| commit | f575c5d3ebdca3b0482847d8fcba971767754a9e | |
| author | adam radford <aradford@gmail.com> | |
| Thu, 13 Oct 2011 23:01:12 +0000 (13 16:01 -0700) | ||
| committer | James Bottomley <JBottomley@Parallels.com> | |
| Thu, 20 Oct 2011 15:18:17 +0000 (20 10:18 -0500) | ||
| tree | 8f238a30ea2a4d0a9300466e60a8bae85280fd6d | treesnapshot (tar.gz zip) |
| parent | fba63097b8614a4a158226c02eec0318f41cd24f | commitdiff |
[SCSI] megaraid_sas: Fix instance access in megasas_reset_timer
The following patch for megaraid_sas will fix a potential bad pointer access
in megasas_reset_timer(), when a MegaRAID 9265/9285 or 9360/9380 gets a
timeout. megasas_build_io_fusion() sets SCp.ptr to be a struct
megasas_cmd_fusion *, but then megasas_reset_timer() was casting SCp.ptr to be
a struct megasas_cmd *, then trying to access cmd->instance, which is invalid.
Just loading instance from scmd->device->host->hostdata in
megasas_reset_timer() fixes the issue.
Signed-off-by: Adam Radford <aradford@gmail.com>
Cc: stable@kernel.org
Signed-off-by: James Bottomley <JBottomley@Parallels.com>
The following patch for megaraid_sas will fix a potential bad pointer access
in megasas_reset_timer(), when a MegaRAID 9265/9285 or 9360/9380 gets a
timeout. megasas_build_io_fusion() sets SCp.ptr to be a struct
megasas_cmd_fusion *, but then megasas_reset_timer() was casting SCp.ptr to be
a struct megasas_cmd *, then trying to access cmd->instance, which is invalid.
Just loading instance from scmd->device->host->hostdata in
megasas_reset_timer() fixes the issue.
Signed-off-by: Adam Radford <aradford@gmail.com>
Cc: stable@kernel.org
Signed-off-by: James Bottomley <JBottomley@Parallels.com>
| drivers/scsi/megaraid/megaraid_sas_base.c | diffblobblamehistory |