Re: [PATCH v3 2/2] tpm: in tpm2_del_space check if ops pointer is still valid

From: Greg KH
Date: Fri Feb 05 2021 - 01:52:12 EST

Next message: Greg KH: "Re: [PATCH v3 1/2] tpm: fix reference counting for struct tpm_chip"
Previous message: Kai-Heng Feng: "Re: [PATCH] xhci-pci: Set AMD Renoir USB controller to D3 when shutdown"
In reply to: Lino Sanfilippo: "Re: [PATCH v3 2/2] tpm: in tpm2_del_space check if ops pointer is still valid"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Feb 05, 2021 at 12:50:43AM +0100, Lino Sanfilippo wrote:
> From: Lino Sanfilippo <l.sanfilippo@xxxxxxxxxx>
>
> In tpm2_del_space() chip->ops is used for flushing the sessions. However
> this function may be called after tpm_chip_unregister() which sets
> the chip->ops pointer to NULL.
> Avoid a possible NULL pointer dereference by checking if chip->ops is still
> valid before accessing it.
>
> Fixes: a3fbfae82b4c ("tpm: take TPM chip power gating out of tpm_transmit()")
> Signed-off-by: Lino Sanfilippo <l.sanfilippo@xxxxxxxxxx>
> ---
> drivers/char/tpm/tpm2-space.c | 15 ++++++++++-----
> 1 file changed, 10 insertions(+), 5 deletions(-)

<formletter>

This is not the correct way to submit patches for inclusion in the
stable kernel tree. Please read:
https://www.kernel.org/doc/html/latest/process/stable-kernel-rules.html
for how to do this properly.

</formletter>

Next message: Greg KH: "Re: [PATCH v3 1/2] tpm: fix reference counting for struct tpm_chip"
Previous message: Kai-Heng Feng: "Re: [PATCH] xhci-pci: Set AMD Renoir USB controller to D3 when shutdown"
In reply to: Lino Sanfilippo: "Re: [PATCH v3 2/2] tpm: in tpm2_del_space check if ops pointer is still valid"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]