On Mon, Jul 03, 2017 at 10:59:17AM +0200, Juergen Gross wrote: > The be structure must not be freed when freeing the blkif structure > isn't done. Otherwise a use-after-free of be when unmapping the ring > used for communicating with the frontend will occur in case of a > late call of xenblk_disconnect() (e.g. due to an I/O still active > when trying to disconnect). > > Signed-off-by: Juergen Gross <jgross@xxxxxxxx> > Tested-by: Steven Haigh <netwiz@xxxxxxxxx> > Acked-by: Roger Pau Monné <roger.pau@xxxxxxxxxx> > Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx> > --- > This is a backport of upstream commit 71df1d7ccad1c3. Thanks, applied to 4.9 and 4.11-stable queues. If you want it to go to 4.4, can you please provide a backport for that? thanks, greg k-h