samsung-sm8650/android_kernel_samsung_sm8650-modules
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

qcacmn: Flush Rx diag event work during idle shutdown

Browse Source 
Currently, Rx diag event work is not being flushed during idle shutdown.
This may result in use after free access if the scheduled diag event work
gets the chance to execute after driver modules are closed.

To address this, flush diag events work during idle shutdown.

Change-Id: I348e80d2c86a5e070f0fb67d66b758529fede76c
CRs-Fixed: 2838020
This commit is contained in:
Bapiraju Alla
2020-12-16 10:54:11 +05:30
committed by snandini
parent 2ae7335604
commit 97c6bdfd2a
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
wmi/src/wmi_unified.c
View File

@@ -3182,6 +3182,7 @@ void wmi_unified_detach(struct wmi_unified *wmi_handle)
&soc->wmi_pdev[i]->event_queue);
}
qdf_flush_work(&soc->wmi_pdev[i]->rx_diag_event_work);
buf = qdf_nbuf_queue_remove(
&soc->wmi_pdev[i]->diag_event_queue);
while (buf) {
@@ -3253,6 +3254,16 @@ wmi_unified_remove_work(struct wmi_unified *wmi_handle)
buf = qdf_nbuf_queue_remove(&wmi_handle->event_queue);
}
qdf_spin_unlock_bh(&wmi_handle->eventq_lock);
/* Remove diag events work */
qdf_flush_work(&wmi_handle->rx_diag_event_work);
qdf_spin_lock_bh(&wmi_handle->diag_eventq_lock);
buf = qdf_nbuf_queue_remove(&wmi_handle->diag_event_queue);
while (buf) {
qdf_nbuf_free(buf);
buf = qdf_nbuf_queue_remove(&wmi_handle->diag_event_queue);
}
qdf_spin_unlock_bh(&wmi_handle->diag_eventq_lock);
}
/**