Re: [PATCH 3/3] libiscsi: fix iscsi_task use after free

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 12/15/20 3:53 PM, Mike Christie wrote:

@@ -1990,8 +1993,11 @@ enum blk_eh_timer_return iscsi_eh_cmd_timed_out(struct scsi_cmnd *sc)
  		 * so let timeout code complete it now.
  		 */
  		rc = BLK_EH_DONE;
+		spin_unlock(&session->back_lock);
  		goto done;
  	}
+	__iscsi_get_task(task);
+	spin_unlock(&session->back_lock);
if (session->state != ISCSI_STATE_LOGGED_IN) { 
  		/*


Just below this we loop over active tasks and access their scsi_cmnd,
so that will need to be fixed too. I'm going to send a new version
of this patchset.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [SCSI Target Devel]     [Linux SCSI Target Infrastructure]     [Kernel Newbies]     [IDE]     [Security]     [Git]     [Netfilter]     [Bugtraq]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux ATA RAID]     [Linux IIO]     [Samba]     [Device Mapper]

  Powered by Linux