Received: by 10.213.65.68 with SMTP id h4csp46317imn; Mon, 19 Mar 2018 19:04:19 -0700 (PDT) X-Google-Smtp-Source: AG47ELvMjXy7Y3HJrl6GzCRj4W0JP3fmYJFCGfyl7clJ4yygZG3qwRhnhoSAInK2bADkErVL2O9P X-Received: by 10.99.110.133 with SMTP id j127mr10819112pgc.79.1521511459412; Mon, 19 Mar 2018 19:04:19 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1521511459; cv=none; d=google.com; s=arc-20160816; b=bxooKOV1mmmJvS6m96SlFaP7J1ORpXkDevTYTb7drD5v9Wah42TRO06RHKKN9+VlUk YgcJYSaowg7d9ZZ7+6NQaVCjWJ71uL25kMU/CDX6BRbgUQqjGtrHiNTA0ZfJqTnI0hvY Hvyrd4Y7NCt46uwAyLClxDb1j7hHheic4QgjBKV1L5fDYQYxjxzA0Nvd7tJEJzWXgdjG 6yz3NxlkZRUJESqpsBf4XiKwb42GpjIngBZa9HbmJ+H1bKOU0vA/Gc3mz8WPnVpMmF0L JXgeFsquL8Xvl/Z41bIScumTHcn0OWgK+GCy6yKVnG0iLrkBQnMn/MXsLjH0OrgUSS/y AC+A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:message-id:date:subject:cc:to:from :arc-authentication-results; bh=EPkPI5kzKPmXxAlLGKOARhuFToOquZ1C17TrZCV4yEU=; b=CkPCcneEKd8kb074vokRRdPYRRzXdIydhusvYGBM1efhMirSiyK+7CxU4R9uW5azeI x0PX0c3k5t7Y0KaPtubCsjjzNmxNSwMGPpv1a+emot1Z0SAutwIz3CDzEzxQbVkp5NF+ rnte7dNjOMItGau8zkEqa0zVa7+oUyI1GYSMj0hjC+DZYxhKbp8Q3DJtaw3aZS7qbtJG qaE4XG+20CbCjTA6fGYvsW1qJ8wBxQ+ts0h9th5NFZYW4TX2voFYom2F7ZM0VAscnI7o l+y35ga2twdUR6/2inpDvoC0pfrazXRpxhcJjTnyJ0Mx3xUpEY1w0x9/kjVXkZp+VU0A TLTg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id h22si435559pgv.314.2018.03.19.19.04.05; Mon, 19 Mar 2018 19:04:19 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S935138AbeCTAWt (ORCPT + 99 others); Mon, 19 Mar 2018 20:22:49 -0400 Received: from ozlabs.org ([103.22.144.67]:40813 "EHLO ozlabs.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S934168AbeCTAWs (ORCPT ); Mon, 19 Mar 2018 20:22:48 -0400 Received: from localhost.localdomain (localhost [127.0.0.1]) by ozlabs.org (Postfix) with ESMTP id 404ttY22cZz9sVy; Tue, 20 Mar 2018 11:22:45 +1100 (AEDT) Received: by localhost.localdomain (Postfix, from userid 1000) id 0EC0FEE78C1; Tue, 20 Mar 2018 11:22:45 +1100 (AEDT) From: Michael Neuling To: Keith Busch Cc: Jens Axboe , Christoph Hellwig , Sagi Grimberg , linux-nvme@lists.infradead.org, linux-kernel@vger.kernel.org, mikey@neuling.org Subject: [PATCH] nvme-pci: Fix NULL ptr deref in EEH code Date: Tue, 20 Mar 2018 11:22:42 +1100 Message-Id: <20180320002242.10416-1-mikey@neuling.org> X-Mailer: git-send-email 2.14.1 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On powerpc on boot we can take an EEH event which results in this oops. cpu 0x23: Vector: 300 (Data Access) at [c000000ff50f3800] pc: c0080000089a0eb0: nvme_error_detected+0x4c/0x90 [nvme] lr: c000000000026564: eeh_report_error+0xe0/0x110 sp: c000000ff50f3a80 msr: 9000000000009033 dar: 400 dsisr: 40000000 current = 0xc000000ff507c000 paca = 0xc00000000fdc9d80 softe: 0 irq_happened: 0x01 pid = 782, comm = eehd Linux version 4.15.6-openpower1 (smc@smc-desktop) (gcc version 6.4.0 (Buildroot 2017.11.2-00008-g4b6188e)) #2 SM P Tue Feb 27 12:33:27 PST 2018 enter ? for help [c000000ff50f3af0] c000000000026564 eeh_report_error+0xe0/0x110 [c000000ff50f3b30] c000000000025520 eeh_pe_dev_traverse+0xc0/0xdc [c000000ff50f3bc0] c000000000026bd0 eeh_handle_normal_event+0x184/0x4c4 [c000000ff50f3c70] c000000000026ff4 eeh_handle_event+0x30/0x288 [c000000ff50f3d10] c00000000002758c eeh_event_handler+0x124/0x170 [c000000ff50f3dc0] c00000000008fed0 kthread+0x14c/0x154 [c000000ff50f3e30] c00000000000b594 ret_from_kernel_thread+0x5c/0xc8 This fixes the NULL ptr deref. Signed-off-by: Michael Neuling --- drivers/nvme/host/pci.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/drivers/nvme/host/pci.c b/drivers/nvme/host/pci.c index b6f43b738f..404b346e3c 100644 --- a/drivers/nvme/host/pci.c +++ b/drivers/nvme/host/pci.c @@ -2626,6 +2626,9 @@ static pci_ers_result_t nvme_error_detected(struct pci_dev *pdev, { struct nvme_dev *dev = pci_get_drvdata(pdev); + if (!dev) + return PCI_ERS_RESULT_NEED_RESET; + /* * A frozen channel requires a reset. When detected, this method will * shutdown the controller to quiesce. The controller will be restarted -- 2.14.1