[xen stable-4.7] x86: replace bad ASSERT() in xenmem_add_to_physmap_one()

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[xen stable-4.7] x86: replace bad ASSERT() in xenmem_add_to_physmap_one()

patchbot
commit 0baeec64213490b25e25c14e85434adee69592ba
Author:     Jan Beulich <[hidden email]>
AuthorDate: Wed Dec 20 16:20:31 2017 +0100
Commit:     Jan Beulich <[hidden email]>
CommitDate: Wed Dec 20 16:20:31 2017 +0100

    x86: replace bad ASSERT() in xenmem_add_to_physmap_one()
   
    There are no locks being held, i.e. it is possible to be triggered by
    racy hypercall invocations. Subsequent code doesn't really depend on the
    checked values, so this is not a security issue.
   
    Signed-off-by: Jan Beulich <[hidden email]>
    Acked-by: Andrew Cooper <[hidden email]>
    Acked-by: George Dunlap <[hidden email]>
    master commit: f33d653f46f5889db7be4fef31d71bc871834c10
    master date: 2017-11-28 13:14:10 +0100
---
 xen/arch/x86/mm.c | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/xen/arch/x86/mm.c b/xen/arch/x86/mm.c
index 7f82412..d63fcf6 100644
--- a/xen/arch/x86/mm.c
+++ b/xen/arch/x86/mm.c
@@ -5107,8 +5107,12 @@ int xenmem_add_to_physmap_one(
     /* Unmap from old location, if any. */
     old_gpfn = get_gpfn_from_mfn(mfn);
     ASSERT( old_gpfn != SHARED_M2P_ENTRY );
-    if ( space == XENMAPSPACE_gmfn || space == XENMAPSPACE_gmfn_range )
-        ASSERT( old_gpfn == gfn );
+    if ( (space == XENMAPSPACE_gmfn || space == XENMAPSPACE_gmfn_range) &&
+         old_gpfn != gfn )
+    {
+        rc = -EXDEV;
+        goto put_both;
+    }
     if ( old_gpfn != INVALID_M2P_ENTRY )
         rc = guest_physmap_remove_page(d, old_gpfn, mfn, PAGE_ORDER_4K);
 
--
generated by git-patchbot for /home/xen/git/xen.git#stable-4.7

_______________________________________________
Xen-changelog mailing list
[hidden email]
https://lists.xenproject.org/xen-changelog