lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <b9ab29ad37f94dfa81da3aa88c6456c2@huawei.com>
Date: Thu, 18 Apr 2024 03:14:28 +0000
From: wangzhu <wangzhu9@...wei.com>
To: Alex Deucher <alexdeucher@...il.com>
CC: Greg KH <gregkh@...uxfoundation.org>, "harry.wentland@....com"
	<harry.wentland@....com>, "sunpeng.li@....com" <sunpeng.li@....com>,
	"Rodrigo.Siqueira@....com" <Rodrigo.Siqueira@....com>,
	"alexander.deucher@....com" <alexander.deucher@....com>,
	"christian.koenig@....com" <christian.koenig@....com>, "airlied@...ux.ie"
	<airlied@...ux.ie>, "daniel@...ll.ch" <daniel@...ll.ch>,
	"qingqing.zhuo@....com" <qingqing.zhuo@....com>, "stylon.wang@....com"
	<stylon.wang@....com>, "Josip.Pavic@....com" <Josip.Pavic@....com>,
	"trix@...hat.com" <trix@...hat.com>, "cruise.hung@....com"
	<cruise.hung@....com>, "Eric.Yang2@....com" <Eric.Yang2@....com>,
	"mario.limonciello@....com" <mario.limonciello@....com>, "alvin.lee2@....com"
	<alvin.lee2@....com>, "jun.lei@....com" <jun.lei@....com>,
	"austin.zheng@....com" <austin.zheng@....com>, "sunglee@....com"
	<sunglee@....com>, "paul.hsieh@....com" <paul.hsieh@....com>,
	"hanghong.ma@....com" <hanghong.ma@....com>, "JinZe.Xu@....com"
	<JinZe.Xu@....com>, "lewis.huang@....com" <lewis.huang@....com>,
	"alex.hung@....com" <alex.hung@....com>, "syed.hassan@....com"
	<syed.hassan@....com>, "wayne.lin@....com" <wayne.lin@....com>,
	"nicholas.kazlauskas@....com" <nicholas.kazlauskas@....com>,
	"chiahsuan.chung@....com" <chiahsuan.chung@....com>,
	"aurabindo.pillai@....com" <aurabindo.pillai@....com>, "aric.cyr@....com"
	<aric.cyr@....com>, "amd-gfx@...ts.freedesktop.org"
	<amd-gfx@...ts.freedesktop.org>, "dri-devel@...ts.freedesktop.org"
	<dri-devel@...ts.freedesktop.org>, "linux-kernel@...r.kernel.org"
	<linux-kernel@...r.kernel.org>
Subject: 答复: [PATCH v6.6] drm/amd/display: Wake DMCUB before executing GPINT commands

The CVE-2023-52624 is fixed in linux-6.7 stable, while it is not fixed in 6.6, this commit is presented to fix it in linux-6.6 stable.

-----邮件原件-----
发件人: Alex Deucher [mailto:alexdeucher@...il.com] 
发送时间: 2024年4月18日 9:58
收件人: wangzhu <wangzhu9@...wei.com>
抄送: Greg KH <gregkh@...uxfoundation.org>; harry.wentland@....com; sunpeng.li@....com; Rodrigo.Siqueira@....com; alexander.deucher@....com; christian.koenig@....com; airlied@...ux.ie; daniel@...ll.ch; qingqing.zhuo@....com; stylon.wang@....com; Josip.Pavic@....com; trix@...hat.com; cruise.hung@....com; Eric.Yang2@....com; mario.limonciello@....com; alvin.lee2@....com; jun.lei@....com; austin.zheng@....com; sunglee@....com; paul.hsieh@....com; hanghong.ma@....com; JinZe.Xu@....com; lewis.huang@....com; Zhengzengkai <zhengzengkai@...wei.com>; alex.hung@....com; syed.hassan@....com; wayne.lin@....com; nicholas.kazlauskas@....com; chiahsuan.chung@....com; aurabindo.pillai@....com; aric.cyr@....com; amd-gfx@...ts.freedesktop.org; dri-devel@...ts.freedesktop.org; linux-kernel@...r.kernel.org
主题: Re: [PATCH v6.6] drm/amd/display: Wake DMCUB before executing GPINT commands

On Wed, Apr 17, 2024 at 9:51 PM wangzhu <wangzhu9@...wei.com> wrote:
>
> Hi Greg, thanks for your reply. Since there is no patch to fix CVE-2023-52624 in linux-5.10, there is a patch in the linux-6.7 branch, its commit is 2ef98c6d753a744e333b7e34b9cf687040fba57d ("drm/amd/display: Wake DMCUB before executing GPINT commands"). When we apply this patch to linux-5.10, there are lots of conflicts, and we found there are lots of dependent patches, and lots of patches are not proposed to fix the cve, they are presented to add new functions of the kernel.
>

Why is there a CVE?  Have you uncovered some specific issue?

