Re: [PATCH] PCI/ASPM: fix UAF by removing cached downstream

From: Ding Hui
Date: Sat Apr 29 2023 - 10:58:48 EST

Next message: Peter Zijlstra: "Re: [PATCH v4] sched/numa: Fix divide by zero for sysctl_numa_balancing_scan_size."
Previous message: Peter Zijlstra: "Re: [PATCH 1/1] sched: Consider CPU contention in frequency & load-balance busiest CPU selection"
In reply to: Ding Hui: "[PATCH] PCI/ASPM: fix UAF by removing cached downstream"
Next in thread: Bjorn Helgaas: "Re: [PATCH] PCI/ASPM: fix UAF by removing cached downstream"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2023/4/29 9:26 下午, Ding Hui wrote:

If the function 0 of a multifunction device is removed, an freed

Typo "a freed" will be fix in v2.

downstream pointer will be left in struct pcie_link_state, and then
when pcie_config_aspm_link() be invoked from any path, we will get a
KASAN use-after-free report.

--
Thanks,
-dinghui

Next message: Peter Zijlstra: "Re: [PATCH v4] sched/numa: Fix divide by zero for sysctl_numa_balancing_scan_size."
Previous message: Peter Zijlstra: "Re: [PATCH 1/1] sched: Consider CPU contention in frequency & load-balance busiest CPU selection"
In reply to: Ding Hui: "[PATCH] PCI/ASPM: fix UAF by removing cached downstream"
Next in thread: Bjorn Helgaas: "Re: [PATCH] PCI/ASPM: fix UAF by removing cached downstream"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]