Piteball
/
android_kernel_samsung_msm8976
mirror of https://github.com/team-infusion-developers/android_kernel_samsung_msm8976.git
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
android_kernel_samsung_msm8976/drivers/infiniband/core
History
Doron Tsur cef1bb63fd IB/cm: Fix rb-tree duplicate free and use-after-free 
commit 0ca81a2840f77855bbad1b9f172c545c4dc9e6a4 upstream.

ib_send_cm_sidr_rep could sometimes erase the node from the sidr
(depending on errors in the process). Since ib_send_cm_sidr_rep is
called both from cm_sidr_req_handler and cm_destroy_id, cm_id_priv
could be either erased from the rb_tree twice or not erased at all.
Fixing that by making sure it's erased only once before freeing
cm_id_priv.

Fixes: a977049dac ('[PATCH] IB: Add the kernel CM implementation')
Signed-off-by: Doron Tsur <doront@mellanox.com>
Signed-off-by: Matan Barak <matanb@mellanox.com>
Signed-off-by: Doug Ledford <dledford@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2015-11-09 10:12:59 -08:00
..
Makefile
addr.c
agent.c
agent.h
cache.c
cm.c IB/cm: Fix rb-tree duplicate free and use-after-free 2015-11-09 10:12:59 -08:00
cm_msgs.h
cma.c
core_priv.h
device.c
fmr_pool.c
iwcm.c RDMA/iwcm: Use a default listen backlog if needed 2014-09-17 09:04:00 -07:00
iwcm.h
mad.c
mad_priv.h
mad_rmpp.c
mad_rmpp.h
multicast.c
netlink.c
packer.c
sa.h
sa_query.c
smi.c
smi.h
sysfs.c
ucm.c
ucma.c
ud_header.c
umem.c IB/core: don't disallow registering region starting at 0x0 2015-05-06 21:56:27 +02:00
user_mad.c
uverbs.h IB/uverbs: Fix race between ib_uverbs_open and remove_one 2015-10-01 12:07:33 +02:00
uverbs_cmd.c IB/uverbs: reject invalid or unknown opcodes 2015-10-01 12:07:33 +02:00
uverbs_main.c IB/uverbs: Fix race between ib_uverbs_open and remove_one 2015-10-01 12:07:33 +02:00
uverbs_marshall.c
verbs.c