Alex

> My commit comes from nearly 20 patches. For each patch, not all of its content is meant to fix the cve, so I just get the part which is helpful to fix. It is why I don't present the patches one by one instead of merging them into one big patch.
>
>
> -----邮件原件-----
> 发件人: Greg KH [mailto:gregkh@...uxfoundation.org]
> 发送时间: 2024年4月16日 12:54
> 收件人: wangzhu <wangzhu9@...wei.com>
> 抄送: harry.wentland@....com; sunpeng.li@....com; 
> Rodrigo.Siqueira@....com; alexander.deucher@....com; 
> christian.koenig@....com; airlied@...ux.ie; daniel@...ll.ch; 
> qingqing.zhuo@....com; stylon.wang@....com; Josip.Pavic@....com; 
> trix@...hat.com; cruise.hung@....com; Eric.Yang2@....com; 
> mario.limonciello@....com; alvin.lee2@....com; jun.lei@....com; 
> austin.zheng@....com; sunglee@....com; paul.hsieh@....com; 
> hanghong.ma@....com; JinZe.Xu@....com; lewis.huang@....com; 
> Zhengzengkai <zhengzengkai@...wei.com>; alex.hung@....com; 
> syed.hassan@....com; wayne.lin@....com; nicholas.kazlauskas@....com; 
> chiahsuan.chung@....com; aurabindo.pillai@....com; aric.cyr@....com; 
> amd-gfx@...ts.freedesktop.org; dri-devel@...ts.freedesktop.org; 
> linux-kernel@...r.kernel.org
> 主题: Re: [PATCH v6.6] drm/amd/display: Wake DMCUB before executing 
> GPINT commands
>
> On Tue, Apr 16, 2024 at 03:52:40AM +0000, Zhu Wang wrote:
> > From: Nicholas Kazlauskas <nicholas.kazlauskas@....com>
> >
> > stable inclusion
> > from stable-v6.7.3
> > commit 2ef98c6d753a744e333b7e34b9cf687040fba57d
> > category: bugfix
> > bugzilla: https://gitee.com/src-openeuler/kernel/issues/I9BV4C
> > CVE: CVE-2023-52624
> >
> > Reference:
> > https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/c
> > om mit/?id=2ef98c6d753a744e333b7e34b9cf687040fba57d
> >
> > --------------------------------
> >
> > [ Upstream commit e5ffd1263dd5b44929c676171802e7b6af483f21 ]
> >
> > [Why]
> > DMCUB can be in idle when we attempt to interface with the HW 
> > through the GPINT mailbox resulting in a system hang.
> >
> > [How]
> > Add dc_wake_and_execute_gpint() to wrap the wake, execute, sleep 
> > sequence.
> >
> > If the GPINT executes successfully then DMCUB will be put back into 
> > sleep after the optional response is returned.
> >
> > It functions similar to the inbox command interface.
> >
> > Cc: Mario Limonciello <mario.limonciello@....com>
> > Cc: Alex Deucher <alexander.deucher@....com>
> > Cc: stable@...r.kernel.org
> > Reviewed-by: Hansen Dsouza <hansen.dsouza@....com>
> > Acked-by: Wayne Lin <wayne.lin@....com>
> > Signed-off-by: Nicholas Kazlauskas <nicholas.kazlauskas@....com>
> > Tested-by: Daniel Wheeler <daniel.wheeler@....com>
> > Signed-off-by: Alex Deucher <alexander.deucher@....com>
> >
> > This commit comes from following commits:
> >
> >  8774029f76b9 ("drm/amd/display: Add DCN35 CLK_MGR")  65138eb72e1f
> > ("drm/amd/display: Add DCN35 DMUB")  dc01c4b79bfe ("drm/amd/display:
> > Update driver and IPS interop")
> >  820c3870c491 ("drm/amd/display: Refactor DMCUB enter/exit idle
> > interface")  2ef98c6d753a ("drm/amd/display: Wake DMCUB before 
> > executing GPINT commands")
>
> Why are you putting multiple commits together and not just submitting the individual ones?  And what is this for?
>
> confused,
>
> greg k-h

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