[PATCH] mdadm: fix grow segfault for IMSM

linux-raid.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* [PATCH] mdadm: fix grow segfault for IMSM
@ 2024-03-18 16:28 Mariusz Tkaczyk
  2024-03-22 11:19 ` Mariusz Tkaczyk
  0 siblings, 1 reply; 2+ messages in thread
From: Mariusz Tkaczyk @ 2024-03-18 16:28 UTC (permalink / raw)
  To: linux-raid; +Cc: jes, Mariusz Tkaczyk

If sc is not initialized, there is possibility that sc.pols is not zeroed
and it causes segfault.

Add missing initialization.
Add missing dev_policy_free() in two places.

Fixes: f656201188d7 ("mdadm: drop get_required_spare_criteria()")
Signed-off-by: Mariusz Tkaczyk <mariusz.tkaczyk@linux.intel.com>
---
 Incremental.c | 1 +
 super-intel.c | 9 +++++++--
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/Incremental.c b/Incremental.c
index 958ba9ba7851..83db071214ee 100644
--- a/Incremental.c
+++ b/Incremental.c
@@ -874,6 +874,7 @@ mdadm_status_t incremental_external_test_spare_criteria(struct supertype *st, ch
 	rv = MDADM_STATUS_SUCCESS;
 
 out:
+	dev_policy_free(sc.pols);
 	dup->ss->free_super(dup);
 	free(dup);
 
diff --git a/super-intel.c b/super-intel.c
index 7714045575b2..32eceb155886 100644
--- a/super-intel.c
+++ b/super-intel.c
@@ -11518,10 +11518,15 @@ static int imsm_reshape_is_allowed_on_container(struct supertype *st,
  */
 static struct mdinfo *get_spares_for_grow(struct supertype *st)
 {
-	struct spare_criteria sc;
+	struct spare_criteria sc = {0};
+	struct mdinfo *spares;
 
 	get_spare_criteria_imsm(st, NULL, &sc);
-	return container_choose_spares(st, &sc, NULL, NULL, NULL, 0);
+	spares = container_choose_spares(st, &sc, NULL, NULL, NULL, 0);
+
+	dev_policy_free(sc.pols);
+
+	return spares;
 }
 
 /******************************************************************************
-- 
2.35.3


^ permalink raw reply related	[flat|nested] 2+ messages in thread

* Re: [PATCH] mdadm: fix grow segfault for IMSM
  2024-03-18 16:28 [PATCH] mdadm: fix grow segfault for IMSM Mariusz Tkaczyk
@ 2024-03-22 11:19 ` Mariusz Tkaczyk
  0 siblings, 0 replies; 2+ messages in thread
From: Mariusz Tkaczyk @ 2024-03-22 11:19 UTC (permalink / raw)
  To: linux-raid; +Cc: jes

On Mon, 18 Mar 2024 17:28:42 +0100
Mariusz Tkaczyk <mariusz.tkaczyk@linux.intel.com> wrote:

> If sc is not initialized, there is possibility that sc.pols is not zeroed
> and it causes segfault.
> 
> Add missing initialization.
> Add missing dev_policy_free() in two places.
> 
> Fixes: f656201188d7 ("mdadm: drop get_required_spare_criteria()")
> Signed-off-by: Mariusz Tkaczyk <mariusz.tkaczyk@linux.intel.com>
> ---

Applied! 

Thanks,
Mariusz

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2024-03-22 11:19 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-03-18 16:28 [PATCH] mdadm: fix grow segfault for IMSM Mariusz Tkaczyk
2024-03-22 11:19 ` Mariusz Tkaczyk

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).