* [PATCH v2] ARM: dma-mapping: always clear allocated buffers
@ 2018-07-25 7:07 YueHaibing
2018-07-25 7:13 ` YueHaibing
2018-09-15 11:29 ` YueHaibing
0 siblings, 2 replies; 4+ messages in thread
From: YueHaibing @ 2018-07-25 7:07 UTC (permalink / raw)
To: linux, matthias.bgg, vladimir.murzin
Cc: linux-kernel, linux-mediatek, linux-arm-kernel, akpm,
iamjoonsoo.kim, robin.murphy, treding, zhongjiang, sean.wang,
YueHaibing
Sean Wang reported dma_zalloc_coherent doesn't work as expect on his
armv7,the allocated mem is not zeroed.The reason is __alloc_from_pool
doesn't honor __GFP_ZERO.
As commit 6829e274a623 ("arm64: dma-mapping: always clear allocated buffers")
has pointed out,buffers allocated by dma_alloc_coherent() are always zeroed
on most architectures. some drivers rely on this 'feature'. Allocated buffer
might be also exposed to userspace with dma_mmap() call,so clearing it is
desired from security point of view to avoid exposing random memory to userspace.
This patch unifies dma_alloc_coherent() behavior on ARM architecture with other
implementations by unconditionally zeroing allocated buffer.Also to fix
dma_zalloc_coherent behavior.
Reported-by: Sean Wang <sean.wang@mediatek.com>
Signed-off-by: YueHaibing <yuehaibing@huawei.com>
Reviewed-by: zhong jiang <zhongjiang@huawei.com>
---
v2: reference more argument from arm64 commit as Christoph suggested
---
arch/arm/mm/dma-mapping.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/arch/arm/mm/dma-mapping.c b/arch/arm/mm/dma-mapping.c
index 6656647..cf5882f 100644
--- a/arch/arm/mm/dma-mapping.c
+++ b/arch/arm/mm/dma-mapping.c
@@ -564,6 +564,7 @@ static void *__alloc_from_pool(size_t size, struct page **ret_page)
*ret_page = phys_to_page(phys);
ptr = (void *)val;
+ memset(ptr, 0, size);
}
return ptr;
--
2.7.0
^ permalink raw reply related [flat|nested] 4+ messages in thread
* Re: [PATCH v2] ARM: dma-mapping: always clear allocated buffers
2018-07-25 7:07 [PATCH v2] ARM: dma-mapping: always clear allocated buffers YueHaibing
@ 2018-07-25 7:13 ` YueHaibing
2018-08-22 1:47 ` YueHaibing
2018-09-15 11:29 ` YueHaibing
1 sibling, 1 reply; 4+ messages in thread
From: YueHaibing @ 2018-07-25 7:13 UTC (permalink / raw)
To: linux, matthias.bgg, vladimir.murzin
Cc: linux-kernel, linux-mediatek, linux-arm-kernel, akpm,
iamjoonsoo.kim, robin.murphy, treding, zhongjiang, sean.wang,
Christoph Hellwig
+CC Christoph Hellwig <hch@infradead.org>
On 2018/7/25 15:07, YueHaibing wrote:
> Sean Wang reported dma_zalloc_coherent doesn't work as expect on his
> armv7,the allocated mem is not zeroed.The reason is __alloc_from_pool
> doesn't honor __GFP_ZERO.
>
> As commit 6829e274a623 ("arm64: dma-mapping: always clear allocated buffers")
> has pointed out,buffers allocated by dma_alloc_coherent() are always zeroed
> on most architectures. some drivers rely on this 'feature'. Allocated buffer
> might be also exposed to userspace with dma_mmap() call,so clearing it is
> desired from security point of view to avoid exposing random memory to userspace.
>
> This patch unifies dma_alloc_coherent() behavior on ARM architecture with other
> implementations by unconditionally zeroing allocated buffer.Also to fix
> dma_zalloc_coherent behavior.
>
> Reported-by: Sean Wang <sean.wang@mediatek.com>
> Signed-off-by: YueHaibing <yuehaibing@huawei.com>
> Reviewed-by: zhong jiang <zhongjiang@huawei.com>
> ---
> v2: reference more argument from arm64 commit as Christoph suggested
> ---
> arch/arm/mm/dma-mapping.c | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/arch/arm/mm/dma-mapping.c b/arch/arm/mm/dma-mapping.c
> index 6656647..cf5882f 100644
> --- a/arch/arm/mm/dma-mapping.c
> +++ b/arch/arm/mm/dma-mapping.c
> @@ -564,6 +564,7 @@ static void *__alloc_from_pool(size_t size, struct page **ret_page)
>
> *ret_page = phys_to_page(phys);
> ptr = (void *)val;
> + memset(ptr, 0, size);
> }
>
> return ptr;
>
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PATCH v2] ARM: dma-mapping: always clear allocated buffers
2018-07-25 7:13 ` YueHaibing
@ 2018-08-22 1:47 ` YueHaibing
0 siblings, 0 replies; 4+ messages in thread
From: YueHaibing @ 2018-08-22 1:47 UTC (permalink / raw)
To: linux, matthias.bgg, vladimir.murzin
Cc: linux-kernel, linux-mediatek, linux-arm-kernel, akpm,
iamjoonsoo.kim, robin.murphy, treding, zhongjiang, sean.wang,
Christoph Hellwig
Russell, will you pick this patch?
