Received: by 10.223.176.5 with SMTP id f5csp938039wra; Fri, 2 Feb 2018 08:31:46 -0800 (PST) X-Google-Smtp-Source: AH8x225ipguM2TDAtthtpomalkd7P5CQ7+3umCM7+dRxg5MYFuN7O9tpw133RfgqiSCLOBm5uB1L X-Received: by 10.101.64.139 with SMTP id t11mr5317338pgp.162.1517589105648; Fri, 02 Feb 2018 08:31:45 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1517589105; cv=none; d=google.com; s=arc-20160816; b=Fdr+wE0a10UJLYBTe9iV+TXzljUT1UwZr1fWlJV/Cntq/C9tsBewG0Bllt2wpwV2tf llS8UMkuXunTyZvFj2orYfBI+jUhryQTzAqFC4HACGYS2PR1mfUKHQD9bqJzvtjjOXWZ XNqFe/FQcOgdeIYBbRr8vAW9x7dNAkOc+1N/QfBRR4x+Epg+SqcaYehHxsubVTB1W2Ka wVlnBW0WWzG1FZJFb1tPDs8F+tdWWoKLwNcA+af3nqOD0atxBBOMN2R6FvdyGB5Ph6Cm UwF/ASHKP70vlCDhuFlaxW+GhhkH5B37PPR9WwXaz4VhK/AKmLaf8fuHgis7Gj3TRISX 40fw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:mail-followup-to :message-id:subject:cc:to:from:date:dmarc-filter:dkim-signature :dkim-signature:arc-authentication-results; bh=mg4m/SAQqygSqaosnv5rmGIORkKC8btn7Ra/nEHh2no=; b=E+DTPIM9ioaWPaIif5lijpL3DTAorxofRLzm57dwKJuWL76JzxmpEJ5dgnCsEXgjmb 6SxMwNQazNoJWl5YEG9u6QbCMcMZP7OMOd8PAEoEoJXV6TVEzB9hDBFwV+TTA4Drr0gs GIDJnUTw5jm9HCVoGZzmPogIZ1Z9voWNRerDuUhs2Iig/fCqxrTAi7TGM0gpeYtryTgE MT8bAKNrV1dhp6tcGtnYwJcy0A72hiv0EAUN0uDz7OptAqiJqHD8Gp7hSFVYsbZASNaq epi6dwvNHB0tYsC3EMtL2jRZfR9+DFUy81GQvja/jmhCdhdd0ctGVtGs6VIpm5PtFZ98 AD9A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@codeaurora.org header.s=default header.b=aB+l8dbC; dkim=pass header.i=@codeaurora.org header.s=default header.b=aB+l8dbC; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i6-v6si91836plr.802.2018.02.02.08.31.30; Fri, 02 Feb 2018 08:31:45 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@codeaurora.org header.s=default header.b=aB+l8dbC; dkim=pass header.i=@codeaurora.org header.s=default header.b=aB+l8dbC; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752210AbeBBQaR (ORCPT + 99 others); Fri, 2 Feb 2018 11:30:17 -0500 Received: from smtp.codeaurora.org ([198.145.29.96]:56480 "EHLO smtp.codeaurora.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751963AbeBBQaK (ORCPT ); Fri, 2 Feb 2018 11:30:10 -0500 Received: by smtp.codeaurora.org (Postfix, from userid 1000) id 89CCF606AC; Fri, 2 Feb 2018 16:30:09 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=codeaurora.org; s=default; t=1517589009; bh=MzsWYz+F9FCWGba40eaSSAmiTlq3I2XrknKYX2CX+As=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=aB+l8dbC0Bph/Kg6IKgejmndSJIuYpoRrymm66LOuyXLmnS1JJ2A4Waj8e7zl6Xw3 DuyFzRFwlPYB0Jb0tXBnwkEJ0rJXRrtfQu3zbjga9p363qM+n2gwtpPrLMt4hs8kGm sQ7+YFvDnqhg7Be/ozp1U/+HCXlrIFhw0hP0oOoE= X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on pdx-caf-mail.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-2.8 required=2.0 tests=ALL_TRUSTED,BAYES_00, DKIM_SIGNED,T_DKIM_INVALID autolearn=no autolearn_force=no version=3.4.0 Received: from jcrouse-lnx.qualcomm.com (i-global254.qualcomm.com [199.106.103.254]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: jcrouse@smtp.codeaurora.org) by smtp.codeaurora.org (Postfix) with ESMTPSA id 7735B60364; Fri, 2 Feb 2018 16:30:08 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=codeaurora.org; s=default; t=1517589009; bh=MzsWYz+F9FCWGba40eaSSAmiTlq3I2XrknKYX2CX+As=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=aB+l8dbC0Bph/Kg6IKgejmndSJIuYpoRrymm66LOuyXLmnS1JJ2A4Waj8e7zl6Xw3 