Eric Lee / smarc-uboot

Download as
Browse Code ยป

Commit 3f62971162370213271dc1e7a396b6b3a6d5b6c6

Authored by Roger Quadros
Committed by Tom Rini
1 parent 1336e2d343
Exists in v2017.01-smarct4x and in 48 other branches 8qm-imx_v2020.04_5.4.70_2.3.0, emb_lf_v2022.04, imx_v2015.04_4.1.15_1.0.0_ga, pitx_8mp_lf_v2020.04, smarc-8m-android-10.0.0_2.6.0, smarc-8m-android-11.0.0_2.0.0, smarc-8mp-android-11.0.0_2.0.0, smarc-emmc-imx_v2014.04_3.10.53_1.1.0_ga, smarc-emmc-imx_v2014.04_3.14.28_1.0.0_ga, smarc-imx-l5.0.0_1.0.0-ga, smarc-imx6_v2018.03_4.14.98_2.0.0_ga, smarc-imx7_v2017.03_4.9.11_1.0.0_ga, smarc-imx7_v2018.03_4.14.98_2.0.0_ga, smarc-imx_v2014.04_3.14.28_1.0.0_ga, smarc-imx_v2015.04_4.1.15_1.0.0_ga, smarc-imx_v2017.03_4.9.11_1.0.0_ga, smarc-imx_v2017.03_4.9.88_2.0.0_ga, smarc-imx_v2017.03_o8.1.0_1.3.0_8m, smarc-imx_v2018.03_4.14.78_1.0.0_ga, smarc-m6.0.1_2.1.0-ga, smarc-n7.1.2_2.0.0-ga, smarc-rel_imx_4.1.15_2.0.0_ga, smarc_8m-imx_v2018.03_4.14.98_2.0.0_ga, smarc_8m-imx_v2019.04_4.19.35_1.1.0, smarc_8m_00d0-imx_v2018.03_4.14.98_2.0.0_ga, smarc_8mm-imx_v2018.03_4.14.98_2.0.0_ga, smarc_8mm-imx_v2019.04_4.19.35_1.1.0, smarc_8mm-imx_v2020.04_5.4.24_2.1.0, smarc_8mp_lf_v2020.04, smarc_8mq-imx_v2020.04_5.4.24_2.1.0, smarc_8mq_lf_v2020.04, ti-u-boot-2015.07, v2014.04, v2014.04-smarct33, v2014.04-smarct33-emmc, v2014.04-smartmen, v2014.07, v2014.07-smarct33, v2014.07-smartmen, v2015.07-smarct33, v2015.07-smarct33-emmc, v2015.07-smarct4x, v2016.05-dlt, v2016.05-smarct3x, v2016.05-smarct3x-emmc, v2016.05-smarct4x, v2017.01-smarct3x, v2017.01-smarct3x-emmc

ahci: Fix data abort on multiple scsi resets. 

Commit 2faf5fb82ed6 introduced a regression that causes a data
abort when running scsi init followed by scsi reset.

There are 2 problems with the original commit
1) ALLOC_CACHE_ALIGN_BUFFER() allocates memory on the stack but is
assigned to ataid[port] and used by other functions.
2) The function ata_scsiop_inquiry() tries to free memory which was
never allocated on the heap.

Fix these problems by using tmpid as a temporary cache aligned buffer.
Allocate memory separately for ataid[port] and re-use it if required.

Fixes: 2faf5fb82ed6 (ahci: Fix cache align error messages)

Reported-by: Eli Nidam <elini@marvell.com>
Signed-off-by: Roger Quadros <rogerq@ti.com>

Showing 1 changed file with 16 additions and 7 deletions Side-by-side Diff

drivers/block/ahci.c
Diff comments   View file @ 3f62971
... ... @@ -623,6 +623,7 @@
623 623 95 - 4,
624 624 };
625 625 u8 fis[20];
  626 + u16 *idbuf;
626 627 ALLOC_CACHE_ALIGN_BUFFER(u16, tmpid, ATA_ID_WORDS);
627 628 u8 port;
628 629  
629 630  
630 631  
631 632  
... ... @@ -649,17 +650,25 @@
649 650 return -EIO;
650 651 }
651 652  
652   - if (ataid[port])
653   - free(ataid[port]);
654   - ataid[port] = tmpid;
655   - ata_swap_buf_le16(tmpid, ATA_ID_WORDS);
  653 + if (!ataid[port]) {
  654 + ataid[port] = malloc(ATA_ID_WORDS * 2);
  655 + if (!ataid[port]) {
  656 + printf("%s: No memory for ataid[port]\n", __func__);
  657 + return -ENOMEM;
  658 + }
  659 + }
656 660  
  661 + idbuf = ataid[port];
  662 +
  663 + memcpy(idbuf, tmpid, ATA_ID_WORDS * 2);
  664 + ata_swap_buf_le16(idbuf, ATA_ID_WORDS);
  665 +
657 666 memcpy(&pccb->pdata[8], "ATA ", 8);
658   - ata_id_strcpy((u16 *) &pccb->pdata[16], &tmpid[ATA_ID_PROD], 16);
659   - ata_id_strcpy((u16 *) &pccb->pdata[32], &tmpid[ATA_ID_FW_REV], 4);
  667 + ata_id_strcpy((u16 *)&pccb->pdata[16], &idbuf[ATA_ID_PROD], 16);
  668 + ata_id_strcpy((u16 *)&pccb->pdata[32], &idbuf[ATA_ID_FW_REV], 4);
660 669  
661 670 #ifdef DEBUG
662   - ata_dump_id(tmpid);
  671 + ata_dump_id(idbuf);
663 672 #endif
664 673 return 0;
665 674 }