Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
SUNLIGHT: pinctrl-intel: Fix NULL pointer dereference
Description: - On an Elkhart Lake based POS hardware prototype, I got this Oops: [ 1.587455] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 1.587460] #PF: supervisor read access in kernel mode [ 1.587461] #PF: error_code(0x0000) - not-present page [ 1.587462] PGD 0 P4D 0 [ 1.587465] Oops: 0000 [#1] SMP NOPTI [ 1.587467] CPU: 3 PID: 345 Comm: systemd-udevd Not tainted 5.15.0-rc2 #1 [ 1.587470] Hardware name: Insyde ElkhartLake/Type2 - Board Product Name1, BIOS F340V030(F340-030) 08/27/2021 [ 1.587471] RIP: 0010:strcmp+0xc/0x20 [ 1.587476] Code: 06 49 89 f8 48 83 c6 01 48 83 c7 01 88 47 ff 84 c0 75 eb 4c 89 c0 c3 0f 1f 80 00 00 00 00 31 c0 eb 08 48 83 c0 01 84 d2 74 0f <0f> b6 14 07 3a 14 06 74 ef 19 c0 83 c8 01 c3 31 c0 c3 66 90 48 85 [ 1.587478] RSP: 0018:ffffbc4f4031bc68 EFLAGS: 00010246 [ 1.587480] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffbc4f4031bc40 [ 1.587482] RDX: 0000000000000000 RSI: ffffffffc00b7c3f RDI: 0000000000000000 [ 1.587483] RBP: ffffffffc00bb0e0 R08: ffff945184f98d90 R09: ffff945184f98d90 [ 1.587484] R10: ffff94518c24fd00 R11: 0000000000000000 R12: ffffffffc00b9be0 [ 1.587485] R13: 0000000000000000 R14: 00007f9dfe55836b R15: ffffbc4f4031be60 [ 1.587487] FS: 00007f9dfe186c00(0000) GS:ffff945307f80000(0000) knlGS:0000000000000000 [ 1.587488] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1.587490] CR2: 0000000000000000 CR3: 000000010ec26000 CR4: 0000000000350ee0 [ 1.587491] Call Trace: [ 1.587495] intel_pinctrl_get_soc_data+0x62/0xb0 [ 1.587500] intel_pinctrl_probe_by_uid+0xe/0x30 [ 1.587502] platform_probe+0x54/0xb0 [ 1.587507] really_probe+0x1f2/0x3f0 [ 1.587509] ? pm_runtime_barrier+0x43/0x80 [ 1.587512] __driver_probe_device+0xfe/0x180 [ 1.587514] driver_probe_device+0x1e/0x90 [ 1.587516] __driver_attach+0xc0/0x1c0 [ 1.587518] ? __device_attach_driver+0xe0/0xe0 [ 1.587519] ? __device_attach_driver+0xe0/0xe0 [ 1.587521] bus_for_each_dev+0x75/0xc0 [ 1.587525] bus_add_driver+0x12b/0x1e0 [ 1.587527] driver_register+0x8f/0xe0 [ 1.587529] ? 0xffffffffc00be000 [ 1.587531] do_one_initcall+0x41/0x1d0 [ 1.587535] ? kmem_cache_alloc_trace+0x179/0x290 [ 1.587539] do_init_module+0x5c/0x260 [ 1.587542] __do_sys_init_module+0x12e/0x1b0 [ 1.587545] do_syscall_64+0x59/0x80 [ 1.587549] ? exc_page_fault+0x72/0x150 [ 1.587551] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1.587555] RIP: 0033:0x7f9dfe3f1fbe [ 1.587557] Code: 48 8b 0d 5d 2e 0e 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 49 89 ca b8 af 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 2a 2e 0e 00 f7 d8 64 89 01 48 [ 1.587558] RSP: 002b:00007ffc6d730128 EFLAGS: 00000246 ORIG_RAX: 00000000000000af [ 1.587560] RAX: ffffffffffffffda RBX: 00005622cd061ae0 RCX: 00007f9dfe3f1fbe [ 1.587562] RDX: 00007f9dfe55836b RSI: 00000000000073c1 RDI: 00007f9dfe08c010 [ 1.587563] RBP: 00007f9dfe08c010 R08: 00007f9dfe0ee000 R09: 0000000000000000 [ 1.587564] R10: 000000000000e791 R11: 0000000000000246 R12: 00007f9dfe55836b [ 1.587565] R13: 0000000000000000 R14: 0000000000000007 R15: 00005622cd061ae0 [ 1.587567] Modules linked in: pinctrl_elkhartlake(+) [ 1.587570] CR2: 0000000000000000 [ 1.587572] ---[ end trace 57cca7635b10fc01 ]--- It's probably a firmware bug, so be overly protective: * check whether struct intel_pinctrl_soc_data **table is NULL before dereferencing it, and * check that none of the arguments to strcmp() are NULL Bug: N/A Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> Signed-off-by: Ionut Nechita <ionut_n2001@yahoo.com> Change-Id: I8497f325ddefb9bda577bd30029ca72fe181d296
- Loading branch information
1 parent
3dd6e7e
commit d469f18