parisc: Correct completer in lws start
stable inclusion from stable-v5.10.89 commit 5deeb9ad598b2b3b79c8d1455a276b3d9a8bac31 bugzilla: 186140 https://gitee.com/openeuler/kernel/issues/I4S8HA Reference: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=5deeb9ad598b2b3b79c8d1455a276b3d9a8bac31 -------------------------------- commit 8f66fce0 upstream. The completer in the "or,ev %r1,%r30,%r30" instruction is reversed, so we are not clipping the LWS number when we are called from a 32-bit process (W=0). We need to nulify the following depdi instruction when the least-significant bit of %r30 is 1. If the %r20 register is not clipped, a user process could perform a LWS call that would branch to an undefined location in the kernel and potentially crash the machine. Signed-off-by:John David Anglin <dave.anglin@bell.net> Cc: stable@vger.kernel.org # 4.19+ Signed-off-by:
Loading
Please sign in to comment