Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp3638660imm; Mon, 17 Sep 2018 00:06:32 -0700 (PDT) X-Google-Smtp-Source: ANB0VdYQEM8oN9m3mDJF1w215/5xJ4ZaF7qWYHq8UFrE782UEPK5xZOzKxeGbdsEGady0KzBfrXh X-Received: by 2002:a62:2459:: with SMTP id r86-v6mr24551172pfj.31.1537167992322; Mon, 17 Sep 2018 00:06:32 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1537167992; cv=none; d=google.com; s=arc-20160816; b=YXtQRXqoZhX/1wKTsIqNH5DdaJbVZK8uKTt4bPv/zBwYo9uo3l8RXsXX1M8Z/0A3+c i50Y50dgSVyQXUuOpVa9bqLjxXQxnElCGuIVH1WCD4UvtpT7UdS01m2gwWXGgK/ljr4C 9QshSNUQ+N5CfxT+1yS1yTTwW5Cu5dNq1Pmqkz17T0uvTF61aazT0k7gOuWtlRFrwujL 2grnwg+8lJoxEp6W/5XawEFZ9CZkKspLicwHA5DUKewtOeH4aqeWmYRMpwfhyqIIl5h0 SXnhROTODHQ87sPoufpQnwRfeRCfmIhD3sDuoHUigdmY94fOHU8iFOWQp/zClKBTA+eS DCzA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:to:references:message-id :content-transfer-encoding:cc:date:in-reply-to:from:subject :mime-version; bh=PHSZRbkmG0Zb2jEBiSePQgWCCtGMw9HYLC7XywLoCtc=; b=h1OaYDpXYUNUr2qD/I8Xh/dR5Krv3yLr5IrKWmH/0tb+qMu0++1fSqb7bIK3mr+X+x 56TxgzZriWRMew9gzUDJyN1i9pv811ythjUrTjv/ky3MwzvVvZzqx3TBgKzzYV26UvkI 1VULHCMps40huj8DjrGpUSjQWwHmdemkRV81fmSFV5sjc6cRnZKDi6OqOUWhPhZ0J4Kg sT/ZsG/tmyMIDteMNTcGNK756cBs79tzIzR5J3T+t2NcnttENb3XNAnJgRjgJfD/AreP nqYFtFp0v39gCvaroP1h3jiYMdfH/PYKMgzFWO4fl33ya+g3kOKm6sq7llEEXtQzH43a /2fA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id c5-v6si14945262pgi.211.2018.09.17.00.06.16; Mon, 17 Sep 2018 00:06:32 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=canonical.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727668AbeIQMcG (ORCPT + 99 others); Mon, 17 Sep 2018 08:32:06 -0400 Received: from youngberry.canonical.com ([91.189.89.112]:42144 "EHLO youngberry.canonical.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726652AbeIQMcF (ORCPT ); Mon, 17 Sep 2018 08:32:05 -0400 Received: from mail-pg1-f200.google.com ([209.85.215.200]) by youngberry.canonical.com with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.76) (envelope-from ) id 1g1nbb-0003pB-Oz for linux-kernel@vger.kernel.org; Mon, 17 Sep 2018 07:05:59 +0000 Received: by mail-pg1-f200.google.com with SMTP id v195-v6so6091322pgb.0 for ; Mon, 17 Sep 2018 00:05:59 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=PHSZRbkmG0Zb2jEBiSePQgWCCtGMw9HYLC7XywLoCtc=; b=fQSCu1QFvvrUD6qP0kNxiTAzWKVBvu+qfPd3cFYDdZp+r5ejKnVTuKx2n8OhA3qBgz 9hcHn8tgXgzi8yfnxEqNMCrm6LQBLu+PjEbVJrLtn+NQbOgOwEO1hjl1V2w8O/vMflEA 2I9HhyzzCeaTQ/zzbFttbdwEKUIo8vSgUJaP3J6WkLsf/iSsvsxiCb3xpphWhcfxDLKf GIGdjZ+Yb5HOsV0ljrN2zUDWrWTweeI0B+8HTEy95QjqPcrS3iPkseH2VqhdGOn/C1sO 9Fr8Jkpb8fjXd2LEQHL0+tETgJhbmW14JbYAc6hLP6vA7SivmBBTtf8f/DD5ghgIwbBy CRJg== X-Gm-Message-State: APzg51C5UXCLx9ZDU0Ee9Bg2Py0cGyRZBQWmFz1eRqAVpumOvgBZ5OCp MtAuNnNbHHAz0qaqAw+fVG4oJLoKtHjsI//g1z2sokaKo7GY1lvhzt4DkoOMzTQf3b2sjLl7pln /gzOmuJ/lnevc95onjj3sO0Y9EnSrkCMoan9k3ZbtIA== X-Received: by 2002:a17:902:47:: with SMTP id 65-v6mr23062649pla.293.1537167958353; Mon, 17 Sep 2018 00:05:58 -0700 (PDT) X-Received: by 2002:a17:902:47:: with SMTP id 65-v6mr23062605pla.293.1537167957972; Mon, 17 Sep 2018 00:05:57 -0700 (PDT) Received: from [192.168.1.206] (220-133-187-190.HINET-IP.hinet.net. [220.133.187.190]) by smtp.gmail.com with ESMTPSA id