DuyFzRFwlPYB0Jb0tXBnwkEJ0rJXRrtfQu3zbjga9p363qM+n2gwtpPrLMt4hs8kGm sQ7+YFvDnqhg7Be/ozp1U/+HCXlrIFhw0hP0oOoE= DMARC-Filter: OpenDMARC Filter v1.3.2 smtp.codeaurora.org 7735B60364 Authentication-Results: pdx-caf-mail.web.codeaurora.org; dmarc=none (p=none dis=none) header.from=codeaurora.org Authentication-Results: pdx-caf-mail.web.codeaurora.org; spf=none smtp.mailfrom=jcrouse@codeaurora.org Date: Fri, 2 Feb 2018 09:30:06 -0700 From: Jordan Crouse To: "Gustavo A. R. Silva" Cc: Rob Clark , David Airlie , linux-arm-msm@vger.kernel.org, dri-devel@lists.freedesktop.org, freedreno@lists.freedesktop.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH] drm/msm/adreno/a5xx_debugfs: fix potential NULL pointer dereference Message-ID: <20180202163006.GA878@jcrouse-lnx.qualcomm.com> Mail-Followup-To: "Gustavo A. R. Silva" , Rob Clark , David Airlie , linux-arm-msm@vger.kernel.org, dri-devel@lists.freedesktop.org, freedreno@lists.freedesktop.org, linux-kernel@vger.kernel.org References: <20180202123223.GA4410@embeddedor.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20180202123223.GA4410@embeddedor.com> User-Agent: Mutt/1.5.21 (2010-09-15) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Feb 02, 2018 at 06:32:23AM -0600, Gustavo A. R. Silva wrote: > _minor_ is being dereferenced before it is null checked, hence there > is a potential null pointer dereference. Fix this by moving the pointer > dereference after _minor_ has been null checked. > > Fixes: 024ad8df763f ("drm/msm: add a5xx specific debugfs") > Signed-off-by: Gustavo A. R. Silva > --- > > I wonder if a better solution for this would be to WARN_ON in case _minor_ > happens to be NULL and return -EINVAL, instead of just returning zero. > > Something like: > > struct drm_device *dev; > > if (WARN_ON(!minor) > return -EINVAL; > > dev = minor->dev; > > What do you think? In my opinion everything in debugfs is optional. I'm not sure if it is even possible for dev->primary, dev->render or dev->control to be NULL from the DRM core but if so I think the failure should be silent. Jordan > > drivers/gpu/drm/msm/adreno/a5xx_debugfs.c | 4 +++- > 1 file changed, 3 insertions(+), 1 deletion(-) > > diff --git a/drivers/gpu/drm/msm/adreno/a5xx_debugfs.c b/drivers/gpu/drm/msm/adreno/a5xx_debugfs.c > index 6b27941..059ec7d 100644 > --- a/drivers/gpu/drm/msm/adreno/a5xx_debugfs.c > +++ b/drivers/gpu/drm/msm/adreno/a5xx_debugfs.c > @@ -159,13 +159,15 @@ DEFINE_SIMPLE_ATTRIBUTE(reset_fops, NULL, reset_set, "%llx\n"); > > int a5xx_debugfs_init(struct msm_gpu *gpu, struct drm_minor *minor) > { > - struct drm_device *dev = minor->dev; > + struct drm_device *dev; > struct dentry *ent; > int ret; > > if (!minor) > return 0; > > + dev = minor->dev; > + > ret = drm_debugfs_create_files(a5xx_debugfs_list, > ARRAY_SIZE(a5xx_debugfs_list), > minor->debugfs_root, minor); > -- > 2.7.4 > > -- > To unsubscribe from this list: send the line "unsubscribe linux-arm-msm" in > the body of a message to majordomo@vger.kernel.org > More majordomo info at http://vger.kernel.org/majordomo-info.html -- The Qualcomm Innovation Center, Inc. is a member of Code Aurora Forum, a Linux Foundation Collaborative Project