| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 27 Sep 2022 13:00:22 +0200
From: Eugeniu Rosca <erosca@...adit-jv.com>
To: Cezary Rojewski <cezary.rojewski@...el.com>
CC: Eugeniu Rosca <erosca@...adit-jv.com>,
Liam Girdwood <lgirdwood@...il.com>,
Mark Brown <broonie@...nel.org>,
Jaroslav Kysela <perex@...ex.cz>,
Takashi Iwai <tiwai@...e.com>, <alsa-devel@...a-project.org>,
<linux-kernel@...r.kernel.org>,
Yanmin Zhang <yanmin_zhang@...ux.intel.com>,
Eugeniu Rosca <roscaeugeniu@...il.com>,
Jiada Wang <jiada_wang@...tor.com>,
Zhang Yanmin <yanmin.zhang@...el.com>,
Ramesh Babu <ramesh.babu@...el.com>,
Dean Jenkins <Dean_Jenkins@...tor.com>,
Ramesh Babu B <ramesh.babu.b@...el.com>,
xiao jin <jin.xiao@...el.com>,
Pierre-Louis Bossart <pierre-louis.bossart@...ux.intel.com>,
Amadeusz Sławiński
<amadeuszx.slawinski@...ux.intel.com>,
Andy Shevchenko <andriy.shevchenko@...ux.intel.com>,
Ranjani Sridharan <ranjani.sridharan@...ux.intel.com>,
Bard Liao <yung-chuan.liao@...ux.intel.com>,
Kai Vehmanen <kai.vehmanen@...ux.intel.com>,
Peter Ujfalusi <peter.ujfalusi@...ux.intel.com>,
Guennadi Liakhovetski <guennadi.liakhovetski@...ux.intel.com>,
Rander Wang <rander.wang@...ux.intel.com>
Subject: Re: [PATCH] ASoC: soc-pcm: fix fe and be race when accessing
substream->runtime
Hello Czarek,
On Di, Sep 27, 2022 at 09:50:05 +0200, Cezary Rojewski wrote:
> On 2022-09-26 6:35 PM, Eugeniu Rosca wrote:
> >From: xiao jin <jin.xiao@...el.com>
> >
> >After start of fe and be, fe might go to close without triggering
> >STOP, and substream->runtime is freed. However, be is still at
> >START state and its substream->runtime still points to the
> >freed runtime.
> >
> >Later on, FE is opened/started again, and triggers STOP.
> >snd_pcm_do_stop => dpcm_fe_dai_trigger
> > => dpcm_fe_dai_do_trigger
> > => dpcm_be_dai_trigger
> > => dpcm_do_trigger
> > => soc_pcm_trigger
> > => skl_platform_pcm_trigger
> >skl_platform_pcm_trigger accesses the freed old runtime data and
> >kernel panic.
> >
> >The patch fixes it by assigning be_substream->runtime in
> >dpcm_be_dai_startup when be's state is START.
> >
> >Signed-off-by: xiao jin <jin.xiao@...el.com>
> >Signed-off-by: Zhang Yanmin <yanmin.zhang@...el.com>
> >Signed-off-by: Eugeniu Rosca <erosca@...adit-jv.com>
>
> Hello,
>
> The change seems to be driven by the skylake-driver problem.
Agreed, based on the author/co-signer's e-mail and the call stack.
> With all due
> respect, why not ping owners of the driver first? There are some crucial CCs
> missing.
Some feedback already provided by Pierre-Louis Bossart (many thanks).
Cc-ing more Intel contributors in the sound subsystem.
>
> I'd like to know more about the scenario you guys reproduced the problem in.
This patch was originally identified in the Intel Apollo Lake v4.1 KNLs.
Given that the change itself is in the core sound subsystem, our internal
assessment was that the patch might potentially be relevant/helpful
on other HW platforms.
Our intention is to confirm or invalidate this assumption with the
original developers of the patch, as well as with the audio maintainers
and the members of the alsa-devel ML.
> Configuration details and kernel base would be good to know too. Since our
> CI did not detect problem of such sort, if the problem actually exists, we
> would like to append a test or two to cover it later on.
If there is no evidence that the patch is fixing a real-life issue
occurring in the latest vanilla, I agree to drop the patch.
So far, I do not possess this evidence myself.
> Regards,
> Czarek
Best regards,
Eugeniu
Powered by blists - more mailing lists