[PATCH openEuler-1.0-LTS 2/2] scsi: megaraid_sas: Fix resource leak in case of probe failure

1 Jun 2024

From: Chandrakanth Patil chandrakanth.patil@broadcom.com
mainline inclusion
from mainline-v5.14-rc1
commit b5438f48fdd8e1c3f130d32637511efd32038152
category: bugfix
bugzilla: https://gitee.com/src-openeuler/kernel/issues/I9RE1F
CVE: CVE-2021-47329
Reference: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?i...
--------------------------------
The driver doesn't clean up all the allocated resources properly when
scsi_add_host(), megasas_start_aen() function fails during the PCI device
probe.
Clean up all those resources.
Link: https://lore.kernel.org/r/20210528131307.25683-3-chandrakanth.patil@broadcom...
Signed-off-by: Chandrakanth Patil chandrakanth.patil@broadcom.com
Signed-off-by: Sumit Saxena sumit.saxena@broadcom.com
Signed-off-by: Martin K. Petersen martin.petersen@oracle.com
Signed-off-by: Luo Gengkun luogengkun2@huawei.com
---
 drivers/scsi/megaraid/megaraid_sas_base.c   | 13 +++++++++++++
 drivers/scsi/megaraid/megaraid_sas_fusion.c |  1 +
 2 files changed, 14 insertions(+)

diff --git a/drivers/scsi/megaraid/megaraid_sas_base.c b/drivers/scsi/megaraid/megaraid_sas_base.c
index 566dd86c857a..e8e78bd7bc6d 100644
--- a/drivers/scsi/megaraid/megaraid_sas_base.c
+++ b/drivers/scsi/megaraid/megaraid_sas_base.c
@@ -6630,11 +6630,16 @@ static int megasas_probe_one(struct pci_dev *pdev,
    return 0;
fail_start_aen:
+	instance->unload = 1;
+	scsi_remove_host(instance->host);
 fail_io_attach:
    megasas_mgmt_info.count--;
    megasas_mgmt_info.max_index--;
    megasas_mgmt_info.instance[megasas_mgmt_info.max_index] = NULL;
+	if (instance->requestorId && !instance->skip_heartbeat_timer_del)
+		del_timer_sync(&instance->sriov_heartbeat_timer);
+
    instance->instancet->disable_intr(instance);
    megasas_destroy_irqs(instance);
@@ -6642,8 +6647,16 @@ static int megasas_probe_one(struct pci_dev *pdev,
    	megasas_release_fusion(instance);
    else
    	megasas_release_mfi(instance);
+
    if (instance->msix_vectors)
    	pci_free_irq_vectors(instance->pdev);
+	instance->msix_vectors = 0;
+
+	if (instance->fw_crash_state != UNAVAILABLE)
+		megasas_free_host_crash_buffer(instance);
+
+	if (instance->adapter_type != MFI_SERIES)
+		megasas_fusion_stop_watchdog(instance);
 fail_init_mfi:
    scsi_host_put(host);
 fail_alloc_instance:
diff --git a/drivers/scsi/megaraid/megaraid_sas_fusion.c b/drivers/scsi/megaraid/megaraid_sas_fusion.c
index 7e1f6ef74f6c..26bb7f33afd9 100644
--- a/drivers/scsi/megaraid/megaraid_sas_fusion.c
+++ b/drivers/scsi/megaraid/megaraid_sas_fusion.c
@@ -4936,6 +4936,7 @@ megasas_alloc_fusion_context(struct megasas_instance *instance)
    	if (!fusion->log_to_span) {
    		dev_err(&instance->pdev->dev, "Failed from %s %d\n",
    			__func__, __LINE__);
+			kfree(instance->ctrl_context);
    		return -ENOMEM;
    	}
    }
-- 
2.34.1


    

2024

2023

2022

2021

2020

2019

[PATCH openEuler-1.0-LTS 2/2] scsi: megaraid_sas: Fix resource leak in case of probe failure