Re: [PATCH 02/35] UBI: Fix stale pointers in ubi->lookuptbl

From: Tanya Brokhman
Date: Thu Dec 04 2014 - 06:00:23 EST

Next message: Dongsu Park: "Re: Block layer projects that I haven't had time for"
Previous message: Russell King - ARM Linux: "Re: [PATCH] ARM: /proc/cpuinfo: Use DT machine name when possible"
Next in thread: Richard Weinberger: "Re: [PATCH 02/35] UBI: Fix stale pointers in ubi->lookuptbl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Richard

On 10/29/2014 2:45 PM, Richard Weinberger wrote:

In some error paths the WL sub-system gives up on a PEB
and frees it's ubi_wl_entry struct but does not set
the entry in ubi->lookuptbl to NULL.
Fastmap can stumble over such a stale pointer as it uses
ubi->lookuptbl to find all PEBs.

Fix this by setting the pointers to free'd ubi_wl_entry to NULL.

There are 2 more places:
tree_destroy() and protection_queue_destroy() where ubi_wl_entry is released. Both functions used on power down so all should be good as is, just wanted to make sure you didn't add ubi->lookuptbl[e2->pnum] = NULL there on purpose.

Thanks,
Tanya Brokhman
--
Qualcomm Israel, on behalf of Qualcomm Innovation Center, Inc.
The Qualcomm Innovation Center, Inc. is a member of the Code Aurora Forum, a Linux Foundation Collaborative Project
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dongsu Park: "Re: Block layer projects that I haven't had time for"
Previous message: Russell King - ARM Linux: "Re: [PATCH] ARM: /proc/cpuinfo: Use DT machine name when possible"
Next in thread: Richard Weinberger: "Re: [PATCH 02/35] UBI: Fix stale pointers in ubi->lookuptbl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]