scsi: iscsi: target: Don't use stack buffer for scatterlist

author Laura Abbott <labbott@redhat.com>

Tue, 4 Sep 2018 18:47:40 +0000 (11:47 -0700)

committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Thu, 18 Oct 2018 07:16:21 +0000 (09:16 +0200)
author Laura Abbott <labbott@redhat.com>
Tue, 4 Sep 2018 18:47:40 +0000 (11:47 -0700)
committer Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 18 Oct 2018 07:16:21 +0000 (09:16 +0200)
diff --git a/drivers/target/iscsi/iscsi_target.c b/drivers/target/iscsi/iscsi_target.c

index 52fa52c..d2cafda 100644 (file)
--- a/drivers/target/iscsi/iscsi_target.c
+++ b/drivers/target/iscsi/iscsi_target.c
@@ -1421,7 +1421,8 @@ static void iscsit_do_crypto_hash_buf(
  
         sg_init_table(sg, ARRAY_SIZE(sg));
         sg_set_buf(sg, buf, payload_length);
-       sg_set_buf(sg + 1, pad_bytes, padding);
+       if (padding)
+               sg_set_buf(sg + 1, pad_bytes, padding);
  
         ahash_request_set_crypt(hash, sg, data_crc, payload_length + padding);
  
@@ -3942,10 +3943,14 @@ static bool iscsi_target_check_conn_state(struct iscsi_conn *conn)
  static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
  {
         int ret;
-       u8 buffer[ISCSI_HDR_LEN], opcode;
+       u8 *buffer, opcode;
         u32 checksum = 0, digest = 0;
         struct kvec iov;
  
+       buffer = kcalloc(ISCSI_HDR_LEN, sizeof(*buffer), GFP_KERNEL);
+       if (!buffer)
+               return;
+
         while (!kthread_should_stop()) {
                 /*
                  * Ensure that both TX and RX per connection kthreads
@@ -3953,7 +3958,6 @@ static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
                  */
                 iscsit_thread_check_cpumask(conn, current, 0);
  
-               memset(buffer, 0, ISCSI_HDR_LEN);
                 memset(&iov, 0, sizeof(struct kvec));
  
                 iov.iov_base    = buffer;
@@ -3962,7 +3966,7 @@ static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
                 ret = rx_data(conn, &iov, 1, ISCSI_HDR_LEN);
                 if (ret != ISCSI_HDR_LEN) {
                         iscsit_rx_thread_wait_for_tcp(conn);
-                       return;
+                       break;
                 }
  
                 if (conn->conn_ops->HeaderDigest) {
@@ -3972,7 +3976,7 @@ static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
                         ret = rx_data(conn, &iov, 1, ISCSI_CRC_LEN);
                         if (ret != ISCSI_CRC_LEN) {
                                 iscsit_rx_thread_wait_for_tcp(conn);
-                               return;
+                               break;
                         }
  
                         iscsit_do_crypto_hash_buf(conn->conn_rx_hash,
@@ -3996,7 +4000,7 @@ static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
                 }
  
                 if (conn->conn_state == TARG_CONN_STATE_IN_LOGOUT)
-                       return;
+                       break;
  
                 opcode = buffer[0] & ISCSI_OPCODE_MASK;
  
@@ -4007,13 +4011,15 @@ static void iscsit_get_rx_pdu(struct iscsi_conn *conn)
                         " while in Discovery Session, rejecting.\n", opcode);
                         iscsit_add_reject(conn, ISCSI_REASON_PROTOCOL_ERROR,
                                           buffer);
-                       return;
+                       break;
                 }
  
                 ret = iscsi_target_rx_opcode(conn, buffer);
                 if (ret < 0)
-                       return;
+                       break;
         }
+
+       kfree(buffer);
  }
  
  int iscsi_target_rx_thread(void *arg)
author	Laura Abbott <labbott@redhat.com>
	Tue, 4 Sep 2018 18:47:40 +0000 (11:47 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Thu, 18 Oct 2018 07:16:21 +0000 (09:16 +0200)