git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Brian Kao <powenkao@google.com>
	Thu, 18 Dec 2025 03:17:23 +0000 (03:17 +0000)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 23 Jan 2026 10:18:43 +0000 (11:18 +0100)
commit	bfa97e3cc06926f80fc756b4724ff7d789f42956
tree	3cd8aa53843a82bc02f591bc29c692db75194de7	tree \| snapshot
parent	42ba3197a5d2b754ddf812eb40cf6005551cc3b6	commit \| diff

scsi: core: Fix error handler encryption support

commit 9a49157deeb23581fc5c8189b486340d7343264a upstream.

Some low-level drivers (LLD) access block layer crypto fields, such as
rq->crypt_keyslot and rq->crypt_ctx within `struct request`, to
configure hardware for inline encryption. However, SCSI Error Handling
(EH) commands (e.g., TEST UNIT READY, START STOP UNIT) should not
involve any encryption setup.

To prevent drivers from erroneously applying crypto settings during EH,
this patch saves the original values of rq->crypt_keyslot and
rq->crypt_ctx before an EH command is prepared via scsi_eh_prep_cmnd().
These fields in the 'struct request' are then set to NULL. The original
values are restored in scsi_eh_restore_cmnd() after the EH command
completes.

This ensures that the block layer crypto context does not leak into EH
command execution.

Signed-off-by: Brian Kao <powenkao@google.com>
Link: https://patch.msgid.link/20251218031726.2642834-1-powenkao@google.com
Cc: stable@vger.kernel.org
Reviewed-by: Bart Van Assche <bvanassche@acm.org>
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

drivers/scsi/scsi_error.c		diff \| blob \| blame \| history
include/scsi/scsi_eh.h		diff \| blob \| blame \| history