On Tue, 2019-01-29 at 11:06:18 UTC, Vaibhav Jain wrote:
Within cxl module, iteration over array 'adapter->afu' may be racy at few points as it might be simultaneously read during an EEH and its contents being set to NULL while driver is being unloaded or unbound from the adapter. This might result in a NULL pointer to 'struct afu' being de-referenced during an EEH thereby causing a kernel oops.
This patch fixes this by making sure that all access to the array 'adapter->afu' is wrapped within the context of spin-lock 'adapter->afu_list_lock'.
Cc: stable@vger.kernel.org Fixes: 9e8df8a2196("cxl: EEH support") Acked-by: Andrew Donnellan andrew.donnellan@au1.ibm.com Acked-by: Frederic Barrat fbarrat@linux.ibm.com Acked-by: Christophe Lombard clombard@linux.vnet.ibm.com Signed-off-by: Vaibhav Jain vaibhav@linux.ibm.com
Applied to powerpc next, thanks.
https://git.kernel.org/powerpc/c/edeb304f659792fb5bab90d7d6f3408b
cheers