From: Joe Eykholt <fcoe@eykholt.com>
To: linux-scsi@vger.kernel.org
Subject: [OpenFCoE PATCH] If expecting pre-T11 frames, a T11 frame caused a data fault.
Date: Tue, 04 Dec 2007 16:52:14 -0800 [thread overview]
Message-ID: <20071205005214.26211.62814.stgit@mink.he.net> (raw)
If expecting pre-T11 frames, a T11 frame caused a data fault.
This is because the T11 frames have zeros where the old length/SOF
field was, and a length of less than the size of the FC header was
not checked for.
Also limit length error messages to frames (per-CPU actually).
Signed-off-by: Joe Eykholt <fcoe@eykholt.com>
---
drivers/scsi/ofc/fcoe/fcoe_dev.c | 23 +++++++++++++++--------
1 files changed, 15 insertions(+), 8 deletions(-)
diff --git a/drivers/scsi/ofc/fcoe/fcoe_dev.c b/drivers/scsi/ofc/fcoe/fcoe_dev.c
index df652b6..878efd4 100644
--- a/drivers/scsi/ofc/fcoe/fcoe_dev.c
+++ b/drivers/scsi/ofc/fcoe/fcoe_dev.c
@@ -485,8 +485,9 @@ int fcoe_percpu_receive_thread(void *arg)
hp = (struct fcoe_hdr *)skb->data;
if (unlikely(FC_FCOE_DECAPS_VER(hp) != FC_FCOE_VER)) {
- SA_LOG("unknown FCoE version %x",
- FC_FCOE_DECAPS_VER(hp));
+ if (stats->ErrorFrames < 5)
+ SA_LOG("unknown FCoE version %x",
+ FC_FCOE_DECAPS_VER(hp));
stats->ErrorFrames++;
kfree_skb(skb);
continue;
@@ -505,20 +506,25 @@ int fcoe_percpu_receive_thread(void *arg)
skb_pull(skb, sizeof(*fchp));
fr_len = FC_FCOE_DECAPS_LEN(len);
fr_len = fr_len * FCOE_WORD_TO_BYTE;
+ if (unlikely(fr_len < sizeof(struct fc_frame_header) +
+ sizeof(cp->fcoe_crc32))) {
+ if (stats->ErrorFrames < 5)
+ SA_LOG("length error: len_sof %x", len);
+ stats->ErrorFrames++;
+ kfree_skb(skb);
+ continue;
+ }
sof = FC_FCOE_DECAPS_SOF(len);
fr_len -= sizeof(cp->fcoe_crc32);
tlen = sizeof(struct fcoe_crc_eof_old);
}
if (skb_is_nonlinear(skb))
-#if LINUX_VERSION_CODE < KERNEL_VERSION(2,6,18)
- skb_linearize(skb, GFP_KERNEL); /* not ideal */
-#else
skb_linearize(skb); /* not ideal */
-#endif
if (unlikely(fr_len + tlen > skb->len)) {
- SA_LOG("short frame fr_len %x skb->len %x\n",
- fr_len + tlen, skb->len);
+ if (stats->ErrorFrames < 5)
+ SA_LOG("length error fr_len 0x%x skb->len 0x%x",
+ fr_len + tlen, skb->len);
stats->ErrorFrames++;
kfree_skb(skb);
continue;
@@ -540,6 +546,7 @@ int fcoe_percpu_receive_thread(void *arg)
* and it'll be more cache-efficient.
*/
fh = fc_frame_header_get(fp);
+ ASSERT(fh);
if (fh->fh_r_ctl == FC_RCTL_DD_SOL_DATA &&
fh->fh_type == FC_TYPE_FCP) {
fp->fr_flags |= FCPHF_CRC_UNCHECKED;
next reply other threads:[~2007-12-05 0:52 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-12-05 0:52 Joe Eykholt [this message]
2007-12-05 13:55 ` [OpenFCoE PATCH] If expecting pre-T11 frames, a T11 frame caused a data fault Christoph Hellwig
2007-12-05 16:42 ` Joe Eykholt
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20071205005214.26211.62814.stgit@mink.he.net \
--to=fcoe@eykholt.com \
--cc=linux-scsi@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox