summaryrefslogtreecommitdiffstats
path: root/fs/fcntl.c
diff options
context:
space:
mode:
authorJens Axboe <axboe@suse.de>2005-04-16 15:25:40 -0700
committerLinus Torvalds <torvalds@ppc970.osdl.org>2005-04-16 15:25:40 -0700
commit4a534f93b371e8e6e87ae302757365f0f583e06b (patch)
treef9ed5470c81bd63dba86f425a2c3731802000c79 /fs/fcntl.c
parent9c340d80f66faaea3522812d0d8c91d6a1b48a22 (diff)
downloadlinux-4a534f93b371e8e6e87ae302757365f0f583e06b.tar.gz
linux-4a534f93b371e8e6e87ae302757365f0f583e06b.tar.bz2
linux-4a534f93b371e8e6e87ae302757365f0f583e06b.zip
[PATCH] possible use-after-free of bio
There is a possibility that a bio will be accessed after it has been freed on SCSI. It happens if you submit a bio with BIO_SYNC marked and the auto-unplugging kicks the request_fn, SCSI re-enables interrupts in-between so if the request completes between the add_request() in __make_request() and the bio_sync() call, we could be looking at a dead bio. It's a slim race, but it has been triggered in the Real World. So assign bio_sync() to a local variable instead. Signed-off-by: Jens Axboe <axboe@suse.de> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>
Diffstat (limited to 'fs/fcntl.c')
0 files changed, 0 insertions, 0 deletions