Search Linux Wireless

Re: [PATCH] wifi: rtw88: always wait for both firmware loading attempts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Dmitry Antipov <dmantipov@xxxxxxxxx> wrote:

> In 'rtw_wait_firmware_completion()', always wait for both (regular and
> wowlan) firmware loading attempts. Otherwise if 'rtw_usb_intf_init()'
> has failed in 'rtw_usb_probe()', 'rtw_usb_disconnect()' may issue
> 'ieee80211_free_hw()' when one of 'rtw_load_firmware_cb()' (usually
> the wowlan one) is still in progress, causing UAF detected by KASAN.
> 
> Fixes: c8e5695eae99 ("rtw88: load wowlan firmware if wowlan is supported")
> Reported-by: syzbot+6c6c08700f9480c41fe3@xxxxxxxxxxxxxxxxxxxxxxxxx
> Closes: https://syzkaller.appspot.com/bug?extid=6c6c08700f9480c41fe3
> Signed-off-by: Dmitry Antipov <dmantipov@xxxxxxxxx>

1 patch(es) applied to rtw-next branch of rtw.git, thanks.

0e735a4c6137 wifi: rtw88: always wait for both firmware loading attempts

---
https://github.com/pkshih/rtw.git
[Index of Archives]     [Linux Host AP]     [ATH6KL]     [Linux Wireless Personal Area Network]     [Linux Bluetooth]     [Wireless Regulations]     [Linux Netdev]     [Kernel Newbies]     [Linux Kernel]     [IDE]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite Hiking]     [MIPS Linux]     [ARM Linux]     [Linux RAID]

  Powered by Linux