.kozlow...@linaro.org; alim.akh...@samsung.com; dri-
> de...@lists.freedesktop.org; linux-arm-ker...@lists.infradead.org; linux-
> samsung-...@vger.kernel.org; linux-ker...@vger.kernel.org
> Subject: Re: [PATCH] drm/exynos: fix race condition UAF in
> exynos_g2d_exec_ioctl
>
> Hi Inki,
&g
Hi Inki,
> > > > > > > If it is async, runqueue_node is freed in g2d_runqueue_worker on
> > another
> > > > > > > worker thread. So in extreme cases, if g2d_runqueue_worker runs
> > first, and
> > > > > > > then executes the following if statement, there will be use-
> > after-free.
> > > > > > >
amsung.com; dri-
> de...@lists.freedesktop.org; linux-arm-ker...@lists.infradead.org; linux-
> samsung-...@vger.kernel.org; linux-ker...@vger.kernel.org
> Subject: Re: [PATCH] drm/exynos: fix race condition UAF in
> exynos_g2d_exec_ioctl
>
> Hi Min,
>
> On Wed, May 31, 2
Hi Min,
On Wed, May 31, 2023 at 06:54:34PM +0800, lm0963 wrote:
> Hi Andi,
>
> On Wed, May 31, 2023 at 4:19 PM Andi Shyti wrote:
> >
> > Hi Min,
> >
> > > > > If it is async, runqueue_node is freed in g2d_runqueue_worker on
> > > > > another
> > > > > worker thread. So in extreme cases, if g2d_
Hi Andi,
On Wed, May 31, 2023 at 4:19 PM Andi Shyti wrote:
>
> Hi Min,
>
> > > > If it is async, runqueue_node is freed in g2d_runqueue_worker on another
> > > > worker thread. So in extreme cases, if g2d_runqueue_worker runs first,
> > > > and
> > > > then executes the following if statement, t
Hi Min,
> > > If it is async, runqueue_node is freed in g2d_runqueue_worker on another
> > > worker thread. So in extreme cases, if g2d_runqueue_worker runs first, and
> > > then executes the following if statement, there will be use-after-free.
> > >
> > > Signed-off-by: Min Li
> > > ---
> > >
Hi,
> -Original Message-
> From: Min Li
> Sent: Friday, May 26, 2023 10:02 PM
> To: inki@samsung.com
> Cc: sw0312@samsung.com; kyungmin.p...@samsung.com; airl...@gmail.com;
> dan...@ffwll.ch; krzysztof.kozlow...@linaro.org; alim.akh...@samsung.com;
> dri-devel@lists.freedesktop.o
Hi Andi,
On Wed, May 31, 2023 at 6:21 AM Andi Shyti wrote:
>
> Hi Min,
>
> On Fri, May 26, 2023 at 09:01:31PM +0800, Min Li wrote:
> > If it is async, runqueue_node is freed in g2d_runqueue_worker on another
> > worker thread. So in extreme cases, if g2d_runqueue_worker runs first, and
> > then e
Hi Min,
On Fri, May 26, 2023 at 09:01:31PM +0800, Min Li wrote:
> If it is async, runqueue_node is freed in g2d_runqueue_worker on another
> worker thread. So in extreme cases, if g2d_runqueue_worker runs first, and
> then executes the following if statement, there will be use-after-free.
>
> Sig
