rbd: Clear ceph_msg->bio_iter for retransmitted message The bug can cause NULL pointer dereference in write_partial_msg_pages Signed-off-by: Zheng Yan <zheng.z.yan@intel.com> Reviewed-by: Alex Elder <elder@inktank.com>

commit: 43643528cce60ca184fe8197efa8e8da7c89a037 [log] [tgz]
author: Yan, Zheng <zheng.z.yan@intel.com> Wed Jun 06 19:35:55 2012 -0500
committer: Alex Elder <elder@dreamhost.com> Thu Jun 07 08:27:33 2012 -0500
tree: b374f11881ac017c4bed056bee1b4de195c482d7
parent: 8921d114f5574c6da2cdd00749d185633ecf88f3 [diff] [blame]
diff --git a/net/ceph/messenger.c b/net/ceph/messenger.c
index 3857f81..769a2c9 100644
--- a/net/ceph/messenger.c
+++ b/net/ceph/messenger.c

@@ -649,6 +649,10 @@
 		m->hdr.seq = cpu_to_le64(++con->out_seq);
 		m->needs_out_seq = false;
 	}
+#ifdef CONFIG_BLOCK
+	else
+		m->bio_iter = NULL;
+#endif
 
 	dout("prepare_write_message %p seq %lld type %d len %d+%d+%d %d pgs\n",
 	     m, con->out_seq, le16_to_cpu(m->hdr.type),
commit	43643528cce60ca184fe8197efa8e8da7c89a037	[log] [tgz]
author	Yan, Zheng <zheng.z.yan@intel.com>	Wed Jun 06 19:35:55 2012 -0500
committer	Alex Elder <elder@dreamhost.com>	Thu Jun 07 08:27:33 2012 -0500
tree	b374f11881ac017c4bed056bee1b4de195c482d7
parent	8921d114f5574c6da2cdd00749d185633ecf88f3 [diff] [blame]