Re: [PATCH UEK4-U7] scsi: qla2xxx: Fix use after free in eh_abort path

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, Jan 11, 2023 at 04:46:48PM -0800, Rajan Shanmugavelu wrote:
> From: Quinn Tran <qutran@xxxxxxxxxxx>
> 
> In eh_abort path driver prematurely exits the call to upper layer. Check
> whether command is aborted / completed by firmware before exiting the call.
> 
> 9 [ffff8b1ebf803c00] page_fault at ffffffffb0389778
>   [exception RIP: qla2x00_status_entry+0x48d]
>   RIP: ffffffffc04fa62d  RSP: ffff8b1ebf803cb0  RFLAGS: 00010082
>   RAX: 00000000ffffffff  RBX: 00000000000e0000  RCX: 0000000000000000
>   RDX: 0000000000000000  RSI: 00000000000013d8  RDI: fffff3253db78440
>   RBP: ffff8b1ebf803dd0   R8: ffff8b1ebcd9b0c0   R9: 0000000000000000
>   R10: ffff8b1e38a30808  R11: 0000000000001000  R12: 00000000000003e9
>   R13: 0000000000000000  R14: ffff8b1ebcd9d740  R15: 0000000000000028
>   ORIG_RAX: ffffffffffffffff  CS: 0010  SS: 0018
> 10 [ffff8b1ebf803cb0] enqueue_entity at ffffffffafce708f
> 11 [ffff8b1ebf803d00] enqueue_task_fair at ffffffffafce7b88
> 12 [ffff8b1ebf803dd8] qla24xx_process_response_queue at ffffffffc04fc9a6
> [qla2xxx]
> 13 [ffff8b1ebf803e78] qla24xx_msix_rsp_q at ffffffffc04ff01b [qla2xxx]
> 14 [ffff8b1ebf803eb0] __handle_irq_event_percpu at ffffffffafd50714
> 
> Link: https://lore.kernel.org/r/20210908164622.19240-10-njavali@xxxxxxxxxxx
> Fixes: f45bca8c5052 ("scsi: qla2xxx: Fix double scsi_done for abort path")
> Cc: stable@xxxxxxxxxxxxxxx
> Reviewed-by: Himanshu Madhani <himanshu.madhani@xxxxxxxxxx>
> Co-developed-by: David Jeffery <djeffery@xxxxxxxxxx>
> Signed-off-by: David Jeffery <djeffery@xxxxxxxxxx>
> Co-developed-by: Laurence Oberman <loberman@xxxxxxxxxx>
> Signed-off-by: Laurence Oberman <loberman@xxxxxxxxxx>
> Signed-off-by: Quinn Tran <qutran@xxxxxxxxxxx>
> Signed-off-by: Nilesh Javali <njavali@xxxxxxxxxxx>
> Signed-off-by: Martin K. Petersen <martin.petersen@xxxxxxxxxx>
> 
> Orabug: 34970763
> 
> (cherry picked from commit 3d33b303d4f3b74a71bede5639ebba3cfd2a2b4d)
> Signed-off-by: Rajan Shanmugavelu <rajan.shanmugavelu@xxxxxxxxxx>
> ---
>  drivers/scsi/qla2xxx/qla_os.c | 8 +++++---
>  1 file changed, 5 insertions(+), 3 deletions(-)

I do not understand your subject line, sorry.  What stable tree do you
want to see this backport applied to?  It's already in everything newer
than 5.4.y, what tree is it missing in?

thanks,

greg k-h
[Index of Archives]     [Linux Kernel]     [Kernel Development Newbies]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite Hiking]     [Linux Kernel]     [Linux SCSI]

  Powered by Linux