xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()

Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git

kernel os linux

As 'kdata.num' is user-controlled data, if user tries to allocate
memory larger than(>=) MAX_ORDER, then kcalloc() will fail, it
creates a stack trace and messes up dmesg with a warning.

Call trace:
-> privcmd_ioctl
--> privcmd_ioctl_mmap_resource

Add __GFP_NOWARN in order to avoid too large allocation warning.
This is detected by static analysis using smatch.

Fixes: 3ad0876554ca ("xen/privcmd: add IOCTL_PRIVCMD_MMAP_RESOURCE")
Signed-off-by: Harshit Mogalapalli <harshit.m.mogalapalli@oracle.com>
Reviewed-by: Juergen Gross <jgross@suse.com>
Link: https://lore.kernel.org/r/20221126050745.778967-1-harshit.m.mogalapalli@oracle.com
Signed-off-by: Juergen Gross <jgross@suse.com>

authored by

Harshit Mogalapalli and committed by

Juergen Gross 3 years ago 8b997b2b ca84ce15

+1 -1

1 changed file

expand all

drivers

xen

privcmd.c

+1 -1

drivers/xen/privcmd.c

··· 760 760 goto out; 761 761 } 762 762 763 - pfns = kcalloc(kdata.num, sizeof(*pfns), GFP_KERNEL); 763 + pfns = kcalloc(kdata.num, sizeof(*pfns), GFP_KERNEL | __GFP_NOWARN); 764 764 if (!pfns) { 765 765 rc = -ENOMEM; 766 766 goto out;