On 2018/7/25 15:13, YueHaibing wrote:
> +CC Christoph Hellwig <hch@infradead.org>
>
> On 2018/7/25 15:07, YueHaibing wrote:
>> Sean Wang reported dma_zalloc_coherent doesn't work as expect on his
>> armv7,the allocated mem is not zeroed.The reason is __alloc_from_pool
>> doesn't honor __GFP_ZERO.
>>
>> As commit 6829e274a623 ("arm64: dma-mapping: always clear allocated buffers")
>> has pointed out,buffers allocated by dma_alloc_coherent() are always zeroed
>> on most architectures. some drivers rely on this 'feature'. Allocated buffer
>> might be also exposed to userspace with dma_mmap() call,so clearing it is
>> desired from security point of view to avoid exposing random memory to userspace.
>>
>> This patch unifies dma_alloc_coherent() behavior on ARM architecture with other
>> implementations by unconditionally zeroing allocated buffer.Also to fix
>> dma_zalloc_coherent behavior.
>>
>> Reported-by: Sean Wang <sean.wang@mediatek.com>
>> Signed-off-by: YueHaibing <yuehaibing@huawei.com>
>> Reviewed-by: zhong jiang <zhongjiang@huawei.com>
>> ---
>> v2: reference more argument from arm64 commit as Christoph suggested
>> ---
>> arch/arm/mm/dma-mapping.c | 1 +
>> 1 file changed, 1 insertion(+)
>>
>> diff --git a/arch/arm/mm/dma-mapping.c b/arch/arm/mm/dma-mapping.c
>> index 6656647..cf5882f 100644
>> --- a/arch/arm/mm/dma-mapping.c
>> +++ b/arch/arm/mm/dma-mapping.c
>> @@ -564,6 +564,7 @@ static void *__alloc_from_pool(size_t size, struct page **ret_page)
>>
>> *ret_page = phys_to_page(phys);
>> ptr = (void *)val;
>> + memset(ptr, 0, size);
>> }
>>
>> return ptr;
>>
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [PATCH v2] ARM: dma-mapping: always clear allocated buffers
2018-07-25 7:07 [PATCH v2] ARM: dma-mapping: always clear allocated buffers YueHaibing
2018-07-25 7:13 ` YueHaibing
@ 2018-09-15 11:29 ` YueHaibing
1 sibling, 0 replies; 4+ messages in thread
From: YueHaibing @ 2018-09-15 11:29 UTC (permalink / raw)
To: linux, matthias.bgg, vladimir.murzin
Cc: linux-kernel, linux-mediatek, linux-arm-kernel, akpm,
iamjoonsoo.kim, robin.murphy, treding, zhongjiang, sean.wang,
Christoph Hellwig
Ping.
On 2018/7/25 15:07, YueHaibing wrote:
> Sean Wang reported dma_zalloc_coherent doesn't work as expect on his
> armv7,the allocated mem is not zeroed.The reason is __alloc_from_pool
> doesn't honor __GFP_ZERO.
>
> As commit 6829e274a623 ("arm64: dma-mapping: always clear allocated buffers")
> has pointed out,buffers allocated by dma_alloc_coherent() are always zeroed
> on most architectures. some drivers rely on this 'feature'. Allocated buffer
> might be also exposed to userspace with dma_mmap() call,so clearing it is
> desired from security point of view to avoid exposing random memory to userspace.
>
> This patch unifies dma_alloc_coherent() behavior on ARM architecture with other
> implementations by unconditionally zeroing allocated buffer.Also to fix
> dma_zalloc_coherent behavior.
>
> Reported-by: Sean Wang <sean.wang@mediatek.com>
> Signed-off-by: YueHaibing <yuehaibing@huawei.com>
> Reviewed-by: zhong jiang <zhongjiang@huawei.com>
> ---
> v2: reference more argument from arm64 commit as Christoph suggested
> ---
> arch/arm/mm/dma-mapping.c | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/arch/arm/mm/dma-mapping.c b/arch/arm/mm/dma-mapping.c
> index 6656647..cf5882f 100644
> --- a/arch/arm/mm/dma-mapping.c
> +++ b/arch/arm/mm/dma-mapping.c
> @@ -564,6 +564,7 @@ static void *__alloc_from_pool(size_t size, struct page **ret_page)
>
> *ret_page = phys_to_page(phys);
> ptr = (void *)val;
> + memset(ptr, 0, size);
> }
>
> return ptr;
>
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2018-09-15 11:29 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2018-07-25 7:07 [PATCH v2] ARM: dma-mapping: always clear allocated buffers YueHaibing
2018-07-25 7:13 ` YueHaibing
2018-08-22 1:47 ` YueHaibing
2018-09-15 11:29 ` YueHaibing
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).