Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp4853239pxj; Wed, 9 Jun 2021 03:35:34 -0700 (PDT) X-Google-Smtp-Source: ABdhPJze1zhQAIuTPI1ybEsc1fWDJt+BkbiTb8LTlcRbsWB4yVqF0kgGLj+g6oxfizL3YymuYWmF X-Received: by 2002:a17:906:edb3:: with SMTP id sa19mr27567148ejb.75.1623234934199; Wed, 09 Jun 2021 03:35:34 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1623234934; cv=none; d=google.com; s=arc-20160816; b=jQbXpGW10zMLzhWwlp/FiXThXXCGi/qr8Q2yvbgQOhwxuM9w1q0EUxrvj7kj5rxwL5 UvqxGIQI7XEHF6pnPEc6Ljsj4NqYGRi5UTYyUrQC2e8GvZydrC8BjiadWWNqNS7cjQly V+opj3RGxuL+1veMDaniMrI2rjoULZ7xVhsqyaQcuAebRpPUckUj6yh13lzOsSQF1Hir ijjbVls7knx9tE/lV6jZT1oZTO2XaBnIyIFw/Z0K5xnh3V8cA0K2MXnzGjkqHDGYNM7W BTaDmaQeuV7W3g6tybOVMM3Ffu70/5UJWYKUGfUDwiYNyF3sAZ8k3QhVE49RpWHrGFko hhjQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=8/FS9GrO0yxXGKXPhAf1g4ffD87foSy4nuCqxnbqOFs=; b=Emtyx8qTlpRSlGqujPGhg/MlUyaaxNLRSGJRfuaHmm7hWw8zKgokbjA8QHCzfhQos8 8mj9E8hLKicEJOGFgNabgioitOD0uZdYvU/2EgG0ovCoU+FOFALe9m+KqOit+iQDURtM HRPB9No+2k4+3j9ZFPPGiHx2MsKkCVej2Cr5g9uDD+FkfPxHLW2oUrzTNdFnsmEe+bPR nIyubh4yDnRzhBBIJ7AYGYNe3ofzTNawTbcijdq6xBzBwv+B5pd3+182MJ0TjMD2Lsz6 y13zMjDnJCryZAkd/vG8Qjwpod5fSiFJwbzcjxl7IenyuctaFVibTb8QKcjSLcpfJcQK x1ag== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=Qx1P9vjj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id lc28si2261385ejc.270.2021.06.09.03.35.11; Wed, 09 Jun 2021 03:35:34 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=Qx1P9vjj; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234088AbhFHTHc (ORCPT + 99 others); Tue, 8 Jun 2021 15:07:32 -0400 Received: from mail.kernel.org ([198.145.29.99]:35478 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S236549AbhFHS6V (ORCPT ); Tue, 8 Jun 2021 14:58:21 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id 17D9761627; Tue, 8 Jun 2021 18:42:38 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1623177759; bh=6QUSFfw18uY2Xgbyr2cZj/59BvGaYuy0lzJV0j/Z/xE=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=Qx1P9vjjn5RG5cuV2sj/xoYVLTBHj8xFdLvw+dW+L91+cYo/LehIsT6OtN8c0exeQ ABY8oaMBFIGsYLXvswV3UdxFCPVBzacWAxQRVOTZLxkcCcwY996exSdjT/jCdofpe7 EIwIFz3zNycGU/FpBuKjzfjdDn853fePAPey5BlI= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Pavel Skripkin , "David S. Miller" Subject: [PATCH 5.10 090/137] net: caif: add proper error handling Date: Tue, 8 Jun 2021 20:27:10 +0200 Message-Id: <20210608175945.423330890@linuxfoundation.org> X-Mailer: git-send-email 2.32.0 In-Reply-To: <20210608175942.377073879@linuxfoundation.org> References: <20210608175942.377073879@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Pavel Skripkin commit a2805dca5107d5603f4bbc027e81e20d93476e96 upstream. caif_enroll_dev() can fail in some cases. Ingnoring these cases can lead to memory leak due to not assigning link_support pointer to anywhere. Fixes: 7c18d2205ea7 ("caif: Restructure how link caif link layer enroll") Cc: stable@vger.kernel.org Signed-off-by: Pavel Skripkin Signed-off-by: David S. Miller Signed-off-by: Greg Kroah-Hartman --- include/net/caif/caif_dev.h | 2 +- include/net/caif/cfcnfg.h | 2 +- net/caif/caif_dev.c | 8 +++++--- net/caif/cfcnfg.c | 16 +++++++++++----- 4 files changed, 18 insertions(+), 10 