,
>> if (rwc->invalid_vma && rwc->invalid_vma(vma, rwc->arg))
>> continue;
>> - if (!rwc->rmap_one(folio, vma, address, rwc->arg))
>> + if (rwc->rmap_one && !rwc->rmap_one(folio, vma, address, rwc->arg))
>> break;
>> if (rwc->done && rwc->done(folio))
>> break;
>> @@ -2894,7 +2894,7 @@ static void __rmap_walk_file(struct folio *folio, struct address_space *mapping,
>> if (rwc->invalid_vma && rwc->invalid_vma(vma, rwc->arg))
>> continue;
>> - if (!rwc->rmap_one(folio, vma, address, rwc->arg))
>> + if (rwc->rmap_one && !rwc->rmap_one(folio, vma, address, rwc->arg))
>> goto done;
>> if (rwc->done && rwc->done(folio))
>> goto done;
prev parent reply other threads:[~2025-06-19 8:29 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-06-19 7:50 [PATCH] mm/rmap: Add NULL checks for rmap_walk_control callbacks Ye Liu
2025-06-19 8:14 ` Lorenzo Stoakes
2025-06-19 8:17 ` Dev Jain
2025-06-19 8:28 ` Ye Liu [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=fa3c7352-f089-4a7b-8d4b-f6d371c236ce@linux.dev \
--to=ye.liu@linux.dev \
--cc=Liam.Howlett@oracle.com \
--cc=akpm@linux-foundation.org \
--cc=chengming.zhou@linux.dev \
--cc=david@redhat.com \
--cc=dev.jain@arm.com \
--cc=harry.yoo@oracle.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=liuye@kylinos.cn \
--cc=lorenzo.stoakes@oracle.com \
--cc=riel@surriel.com \
--cc=vbabka@suse.cz \
--cc=xu.xin16@zte.com.cn \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).