Re: [PATCH v2] blkmq: Fix NULL pointer deref when all reserved tags in use

From: Jens Axboe
Date: Wed Mar 18 2015 - 19:07:19 EST

Next message: Sebastian Hesselbarth: "Re: [PATCH v3 1/4] i2c: mux-pinctrl: Rework to honor disabled child nodes"
Previous message: Jim Davis: "randconfig build error with next-20150318, in drivers/vfio/virqfd.c"
In reply to: Sam Bradshaw: "[PATCH v2] blkmq: Fix NULL pointer deref when all reserved tags in use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 03/18/2015 05:07 PM, Sam Bradshaw wrote:

When allocating from the reserved tags pool, bt_get() is called with
a NULL hctx. If all tags are in use, the hw queue is kicked to push
out any pending IO, potentially freeing tags, and tag allocation is
retried. The problem is that blk_mq_run_hw_queue() doesn't check for
a NULL hctx. So we avoid it with a simple NULL hctx test.

This issue was introduced by:
b32232073e80: blk-mq: fix hang in bt_get()

Tested by hammering mtip32xx with concurrent smartctl/hdparm.

Signed-off-by: Sam Bradshaw <sbradshaw@xxxxxxxxxx>
Signed-off-by: Selvan Mani <smani@xxxxxxxxxx>

Thanks Sam, added to the current series.

--
Jens Axboe

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sebastian Hesselbarth: "Re: [PATCH v3 1/4] i2c: mux-pinctrl: Rework to honor disabled child nodes"
Previous message: Jim Davis: "randconfig build error with next-20150318, in drivers/vfio/virqfd.c"
In reply to: Sam Bradshaw: "[PATCH v2] blkmq: Fix NULL pointer deref when all reserved tags in use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]