From: Cyril Hrubis <chrubis@suse.cz>
To: ltp@lists.linux.it
Subject: [LTP] [PATCH] Modify the test logic of mincore.
Date: Mon, 12 Apr 2021 16:41:40 +0200 [thread overview]
Message-ID: <YHRcJOUer87SUn6v@yuki> (raw)
In-Reply-To: <20210330104613.1059-1-zhanglianjie@uniontech.com>
Hi!
> Currently mincore has a vulnerability and is easy to be attacked.
> CVE has fixed the vulnerability.
> Please see https://www.linuxkernelcves.com/cves/CVE-2019-5489
>
> Signed-off-by: zhanglianjie <zhanglianjie@uniontech.com>
> ---
> testcases/kernel/syscalls/mincore/mincore04.c | 15 ++++++++++-----
> 1 file changed, 10 insertions(+), 5 deletions(-)
>
> diff --git a/testcases/kernel/syscalls/mincore/mincore04.c b/testcases/kernel/syscalls/mincore/mincore04.c
> index ed0ab7dfa..345dedd9a 100644
> --- a/testcases/kernel/syscalls/mincore/mincore04.c
> +++ b/testcases/kernel/syscalls/mincore/mincore04.c
> @@ -95,12 +95,12 @@ static void test_mincore(void)
> locked_pages = count_pages_in_cache();
> tst_reap_children();
>
> - if (locked_pages == NUM_PAGES)
> - tst_res(TPASS, "mincore reports all %d pages locked by child process "
> - "are resident", locked_pages);
> - else
> - tst_res(TFAIL, "mincore reports %d pages resident but %d pages "
> + if (locked_pages == 0)
> + tst_res(TPASS, "mincore reports %d pages resident but %d pages "
> "locked by child process", locked_pages, NUM_PAGES);
> + else
> + tst_res(TFAIL, "mincore reports all %d pages locked by child process "
> + "are resident", locked_pages);
> }
This does not make any sense, the kernel commit explicitly states that
all mapped pages are reported as in core. We do call mlock() in the
child, which will fault all the pages and lock them in memory. So the
test should work both before and after the fix as well.
The kernel commit in question weakened mincore() in a sense that it's
more likely to report pages in core than it previously was. Now all that
is needed is to fault the pages by reading some bytes from them to make
sure they are reported as in core.
If the test fails for you, something is probably broken at your end.
--
Cyril Hrubis
chrubis@suse.cz
next prev parent reply other threads:[~2021-04-12 14:41 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-30 10:46 [LTP] [PATCH] Modify the test logic of mincore zhanglianjie
2021-04-12 14:41 ` Cyril Hrubis [this message]
2021-04-15 7:11 ` zhanglianjie
2021-04-15 11:05 ` Cyril Hrubis
2021-04-19 6:44 ` zhanglianjie
2021-04-19 9:05 ` Cyril Hrubis
2021-04-26 12:39 ` zhanglianjie
2021-04-26 12:50 ` Cyril Hrubis
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YHRcJOUer87SUn6v@yuki \
--to=chrubis@suse.cz \
--cc=ltp@lists.linux.it \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox