block · 4d01d0bef261d2fba271851a20945ab1dc172cf4 · Upstream / linux-stable

partitions/aix: fix usage of uninitialized lv_info and lvname structures

Mauricio Faria de Oliveira authored 6 years ago

[ Upstream commit 14cb2c8a ]

The if-block that sets a successful return value in aix_partition()
uses 'lvip[].pps_per_lv' and 'n[].name' potentially uninitialized.

For example, if 'numlvs' is zero or alloc_lvn() fails, neither is
initialized, but are used anyway if alloc_pvd() succeeds after it.

So, make the alloc_pvd() call conditional on their initialization.

This has been hit when attaching an apparently corrupted/stressed
AIX LUN, misleading the kernel to pr_warn() invalid data and hang.

    [...] partition (null) (11 pp's found) is not contiguous
    [...] partition (null) (2 pp's found) is not contiguous
    [...] partition (null) (3 pp's found) is not contiguous
    [...] partition (null) (64 pp's found) is not contiguous

Fixes: 6ceea22b

 ("partitions: add aix lvm partition support files")
Signed-off-by: Mauricio Faria de Oliveira <mfo@canonical.com>
Signed-off-by: Jens Axboe <axboe@ker...

c919a682

Name	Last commit	Last update
..
partitions	partitions/aix: fix usage of uninitialized lv_info and lvname structures	6 years ago
Kconfig	block: Add T10 Protection Information functions	10 years ago
Kconfig.iosched	blkcg: make CONFIG_BLK_CGROUP bool	13 years ago
Makefile	block: Add T10 Protection Information functions	10 years ago
bio-integrity.c	bio-integrity: Do not allocate integrity context for bio w/o data	7 years ago
bio.c	fix unbalanced page refcounting in bio_map_user_iov	7 years ago
blk-cgroup.c	blkcg: fix gendisk reference leak in blkg_conf_prep()	9 years ago
blk-cgroup.h	blkcg: remove blkcg->id	10 years ago
blk-core.c	block: Relax a check in blk_start_queue()	7 years ago
blk-exec.c	blk-mq: avoid infinite recursion with the FUA flag	10 years ago
blk-flush.c	blk-mq: fix race between timeout and freeing request	7 years ago
blk-integrity.c	block: Don't merge requests if integrity flags differ	10 years ago
blk-ioc.c	block: Substitute rcu_access_pointer() for rcu_dereference_raw()	11 years ago
blk-iopoll.c	Merge branch 'locking-core-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip into next	11 years ago
blk-lib.c	block/blk-lib.c: make __blkdev_issue_zeroout static	11 years ago
blk-map.c	block: remove struct request buffer member	11 years ago
blk-merge.c	Fix bug in blk_rq_merge_ok	10 years ago
blk-mq-cpu.c	blk-mq: add file comments and update copyright notices	11 years ago
blk-mq-cpumap.c	blk-mq: use 'nr_cpu_ids' as highest CPU ID count for hwq <-> cpu map	10 years ago
blk-mq-sysfs.c	blk-mq: fix buffer overflow when reading sysfs file of 'pending'	9 years ago
blk-mq-tag.c	blk-mq: fix race between timeout and freeing request	7 years ago
blk-mq-tag.h	blk-mq: fix race between timeout and freeing request	7 years ago
blk-mq.c	blk-mq: fix race between timeout and freeing request	7 years ago
blk-mq.h	block: introduce blk_init_flush and its pair	10 years ago
blk-settings.c	sd: Fix maximum I/O size for BLOCK_PC requests	9 years ago
blk-softirq.c
blk-sysfs.c
blk-tag.c
blk-throttle.c
blk-timeout.c
blk.h
bounce.c
bsg-lib.c
bsg.c
cfq-iosched.c
cmdline-parser.c
compat_ioctl.c
deadline-iosched.c
elevator.c
genhd.c
ioctl.c
ioprio.c
noop-iosched.c
partition-generic.c
scsi_ioctl.c
t10-pi.c

GitLab

Menu

Download source code

Download this directory