Re: [BUG][5.20] refcount_t: underflow; use-after-free

From: Maíra Canal
Date: Sun Aug 14 2022 - 20:20:21 EST

Next message: kernel test robot: "drivers/clocksource/timer-ti-dm.c:1039:34: warning: 'omap_timer_match' defined but not used"
Previous message: Dmitry Osipenko: "Re: [PATCH] drm/bridge: sii902x: add support for DRM_BRIDGE_ATTACH_NO_CONNECTOR"
In reply to: Mikhail Gavrilov: "[BUG][5.20] refcount_t: underflow; use-after-free"
Next in thread: Mikhail Gavrilov: "Re: [BUG][5.20] refcount_t: underflow; use-after-free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Mikhail

Looks like this use-after-free problem was introduced on
90af0ca047f3049c4b46e902f432ad6ef1e2ded6. Checking this patch it seems
like: if amdgpu_cs_vm_handling return r != 0, then it will unlock
bo_list_mutex inside the function amdgpu_cs_vm_handling and again on
amdgpu_cs_parser_fini.

Maybe the following patch will help:

---

Next message: kernel test robot: "drivers/clocksource/timer-ti-dm.c:1039:34: warning: 'omap_timer_match' defined but not used"
Previous message: Dmitry Osipenko: "Re: [PATCH] drm/bridge: sii902x: add support for DRM_BRIDGE_ATTACH_NO_CONNECTOR"
In reply to: Mikhail Gavrilov: "[BUG][5.20] refcount_t: underflow; use-after-free"
Next in thread: Mikhail Gavrilov: "Re: [BUG][5.20] refcount_t: underflow; use-after-free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]