A potential data race in drivers/media/platform/s5p-mfc/

From: Pavel Andrianov
Date: Tue Mar 23 2021 - 02:38:31 EST

Next message: kernel test robot: "drivers/net/ethernet/chelsio/cxgb4/sge.c:2396:13: warning: stack frame size of 1168 bytes in function 'ethofld_xmit'"
Previous message: Christophe Leroy: "Re: [PATCH -next] powerpc: kernel/time.c - cleanup warnings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

s5p_mfc_probe[1] registers an interrupt handler s5p_mfc_irq before compete initialization. For example, the interrupt handler operates
with mfc_ops, which are set up in [2]. So, potentially, the interrupt handler may be executed in parallel with initialization. The question is if the device can produce the interrupts. Its registers are initialized in [3] and there are nothing like "enabling interrupts". So, likely, they are activated. And if interrupts can come, then this is a data race.

Best regards,
Pavel Andrianov
Linux Verification Center, ISPRAS
web:http://linuxtesting.org

[1]https://elixir.bootlin.com/linux/v5.4.106/source/drivers/media/platform/s5p-mfc/s5p_mfc.c#L1299
[2]https://elixir.bootlin.com/linux/v5.4.106/source/drivers/media/platform/s5p-mfc/s5p_mfc_opr.c#L19
[3]https://elixir.bootlin.com/linux/v5.4.106/source/drivers/media/platform/s5p-mfc/s5p_mfc_opr_v6.c#L2229

Next message: kernel test robot: "drivers/net/ethernet/chelsio/cxgb4/sge.c:2396:13: warning: stack frame size of 1168 bytes in function 'ethofld_xmit'"
Previous message: Christophe Leroy: "Re: [PATCH -next] powerpc: kernel/time.c - cleanup warnings"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]