diff options
| author | David Disseldorp <ddiss@suse.de> | 2020-11-03 02:21:58 +0100 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2021-01-17 13:55:13 +0100 |
| commit | 87be50177ddb789330e6c5ddcc2f301cec0017dc (patch) | |
| tree | bbb23b04a1022327dd5bb9350054501f76dc05d0 /kernel/locking/rtmutex-debug.c | |
| parent | b0b95504f4e60a2aae6706655dfae46152258c4b (diff) | |
scsi: target: Fix XCOPY NAA identifier lookup
[ Upstream commit 2896c93811e39d63a4d9b63ccf12a8fbc226e5e4 ]
When attempting to match EXTENDED COPY CSCD descriptors with corresponding
se_devices, target_xcopy_locate_se_dev_e4() currently iterates over LIO's
global devices list which includes all configured backstores.
This change ensures that only initiator-accessible backstores are
considered during CSCD descriptor lookup, according to the session's
se_node_acl LUN list.
To avoid LUN removal race conditions, device pinning is changed from being
configfs based to instead using the se_node_acl lun_ref.
Reference: CVE-2020-28374
Fixes: cbf031f425fd ("target: Add support for EXTENDED_COPY copy offload emulation")
Reviewed-by: Lee Duncan <lduncan@suse.com>
Signed-off-by: David Disseldorp <ddiss@suse.de>
Signed-off-by: Mike Christie <michael.christie@oracle.com>
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
Diffstat (limited to 'kernel/locking/rtmutex-debug.c')
0 files changed, 0 insertions, 0 deletions