Received: by 2002:a25:4158:0:0:0:0:0 with SMTP id o85csp883608yba;
        Wed, 24 Apr 2019 11:09:13 -0700 (PDT)
X-Google-Smtp-Source: APXvYqwfc3weqDdznyxKTJ6PpbIwT8iItUf9z9r7lDGejPmLNscgFQ5NSo8hx7XxtOkKR++19LXf
X-Received: by 2002:aa7:8e0d:: with SMTP id c13mr35618437pfr.193.1556129353878;
        Wed, 24 Apr 2019 11:09:13 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1556129353; cv=none;
        d=google.com; s=arc-20160816;
        b=yIIlwMPZxisVhTXony3QZmOWCvXedAXuMmDzYrCkFOKNgLk3J3KB/98WAdmgBEPX+/
         f4kyrmZEdZQbvEPPrzlgNLVPVe+8m0+1RDgj7L86Z1qBldwZnjGYRroKcIk7NOVvVHsL
         8h5X0lKbkJjE8qDWOiGx54H+PGFO6IP1JuzMOaccuAoEGRDC9xInz6kqB5eM5vL0l5ho
         mm9JyRW7jVWesvoBBBhshJebDhuTIyglIxr9xlhygXBYTImT2aDIvRQrkJkHbpm/v8kl
         yhnBfyBL+wtsCvh9QgGIOJuRNDyQlIYthZ9UCwX2TTFjtJ2aRBNRZ/3OX7j7b1GdCYln
         HGTg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :user-agent:references:in-reply-to:message-id:date:subject:cc:to
         :from:dkim-signature;
        bh=uRlmsN5Hcj0IeycefWbHzhTwEQXg8F59Ov4qlB9ThYc=;
        b=NURBqANDkny6BCJ995+iBT6Mqbten4EMldvhQBoGY5Mt2Z8GJZIzz7gEu3Tz/5to0/
         7ZrasCQMGxqSvSfWULo6e4FWBNtFcK97odgNfqTexPTl8s1yntVG6dpaGbkS/g0r+3wa
         oX9x34mtmKCt9Mef8/coVfdKbllBP5vOLilqz7N3pqrp1jpaqToxI42tXRCU0S4HNFQC
         QcuCat1Pn8BTSX4b2nBtrAATcLvpjZ1FTPOVFHPvVh6WrTdPAPTwTUKgkf4soWntfwBh
         b8as+bZqv8fuFmMNZmiHjYtUu9TlEO9CB6gPy18RWoO9PgLq4Doa3pi3rQgr/W9HkvcU
         AsEw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=AYZMjjYU;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id bi3si13759660plb.427.2019.04.24.11.08.58;
        Wed, 24 Apr 2019 11:09:13 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=default header.b=AYZMjjYU;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2388563AbfDXRRK (ORCPT <rfc822;luigi.mantellini.ml@gmail.com>
        + 99 others); Wed, 24 Apr 2019 13:17:10 -0400
Received: from mail.kernel.org ([198.145.29.99]:41828 "EHLO mail.kernel.org"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S2388167AbfDXRRH (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 24 Apr 2019 13:17:07 -0400
Received: from localhost (62-193-50-229.as16211.net [62.193.50.229])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by mail.kernel.org (Postfix) with ESMTPSA id 7F009218B0;
        Wed, 24 Apr 2019 17:17:06 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
        s=default; t=1556126227;
        bh=VDbp+VpByAQufCv8cW2nByeOzTJDL93EO/CjwDUX+iY=;
        h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
        b=AYZMjjYUkVqUCa6eEr8XVQ4xqTAdsKfdMxWzFlkXTPCDDL6f/Z5qx4jWNnnlNKfI/
         V5u/6oIaP1i6X8ehitg8WYaujOwRo1UPDmc5z0h0oay4jxMlmks5Eb8s1Y3UKagpLz
         iycw5Apb/Tw29pcSJrznY/4kE5EHxd7nAaF1d/oE=
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     linux-kernel@vger.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Jason Yan <yanaijie@huawei.com>,
        Sumit Saxena <sumit.saxena@broadcom.com>,
        "Martin K. Petersen" <martin.petersen@oracle.com>,
        Sasha Levin <sashal@kernel.org>
Subject: [PATCH 4.4 035/168] scsi: megaraid_sas: return error when create DMA pool failed
Date:   Wed, 24 Apr 2019 19:07:59 +0200
Message-Id: <20190424170925.816802180@linuxfoundation.org>
X-Mailer: git-send-email 2.21.0
In-Reply-To: <20190424170923.452349382@linuxfoundation.org>
References: <20190424170923.452349382@linuxfoundation.org>
User-Agent: quilt/0.66
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

