Received: by 2002:a05:7412:2a8c:b0:e2:908c:2ebd with SMTP id u12csp653300rdh; Sun, 24 Sep 2023 06:16:33 -0700 (PDT) X-Google-Smtp-Source: AGHT+IGPMB2LWzYFy8aWCQ07R6Z8JeRF9cSUGuU+LKqbJAZqRtWIJQ/a4Bpm/jywfCvU7X41yeCV X-Received: by 2002:a17:90a:245:b0:274:7de7:d6fa with SMTP id t5-20020a17090a024500b002747de7d6famr3836724pje.9.1695561393274; Sun, 24 Sep 2023 06:16:33 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1695561393; cv=none; d=google.com; s=arc-20160816; b=dGJv16u5GxSH1YnTpvh3U746hAeMwS9sb0Qv0+I2IZ4zMYSf9tSDYE5YyK7fKtqutr KhL+IU6K/J0nsORrGV4j8rC9UCeiwuGsDjtW8xaERHre2ckVAmFf2xZjlPLxbxzSCMmC HHF6sKfiPWx7+MrLnwdLT/sdN1TYqLmUqDtNeqZ+2RXjrcUZc5LC2vIj7A5o26vySo6y qCjCq0z0Rx6Am4I0P0gI2r/yGCfdEi6XmFGFGLRDOlu5JRt7TJ3pOkDvep5Ss6mB0xkm FRxWONMc8P6SndSlOR2cO/LhzcUnEg5VfqyWjoUZvmMWiQCRrpGC8Sz9lIZfdsSuIErP ZWHA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=PBm9fDFBLlybwN998ujNZX10tuyVG/gOk1texytK9uM=; fh=JFt/0nuPr6k0nrroh9g2ttMqNy3/SZwaZytQCyGkGEo=; b=D0nngxMw7uRFtYbPBciTMGZKv8dOdvm/w2Pqlf2tp0rbThpw/jNHc1WPJogfAWtLqZ uqpO0LkhFIZ3kg4phz8VnuvIHE/mA8jkqhn6wgeFC9LNFIDtYGy62XyjjUfI71upBnOt xLTmEzN7S2PKcLvjZOWI/5Ug3fqMB17Sc3aBY2d7C3rYBACtsMXsEGjL8NraMvN5fzkZ bTlWdCnHx02mYcxH6XhX54UHP+w7L70NmQUqeqBgX0MuoQ9XwjLT1S7kAkHr8dVTi10k SYOS9w2AR1NAojSf3WiZWZmlpocrkgtWj/SBJMb5gk8ZAidDXoe5yvl98+MID5ZnZbbJ 7wYQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=vI5MxRlJ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.38 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from fry.vger.email (fry.vger.email. [23.128.96.38]) by mx.google.com with ESMTPS id ml7-20020a17090b360700b00274b23c2867si7683079pjb.58.2023.09.24.06.16.33 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 24 Sep 2023 06:16:33 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.38 as permitted sender) client-ip=23.128.96.38; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=vI5MxRlJ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.38 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by fry.vger.email (Postfix) with ESMTP id 567EA807DEEF; Sun, 24 Sep 2023 06:15:45 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at fry.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229458AbjIXNPn (ORCPT + 99 others); Sun, 24 Sep 2023 09:15:43 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:38696 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229437AbjIXNPl (ORCPT ); Sun, 24 Sep 2023 09:15:41 -0400 Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9B2FDFC; Sun, 24 Sep 2023 06:15:35 -0700 (PDT) Received: by smtp.kernel.org (Postfix) with ESMTPSA id DA03DC433C8; Sun, 24 Sep 2023 13:15:31 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1695561332; bh=aymlam7ACzIinEbCzC1waHwHwJM/KoAe8yLW9ndF/G4=; h=From:To:Cc:Subject:Date:From; b=vI5MxRlJRZ8OTAimgC8jsYEzXDWCTWALsVY3jQfOM+XjoN9AfFW7Gb1vGGJ2/oziH RuvfO16zIFE5fMae5CJMeUWqjMKGrGCe0NfHzz+gYW2FCH+DVKlAaAw8EfpmE1ZwbY ox+64o85THgDIZnU5DeYd/WypUiy3/yeBELyTgCUZVdkMxjoyaoSpb36HOkw4F1xXf MXv9575m4glhPDF2LyoX79MIYx28C7ii6yup3L+Sso6D02Xl3g+afLZk9lYsyyCdu6 h+NTwWXW6LvCHqWvx9eSKM0q5T6H6g3MaYPO2UyEiCfiGyURvWF8yeYkT8cvchbdY8 c9jwFZxeOhVrg== From: Sasha Levin To: linux-kernel@vger.kernel.org, stable@vger.kernel.org Cc: Nigel Kirkland , James Smart , Keith Busch , Sasha Levin , james.smart@broadcom.com, sagi@grimberg.me, linux-nvme@lists.infradead.org Subject: [PATCH AUTOSEL 6.5 01/41] nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid() Date: Sun, 24 Sep 2023 09:14:49 -0400 Message-Id: <20230924131529.1275335-1-sashal@kernel.org> X-Mailer: git-send-email 2.40.1 MIME-Version: 1.0 X-stable: review X-Patchwork-Hint: Ignore X-stable-base: Linux 6.5.5 Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=-1.2 required=5.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on fry.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (fry.vger.email [0.0.0.0]); Sun, 24 Sep 2023 06:15:45 -0700 (PDT) From: Nigel Kirkland [ Upstream commit 8ae5b3a685dc59a8cf7ccfe0e850999ba9727a3c ] The nvme_fc_fcp_op structure describing an AEN operation is initialized with a null request structure pointer. An FC LLDD may make a call to nvme_fc_io_getuuid passing a pointer to an nvmefc_fcp_req for an AEN operation. Add validation of the request structure pointer before dereference. Signed-off-by: Nigel Kirkland Reviewed-by: James Smart Signed-off-by: Keith Busch Signed-off-by: Sasha Levin --- drivers/nvme/host/fc.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/drivers/nvme/host/fc.c b/drivers/nvme/host/fc.c index 1cd2bf82319a9..a15b37750d6e9 100644 --- a/drivers/nvme/host/fc.c +++ b/drivers/nvme/host/fc.c @@ -1924,7 +1924,7 @@ char *nvme_fc_io_getuuid(struct nvmefc_fcp_req *req) struct nvme_fc_fcp_op *op = fcp_req_to_fcp_op(req); struct request *rq = op->rq; - if (!IS_ENABLED(CONFIG_BLK_CGROUP_FC_APPID) || !rq->bio) + if (!IS_ENABLED(CONFIG_BLK_CGROUP_FC_APPID) || !rq || !rq->bio) return NULL; return blkcg_get_fc_appid(rq->bio); } -- 2.40.1