[PATCH v3] virtio_blk: Fix an SG

public inbox for linux-block@vger.kernel.org
 help / color / mirror / Atom feed

* [PATCH v3] virtio_blk: Fix an SG_IO regression
@ 2017-10-26  5:30 Bart Van Assche
  2017-10-26  6:16 ` Bart Van Assche
  0 siblings, 1 reply; 2+ messages in thread
From: Bart Van Assche @ 2017-10-26  5:30 UTC (permalink / raw)
  To: Jens Axboe
  Cc: linux-block, Christoph Hellwig, Bart Van Assche,
	Michael S . Tsirkin, Dann Frazier, stable

Avoid that submitting an SG_IO ioctl triggers a kernel oops that
is preceded by:

usercopy: kernel memory overwrite attempt detected to (null) (<null>) (6 bytes)
kernel BUG at mm/usercopy.c:72!

Reported-by: Dann Frazier <dann.frazier@canonical.com>
Fixes: commit ca18d6f769d2 ("block: Make most scsi_req_init() calls implicit")
Signed-off-by: Bart Van Assche <bart.vanassche@wdc.com>
Cc: Michael S. Tsirkin <mst@redhat.com>
Cc: Dann Frazier <dann.frazier@canonical.com>
Cc: <stable@vger.kernel.org> # v4.13
---
 drivers/block/virtio_blk.c | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/drivers/block/virtio_blk.c b/drivers/block/virtio_blk.c
index 34e17ee799be..b44f5b7e68f6 100644
--- a/drivers/block/virtio_blk.c
+++ b/drivers/block/virtio_blk.c
@@ -593,10 +593,18 @@ static int virtblk_map_queues(struct blk_mq_tag_set *set)
 	return blk_mq_virtio_map_queues(set, vblk->vdev, 0);
 }
 
+static void virtblk_initialize_rq(struct request *req)
+{
+	struct virtblk_req *vbr = blk_mq_rq_to_pdu(req);
+
+	scsi_req_init(&vbr->sreq);
+}
+
 static const struct blk_mq_ops virtio_mq_ops = {
 	.queue_rq	= virtio_queue_rq,
 	.complete	= virtblk_request_done,
 	.init_request	= virtblk_init_request,
+	.initialize_rq_fn = virtblk_initialize_rq,
 	.map_queues	= virtblk_map_queues,
 };
 
-- 
2.14.2

^ permalink raw reply related	[flat|nested] 2+ messages in thread

* Re: [PATCH v3] virtio_blk: Fix an SG_IO regression
  2017-10-26  5:30 [PATCH v3] virtio_blk: Fix an SG_IO regression Bart Van Assche
@ 2017-10-26  6:16 ` Bart Van Assche
  0 siblings, 0 replies; 2+ messages in thread
From: Bart Van Assche @ 2017-10-26  6:16 UTC (permalink / raw)
  To: axboe@kernel.dk
  Cc: hch@lst.de, linux-block@vger.kernel.org, mst@redhat.com,
	stable@vger.kernel.org, dann.frazier@canonical.com

T24gVGh1LCAyMDE3LTEwLTI2IGF0IDA3OjMwICswMjAwLCBCYXJ0IFZhbiBBc3NjaGUgd3JvdGU6
DQo+ICtzdGF0aWMgdm9pZCB2aXJ0YmxrX2luaXRpYWxpemVfcnEoc3RydWN0IHJlcXVlc3QgKnJl
cSkNCj4gK3sNCj4gKwlzdHJ1Y3QgdmlydGJsa19yZXEgKnZiciA9IGJsa19tcV9ycV90b19wZHUo
cmVxKTsNCj4gKw0KPiArCXNjc2lfcmVxX2luaXQoJnZici0+c3JlcSk7DQo+ICt9DQoNClBsZWFz
ZSBpZ25vcmUgdjMgLSB0aGUgYnVpbGQgZmFpbHMgd2l0aCB0aGlzIHZlcnNpb24gZm9yDQpDT05G
SUdfVklSVElPX0JMS19TQ1NJPW4uIEknbSB0ZXN0aW5nIHY0IGFuZCB3aWxsIHBvc3QgdjQgbGF0
ZXIgdG9kYXkuDQoNCkJhcnQu

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2017-10-26  6:16 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2017-10-26  5:30 [PATCH v3] virtio_blk: Fix an SG_IO regression Bart Van Assche
2017-10-26  6:16 ` Bart Van Assche

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox