Return-Path: <linux-kernel-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 07C65C636D4
	for <linux-kernel@archiver.kernel.org>; Fri, 10 Feb 2023 14:12:48 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S231748AbjBJOMq (ORCPT <rfc822;linux-kernel@archiver.kernel.org>);
        Fri, 10 Feb 2023 09:12:46 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:52950 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231881AbjBJOMp (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 10 Feb 2023 09:12:45 -0500
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 329D721A27
        for <linux-kernel@vger.kernel.org>; Fri, 10 Feb 2023 06:11:40 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1676038299;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         in-reply-to:in-reply-to:references:references;
        bh=YoBs3vIDWvzQKvR/oTtsO0zOrYgmC2p612zkdiN8nZI=;
        b=eeYcyMuns//uMleHmbpe1u+Uz3AuXDJGFoA3GjAph46Ause93rvHLOC3dWILx8bI/pFo8L
        6gbYKdrecRoUyo76DOWkAQ2CZzhV9bOWnSnFEe1e8Culdz7jrIo6EQMxU3kdx92bcu4+GV
        M4+F5B8/GKxnpTCgXjaUyMihygxBek4=
Received: from mail-yw1-f200.google.com (mail-yw1-f200.google.com
 [209.85.128.200]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id
 us-mta-618-Jzpf-TLmMDWA7uYCV3QG8A-1; Fri, 10 Feb 2023 09:11:38 -0500
X-MC-Unique: Jzpf-TLmMDWA7uYCV3QG8A-1
Received: by mail-yw1-f200.google.com with SMTP id 00721157ae682-52ec2c6b694so35573727b3.19
        for <linux-kernel@vger.kernel.org>; Fri, 10 Feb 2023 06:11:38 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=YoBs3vIDWvzQKvR/oTtsO0zOrYgmC2p612zkdiN8nZI=;
        b=llG5Y3fCXjHRTaT0negXZOSZpXWy2LBjQ7EQgJ3Wdbp7MQhDw3Y3Y/ZwTtYjEgQ6Fv
         vhwiHmzutfO0MgseddTd/JBdg+frDK3eBxZGVcYUPbKdGFMALk6riYBWzAaKajH+THVb
         TaPi5mA22VpWDbRLu/uvftYhzv1gdX3eJOQCpyX0n9V4Fr5g4AagV1i/wQCHcoi3K9PG
         XkJywPZS5fLUJ3VjGFSPhUd3vT8eQlB4fr6fsiK3QxkUTJaM4pJLOaiIBOlzYv16SRwm
         gSQskjesTkORYhVmrfnwhzkrP8dg9iCX0kmkp1W7Xj2nOyN+59eoNFyX61/YQvjwVthN
         YwxA==
X-Gm-Message-State: AO0yUKV0cgycMfL6qdgFUu0HqMBWqumxwUKZS8cD2xFZ2qw2SOFL4822
        0sfL9mkgX5jTD35LpsYIkoHKWg3cJqr1i2nWL/7sUyu81XXd2HZW15ttm7hEEmtF8WRnlY14qoX
        GaGKjweB3l2BUpQNK1YooSAHqYFXk0eFBaL51MeMbyBw5Lg==
X-Received: by 2002:a25:abee:0:b0:7e8:ee11:9717 with SMTP id v101-20020a25abee000000b007e8ee119717mr2097766ybi.495.1676038297770;
        Fri, 10 Feb 2023 06:11:37 -0800 (PST)
X-Google-Smtp-Source: AK7set97Zh//MtW7TNLPI8dlq3k+OjCqIRogXFhJt0v99VmllmE5FlWZ7GIsIhHXou5s5pN4AzV2Zzus5SSziM/r4zQ=
X-Received: by 2002:a25:abee:0:b0:7e8:ee11:9717 with SMTP id
 v101-20020a25abee000000b007e8ee119717mr2097763ybi.495.1676038297528; Fri, 10
 Feb 2023 06:11:37 -0800 (PST)
MIME-Version: 1.0
References: <20230125-hid-unregister-leds-v3-0-0a52ac225e00@diag.uniroma1.it>
 <20230125-hid-unregister-leds-v3-1-0a52ac225e00@diag.uniroma1.it> <20230210132017.2497-1-hdanton@sina.com>
In-Reply-To: <20230210132017.2497-1-hdanton@sina.com>
From:   Benjamin Tissoires <benjamin.tissoires@redhat.com>
Date:   Fri, 10 Feb 2023 15:11:26 +0100
Message-ID: <CAO-hwJJKCvbdjuG4wER6sHozoLA4F2OTUUpHORtj6KM0q-avzA@mail.gmail.com>
Subject: Re: [PATCH v3 1/2] HID: bigben: use spinlock to safely schedule workers
To:     Hillf Danton <hdanton@sina.com>
Cc:     Pietro Borrello <borrello@diag.uniroma1.it>,
        Jiri Kosina <jikos@kernel.org>, Hanno Zulla <kontakt@hanno.de>,
        linux-input@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Fri, Feb 10, 2023 at 2:24 PM Hillf Danton <hdanton@sina.com> wrote:
>
> On Thu, 09 Feb 2023 23:58:55 +0000 Pietro Borrello <borrello@diag.uniroma1.it>
> > Use spinlocks to deal with workers introducing a wrapper
> > bigben_schedule_work(), and several spinlock checks.
> > Otherwise, bigben_set_led() may schedule bigben->worker after the
> > structure has been freed, causing a use-after-free.
> >
> > Fixes: 4eb1b01de5b9 ("HID: hid-bigbenff: fix race condition for scheduled work during removal")
>
> Given the flag added in 4eb1b01de5b9 and the spinlock added in this
> patchset, devm_led_classdev_register() looks to not work for you.

Actually, looking at the code now, it is clear that we need that lock.
The current code is happily changing the struct bigben_device from
multiple contexts, and pulls that without any barrier in the work
struct which should produce some interesting results :)

And we can probably abuse that lock to prevent scheduling a new work
as it is done in hid-playstation.c

I'll comment in the patch which parts need to be changed, because it
is true that this patch is definitely not mergeable as such and will
need another revision.

>
> How about replacing the advanced devm_ method with the traditional plain
> pair of led_classdev_un/register(), with the flag mentioned cut off but
> without bothering to add another lock?
>

As mentioned above, the lock is needed anyway, and will probably need
to be added in a separate patch.
Reverting to a non devm version of the led class would complexify the
driver for the error paths, and is probably not the best move IMO.

Cheers,
Benjamin