[PATCH rdma-next 0/6] Fix memory corruption in CM

From: Leon Romanovsky
Date: Thu Mar 18 2021 - 06:03:48 EST

From: Leon Romanovsky <leonro@xxxxxxxxxx>


This series from Mark fixes long standing bug in CM migration logic,
reported by Ryan [1].


[1] https://lore.kernel.org/linux-rdma/CAFMmRNx9cg--NUnZjFM8yWqFaEtsmAWV4EogKb3a0+hnjdtJFA@xxxxxxxxxxxxxx/

Mark Zhang (6):
Revert "IB/cm: Mark stale CM id's whenever the mad agent was
IB/cm: Remove "mad_agent" parameter of ib_cancel_mad
IB/cm: Remove "mad_agent" parameter of ib_modify_mad
IB/cm: Clear all associated AV's ports when remove a cm device
IB/cm: Add lock protection when access av/alt_av's port of a cm_id
IB/cm: Initialize av before acquire the spin lock in cm_lap_handler

drivers/infiniband/core/cm.c | 359 ++++++++++++++++-------------
drivers/infiniband/core/mad.c | 17 +-
drivers/infiniband/core/sa_query.c | 4 +-
include/rdma/ib_mad.h | 27 ++-
4 files changed, 222 insertions(+), 185 deletions(-)