On Mon, 2013-03-04 at 11:14 -0500, Joe Lawrence wrote: > These changes were applied to scsi.git, branch "misc". This patch > fixes a reference count bug in the SCSI tape driver which can be > reproduced with the following: > > * Boot with slub_debug=FZPU, tape drive attached > * echo 1 > /sys/devices/... tape device pci path .../remove > * Wait for device removal > * echo 1 > /sys/kernel/slab/blkdev_queue/validate > * Slub debug complains about corrupted poison pattern The incorrect reference count fixed by this patch is almost certainly responsible for OOPSes seen with tape devices connected using zfcp on the s390x architecture due to a use-after-free. I was able to reproduce the problem with scsi_debug ptype=1 and slub_debug enabled. So, st device support is broken. With the patch, the problem no longer appears. -Ewan <emilne@xxxxxxxxxx> -- To unsubscribe from this list: send the line "unsubscribe linux-scsi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
