Commit 20042399 authored May 11, 2021 by Ming Lei Committed by Pradeep Pragallapati Oct 24, 2023

BACKPORT: blk-mq: clearing flush request reference in tags->rqs[]



Before we free request queue, clearing flush request reference in
tags->rqs[], so that potential UAF can be avoided.

Based on one patch written by David Jeffery.

Tested-by: John Garry <john.garry@huawei.com>
Reviewed-by: Bart Van Assche <bvanassche@acm.org>
Reviewed-by: David Jeffery <djeffery@redhat.com>
Signed-off-by: Ming Lei <ming.lei@redhat.com&gt;.>

Bug: 197804811
Change-Id: I9600626e807a4eed546c21be808fabed2a9db9b1
[Upstream: cherry picked from commit 364b61818f65045479e42e76ed8dd6f051778280]
[Todd: refactored to avoid breaking KMI ]
Signed-off-by: Pradeep P V K <pragalla@codeaurora.org>
Signed-off-by: Todd Kjos <tkjos@google.com>
Git-commit: c9a3b51b07a03d515e15e0f79d1d1185e341b8f8
Git-repo: https://android.googlesource.com/kernel/common/


Signed-off-by: Pradeep P V K <quic_pragalla@quicinc.com>

parent 02c9fbde

Hide whitespace changes

Inline Side-by-side

Please register or to comment