Received: by 2002:a25:824b:0:0:0:0:0 with SMTP id d11csp1895988ybn;
        Thu, 26 Sep 2019 03:58:49 -0700 (PDT)
X-Google-Smtp-Source: APXvYqw5uXJIwKEGdNepUPHxgUHNbPrkEGCMrh0JYjsZ9A08ZGKK0nNInT1cJplZkO8u5clQzGKm
X-Received: by 2002:a17:906:8319:: with SMTP id j25mr2540137ejx.122.1569495529166;
        Thu, 26 Sep 2019 03:58:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1569495529; cv=none;
        d=google.com; s=arc-20160816;
        b=M8E63sKwY9zn92Q7kXMC3678azTjsuxJhvkYjQog5UYnAIszXymL+iWW7vcjdH10Mt
         oX5A581mXFjoQiYGZPackOorRgHsanXiBZ/UOZq+CG1hJkAvCXD6Eu+6L4hrzTavd6Ap
         xEjIFY/7qQcivTixeLpoFO4V39/Lwj8IdkKndTpXTwpu6lun8Yc6buh8LG+175m9Im/q
         hoW/B3bwJv3j1lFPJMFWN4AwZVddsCVO//J6yxAERjPde0XOdZwm1myCxgoXweXzd/mB
         xXXHZllLRiuNLccN1VzbZpq5AvmG1KZs9Eb29H8EuCjnOJSJQ7Rex755KL/b9dXVKRoz
         guCA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:cc:to:subject:dkim-signature;
        bh=cLDBlYUmNrPQrO4eVaMtvr6RX8X34auEyuZMhH4LAik=;
        b=tcWsCz7RkFPAl5SthDjBeBVNGMpstWGilnw6k89rLiCgC9Nc89yoVLRsCZLCTaDdXN
         sTdTXsqGXImbCx7EFDxJywfV0fHYuq/vh7p7YUwLMrqW7jvAUjhfUXrfPggpmQc8vvkC
         7jfiNWiwD/lIjCnMDX9UOG0CjmRLHMyKruUsibmrTYRwBMNuFCoilTUAF4rR3V2SNZXM
         r63Er4tdFRM5vLx4G6lCETw6zPAAMf0wHuPmNrlrN626AotKr4z7huE8MjU0VyTQddrp
         H7MXyAVfE2hhSDgEA+tb0AC3KDivEIAmBzCYb9w/MEsycMQv6+oSq+s5gedLtvu1uPL1
         a+sw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@gmail.com header.s=20161025 header.b="UmBs2pc/";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id b22si1114087eda.194.2019.09.26.03.58.25;
        Thu, 26 Sep 2019 03:58:49 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@gmail.com header.s=20161025 header.b="UmBs2pc/";
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S2387594AbfIZAFn (ORCPT <rfc822;ayiehere@gmail.com> + 99 others);
        Wed, 25 Sep 2019 20:05:43 -0400
Received: from mail-ot1-f65.google.com ([209.85.210.65]:39224 "EHLO
        mail-ot1-f65.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S2387449AbfIZAFn (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 25 Sep 2019 20:05:43 -0400
Received: by mail-ot1-f65.google.com with SMTP id s22so409792otr.6;
        Wed, 25 Sep 2019 17:05:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=sender:subject:to:cc:references:from:message-id:date:user-agent
         :mime-version:in-reply-to:content-language:content-transfer-encoding;
        bh=cLDBlYUmNrPQrO4eVaMtvr6RX8X34auEyuZMhH4LAik=;
        b=UmBs2pc/Zvu6RyHaZ3E3Zph8I97+mpbFMmp0wAhC4XuCt4lrQ4CMSlnMa6oz/VbC0w
         808hdIHq6Qsn3oszdBYWWUIfr8yRYW35NT3/jAFdJKdtx2SDDuB2SGwltamMntDJaqgT
         lUkScSAQYQ+UsLYh8jaFzomkjdgDsKSWWYwlumew6E6ewzbOY1hnBAkKLEBVz/zPMNwI
         anizYEtGwTNmWvPPi8bPqhrtY8Xqup607P5kgu3SeWpl3G/blyzHnQAAbrBhk0+dYqGt
         oAI09pf7ovdOf2mjr6Uevr3SuEY2sVfi1dyefPoERqKTkxBJGTmAKLAWxk821fz7MQdl
         FsXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:sender:subject:to:cc:references:from:message-id
         :date:user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=cLDBlYUmNrPQrO4eVaMtvr6RX8X34auEyuZMhH4LAik=;
