* Coverity: iopt_map_user_pages(): Memory - illegal accesses
@ 2022-11-02 19:54 coverity-bot
2022-11-02 20:07 ` Jason Gunthorpe
0 siblings, 1 reply; 2+ messages in thread
From: coverity-bot @ 2022-11-02 19:54 UTC (permalink / raw)
To: Jason Gunthorpe
Cc: Jason Gunthorpe, Nicolin Chen, Yi Liu, Gustavo A. R. Silva,
linux-next, linux-hardening
Hello!
This is an experimental semi-automated report about issues detected by
Coverity from a scan of next-20221102 as part of the linux-next scan project:
https://scan.coverity.com/projects/linux-next-weekly-scan
You're getting this email because you were associated with the identified
lines of code (noted below) that were touched by commits:
Mon Oct 31 13:37:57 2022 -0300
91b4be750274 ("iommufd: Data structure to provide IOVA to PFN mapping")
Coverity reported the following:
*** CID 1527094: Memory - illegal accesses (UNINIT)
/drivers/iommu/iommufd/io_pagetable.c: 415 in iopt_map_user_pages()
409 elm.start_byte = uptr - elm.pages->uptr;
410 elm.length = length;
411 list_add(&elm.next, &pages_list);
412
413 rc = iopt_map_pages(iopt, &pages_list, length, iova, iommu_prot, flags);
414 if (rc) {
vvv CID 1527094: Memory - illegal accesses (UNINIT)
vvv Using uninitialized value "elm.area".
415 if (elm.area)
416 iopt_abort_area(elm.area);
417 if (elm.pages)
418 iopt_put_pages(elm.pages);
419 return rc;
420 }
If this is a false positive, please let us know so we can mark it as
such, or teach the Coverity rules to be smarter. If not, please make
sure fixes get into linux-next. :) For patches fixing this, please
include these lines (but double-check the "Fixes" first):
Reported-by: coverity-bot <keescook+coverity-bot@chromium.org>
Addresses-Coverity-ID: 1527094 ("Memory - illegal accesses")
Fixes: 91b4be750274 ("iommufd: Data structure to provide IOVA to PFN mapping")
Thanks for your attention!
--
Coverity-bot
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Coverity: iopt_map_user_pages(): Memory - illegal accesses
2022-11-02 19:54 Coverity: iopt_map_user_pages(): Memory - illegal accesses coverity-bot
@ 2022-11-02 20:07 ` Jason Gunthorpe
0 siblings, 0 replies; 2+ messages in thread
From: Jason Gunthorpe @ 2022-11-02 20:07 UTC (permalink / raw)
To: coverity-bot
Cc: Nicolin Chen, Yi Liu, Gustavo A. R. Silva, linux-next,
linux-hardening
On Wed, Nov 02, 2022 at 12:54:40PM -0700, coverity-bot wrote:
> *** CID 1527094: Memory - illegal accesses (UNINIT)
> /drivers/iommu/iommufd/io_pagetable.c: 415 in iopt_map_user_pages()
> 409 elm.start_byte = uptr - elm.pages->uptr;
> 410 elm.length = length;
> 411 list_add(&elm.next, &pages_list);
> 412
> 413 rc = iopt_map_pages(iopt, &pages_list, length, iova, iommu_prot, flags);
> 414 if (rc) {
> vvv CID 1527094: Memory - illegal accesses (UNINIT)
> vvv Using uninitialized value "elm.area".
> 415 if (elm.area)
> 416 iopt_abort_area(elm.area);
> 417 if (elm.pages)
> 418 iopt_put_pages(elm.pages);
> 419 return rc;
> 420 }
>
> If this is a false positive, please let us know so we can mark it as
> such, or teach the Coverity rules to be smarter. If not, please make
> sure fixes get into linux-next. :) For patches fixing this, please
> include these lines (but double-check the "Fixes" first):
Yep, I will squash this in:
- struct iopt_pages_list elm;
+ struct iopt_pages_list elm = {};
LIST_HEAD(pages_list);
int rc;
Thanks,
Jason
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2022-11-02 20:07 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2022-11-02 19:54 Coverity: iopt_map_user_pages(): Memory - illegal accesses coverity-bot
2022-11-02 20:07 ` Jason Gunthorpe
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox