Searched hist:"4989730 f373a199c910f992e2a22325615241b81" (Results 1 – 2 of 2) sorted by relevance
| /optee_os/core/arch/arm/kernel/ |
| H A D | thread_optee_smc.c | 4989730f373a199c910f992e2a22325615241b81 Mon Nov 13 16:42:53 UTC 2023 Jens Wiklander <jens.wiklander@linaro.org> core: arm: check for NULL mobj before thread_rpc_free()
In the SMC and FF-A ABIs check that a mobj representing a shared memory
object isn't NULL before doing an RPC to free it in the normal world
too. For the FF-A ABI it's harmless without this check, but the SMC ABI
may cause an NULL pointer dereference in the OP-TEE kernel driver.
Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>
Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com>
|
| H A D | thread_spmc.c | 4989730f373a199c910f992e2a22325615241b81 Mon Nov 13 16:42:53 UTC 2023 Jens Wiklander <jens.wiklander@linaro.org> core: arm: check for NULL mobj before thread_rpc_free()
In the SMC and FF-A ABIs check that a mobj representing a shared memory
object isn't NULL before doing an RPC to free it in the normal world
too. For the FF-A ABI it's harmless without this check, but the SMC ABI
may cause an NULL pointer dereference in the OP-TEE kernel driver.
Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>
Reviewed-by: Etienne Carriere <etienne.carriere@foss.st.com>
|