回复: 回复: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port

2020-08-03 Thread Zhang, Qiang
发件人: Takashi Iwai 发送时间: 2020年8月3日 14:16 收件人: Zhang, Qiang 抄送: pe...@perex.cz; ti...@suse.com; alsa-de...@alsa-project.org; linux-kernel@vger.kernel.org 主题: Re: 回复: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port On Mon, 03

Re: 回复: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port

2020-08-02 Thread Takashi Iwai
On Mon, 03 Aug 2020 03:35:05 +0200, Zhang, Qiang wrote: > > >Thanks for the patch. But I'm afraid that this change would break the > >existing behavior and might have a bad side-effect. > > >It's likely the same issue as reported in another syzkaller report > >("KASAN: invalid-free in snd_seq_po

回复: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port

2020-08-02 Thread Zhang, Qiang
发件人: Takashi Iwai 发送时间: 2020年8月1日 17:39 收件人: Zhang, Qiang 抄送: pe...@perex.cz; ti...@suse.com; alsa-de...@alsa-project.org; linux-kernel@vger.kernel.org 主题: Re: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port On Sat, 01 Aug

Re: [PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port

2020-08-01 Thread Takashi Iwai
On Sat, 01 Aug 2020 08:24:03 +0200, wrote: > > From: Zhang Qiang > > There is a potential race window,when a task acquire "src->list_mutex" > write sem,traverse the linked list to find "subs" objects through > parameter "info" in snd_seq_port_disconnect and then release this > write sem, before

[PATCH] ALSA: seq: KASAN: use-after-free Read in delete_and_unsubscribe_port

2020-07-31 Thread qiang.zhang
From: Zhang Qiang There is a potential race window,when a task acquire "src->list_mutex" write sem,traverse the linked list to find "subs" objects through parameter "info" in snd_seq_port_disconnect and then release this write sem, before this task acquire write sem again,this write sem may be ac