projects / GitHub / LineageOS / android_kernel_motorola_exynos9610.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8688426) | patch
IB/hfi1: NULL pointer dereference when freeing rhashtable
authorSebastian Sanchez <sebastian.sanchez@intel.com>
Tue, 21 Mar 2017 00:24:58 +0000 (17:24 -0700)
committerDoug Ledford <dledford@redhat.com>
Wed, 5 Apr 2017 18:45:09 +0000 (14:45 -0400)
commit5a52a7acf7e2a812d2852342992cee3dc22ad25d
tree8f7e9569df40f4b1b8ee7cae88ca9df8571ecaa6tree | snapshot (tar.gz zip)
parent8688426ba6464f7079649f52cf9108856c419415commit | diff
IB/hfi1: NULL pointer dereference when freeing rhashtable

A NULL pointer dereference occurs when the driver
is unloaded, and the SDMA rhashtable is freed if
the rhashtable_init() function has not been called.
Prevent this by changing sdma_rht to be a pointer
to a dynamically allocated hash table. The NULL-ness
of the pointer serves as an indication that the hash
table was initialized and that it needs to be
destroyed.

Fixes: 0cb2aa690c7e ("IB/hfi1: Add sysfs interface for affinity setup")
Reviewed-by: Mike Marciniszyn <mike.marciniszyn@intel.com>
Signed-off-by: Sebastian Sanchez <sebastian.sanchez@intel.com>
Signed-off-by: Dennis Dalessandro <dennis.dalessandro@intel.com>
Signed-off-by: Doug Ledford <dledford@redhat.com>
drivers/infiniband/hw/hfi1/hfi.h diff | blob | blame | history
drivers/infiniband/hw/hfi1/sdma.c diff | blob | blame | history