[ Upstream commit bcf3b67d16a4c8ffae0aa79de5853435e683945c ]

when create DMA pool for cmd frames failed, we should return -ENOMEM,
instead of 0.
In some case in:

    megasas_init_adapter_fusion()

    -->megasas_alloc_cmds()
       -->megasas_create_frame_pool
          create DMA pool failed,
        --> megasas_free_cmds() [1]

    -->megasas_alloc_cmds_fusion()
       failed, then goto fail_alloc_cmds.
    -->megasas_free_cmds() [2]

we will call megasas_free_cmds twice, [1] will kfree cmd_list,
[2] will use cmd_list.it will cause a problem:

Unable to handle kernel NULL pointer dereference at virtual address
00000000
pgd = ffffffc000f70000
[00000000] *pgd=0000001fbf893003, *pud=0000001fbf893003,
*pmd=0000001fbf894003, *pte=006000006d000707
Internal error: Oops: 96000005 [#1] SMP
 Modules linked in:
 CPU: 18 PID: 1 Comm: swapper/0 Not tainted
 task: ffffffdfb9290000 ti: ffffffdfb923c000 task.ti: ffffffdfb923c000
 PC is at megasas_free_cmds+0x30/0x70
 LR is at megasas_free_cmds+0x24/0x70
 ...
 Call trace:
 [<ffffffc0005b779c>] megasas_free_cmds+0x30/0x70
 [<ffffffc0005bca74>] megasas_init_adapter_fusion+0x2f4/0x4d8
 [<ffffffc0005b926c>] megasas_init_fw+0x2dc/0x760
 [<ffffffc0005b9ab0>] megasas_probe_one+0x3c0/0xcd8
 [<ffffffc0004a5abc>] local_pci_probe+0x4c/0xb4
 [<ffffffc0004a5c40>] pci_device_probe+0x11c/0x14c
 [<ffffffc00053a5e4>] driver_probe_device+0x1ec/0x430
 [<ffffffc00053a92c>] __driver_attach+0xa8/0xb0
 [<ffffffc000538178>] bus_for_each_dev+0x74/0xc8
  [<ffffffc000539e88>] driver_attach+0x28/0x34
 [<ffffffc000539a18>] bus_add_driver+0x16c/0x248
 [<ffffffc00053b234>] driver_register+0x6c/0x138
 [<ffffffc0004a5350>] __pci_register_driver+0x5c/0x6c
 [<ffffffc000ce3868>] megasas_init+0xc0/0x1a8
 [<ffffffc000082a58>] do_one_initcall+0xe8/0x1ec
 [<ffffffc000ca7be8>] kernel_init_freeable+0x1c8/0x284
 [<ffffffc0008d90b8>] kernel_init+0x1c/0xe4

Signed-off-by: Jason Yan <yanaijie@huawei.com>
Acked-by: Sumit Saxena <sumit.saxena@broadcom.com>
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
---
 drivers/scsi/megaraid/megaraid_sas_base.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/drivers/scsi/megaraid/megaraid_sas_base.c b/drivers/scsi/megaraid/megaraid_sas_base.c
index ac7acd257c99..2422094f1f15 100644
--- a/drivers/scsi/megaraid/megaraid_sas_base.c
+++ b/drivers/scsi/megaraid/megaraid_sas_base.c
@@ -3847,6 +3847,7 @@ int megasas_alloc_cmds(struct megasas_instance *instance)
 	if (megasas_create_frame_pool(instance)) {
 		dev_printk(KERN_DEBUG, &instance->pdev->dev, "Error creating frame DMA pool\n");
 		megasas_free_cmds(instance);
+		return -ENOMEM;
 	}
 
 	return 0;
-- 
2.19.1