Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1753928AbcKVGcL (ORCPT <rfc822;w@1wt.eu>);
        Tue, 22 Nov 2016 01:32:11 -0500
Received: from mailout4.samsung.com ([203.254.224.34]:59818 "EHLO
        mailout4.samsung.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1752364AbcKVGcJ (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 22 Nov 2016 01:32:09 -0500
X-AuditID: cbfee61a-f79916d0000062de-b9-5833e666fdcd
From: Manjeet Pawar <manjeet.p@samsung.com>
To: davem@davemloft.net, kuznet@ms2.inr.ac.ru, jmorris@namei.org,
        yoshfuji@linux-ipv6.org, kaber@trash.net, netdev@vger.kernel.org,
        linux-kernel@vger.kernel.org
Cc: pankaj.m@samsung.com, ajeet.y@samsung.com,
        Rohit Thapliyal <r.thapliyal@samsung.com>,
        Manjeet Pawar <manjeet.p@samsung.com>
Subject: [PATCH] ipv6:ipv6_pinfo dereferenced after NULL check
Date: Tue, 22 Nov 2016 11:57:04 +0530
Message-id: <1479796024-39418-1-git-send-email-manjeet.p@samsung.com>
X-Mailer: git-send-email 1.9.1
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrELMWRmVeSWpSXmKPExsVy+t9jQd30Z8YRBlP/sFi8eDWBxWLO+RYW
        i3XrFzNZPNh8kdXiQtsrVovLu+awWdxrXctmcWyBmMW9N1uZLDbey7b4ureLxYHbY8vKm0we
        bddWMXls+f2dzaPne7JH35ZVjB5LJy1k8vi8SS6APcrNJiM1MSW1SCE1Lzk/JTMv3VYpNMRN
        10JJIS8xN9VWKULXNyRISaEsMacUyDMyQAMOzgHuwUr6dgluGZsXzWEt2M9RsXTnceYGxjds
        XYycHBICJhIvj55ghrDFJC7cWw8U5+IQEpjFKPFg5zkmCOcno8TEz89YQKrYBLQl9vxoYwdJ
        iAgsYZR48nI6WBWzQDOjxIfHxxhBqoQF7CTO7fgH1sEioCrx4uQfMJtXwFXi9L+7ULvlJE4e
        m8w6gZF7ASPDKkaJ1ILkguKk9FzDvNRyveLE3OLSvHS95PzcTYzg8H4mtYPx4C73Q4wCHIxK
        PLwnThpHCLEmlhVX5h5ilOBgVhLh/XwTKMSbklhZlVqUH19UmpNafIjRFOiAicxSosn5wNjL
        K4k3NDE3MTc2sDC3tDQxUhLnbZz9LFxIID2xJDU7NbUgtQimj4mDU6qB0XDr66kfzLIebdt9
        sPDKSTU3QZdY3X+rLtaHvf3P9rTs3WJGgcnswRcnnHi4I1Yp5vCDhX6Juj0x2vrfj761aP5r
        E2T313bGnd3nluqf6bPJ6GOZ+m3Fy+C/3vlfzy/2b/74u3kN33XnBTPPzN+prCWjqDHt6/x8
        MQaJnV2qtac3Lu/N8fiy7JcSS3FGoqEWc1FxIgCOppychQIAAA==
X-MTR: 20000000000000000@CPGS
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 1047
Lines: 38

From: Rohit Thapliyal <r.thapliyal@samsung.com>

np checked for NULL and then dereferenced. It should be modified
for NULL case.

Signed-off-by: Rohit Thapliyal <r.thapliyal@samsung.com>
Signed-off-by: Manjeet Pawar <manjeet.p@samsung.com>
---
 net/ipv6/ip6_output.c | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/net/ipv6/ip6_output.c b/net/ipv6/ip6_output.c
index 1dfc402..c2afa14 100644
--- a/net/ipv6/ip6_output.c
+++ b/net/ipv6/ip6_output.c
@@ -205,14 +205,15 @@ int ip6_xmit(const struct sock *sk, struct sk_buff *skb, struct flowi6 *fl6,
 	/*
 	 *	Fill in the IPv6 header
 	 */
-	if (np)
+	if (np) {
 		hlimit = np->hop_limit;
+		ip6_flow_hdr(
+					hdr, tclass, ip6_make_flowlabel(
+					net, skb, fl6->flowlabel,
+					np->autoflowlabel, fl6));
+	}
 	if (hlimit < 0)
 		hlimit = ip6_dst_hoplimit(dst);
 
-	ip6_flow_hdr(hdr, tclass, ip6_make_flowlabel(net, skb, fl6->flowlabel,
-				np->autoflowlabel, fl6));
-
 	hdr->payload_len = htons(seg_len);
 	hdr->nexthdr = proto;
 	hdr->hop_limit = hlimit;
-- 
1.9.1