deletions(-) --- a/include/net/caif/caif_dev.h +++ b/include/net/caif/caif_dev.h @@ -119,7 +119,7 @@ void caif_free_client(struct cflayer *ad * The link_support layer is used to add any Link Layer specific * framing. */ -void caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, +int caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, struct cflayer *link_support, int head_room, struct cflayer **layer, int (**rcv_func)( struct sk_buff *, struct net_device *, --- a/include/net/caif/cfcnfg.h +++ b/include/net/caif/cfcnfg.h @@ -62,7 +62,7 @@ void cfcnfg_remove(struct cfcnfg *cfg); * @fcs: Specify if checksum is used in CAIF Framing Layer. * @head_room: Head space needed by link specific protocol. */ -void +int cfcnfg_add_phy_layer(struct cfcnfg *cnfg, struct net_device *dev, struct cflayer *phy_layer, enum cfcnfg_phy_preference pref, --- a/net/caif/caif_dev.c +++ b/net/caif/caif_dev.c @@ -308,7 +308,7 @@ static void dev_flowctrl(struct net_devi caifd_put(caifd); } -void caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, +int caif_enroll_dev(struct net_device *dev, struct caif_dev_common *caifdev, struct cflayer *link_support, int head_room, struct cflayer **layer, int (**rcv_func)(struct sk_buff *, struct net_device *, @@ -319,11 +319,12 @@ void caif_enroll_dev(struct net_device * enum cfcnfg_phy_preference pref; struct cfcnfg *cfg = get_cfcnfg(dev_net(dev)); struct caif_device_entry_list *caifdevs; + int res; caifdevs = caif_device_list(dev_net(dev)); caifd = caif_device_alloc(dev); if (!caifd) - return; + return -ENOMEM; *layer = &caifd->layer; spin_lock_init(&caifd->flow_lock); @@ -344,7 +345,7 @@ void caif_enroll_dev(struct net_device * strlcpy(caifd->layer.name, dev->name, sizeof(caifd->layer.name)); caifd->layer.transmit = transmit; - cfcnfg_add_phy_layer(cfg, + res = cfcnfg_add_phy_layer(cfg, dev, &caifd->layer, pref, @@ -354,6 +355,7 @@ void caif_enroll_dev(struct net_device * mutex_unlock(&caifdevs->lock); if (rcv_func) *rcv_func = receive; + return res; } EXPORT_SYMBOL(caif_enroll_dev); --- a/net/caif/cfcnfg.c +++ b/net/caif/cfcnfg.c @@ -450,7 +450,7 @@ unlock: rcu_read_unlock(); } -void +int cfcnfg_add_phy_layer(struct cfcnfg *cnfg, struct net_device *dev, struct cflayer *phy_layer, enum cfcnfg_phy_preference pref, @@ -459,7 +459,7 @@ cfcnfg_add_phy_layer(struct cfcnfg *cnfg { struct cflayer *frml; struct cfcnfg_phyinfo *phyinfo = NULL; - int i; + int i, res = 0; u8 phyid; mutex_lock(&cnfg->lock); @@ -473,12 +473,15 @@ cfcnfg_add_phy_layer(struct cfcnfg *cnfg goto got_phyid; } pr_warn("Too many CAIF Link Layers (max 6)\n"); + res = -EEXIST; goto out; got_phyid: phyinfo = kzalloc(sizeof(struct cfcnfg_phyinfo), GFP_ATOMIC); - if (!phyinfo) + if (!phyinfo) { + res = -ENOMEM; goto out_err; + } phy_layer->id = phyid; phyinfo->pref = pref; @@ -492,8 +495,10 @@ got_phyid: frml = cffrml_create(phyid, fcs); - if (!frml) + if (!frml) { + res = -ENOMEM; goto out_err; + } phyinfo->frm_layer = frml; layer_set_up(frml, cnfg->mux); @@ -511,11 +516,12 @@ got_phyid: list_add_rcu(&phyinfo->node, &cnfg->phys); out: mutex_unlock(&cnfg->lock); - return; + return res; out_err: kfree(phyinfo); mutex_unlock(&cnfg->lock); + return res; } EXPORT_SYMBOL(cfcnfg_add_phy_layer);