From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Gustavo A. R. Silva" Subject: [PATCH] drm/i915/gvt: Fix use-after-free in intel_vgpu_create_workload Date: Tue, 6 Aug 2019 21:20:33 -0500 Message-ID: <20190807022033.GA22623@embeddedor> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Return-path: Content-Disposition: inline List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dri-devel-bounces@lists.freedesktop.org Sender: "dri-devel" To: Zhenyu Wang , Zhi Wang , Jani Nikula , Joonas Lahtinen , Rodrigo Vivi , David Airlie , Daniel Vetter , Xiong Zhang Cc: intel-gfx@lists.freedesktop.org, intel-gvt-dev@lists.freedesktop.org, linux-kernel@vger.kernel.org, dri-devel@lists.freedesktop.org, "Gustavo A. R. Silva" List-Id: intel-gfx@lists.freedesktop.org a21lbV9jYWNoZV9mcmVlKCkgZnJlZXMgKndvcmtsb2FkKiwgaGVuY2UgdGhlcmUgaXMgYSB1c2Ut YWZ0ZXItZnJlZSBidWcKd2hlbiBjYWxsaW5nIGZ1bmN0aW9uIGd2dF92Z3B1X2VycigpLgoKRml4 IHRoaXMgYnkgc3RvcmluZyB0aGUgdmFsdWUgb2Ygd29ya2xvYWQtPndhX2N0eC5pbmRpcmVjdF9j dHguZ3Vlc3RfZ21hCmFuZCB3b3JrbG9hZC0+d2FfY3R4LnBlcl9jdHguZ3Vlc3RfZ21hIGludG8g YXV0b21hdGljIHZhcmlhYmxlCmd1ZXN0X2dtYSBiZWZvcmUgZnJlZWluZyAqd29ya2xvYWQqLCBm b3IgaXRzIGZ1cnRoZXIgdXNlLgoKQWRkcmVzc2VzLUNvdmVyaXR5LUlEOiAxNDUyMjM1ICgiUmVh ZCBmcm9tIHBvaW50ZXIgYWZ0ZXIgZnJlZSIpCkZpeGVzOiAyMDg5YTc2YWRlOTAgKCJkcm0vaTkx NS9ndnQ6IENoZWNraW5nIHdvcmtsb2FkJ3MgZ21hIGVhcmxpZXIiKQpTaWduZWQtb2ZmLWJ5OiBH dXN0YXZvIEEuIFIuIFNpbHZhIDxndXN0YXZvQGVtYmVkZGVkb3IuY29tPgotLS0KIGRyaXZlcnMv Z3B1L2RybS9pOTE1L2d2dC9zY2hlZHVsZXIuYyB8IDggKysrKysrLS0KIDEgZmlsZSBjaGFuZ2Vk LCA2IGluc2VydGlvbnMoKyksIDIgZGVsZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvZHJpdmVycy9n cHUvZHJtL2k5MTUvZ3Z0L3NjaGVkdWxlci5jIGIvZHJpdmVycy9ncHUvZHJtL2k5MTUvZ3Z0L3Nj aGVkdWxlci5jCmluZGV4IDMyYWU2YjViN2UxNi4uYzhjZGI0YTMwOWY2IDEwMDY0NAotLS0gYS9k cml2ZXJzL2dwdS9kcm0vaTkxNS9ndnQvc2NoZWR1bGVyLmMKKysrIGIvZHJpdmVycy9ncHUvZHJt L2k5MTUvZ3Z0L3NjaGVkdWxlci5jCkBAIC0xNTI1LDkgKzE1MjUsMTEgQEAgaW50ZWxfdmdwdV9j cmVhdGVfd29ya2xvYWQoc3RydWN0IGludGVsX3ZncHUgKnZncHUsIGludCByaW5nX2lkLAogCQkJ aWYgKCFpbnRlbF9ndnRfZ2d0dF92YWxpZGF0ZV9yYW5nZSh2Z3B1LAogCQkJCXdvcmtsb2FkLT53 YV9jdHguaW5kaXJlY3RfY3R4Lmd1ZXN0X2dtYSwKIAkJCQl3b3JrbG9hZC0+d2FfY3R4LmluZGly ZWN0X2N0eC5zaXplKSkgeworCQkJCXVuc2lnbmVkIGxvbmcgZ3Vlc3RfZ21hID0KKwkJCQkgICAg ICAgd29ya2xvYWQtPndhX2N0eC5pbmRpcmVjdF9jdHguZ3Vlc3RfZ21hOwogCQkJCWttZW1fY2Fj aGVfZnJlZShzLT53b3JrbG9hZHMsIHdvcmtsb2FkKTsKIAkJCQlndnRfdmdwdV9lcnIoImludmFs aWQgd2FfY3R4IGF0OiAweCVseFxuIiwKLQkJCQkgICAgd29ya2xvYWQtPndhX2N0eC5pbmRpcmVj dF9jdHguZ3Vlc3RfZ21hKTsKKwkJCQkJICAgICBndWVzdF9nbWEpOwogCQkJCXJldHVybiBFUlJf UFRSKC1FSU5WQUwpOwogCQkJfQogCQl9CkBAIC0xNTM5LDkgKzE1NDEsMTEgQEAgaW50ZWxfdmdw dV9jcmVhdGVfd29ya2xvYWQoc3RydWN0IGludGVsX3ZncHUgKnZncHUsIGludCByaW5nX2lkLAog CQkJaWYgKCFpbnRlbF9ndnRfZ2d0dF92YWxpZGF0ZV9yYW5nZSh2Z3B1LAogCQkJCXdvcmtsb2Fk LT53YV9jdHgucGVyX2N0eC5ndWVzdF9nbWEsCiAJCQkJQ0FDSEVMSU5FX0JZVEVTKSkgeworCQkJ CXVuc2lnbmVkIGxvbmcgZ3Vlc3RfZ21hID0KKwkJCQkJd29ya2xvYWQtPndhX2N0eC5wZXJfY3R4 Lmd1ZXN0X2dtYTsKIAkJCQlrbWVtX2NhY2hlX2ZyZWUocy0+d29ya2xvYWRzLCB3b3JrbG9hZCk7 CiAJCQkJZ3Z0X3ZncHVfZXJyKCJpbnZhbGlkIHBlcl9jdHggYXQ6IDB4JWx4XG4iLAotCQkJCQl3 b3JrbG9hZC0+d2FfY3R4LnBlcl9jdHguZ3Vlc3RfZ21hKTsKKwkJCQkJICAgICBndWVzdF9nbWEp OwogCQkJCXJldHVybiBFUlJfUFRSKC1FSU5WQUwpOwogCQkJfQogCQl9Ci0tIAoyLjIyLjAKCl9f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fCmRyaS1kZXZlbCBt YWlsaW5nIGxpc3QKZHJpLWRldmVsQGxpc3RzLmZyZWVkZXNrdG9wLm9yZwpodHRwczovL2xpc3Rz LmZyZWVkZXNrdG9wLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2RyaS1kZXZlbA==