From: Manivannan Sadhasivam <manivannan.sadhasivam@linaro.org>
To: Borislav Petkov <bp@alien8.de>
Cc: Steev Klimaszewski <steev@kali.org>,
andersson@kernel.org, robh+dt@kernel.org,
krzysztof.kozlowski+dt@linaro.org, tony.luck@intel.com,
quic_saipraka@quicinc.com, konrad.dybcio@linaro.org,
linux-arm-msm@vger.kernel.org, linux-kernel@vger.kernel.org,
james.morse@arm.com, mchehab@kernel.org, rric@kernel.org,
linux-edac@vger.kernel.org, quic_ppareek@quicinc.com,
luca.weiss@fairphone.com, ahalaney@redhat.com
Subject: Re: [PATCH v3 06/15] arm64: dts: qcom: sc8280xp: Fix the base addresses of LLCC banks
Date: Wed, 21 Dec 2022 11:25:26 +0530 [thread overview]
Message-ID: <20221221055526.GB2922@thinkpad> (raw)
In-Reply-To: <Y6JLV4XG/6xDFrN/@zn.tnic>
On Wed, Dec 21, 2022 at 12:55:03AM +0100, Borislav Petkov wrote:
> On Tue, Dec 20, 2022 at 03:22:07PM +0530, Manivannan Sadhasivam wrote:
> > This is a genuine use-after-free bug that happens because the edac core frees
> > the memory assigned to "llcc_driv_data" pointer that gets passed as "pvt_info".
> >
> > Here, the LLCC driver is one creating the "qcom_llcc_edac" platform device and
> > also allocating memory for "llcc_driv_data". But since during qcom_edac driver
> > removal, we are just unregistering the driver and the platform device still
> > stays around, the edac driver is not supposed to free any memory associated
> > with the platform device.
>
> If you mean
>
> __edac_device_free_ctl_info()
>
> it is very well supposed to free it as it allocates it in
> edac_device_alloc_ctl_info().
>
> If qcom_llcc_edac_probe() simply goes and assigns something of its own
> to edev_ctl->pvt_info, then that driver gets to keep the pieces ofc.
>
Right. It is the issue of the qcom driver from the start.
Thanks,
Mani
> --
> Regards/Gruss,
> Boris.
>
> https://people.kernel.org/tglx/notes-about-netiquette
--
மணிவண்ணன் சதாசிவம்
next prev parent reply other threads:[~2022-12-21 5:55 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-12-19 18:29 [PATCH v3 00/15] Qcom: LLCC/EDAC: Fix base address used for LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 01/15] dt-bindings: arm: msm: Update the maintainers for LLCC Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 02/15] dt-bindings: arm: msm: Fix register regions used for LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 03/15] arm64: dts: qcom: sdm845: Fix the base addresses of " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 04/15] arm64: dts: qcom: sc7180: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 05/15] arm64: dts: qcom: sc7280: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 06/15] arm64: dts: qcom: sc8280xp: " Manivannan Sadhasivam
2022-12-20 4:56 ` Steev Klimaszewski
2022-12-20 9:52 ` Manivannan Sadhasivam
2022-12-20 23:55 ` Borislav Petkov
2022-12-21 5:55 ` Manivannan Sadhasivam [this message]
2022-12-19 18:29 ` [PATCH v3 07/15] arm64: dts: qcom: sm8150: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 08/15] arm64: dts: qcom: sm8250: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 09/15] arm64: dts: qcom: sm8350: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 10/15] arm64: dts: qcom: sm8450: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 11/15] arm64: dts: qcom: sm6350: " Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 12/15] EDAC/device: Make use of poll_msec value in edac_device_ctl_info struct Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 13/15] EDAC/qcom: Add platform_device_id table for module autoloading Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 14/15] qcom: llcc/edac: Fix the base address used for accessing LLCC banks Manivannan Sadhasivam
2022-12-19 18:29 ` [PATCH v3 15/15] qcom: llcc/edac: Support polling mode for ECC handling Manivannan Sadhasivam
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20221221055526.GB2922@thinkpad \
--to=manivannan.sadhasivam@linaro.org \
--cc=ahalaney@redhat.com \
--cc=andersson@kernel.org \
--cc=bp@alien8.de \
--cc=james.morse@arm.com \
--cc=konrad.dybcio@linaro.org \
--cc=krzysztof.kozlowski+dt@linaro.org \
--cc=linux-arm-msm@vger.kernel.org \
--cc=linux-edac@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=luca.weiss@fairphone.com \
--cc=mchehab@kernel.org \
--cc=quic_ppareek@quicinc.com \
--cc=quic_saipraka@quicinc.com \
--cc=robh+dt@kernel.org \
--cc=rric@kernel.org \
--cc=steev@kali.org \
--cc=tony.luck@intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox