git.baikalelectronics.ru Git - kernel.git/commit

mm: fix struct page layout on 32-bit systems

32-bit architectures which expect 8-byte alignment for 8-byte integers and
need 64-bit DMA addresses (arm, mips, ppc) had their struct page
inadvertently expanded in 2019.  When the dma_addr_t was added, it forced
the alignment of the union to 8 bytes, which inserted a 4 byte gap between
'flags' and the union.

Fix this by storing the dma_addr_t in one or two adjacent unsigned longs.
This restores the alignment to that of an unsigned long.  We always
store the low bits in the first word to prevent the PageTail bit from
being inadvertently set on a big endian platform.  If that happened,
get_user_pages_fast() racing against a page which was freed and
reallocated to the page_pool could dereference a bogus compound_head(),
which would be hard to trace back to this cause.

Link: https://lkml.kernel.org/r/20210510153211.1504886-1-willy@infradead.org
Fixes: 457586fc715d ("mm: add dma_addr_t to struct page")
Signed-off-by: Matthew Wilcox (Oracle) <willy@infradead.org>
Acked-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
Acked-by: Jesper Dangaard Brouer <brouer@redhat.com>
Acked-by: Vlastimil Babka <vbabka@suse.cz>
Tested-by: Matteo Croce <mcroce@linux.microsoft.com>
Cc: <stable@vger.kernel.org>
Signed-off-by: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

author	Matthew Wilcox (Oracle) <willy@infradead.org>
	Sat, 15 May 2021 00:27:24 +0000 (17:27 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Sat, 15 May 2021 02:41:32 +0000 (19:41 -0700)
commit	0cee601c4fcebb30cb8662b11f5cbf1c33177473
tree	53f0c1f2e01987f463fa05267ba7efefa5710672	tree \| snapshot
parent	de60bbe0811ef15be28520a5ba8c390e0e511037	commit \| diff

include/linux/mm_types.h		diff \| blob \| history
include/net/page_pool.h		diff \| blob \| history
net/core/page_pool.c		diff \| blob \| history