From: Manivannan Sadhasivam <manivannan.sadhasivam@linaro.org>
To: Borislav Petkov <bp@alien8.de>
Cc: Steev Klimaszewski <steev@kali.org>,
andersson@kernel.org, robh+dt@kernel.org,
krzysztof.kozlowski+dt@linaro.org, tony.luck@intel.com,
quic_saipraka@quicinc.com, konrad.dybcio@linaro.org,
linux-arm-msm@vger.kernel.org, linux-kernel@vger.kernel.org,
james.morse@arm.com, mchehab@kernel.org, rric@kernel.org,
linux-edac@vger.kernel.org, quic_ppareek@quicinc.com,
luca.weiss@fairphone.com, ahalaney@redhat.com
Subject: Re: [PATCH v3 06/15] arm64: dts: qcom: sc8280xp: Fix the base addresses of LLCC banks
Date: Wed, 21 Dec 2022 11:25:26 +0530 [thread overview]
Message-ID: <20221221055526.GB2922@thinkpad> (raw)
In-Reply-To: <Y6JLV4XG/6xDFrN/@zn.tnic>
On Wed, Dec 21, 2022 at 12:55:03AM +0100, Borislav Petkov wrote:
> On Tue, Dec 20, 2022 at 03:22:07PM +0530, Manivannan Sadhasivam wrote:
> > This is a genuine use-after-free bug that happens because the edac core frees
> > the memory assigned to "llcc_driv_data" pointer that gets passed as "pvt_info".
> >
> > Here, the LLCC driver is one creating the "qcom_llcc_edac" platform device and
> > also allocating memory for "llcc_driv_data". But since during qcom_edac driver
> > removal, we are just unregistering the driver and the platform device still
> > stays around, the edac driver is not supposed to free any memory associated
> > with the platform device.
>
> If you mean
>
> __edac_device_free_ctl_info()
>
> it is very well supposed to free it as it allocates it in
> edac_device_alloc_ctl_info().
>
> If qcom_llcc_edac_probe() simply goes and assigns something of its own
> to edev_ctl->pvt_info, then that driver gets to keep the pieces ofc.
>
Right. It is the issue of the qcom driver from the start.
Thanks,
Mani
> --
> Regards/Gruss,
> Boris.
>
> https://people.kernel.org/tglx/notes-about-netiquette
--
மணிவண்ணன் சதாசிவம்
next prev parent reply other threads:[~2022-12-21 5:55 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-12-19 18:29 [PATCH v3 00/15] Qcom: LLCC/EDAC: Fix base address used for LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 01/15] dt-bindings: arm: msm: Update the maintainers for LLCC Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 02/15] dt-bindings: arm: msm: Fix register regions used for LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 03/15] arm64: dts: qcom: sdm845: Fix the base addresses of " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 04/15] arm64: dts: qcom: sc7180: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 05/15] arm64: dts: qcom: sc7280: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 06/15] arm64: dts: qcom: sc8280xp: " Manivannan Sadhasivam
2022-12-20 4:56 ` Steev Klimaszewski
2022-12-20 9:52 ` Manivannan Sadhasivam
2022-12-20 23:55 ` Borislav Petkov
2022-12-21 5:55 ` Manivannan Sadhasivam [this message]
2022-12-19 18:29 ` [PATCH v3 07/15] arm64: dts: qcom: sm8150: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 08/15] arm64: dts: qcom: sm8250: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 09/15] arm64: dts: qcom: sm8350: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 10/15] arm64: dts: qcom: sm8450: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 11/15] arm64: dts: qcom: sm6350: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 12/15] EDAC/device: Make use of poll_msec value in edac_device_ctl_info struct Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 13/15] EDAC/qcom: Add platform_device_id table for module autoloading Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 14/15] qcom: llcc/edac: Fix the base address used for accessing LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 15/15] qcom: llcc/edac: Support polling mode for ECC handling Manivannan Sadhasivam
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20221221055526.GB2922@thinkpad \
--to=manivannan.sadhasivam@linaro.org \
--cc=ahalaney@redhat.com \
--cc=andersson@kernel.org \
--cc=bp@alien8.de \
--cc=james.morse@arm.com \
--cc=konrad.dybcio@linaro.org \
--cc=krzysztof.kozlowski+dt@linaro.org \
--cc=linux-arm-msm@vger.kernel.org \
--cc=linux-edac@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=luca.weiss@fairphone.com \
--cc=mchehab@kernel.org \
--cc=quic_ppareek@quicinc.com \
--cc=quic_saipraka@quicinc.com \
--cc=robh+dt@kernel.org \
--cc=rric@kernel.org \
--cc=steev@kali.org \
--cc=tony.luck@intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.