Received: by 2002:ab2:2994:0:b0:1ef:ca3e:3cd5 with SMTP id n20csp10459lqb; Thu, 14 Mar 2024 04:09:48 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCX/dUrACr0nAUKNCKSH568RXe1SMAUOTtbsHpkF5M240or8GSOjK/9vYsMzyGylPHg+RZJxr/XLywz8GtKkcGDP6gEb/b/SNrfZ11mrPQ== X-Google-Smtp-Source: AGHT+IEoeih680VFjKMnCqU9CKwrHmd1Tbe7eb1HEjH+RwSIGA5so8m5MiStLl3GrazSRfjpgAJW X-Received: by 2002:a05:620a:984:b0:788:1c3e:6035 with SMTP id x4-20020a05620a098400b007881c3e6035mr1464843qkx.62.1710414587747; Thu, 14 Mar 2024 04:09:47 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1710414587; cv=pass; d=google.com; s=arc-20160816; b=dsfqpwcUQI4Dm5L29DQkXQUdJh/fhoZFaNi1u29K3A7gdE+P3OYnDeljfzzWMt8Aq5 FTypOnfGgPBVXe0DI0NmuK7HdDio/uqcq1j0fGe+tOtNrtDkLi8F3d1Lf9OiQ4BURaEc yo7FCs8Bj9p0VELaML6iyNGuKQtohUAaPLD7JJNbk27rOw0X5+Qn1l1EFPxWfrSD4zkH dA5p4kLZgtT9ow99A9D/DcU34xTPF3BWJMFG6ULaSsof+lnoKYkkCeD+KLq3l/pTvwKL xgSPxwySkyxb2vgEQ/n9xVMdlGh8uHOAdp+y+ZlfXS5YpJIedVjRtYwEOwlTc5fxVTkV K+jw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=in-reply-to:content-transfer-encoding:content-disposition :mime-version:list-unsubscribe:list-subscribe:list-id:precedence :references:message-id:subject:cc:to:from:date:dkim-signature; bh=LfmFDHUf7o5aGB3dbvHKoi7oP2ZGHKxCzR9uIaAhXB4=; fh=k7IHWndiszun6ZBq18V40+1cfesfCq8XTph/VVkrzYw=; b=kEtUorH+mv8YLtzsLqD5brfdDaXtZcbP06S6dKEaKCZYq7PHcqwv+tDN8TuzVyI70y UyDilZ7NdnTTeubD7awXmxQ5uY7fN6Px7NUgt9nkbXLUpE5Z6NDEBYXCiP4y5Lq5qj1A +wXaHwikWzat7+CUE2pOOA+IHmJrYIzmDhBy4tvSpus0kvOcwf9AE91qNQ3YFDE2YgPs gfhGyIMjwKFFs5Ech3NufnV4fzNNP8kvb5q67CunRt7NmVUuDMK7sc7+efA963LFZC7C 0YXkkThMU2yhmoRNscalQJYwTpNn9vSDSp1sIPie/QCFGwEeYWB5wOXP3f4SGLzTmUA1 8Jug==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=moDtbAil; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-103158-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-103158-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223]) by mx.google.com with ESMTPS id u8-20020ae9c008000000b00787ecff64casi1272027qkk.287.2024.03.14.04.09.47 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 14 Mar 2024 04:09:47 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-103158-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=moDtbAil; arc=pass (i=1 dkim=pass dkdomain=kernel.org); spf=pass (google.com: domain of linux-kernel+bounces-103158-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-103158-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id 7A8711C21574 for ; Thu, 14 Mar 2024 11:09:47 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 742976EB5A; Thu, 14 Mar 2024 11:09:43 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="moDtbAil" Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9B1A06EB53 for ; Thu, 14 Mar 2024 11:09:42 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1710414582; cv=none; b=XCwPQ4oN3T20r9Iy1InttplWBdl2oYFwY8E+o/j1wnH+KCUn1TU0tO39K4JF8gZAPK7Cy5jr64/8wEgBUmasC6xLR97DRdpXA/fEvdNHMl+bcBWCdm5pP8ThujJaBOTevDfXuvBhdzLGAtjRrjChWMMyiPi8ywE6mJHhuXT+EmQ= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1710414582; c=relaxed/simple; bh=RaseM/+KoqOPYNmXu1HCiER1tZgWMTC85atLNfK0kqM=; h=Date:From:To:Cc:Subject:Message-ID:References:MIME-Version: Content-Type:Content-Disposition:In-Reply-To; b=XqyXPPT8wi04ZOw6HvNsywXx1lG52CRbFJzShLNClkEtljlTbCz8dZUt2Q2B6vY8qUUkMVMBRLKBIE5db28d8PPGVA69YouvhqIB07PkrmB2/aSWTefPgYQihNMtg9aSOHxzoQhLCbzTMQaMLz5uUH9QwntM+BFQ8h1xUrEZFeY= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b=moDtbAil; arc=none smtp.client-ip=10.30.226.201 Received: by smtp.kernel.org (Postfix) with ESMTPSA id EDC2CC433F1; Thu, 14 Mar 2024 11:09:40 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1710414582; bh=RaseM/+KoqOPYNmXu1HCiER1tZgWMTC85atLNfK0kqM=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=moDtbAilM7o1ksXGdCj1d5zYc0JpDsUwsaE3PufyJkNl2X5/SgtMCqKEXbKB/Phe6 aCFmozE9ar2kMxt5+mISFKncM7Lzc0b2sEYSqhGTpwsCZCy3hLekEDRVX6JJzYc7po ep2BqVh3RP2zfslNmYho2TQovdJh1otUqD3v9mn9LX0keJ7QXBD6RLTAl8nqkqan9p 9jlwjOLk8FhbjKoxjvTB7NbngEJ7oKP47z+rRNPoIvP9DSmScveT77eYHbPNYnqMri s2bqCTkZEK30jDZh/l/zDXwnMJnCSEiX2jlCYkrVTZ+1wR4bSLRegx0gX/3dhe6M5w F5DVA15MCCdbA== Date: Thu, 14 Mar 2024 11:09:38 +0000 From: Lee Jones To: Michal Hocko Cc: cve@kernel.org, linux-kernel@vger.kernel.org, Greg Kroah-Hartman , Felix Kuehling Subject: Re: CVE-2024-26628: drm/amdkfd: Fix lock dependency warning Message-ID: <20240314110938.GM1522089@google.com> References: <2024030649-CVE-2024-26628-f6ce@gregkh> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: On Fri, 08 Mar 2024, Michal Hocko wrote: > On Wed 06-03-24 06:46:11, Greg KH wrote: > [...] > > Possible unsafe locking scenario: > > > > CPU0 CPU1 > > ---- ---- > > lock(&svms->lock); > > lock(&mm->mmap_lock); > > lock(&svms->lock); > > lock((work_completion)(&svm_bo->eviction_work)); > > > > I believe this cannot really lead to a deadlock in practice, because > > svm_range_evict_svm_bo_worker only takes the mmap_read_lock if the BO > > refcount is non-0. That means it's impossible that svm_range_bo_release > > is running concurrently. However, there is no good way to annotate this. > > OK, so is this even a bug (not to mention a security/weakness)? Looks like the patch fixes a warning which can crash some kernels. So the CVE appears to be fixing that, rather than the impossible deadlock. -- Lee Jones [李琼斯]