Module Name: src
Committed By: martin
Date: Sun Aug 11 10:01:15 UTC 2019
Modified Files:
src/sys/uvm [netbsd-8]: uvm_mmap.c
Log Message:
Pull up following revision(s) (requested by maxv in ticket #1332):
sys/uvm/uvm_mmap.c: revision 1.173
Change 'npgs' from int to size_t. Otherwise the 64bit->32bit conversion
could lead to npgs=0, which is not expected. It later triggers a panic
in uvm_vsunlock().
Found by TriforceAFL (Akul Pillai).
To generate a diff of this commit:
cvs rdiff -u -r1.166.2.1 -r1.166.2.2 src/sys/uvm/uvm_mmap.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/sys/uvm/uvm_mmap.c
diff -u src/sys/uvm/uvm_mmap.c:1.166.2.1 src/sys/uvm/uvm_mmap.c:1.166.2.2
--- src/sys/uvm/uvm_mmap.c:1.166.2.1 Thu Nov 2 21:39:18 2017
+++ src/sys/uvm/uvm_mmap.c Sun Aug 11 10:01:14 2019
@@ -1,4 +1,4 @@
-/* $NetBSD: uvm_mmap.c,v 1.166.2.1 2017/11/02 21:39:18 snj Exp $ */
+/* $NetBSD: uvm_mmap.c,v 1.166.2.2 2019/08/11 10:01:14 martin Exp $ */
/*
* Copyright (c) 1997 Charles D. Cranor and Washington University.
@@ -46,7 +46,7 @@
*/
#include <sys/cdefs.h>
-__KERNEL_RCSID(0, "$NetBSD: uvm_mmap.c,v 1.166.2.1 2017/11/02 21:39:18 snj Exp $");
+__KERNEL_RCSID(0, "$NetBSD: uvm_mmap.c,v 1.166.2.2 2019/08/11 10:01:14 martin Exp $");
#include "opt_compat_netbsd.h"
#include "opt_pax.h"
@@ -146,7 +146,8 @@ sys_mincore(struct lwp *l, const struct
vaddr_t start, end, lim;
struct vm_map *map;
vsize_t len;
- int error = 0, npgs;
+ int error = 0;
+ size_t npgs;
map = &p->p_vmspace->vm_map;
