KVM: arm64: Drop last page ref in kvm_pgtable_stage2_free_removed() (f6a27d6d) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_torvalds_linux

Commit f6a27d6d authored May 30, 2023 by

Oliver Upton Committed by Marc Zyngier May 31, 2023

KVM: arm64: Drop last page ref in kvm_pgtable_stage2_free_removed()

The reference count on page table allocations is increased for every
'counted' PTE (valid or donated) in the table in addition to the initial
reference from ->zalloc_page(). kvm_pgtable_stage2_free_removed() fails
to drop the last reference on the root of the table walk, meaning we
leak memory.

Fix it by dropping the last reference after the free walker returns,
at which point all references for 'counted' PTEs have been released.

Cc: stable@vger.kernel.org
Fixes: 5c359cca

 ("KVM: arm64: Tear down unlinked stage-2 subtree after break-before-make")
Reported-by: Yu Zhao <yuzhao@google.com>
Signed-off-by: Oliver Upton <oliver.upton@linux.dev>
Tested-by: Yu Zhao <yuzhao@google.com>
Signed-off-by: Marc Zyngier <maz@kernel.org>
Link: https://lore.kernel.org/r/20230530193213.1663411-1-oliver.upton@linux.dev

parent 811154e2

Hide whitespace changes

Inline Side-by-side

Please register or to comment