w5-v6sm16770209pfn.44.2018.09.17.00.05.54 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 17 Sep 2018 00:05:56 -0700 (PDT) Content-Type: text/plain; charset=us-ascii; delsp=yes; format=flowed Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\)) Subject: Re: [PATCH] usb: core: safely deal with the dynamic quirk lists From: Kai-Heng Feng In-Reply-To: <20180914085816.10888-1-harry.pan@intel.com> Date: Mon, 17 Sep 2018 15:05:51 +0800 Cc: LKML , gs0622@gmail.com, jongpil19.jung@samsung.com, rajatja@chromium.org, Greg KH , Alan Stern , Felipe Balbi , snecknico@gmail.com, jackstocker.93@gmail.com, oneukum@suse.com, linux-usb@vger.kernel.org Content-Transfer-Encoding: 7bit Message-Id: <8950C3C8-AF9B-49DF-BE29-5F6892FCCEC8@canonical.com> References: <20180914085816.10888-1-harry.pan@intel.com> To: Harry Pan X-Mailer: Apple Mail (2.3445.9.1) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org at 16:58, Harry Pan wrote: > Applying dynamic usbcore quirks in early booting when the slab is > not yet ready would cause kernel panic of null pointer dereference > because the quirk_count has been counted as 1 while the quirk_list > was failed to allocate. > > i.e., > [ 1.044970] BUG: unable to handle kernel NULL pointer dereference > at (null) > [ 1.044995] IP: [] usb_detect_quirks+0x88/0xd1 > [ 1.045016] PGD 0 > [ 1.045026] Oops: 0000 [#1] PREEMPT SMP > [ 1.046986] gsmi: Log Shutdown Reason 0x03 > [ 1.046995] Modules linked in: > [ 1.047008] CPU: 0 PID: 81 Comm: kworker/0:3 Not tainted 4.4.154 #28 > [ 1.047016] Hardware name: Google Coral/Coral, BIOS > Google_Coral.10068.27.0 12/04/2017 > [ 1.047028] Workqueue: usb_hub_wq hub_event > [ 1.047037] task: ffff88017a321c80 task.stack: ffff88017a384000 > [ 1.047044] RIP: 0010:[] [] > usb_detect_quirks+0x88/0xd1 > > To tackle this odd, let's balance the quirk_count to 0 when the kcalloc > call fails, and defer the quirk setting into a lower level callback > which ensures that the kernel memory management has been initialized. > > Fixes: 027bd6cafd9a ("usb: core: Add "quirks" parameter for usbcore") > > Signed-off-by: Harry Pan Thanks for the catch! This issue doesn't appear when usbcore is built as module. Acked-by: Kai-Heng Feng > --- > drivers/usb/core/quirks.c | 3 ++- > 1 file changed, 2 insertions(+), 1 deletion(-) > > diff --git a/drivers/usb/core/quirks.c b/drivers/usb/core/quirks.c > index 097057d2eacf..1fe9843fb9c8 100644 > --- a/drivers/usb/core/quirks.c > +++ b/drivers/usb/core/quirks.c > @@ -58,6 +58,7 @@ static int quirks_param_set(const char *val, const > struct kernel_param *kp) > quirk_list = kcalloc(quirk_count, sizeof(struct quirk_entry), > GFP_KERNEL); > if (!quirk_list) { > + quirk_count = 0; > mutex_unlock(&quirk_mutex); > return -ENOMEM; > } > @@ -154,7 +155,7 @@ static struct kparam_string quirks_param_string = { > .string = quirks_param, > }; > > -module_param_cb(quirks, &quirks_param_ops, &quirks_param_string, 0644); > +device_param_cb(quirks, &quirks_param_ops, &quirks_param_string, 0644); > MODULE_PARM_DESC(quirks, "Add/modify USB quirks by specifying quirks=vendorID:productID:quirks"); > > /* Lists of quirky USB devices, split in device quirks and interface quirks. > -- > 2.16.4