Received: by 2002:a25:b794:0:0:0:0:0 with SMTP id n20csp5521887ybh; Wed, 7 Aug 2019 07:20:42 -0700 (PDT) X-Google-Smtp-Source: APXvYqz8UqP52oXliCFaCYULrcuCc6sxJwSPXEIYJCBr4+UAXyA5002WHktjkRg8t9pGOBiDj+Yj X-Received: by 2002:a62:fc0a:: with SMTP id e10mr9602924pfh.114.1565187642823; Wed, 07 Aug 2019 07:20:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1565187642; cv=none; d=google.com; s=arc-20160816; b=w6UUlXb7vPsek5PBYO4Gcv04Z+f1ceh8cUfFjMPAkNrY4BubXbeykrW50UZjoJNV+0 Mgj0KBIPSL2y5u7euHhCNj5Rh3rzr5oNgZWlLaZQ9UZW5mxXIw7PM77C9R2Th3/8NN5D xCLQF4JjWaFO7QYI0UxK8DaKnxG7oh5VinbvrUl3bqHLDX+9QAyll/2MBdZfyT88uMBX U9N7qmaUUXfE1zbOLZ02qS14zMnHpBOM0R+puGQ3l0M3zyA/2b/HsBrx/Zx9bldt5SGo z05dK1ncJIlA2Rzb5KN5291xSPTyolpoQGvTZj4h9PWcK7/q8ULYv6mGV88KHyVOE99R R/XQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=mc2ZlcblJhTCc+59eGdVPsvblxllT8VyGaJItyjpB/U=; b=jZA4TAP/WHsFS3ntbvXjcxm/amkdTXtmQsfXsUvc8yyX+z4CU4maQaWHUQlPZKtiT2 vWIpSEYMfjzcJX3TmBBL7dBx72OaLU7xrbgnWkCtDdzdiSyDNj13P35n7ASA4E8PfmVY 1nOAI7e4OR43pMC9dHeZ+uQhwJ8FGQ1jB6WkPG4eFpyq2hjyfs5jV8tFnSJVEn2MyAUp KUL8xxX5tzblz5MUf77Zh7fnRSxCSeeLQv/H3OLSon/2jEaIE7LJUCGIcK+Dr9GDCQBV 9IMtduuBsQf5ZD5/CCiAV0bEILf3o/8wA8UX92X9qn6aMPClwVGOw6KnajKVJ/OgydON hN1g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=gtISrsFZ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i69si51597897pge.366.2019.08.07.07.20.26; Wed, 07 Aug 2019 07:20:42 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@linaro.org header.s=google header.b=gtISrsFZ; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2388277AbfHGOSK (ORCPT + 99 others); Wed, 7 Aug 2019 10:18:10 -0400 Received: from mail-wm1-f68.google.com ([209.85.128.68]:35864 "EHLO mail-wm1-f68.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729887AbfHGOSJ (ORCPT ); Wed, 7 Aug 2019 10:18:09 -0400 Received: by mail-wm1-f68.google.com with SMTP id g67so235774wme.1 for ; Wed, 07 Aug 2019 07:18:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; h=from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=mc2ZlcblJhTCc+59eGdVPsvblxllT8VyGaJItyjpB/U=; b=gtISrsFZCjjXtWqiQNCjpzLIWGuM/+IhT7JFDnhj4FBJVznjoG0Is51Mmg7bMKRuwS 7P623IAy53MkhCtdn95Pe1EnLV2dFZM14VG8dWPOHT6cgY4IHbS00vx44K6/GMIt5XyG PiCc+ZLpZ7yr1VX455Vx9gxFNpuF6yCEvU0FvyeFnpy85m9nOInvipRC6BaAwQK0sfDl WngxOlh8MvEdYCrLXGhwUCcKs9tnLUlGDJTpAxSSrZHDImTfQqbN29U8m7d3EAQAnKpE D/SUjGmqxFVyAutxLzHrOLDFNlU7QwAsRLSQixa5pNkgKymPgHXYo9tt9m0+LBnjLmMb i+8g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :content-transfer-encoding; bh=mc2ZlcblJhTCc+59eGdVPsvblxllT8VyGaJItyjpB/U=; b=WhwT+tlNooWncogQD/8LtyENRnTnPs4DfFVmsEbdFeSk7q9nkV4viAlAdhoQLAOk/9 7N+h2n74MZd18GOXaLPqsauZjDFLm9R3+5+yNkmUEtANDuCyuyPgSZinaPeNUBrthKiD UBt/jPOUz1cwAQGmpDJVqZf3pxBS5tMs/1sVV21pz222/TRUHqXZJStGC7urasur1WfU dkX/M2Ruk90xXZaYHEvGIF+6sgiNdo5MUw4rfyumIDPSd35l4Q/8MaiPKc5cfj4iLOxr PAWE3j6N97Jj2XHycQ7t6+tgC1WAoEk35JGDMSWO0w8XcC5Nf/q8tblZtfLCg8Q5uxOH w2BQ== X-Gm-Message-State: APjAAAWdLce1k2rXa79hwSJ6K77TMsrO3gmBd3ySFyJCJL699sdwvtXH Sc9j017dpHA33mSjqpieNJ+dvg== X-Received: by 2002:a7b:c40c:: with SMTP id k12mr211035wmi.122.1565187486831; Wed, 07 Aug 2019 07:18:06 -0700 (PDT) Received: from localhost.localdomain (88-147-66-140.dyn.eolo.it. [88.147.66.140]) by smtp.gmail.com with ESMTPSA id o7sm83472wmc.36.2019.08.07.07.18.05 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 07 Aug 2019 07:18:05 -0700 (PDT) From: Paolo Valente To: Jens Axboe Cc: linux-block@vger.kernel.org, linux-kernel@vger.kernel.org, ulf.hansson@linaro.org, linus.walleij@linaro.org, bfq-iosched@googlegroups.com, oleksandr@natalenko.name, pavel@denx.de, Paolo Valente Subject: [PATCH BUGFIX 0/2] block, bfq: fix user after free Date: Wed, 7 Aug 2019 16:17:52 +0200 Message-Id: <20190807141754.3567-1-paolo.valente@linaro.org> X-Mailer: git-send-email 2.20.1 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Hi Jens, this series contains a pair of fixes for the UAF reported in [1]. These patches are the result of the testing described in this Chrome OS issue [2] since Comment 57. Thanks, Paolo [1] https://lkml.org/lkml/2019/7/27/254 [2] https://bugs.chromium.org/p/chromium/issues/detail?id=931295#c57 Paolo Valente (2): block, bfq: reset last_completed_rq_bfqq if the pointed queue is freed block, bfq: move update of waker and woken list to queue freeing block/bfq-iosched.c | 54 ++++++++++++++++++++++++++++++--------------- 1 file changed, 36 insertions(+), 18 deletions(-) -- 2.20.1