iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/drivers
History
Alan Stern 0a2314035c USB: Fix race condition when removing host controllers 
This patch (as1607) fixes a race that can occur if a USB host
controller is removed while a process is reading the
/sys/kernel/debug/usb/devices file.

The usb_device_read() routine uses the bus->root_hub pointer to
determine whether or not the root hub is registered.  The is not a
valid test, because the pointer is set before the root hub gets
registered and remains set even after the root hub is unregistered and
deallocated.  As a result, usb_device_read() or usb_device_dump() can
access freed memory, causing an oops.

The patch changes the test to use the hcd->rh_registered flag, which
does get set and cleared at the appropriate times.  It also makes sure
to hold the usb_bus_list_lock mutex while setting the flag, so that
usb_device_read() will become aware of new root hubs as soon as they
are registered.

Signed-off-by: Alan Stern <stern@rowland.harvard.edu>
Reported-by: Don Zickus <dzickus@redhat.com>
Cc: stable <stable@vger.kernel.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2012-09-26 10:21:08 -07:00
..
accessibility
acpi
ACPI / PM: Use KERN_DEBUG when no power resources are found
2012-09-14 20:54:44 +02:00
amba
Merge branch 'for-linus' of git://git.linaro.org/people/rmk/linux-arm
2012-07-27 15:14:26 -07:00
ata
ahci: Add identifiers for ASM106x devices
2012-09-13 00:24:29 -04:00
atm
drivers/atm/iphase.c: fix error return code
2012-08-06 13:29:57 -07:00
auxdisplay
base
mm: cma: fix alignment requirements for contiguous regions
2012-08-28 21:01:01 +02:00
bcma
bcma: BCM43228 support
2012-08-02 13:51:46 -04:00
block
Merge 3.6-rc6 into usb-next
2012-09-16 20:42:46 -07:00
bluetooth
Bluetooth: Add support for Apple vendor-specific devices
2012-08-27 08:36:42 -05:00
cdrom
char
drm/i915: fix hsw uncached pte
2012-08-17 09:21:35 +02:00
clk
clk: validate pointer in __clk_disable()
2012-07-30 17:25:13 -07:00
clocksource
cs5535-clockevt: typo, it's MFGPT, not MFPGT
2012-08-21 16:45:02 -07:00
connector
drivers: connector: fixed coding style issues
2012-07-16 23:23:52 -07:00
cpufreq
Merge branch 'imx/fixes-for-3.6' of git://git.linaro.org/people/shawnguo/linux-2.6 into fixes
2012-08-23 17:02:42 +02:00
cpuidle
cpuidle: Prevent null pointer dereference in cpuidle_coupled_cpu_notify
2012-08-17 19:37:08 +02:00
crypto
Merge git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6
2012-09-12 07:14:17 +08:00
dca
devfreq
dio
dma
dma: tegra: enable/disable dma clock
2012-08-13 10:15:22 +05:30
edac
Merge branch 'devel'
2012-07-29 21:11:05 -03:00
eisa
extcon
This is the remaining MFD fixes for 3.6, with 5 pending fixes:
2012-09-16 13:22:21 -07:00
firewire
- Small fixes and optimizations.
2012-07-30 09:32:39 -07:00
firmware
This patch series contains a major revamp of how we collect entropy
2012-07-31 19:07:42 -07:00
gpio
gpio: rdc321x: Prevent removal of modules exporting active GPIOs
2012-09-01 12:52:24 +02:00
gpu
drm/nouveau: fix booting with plymouth + dumb support
2012-09-14 15:45:01 +10:00
hid
Merge branch 'upstream-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jikos/hid
2012-09-07 12:29:38 -07:00
hsi
hv
This patch series contains a major revamp of how we collect entropy
2012-07-31 19:07:42 -07:00
hwmon
hwmon: (ina2xx) Fix word size register read and write operations
2012-09-12 06:42:11 -07:00
hwspinlock
i2c
Merge branch 'i2c-embedded/for-current' of git://git.pengutronix.de/git/wsa/linux
2012-09-14 17:55:57 -07:00
ide
ide: fix generic_ide_suspend/resume Oops
2012-08-21 14:54:42 -07:00
idle
intel_idle: Check cpu_idle_get_driver() for NULL before dereferencing it.
2012-08-17 19:37:14 +02:00
ieee802154
iio
drivers/iio/adc/at91_adc.c: adjust inconsistent IS_ERR and PTR_ERR
2012-08-27 21:15:25 +01:00
infiniband
Merge branches 'cma', 'ipoib', 'misc', 'mlx4', 'ocrdma', 'qib' and 'srp' into for-next
2012-08-16 09:38:39 -07:00
input
Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/dtor/input
2012-09-08 16:20:59 -07:00
iommu
