lisa/android_kernel_xiaomi_sm8350
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
d1ad09db2f
android_kernel_xiaomi_sm8350/drivers/s390/scsi
History
Heiko Carstens d1ad09db2f [SCSI] zfcp: fix use after free bug. 
zfcp_erp_strategy_check_fsfreq() checks if it is safe to access the
fsf_req associated with the erp_action that gets passed. To test if
it is safe it accesses the fsf_req in order to get its index into
the hash list. This is broken since the fsf_req might be freed already
and the read index has no meaning. It could lead to memory corruption.
Fix this by introducing a new zfcp_reqlist_find_safe() method which
just checks if addresses are equal. This is slower, but only gets
called in case of error recovery.

Signed-off-by: Heiko Carstens <heiko.carstens@de.ibm.com>
Signed-off-by: Martin Schwidefsky <schwidefsky@de.ibm.com>
Signed-off-by: Christof Schmitt <christof.schmitt@de.ibm.com>
Signed-off-by: Martin Peschke <mp3@de.ibm.com>
Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>
2008-01-11 18:29:00 -06:00
..
Makefile
zfcp_aux.c [SCSI] zfcp: Fix deadlock when adding invalid LUN 2008-01-11 18:22:40 -06:00
zfcp_ccw.c [SCSI] zfcp: Remove SCSI devices when removing complete adapter 2008-01-11 18:22:40 -06:00
zfcp_dbf.c [SCSI] zfcp: Reduce flood on hba trace 2008-01-11 18:22:40 -06:00
zfcp_def.h [SCSI] zfcp: fix use after free bug. 2008-01-11 18:29:00 -06:00
zfcp_erp.c [SCSI] zfcp: fix use after free bug. 2008-01-11 18:29:00 -06:00
zfcp_ext.h [SCSI] zfcp: whitespace cleanup 2007-10-12 14:47:21 -04:00
zfcp_fsf.c [SCSI] zfcp: whitespace cleanup 2007-10-12 14:47:21 -04:00
zfcp_fsf.h [SCSI] zfcp: whitespace cleanup 2007-10-12 14:47:21 -04:00
zfcp_qdio.c zfcp: sg chaining support 2007-10-16 11:21:00 +02:00
zfcp_scsi.c [SCSI] zfcp: Fix deadlock when adding invalid LUN 2008-01-11 18:22:40 -06:00
zfcp_sysfs_adapter.c
zfcp_sysfs_driver.c
zfcp_sysfs_port.c
zfcp_sysfs_unit.c [SCSI] zfcp: whitespace cleanup 2007-10-12 14:47:21 -04:00