Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp4330428pxj; Tue, 8 Jun 2021 11:40:41 -0700 (PDT) X-Google-Smtp-Source: ABdhPJy9EuwAtNbQItcHObh3Zesip7hAyf6nr/8MI7+JH7k3S5yyIPHPv3VSL4wl1vSNtb5A3FWr X-Received: by 2002:a05:6402:1e8b:: with SMTP id f11mr14131410edf.86.1623177641337; Tue, 08 Jun 2021 11:40:41 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1623177641; cv=none; d=google.com; s=arc-20160816; b=T0OtfY1fYf2yRNvzuokKYXHQvQbOdfu6MvgAn4G5zVw3UkqlLptP2Tsih4OXXguXVn 2X5OtNMC9F7gJVfTFOjjsuQNOLSEIYniDWsWYrbC9o6+7Czcro0xzBX1uJSGxMOdUZxY 9/ZcCSjPwR/4g56/2TXuTjw0a9b3LpFc8/0x0T6uMBd0Hih8QqkYAOh7dJHc7wbYtOdA 0P9bhcyMzKB8IlHnIitf02VeCuktRORRc/feSB7mds/+Jh3/ow+IIhca32IMD5Eu+09o lJxinU+jzOvC7/OS8EMQtrS8yPzA8uI4B5wzY3SCcmg17DcyPCJMjfvM6dvRPfhePCjG 8omg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=puYLACPnoZkDESTI7OaMC81ZkdfSRTqlkMHo1okOv+M=; b=MNGP5sqn4oN0S1Yn006k7RCO4W2JIZses1uQFvBcwIfLJiajyg7nGBCExu5OCBFGcK 0mFTr+6Fm7ZAvL86NvNAamLFJsz4GImhBzzyn2GW8oRGrnah+JavnAHO7iKxK6hcOBsW obRC490E+TxnXLRsdcuOsSmwzKcktYRBKYV15zr7boErJpLShE3vNTCXvHXY29gY5wkr 5bVRu5p4G8xv7KjK+Xy1ZYk2fHpC7T9l9ajf0vWwzu3r/++zBnoKs8lFIbCuP4wHU2YH tBwvt7ipYnfZRZiR0t5QaKQZvBmdiXnB3rGniW85AnI3snPMhSCAY9sej7HGcgYehSTr ZAvg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=e5folEwU; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id r10si341217edy.600.2021.06.08.11.40.17; Tue, 08 Jun 2021 11:40:41 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=e5folEwU; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234711AbhFHShv (ORCPT + 99 others); Tue, 8 Jun 2021 14:37:51 -0400 Received: from mail.kernel.org ([198.145.29.99]:57158 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234326AbhFHSfo (ORCPT ); Tue, 8 Jun 2021 14:35:44 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id EDE3E613BD; Tue, 8 Jun 2021 18:32:23 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1623177144; bh=21cFPKG5Z22ciNHkdyXVuM7fbTV+39eSZSfDG/W38F8=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=e5folEwUPHQFtUXG8L72eqkpvxnmSzxLGIdY+kf48OlPoQtfr6NmN97hlTbVXWYe8 SxVfiIGms0ecbspUyokpa9iDzVMuAxnQ3itOhawc1r05W3SgbA7XGUPrkZdWz6iev5 ZF/pHvh1swjTuqV787r4JqI5vuRVRS3Tc6H23FBs= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Pavel Skripkin , "David S. Miller" Subject: [PATCH 4.14 16/47] net: caif: add proper error handling Date: Tue, 8 Jun 2021 20:26:59 +0200 Message-Id: <20210608175931.014250942@linuxfoundation.org> X-Mailer: git-send-email 2.32.0 In-Reply-To: <20210608175930.477274100@linuxfoundation.org> References: <20210608175930.477274100@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Pavel Skripkin commit a2805dca5107d5603f4bbc027e81e20d93476e96 upstream. caif_enroll_dev() can fail in some cases. Ingnoring these cases can lead to memory leak due to not assigning link_support pointer to anywhere. Fixes: 7c18d2205ea7 ("caif: Restructure how link caif link layer enroll") Cc: stable@vger.kernel.org Signed-off-by: Pavel Skripkin Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman --- include/net/caif/caif_dev.h | 2 +- include/net/caif/cfcnfg.h | 2 +- net/caif/caif_dev.c | 8 +++++--- net/caif/cfcnfg.c | 16 +++++++++++----- 4 files changed, 18 insertions(+), 10 