        b=gdmwII3o28y+4mDuVrtJh6BY6C2/b4u7b3AjdttE7mP0eun8E+9tJMitKeg/r5YEPf
         AP20AQBFzR7tmwfV/cBPfDXS70Wpo/c+xk0Aue7/pCha+N3XuBQnuDD99n6675jG74aW
         pQNAL79WjKeHogZX9nvY8BWTtZW/N9cJvTzfnq+aZkE7/sQcOJk4k9ol5Dd47y4riImF
         c5iM8xhIlrRE+MGqUE9TQAtVWldak8DrkjbPJ2FS3E+cd3qHN1gmzgweuJMGjpQo59ls
         7M8SB/n4IsZgeGudQAz7JM9sd1TLBF0/5ocmf9pBEy0f4uJgS27RBSsZZhNMFP0wADR4
         pdnQ==
X-Gm-Message-State: APjAAAWyD4BQY6JVslOMC1U8Msn+AUcpIu4ZXGj1NRyPp9bGjX+cgxJF
        OmdJvr6Yp+E7W2Mxob/s3x68sI1X
X-Received: by 2002:a05:6830:4a5:: with SMTP id l5mr553245otd.150.1569456342282;
        Wed, 25 Sep 2019 17:05:42 -0700 (PDT)
Received: from [192.168.1.112] (cpe-24-31-245-230.kc.res.rr.com. [24.31.245.230])
        by smtp.gmail.com with ESMTPSA id k34sm108144otk.51.2019.09.25.17.05.40
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Wed, 25 Sep 2019 17:05:41 -0700 (PDT)
Subject: Re: [PATCH] staging: rtl8188eu: fix possible null dereference
To:     Connor Kuehl <connor.kuehl@canonical.com>,
        gregkh@linuxfoundation.org, straube.linux@gmail.com,
        devel@driverdev.osuosl.org
Cc:     linux-kernel@vger.kernel.org, kernel-janitors@vger.kernel.org
References: <20190925213215.25082-1-connor.kuehl@canonical.com>
From:   Larry Finger <Larry.Finger@lwfinger.net>
Message-ID: <b725820f-525c-519b-4474-476abf004985@lwfinger.net>
Date:   Wed, 25 Sep 2019 19:05:40 -0500
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101
 Thunderbird/68.1.0
MIME-Version: 1.0
In-Reply-To: <20190925213215.25082-1-connor.kuehl@canonical.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 9/25/19 4:32 PM, Connor Kuehl wrote:
> Inside a nested 'else' block at the beginning of this function is a
> call that assigns 'psta' to the return value of 'rtw_get_stainfo()'.
> If 'rtw_get_stainfo()' returns NULL and the flow of control reaches
> the 'else if' where 'psta' is dereferenced, then we will dereference
> a NULL pointer.
> 
> Fix this by checking if 'psta' is not NULL before reading its
> 'psta->qos_option' data member.
> 
> Addresses-Coverity: ("Dereference null return value")
> 
> Signed-off-by: Connor Kuehl <connor.kuehl@canonical.com>
> ---
>   drivers/staging/rtl8188eu/core/rtw_xmit.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
> 
> diff --git a/drivers/staging/rtl8188eu/core/rtw_xmit.c b/drivers/staging/rtl8188eu/core/rtw_xmit.c
> index 952f2ab51347..bf8877cbe9b6 100644
> --- a/drivers/staging/rtl8188eu/core/rtw_xmit.c
> +++ b/drivers/staging/rtl8188eu/core/rtw_xmit.c
> @@ -784,7 +784,7 @@ s32 rtw_make_wlanhdr(struct adapter *padapter, u8 *hdr, struct pkt_attrib *pattr
>   			memcpy(pwlanhdr->addr2, pattrib->src, ETH_ALEN);
>   			memcpy(pwlanhdr->addr3, get_bssid(pmlmepriv), ETH_ALEN);
>   
> -			if (psta->qos_option)
> +			if (psta && psta->qos_option)
>   				qos_option = true;
>   		} else {
>   			RT_TRACE(_module_rtl871x_xmit_c_, _drv_err_, ("fw_state:%x is not allowed to xmit frame\n", get_fwstate(pmlmepriv)));
> 

This change is a good one, but why not get the same fix at line 779?

Larry