[SRU,K:master-next,0/1] block: handle bio_split_to_limits() NULL return

Message ID	20230530172517.659713-1-aleksandr.mikhalitsyn@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU][K:master-next][PATCH 0/1] block: handle bio_split_to_limits() NULL return Date: Tue, 30 May 2023 19:25:16 +0200 Message-Id: <20230530172517.659713-1-aleksandr.mikhalitsyn@canonical.com> MIME-Version: 1.0 Precedence: list Cc: kamal.mostafa@canonical.com Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	block: handle bio_split_to_limits() NULL return \| expand [SRU,K:master-next,0/1] block: handle bio_split_to_limits() NULL return [SRU,K:master-next,1/1] block: handle bio_split_to_limits() NULL return

Message ID

20230530172517.659713-1-aleksandr.mikhalitsyn@canonical.com

Headers

From: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU][K:master-next][PATCH 0/1] block: handle bio_split_to_limits()
 NULL return
Date: Tue, 30 May 2023 19:25:16 +0200
Message-Id: <20230530172517.659713-1-aleksandr.mikhalitsyn@canonical.com>
MIME-Version: 1.0
Precedence: list
Cc: kamal.mostafa@canonical.com
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

block: handle bio_split_to_limits() NULL return | expand

Message

Aleksandr Mikhalitsyn May 30, 2023, 5:25 p.m. UTC

BugLink: https://bugs.launchpad.net/bugs/2020901

[Impact]
System crash/hung as a consequence of null pointer dereference.

[Fix]
port an appropriate patch from -stable upstream tree

[Test]
We have a stable reproducer on the LXD/LXC CI.

[Where problems could occur]
We've met this problem with Qemu VM (LVM storage).

Jens Axboe (1):
  block: handle bio_split_to_limits() NULL return

 block/blk-merge.c             | 4 +++-
 block/blk-mq.c                | 3 +++
 drivers/block/drbd/drbd_req.c | 2 ++
 drivers/block/pktcdvd.c       | 2 ++
 drivers/block/ps3vram.c       | 2 ++
 drivers/md/dm.c               | 2 ++
 drivers/md/md.c               | 2 ++
 drivers/nvme/host/multipath.c | 2 ++
 drivers/s390/block/dcssblk.c  | 2 ++
 9 files changed, 20 insertions(+), 1 deletion(-)

Comments

Tim Gardner May 30, 2023, 6:50 p.m. UTC | #1

On 5/30/23 11:25 AM, Alexander Mikhalitsyn wrote:
> BugLink: https://bugs.launchpad.net/bugs/2020901
> 
> [Impact]
> System crash/hung as a consequence of null pointer dereference.
> 
> [Fix]
> port an appropriate patch from -stable upstream tree
> 
> [Test]
> We have a stable reproducer on the LXD/LXC CI.
> 
> [Where problems could occur]
> We've met this problem with Qemu VM (LVM storage).
> 
> Jens Axboe (1):
>    block: handle bio_split_to_limits() NULL return
> 
>   block/blk-merge.c             | 4 +++-
>   block/blk-mq.c                | 3 +++
>   drivers/block/drbd/drbd_req.c | 2 ++
>   drivers/block/pktcdvd.c       | 2 ++
>   drivers/block/ps3vram.c       | 2 ++
>   drivers/md/dm.c               | 2 ++
>   drivers/md/md.c               | 2 ++
>   drivers/nvme/host/multipath.c | 2 ++
>   drivers/s390/block/dcssblk.c  | 2 ++
>   9 files changed, 20 insertions(+), 1 deletion(-)
> 
Acked-by: Tim Gardner <tim.gardner@canonical.com>

Your description of the backport is a little sparse. In this case its 
mostly context adjustments, except for block/blk-mq.c which required 
some code changes.