This series aims to tackle the various UAF reports, like: - https://lore.kernel.org/linux-block/[email protected]/ - https://lore.kernel.org/linux-block/[email protected]/T/#m6c1ac11540522716f645d004e2a5a13c9f218908 - https://lore.kernel.org/linux-block/[email protected]/
Details are in the commit messages. Most important detail is that fastpath is untouched. The issue addressed in patch 1/2 is pretty easy to reproduce, 2/2 not so much. Differences to v1: - add 2nd patch John Garry (2): blk-mq: Clean up references to old requests when freeing rqs blk-mq: Lockout tagset iter when freeing rqs block/blk-mq-sched.c | 2 +- block/blk-mq-tag.c | 22 +++++++++++++++++++--- block/blk-mq-tag.h | 3 +++ block/blk-mq.c | 22 ++++++++++++++++++++-- block/blk-mq.h | 2 ++ 5 files changed, 45 insertions(+), 6 deletions(-) -- 2.26.2
