Page MenuHomeFreeBSD
Differential D31875

swap_pager: Handle large swap_pager_reserve() requests
ClosedPublic
Actions

Authored by markj on Sep 7 2021, 3:46 PM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Apr 22, 6:44 AM
Unknown Object (File)
Tue, Apr 22, 3:53 AM
Unknown Object (File)
Fri, Apr 18, 8:09 PM
Unknown Object (File)
Mar 21 2025, 2:47 AM
Unknown Object (File)
Mar 9 2025, 12:10 AM
Unknown Object (File)
Feb 23 2025, 11:14 AM
Unknown Object (File)
Feb 19 2025, 4:58 AM
Unknown Object (File)
Feb 7 2025, 1:52 PM
View All 69 Files
Subscribers
imp

Details

Reviewers
kib
alc
dougm
Commits
rG686aa9287c6b: swap_pager: Handle large swap_pager_reserve() requests
Summary

This interface is used solely by md(4) when the MD_RESERVE flag is
specified, as in mdconfig -a -t swap -s 1G -o reserve. It
pre-allocates swap blocks for the entire object.

The number of blocks to be reserved is specified as a vm_size_t, but
swp_pager_getswapspace() can allocate at most INT_MAX blocks. vm_size_t
also seems like the incorrect type to use here it refers only to the
size of the VM object, not the size of a mapping. So:

  • change the type of "size" in swap_pager_reserve() to vm_pindex_t, and
  • clamp the requested number of blocks for a single swp_pager_getswapspace() call to INT_MAX.

Reported by: syzkaller

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
sys/
vm/
2 lines
8 lines

Diff 94850

View Options

sys/vm/swap_pager.h

Loading...
View Options

sys/vm/swap_pager.c

Loading...