deletions(-) --- a/include/net/caif/caif_dev.h +++ b/include/net/caif/caif_dev.h @@ -119,7 +119,7 @@ void caif_free_client(struct cflayer *ad * The link_support layer is used to add any Link Layer specific * framing. */ -void caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, +int caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, struct cflayer *link_support, int head_room, struct cflayer **layer, int (**rcv_func)( struct sk_buff *, struct net_device *, --- a/include/net/caif/cfcnfg.h +++ b/include/net/caif/cfcnfg.h @@ -62,7 +62,7 @@ void cfcnfg_remove(struct cfcnfg *cfg); * @fcs: Specify if checksum is used in CAIF Framing Layer. * @head_room: Head space needed by link specific protocol. */ -void +int cfcnfg_add_phy_layer(struct cfcnfg *cnfg, struct net_device *dev, struct cflayer *phy_layer, enum cfcnfg_phy_preference pref, --- a/net/caif/caif_dev.c +++ b/net/caif/caif_dev.c @@ -303,7 +303,7 @@ static void dev_flowctrl(struct net_devi caifd_put(caifd); } -void caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, +int caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, struct cflayer *link_support, int head_room, struct cflayer **layer, int (**rcv_func)(struct sk_buff *, struct net_device *, @@ -314,11 +314,12 @@ void caif_enroll_dev(struct net_device * enum cfcnfg_phy_preference pref; struct cfcnfg *cfg = get_cfcnfg(dev_net(dev)); struct caif_device_entry_list *caifdevs; + int res; caifdevs = caif_device_list(dev_net(dev)); caifd = caif_device_alloc(dev); if (!caifd) - return; + return -ENOMEM; *layer = &caifd->layer; spin_lock_init(&caifd->flow_lock); @@ -340,7 +341,7 @@ void caif_enroll_dev(struct net_device * sizeof(caifd->layer.name) - 1); caifd->layer.name[sizeof(caifd->layer.name) - 1] = 0; caifd->layer.transmit = transmit; - cfcnfg_add_phy_layer(cfg, + res = cfcnfg_add_phy_layer(cfg, dev, &caifd->layer, pref, @@ -350,6 +351,7 @@ void caif_enroll_dev(struct net_device * mutex_unlock(&caifdevs->lock); if (rcv_func) *rcv_func = receive; + return res; } EXPORT_SYMBOL(caif_enroll_dev); --- a/net/caif/cfcnfg.c +++ b/net/caif/cfcnfg.c @@ -452,7 +452,7 @@ unlock: rcu_read_unlock(); } -void +int cfcnfg_add_phy_layer(struct cfcnfg *cnfg, struct net_device *dev, struct cflayer *phy_layer, enum cfcnfg_phy_preference pref, @@ -461,7 +461,7 @@ cfcnfg_add_phy_layer(struct cfcnfg *cnfg { struct cflayer *frml; struct cfcnfg_phyinfo *phyinfo = NULL; - int i; + int i, res = 0; u8 phyid; mutex_lock(&cnfg->lock); @@ -475,12 +475,15 @@ cfcnfg_add_phy_layer(struct cfcnfg *cnfg goto got_phyid; } pr_warn("Too many CAIF Link Layers (max 6)\n"); + res = -EEXIST; goto out; got_phyid: phyinfo = kzalloc(sizeof(struct cfcnfg_phyinfo), GFP_ATOMIC); - if (!phyinfo) + if (!phyinfo) { + res = -ENOMEM; goto out_err; + } phy_layer->id = phyid; phyinfo->pref = pref; @@ -494,8 +497,10 @@ got_phyid: frml = cffrml_create(phyid, fcs); - if (!frml) + if (!frml) { + res = -ENOMEM; goto out_err; + } phyinfo->frm_layer = frml; layer_set_up(frml, cnfg->mux); @@ -513,11 +518,12 @@ got_phyid: list_add_rcu(&phyinfo->node, &cnfg->phys); out: mutex_unlock(&cnfg->lock); - return; + return res; out_err: kfree(phyinfo); mutex_unlock(&cnfg->lock); + return res; } EXPORT_SYMBOL(cfcnfg_add_phy_layer);