Re: [PATCH v3] media: mxl111sf: change mutex_init() location

From: Pavel Skripkin
Date: Sun Sep 12 2021 - 11:50:01 EST

Next message: Len Baker: "[PATCH] i3c/master/mipi-i3c-hci: Prefer kcalloc over open coded arithmetic"
Previous message: Mark Smith: "Re: [PATCH] net: ipv6: don't generate link-local address in any addr_gen_mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 8/19/21 13:42, Pavel Skripkin wrote:

Syzbot reported, that mxl111sf_ctrl_msg() uses uninitialized
mutex. The problem was in wrong mutex_init() location.

Previous mutex_init(&state->msg_lock) call was in ->init() function, but
dvb_usbv2_init() has this order of calls:

dvb_usbv2_init()
dvb_usbv2_adapter_init()
dvb_usbv2_adapter_frontend_init()
props->frontend_attach()

props->init()

Since mxl111sf_* devices call mxl111sf_ctrl_msg() in ->frontend_attach()
internally we need to initialize state->msg_lock before
frontend_attach(). To achieve it, ->probe() call added to all mxl111sf_*
devices, which will simply initiaize mutex.

Reported-and-tested-by: syzbot+5ca0bf339f13c4243001@xxxxxxxxxxxxxxxxxxxxxxxxx
Fixes: 8572211842af ("[media] mxl111sf: convert to new DVB USB")
Signed-off-by: Pavel Skripkin <paskripkin@xxxxxxxxx>

Hi, Sean!

Did you have a chance to review this patch? Thank you :)

With regards,
Pavel Skripkin

Next message: Len Baker: "[PATCH] i3c/master/mipi-i3c-hci: Prefer kcalloc over open coded arithmetic"
Previous message: Mark Smith: "Re: [PATCH] net: ipv6: don't generate link-local address in any addr_gen_mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]