iommu/amd: Fix wrong check for ARRAY_SIZE()
2012-08-10 11:34:08 +02:00
isdn
mISDN: Fix wrong usage of flush_work_sync while holding locks
2012-09-13 14:58:54 -04:00
leds
leds: renesas: fix error handling
2012-08-13 14:34:02 +08:00
lguest
macintosh
md
md/raid10: fix problem with on-stack allocation of r10bio structure.
2012-08-18 09:51:42 +10:00
media
Merge branch 'v4l_for_linus' of git://git.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media
2012-08-21 16:54:38 -07:00
memory
memstick
message
drivers/message/i2o/i2o_config.c: bound allocation
2012-07-30 17:25:17 -07:00
mfd
This is the remaining MFD fixes for 3.6, with 5 pending fixes:
2012-09-16 13:22:21 -07:00
misc
drivers/misc/sgi-xp/xpc_uv.c: SGI XPC fails to load when cpu 0 is out of IRQ resources
2012-08-21 16:45:03 -07:00
mmc
mmc: omap: fix broken PIO mode
2012-09-04 13:58:11 -04:00
mtd
UBI: fix a horrible memory deallocation bug
2012-09-04 09:40:26 +03:00
net
bnx2x: Add missing afex code
2012-09-13 16:37:52 -04:00
nfc
nubus
of
dt: introduce for_each_available_child_of_node, of_get_next_available_child
2012-08-20 02:16:00 -07:00
oprofile
parisc
PCI changes for the 3.6 merge window:
2012-07-24 16:17:07 -07:00
parport
pci
PCI: Don't print anything while decoding is disabled
2012-08-23 10:53:08 -06:00
pcmcia
Merge branch 'for-linus' of git://git.linaro.org/people/rmk/linux-arm
2012-07-27 15:14:26 -07:00
pinctrl
pinctrl/nomadik: add kp_b_2 keyboard function group list
2012-08-17 11:09:58 +02:00
platform
thinkpad_acpi: buffer overflow in fan_get_status()
2012-09-13 16:46:31 -04:00
pnp
power
Merge branch 'for-linus-3.6' of git://dev.laptop.org/users/dilinger/linux-olpc
2012-08-02 11:52:39 -07:00
pps
pps: return PTR_ERR on error in device_create
2012-07-30 17:25:21 -07:00
ps3
ptp
pwm
pwm: pwm-tiehrpwm: Fix conflicting channel period setting
2012-09-10 17:04:38 +02:00
rapidio
rapidio/tsi721: fix unused variable compiler warning
2012-08-21 16:45:03 -07:00
regulator
This is the remaining MFD fixes for 3.6, with 5 pending fixes:
2012-09-16 13:22:21 -07:00
remoteproc
A batch of remoteproc patches for 3.6:
2012-07-26 16:19:08 -07:00
rpmsg
A batch of remoteproc patches for 3.6:
2012-07-26 16:19:08 -07:00
rtc
Fixes for AT91 related to:
2012-08-27 17:07:37 -07:00
s390
s390/dasd: fix ioctl return value
2012-08-28 10:08:31 +02:00
sbus
scsi
[SCSI] Fix 'Device not ready' issue on mpt2sas
2012-08-22 09:42:54 +04:00
sfi
sh
sh: intc: Handle domain association for sparseirq pre-allocated vectors.
2012-08-09 13:21:05 +09:00
sn
spi
Merge branch 'upstream' of git://git.linux-mips.org/pub/scm/ralf/upstream-linus
2012-08-25 11:45:04 -07:00
ssb
staging
USB: Serial: serqt_usb2.c: remove debug module parameter
2012-09-18 10:15:09 +01:00
target
target: go through normal processing for zero-length REQUEST_SENSE
2012-09-07 11:32:54 -07:00
tc
thermal
The tag contains just a few battery-related changes for v3.6. It's is
2012-07-31 18:08:25 -07:00
tty
tty: serial: imx: don't reinit clock in imx_setup_ufcr()
2012-09-05 12:44:44 -07:00
uio
usb
USB: Fix race condition when removing host controllers
2012-09-26 10:21:08 -07:00
uwb
vfio
vfio: grab vfio_device reference *before* exposing the sucker via fd_install()
2012-08-22 10:26:42 -04:00
vhost
tcm_vhost: Fix vhost_scsi_target structure alignment
2012-08-20 14:52:11 -07:00
video
OMAPFB: fix framebuffer console colors
2012-08-23 12:37:22 +00:00
virt
virtio
[SCSI] virtio-scsi: Add vdrv->scan for post VIRTIO_CONFIG_S_DRIVER_OK LUN scanning
2012-07-20 08:59:03 +01:00
vlynq
vme
VME: Prevent D16 cycles being split into 8-bit blocks
2012-07-19 15:39:39 -07:00
w1
1-Wire: Add support for the maxim ds1825 temperature sensor
2012-08-16 12:33:59 -07:00
watchdog
watchdog: da9052: Remove duplicate inclusion of delay.h
2012-08-29 17:13:06 +02:00
xen
USB EHCI/Xen: propagate controller reset information to hypervisor
2012-09-18 17:20:48 +01:00
zorro
zorro: Remove unused zorro_bus.devices
2012-07-15 19:56:38 +02:00
Kconfig
vfio: VFIO core
2012-07-31 08:16:22 -06:00
Makefile
vfio: VFIO core
2012-07-31 08:16:22 -06:00