• Christoph Lameter's avatar
    [PATCH] Check for populated zone in __drain_pages · f2e12bb2
    Christoph Lameter authored
    Both process_zones() and drain_node_pages() check for populated zones
    before touching pagesets.  However, __drain_pages does not do so,
    
    This may result in a NULL pointer dereference for pagesets in unpopulated
    zones if a NUMA setup is combined with cpu hotplug.
    
    Initially the unpopulated zone has the pcp pointers pointing to the boot
    pagesets.  Since the zone is not populated the boot pageset pointers will
    not be changed during page allocator and slab bootstrap.
    
    If a cpu is later brought down (first call to __drain_pages()) then the pcp
    pointers for cpus in unpopulated zones are set to NULL since __drain_pages
    does not first check for an unpopulated zone.
    
    If the cpu is then brought up again then we call process_zones() which will
    ignore the unpopulated zone.  So the pageset pointers will still be NULL.
    
    If the cpu is then again brought down then __drain_pages will attempt to
    drain pages by following the NULL pageset pointer for unpopulated zones.
    Signed-off-by: default avatarChristoph Lameter <clameter@sgi.com>
    Signed-off-by: default avatarAndrew Morton <akpm@osdl.org>
    Signed-off-by: default avatarLinus Torvalds <torvalds@osdl.org>
    f2e12bb2
page_alloc.c 90.9 KB