Received: by 2002:a05:7412:e794:b0:fa:551:50a7 with SMTP id o20csp332775rdd;
        Tue, 9 Jan 2024 05:46:55 -0800 (PST)
X-Google-Smtp-Source: AGHT+IGabOEPhKwE8xJr5tKjfHR1JLkY/k6JwZAPot6Jm5U1lEQdr0cKyxGWLltP+k2VHoqEhfKb
X-Received: by 2002:a9d:6504:0:b0:6dd:dda6:67b3 with SMTP id i4-20020a9d6504000000b006dddda667b3mr1558015otl.67.1704808014880;
        Tue, 09 Jan 2024 05:46:54 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1704808014; cv=none;
        d=google.com; s=arc-20160816;
        b=LW/FA+StyYwRUjwRQ1XwOqkRhWF2eX2vihHUjgI/QTOngGx4DgaXPCtPTbXfAKPyKg
         0GNhsXJPrwzHRE5XGni2TmUsboVAGXJ39joLjQEFM2NMGSetlgj6o+UsdgSvy/aojrfm
         DeAH2+/kdOEtqEGaetbcMdA0jCZ2W+MiRc3L+UWa35jAJ61rzhoWhfD0etHBWANtG5uh
         vukVE2ltYuBEFQF/21fWggEWJqGGfB/Bi0FlV652zTP7q8gDZaOStFE1M0ToJcJ/4ucl
         7QNhJLiuJepr4ITOnAVeBS5iRwmDA2ZUcwbqx7f7t17giIaaXPtH8xJIwovzAzxugIEV
         J7+A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=cc:to:subject:message-id:date:from:references:in-reply-to
         :mime-version:list-unsubscribe:list-subscribe:list-id:precedence
         :dkim-signature;
        bh=cjGkcKUCjfAki1y+jBeIXt+4ChzS/7tMjf4Tg+Htzeg=;
        fh=KKb7ru1FKxtA7Vlm+5usOEb+GFXUrmJ+7NPJhv2nUKA=;
        b=t0ybEhapeNLi7M/7IIOih7xwzrjYPYFDo6MmVza/IhBs6qwHyEYjOfFkzjbMbuuEPa
         RSbwJ7f8/GIQBMvqKbCBm9tDaXM/NDeIy2tUCEwELORJi7PaT150WN1RvpZw0lvAwZm0
         cHos3acWUXWxhxnKCMuLyvLN8ItoFiaZ8IBgjMQ3bQIa22JLWlH/ZYynSNfkDAoRrqao
         3DekthZuHQsSF8ZdPyhgT0wPIsyGWmA+X99kQdHiK45dw2fnVn1NFEvWsNhr7ZJMBTwc
         g9lOs6J8P/lwd2YGzvSivPnd61203nIafiRqkvr1mYIwzMJyZrNUd5p7zSqUf4avUZpo
         my9Q==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=Tg9AJHqa;
       spf=pass (google.com: domain of linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Return-Path: <linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [147.75.199.223])
        by mx.google.com with ESMTPS id jd24-20020a05622a719800b004299fb9725esi2104963qtb.657.2024.01.09.05.46.54
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 09 Jan 2024 05:46:54 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) client-ip=147.75.199.223;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@kernel.org header.s=k20201202 header.b=Tg9AJHqa;
       spf=pass (google.com: domain of linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.199.223 as permitted sender) smtp.mailfrom="linux-kernel+bounces-20916-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by ny.mirrors.kernel.org (Postfix) with ESMTPS id 255141C23B7A
	for <linux.lists.archive@gmail.com>; Tue,  9 Jan 2024 13:46:54 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 6CB4139861;
	Tue,  9 Jan 2024 13:46:33 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=kernel.org header.i=@kernel.org header.b="Tg9AJHqa"
Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 9C7013985B;
	Tue,  9 Jan 2024 13:46:32 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 132C6C43394;
	Tue,  9 Jan 2024 13:46:32 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=k20201202; t=1704807992;
	bh=Y8dClzL0DyXiUZvR04jQRjbWXwHaw+NvJXiLsKNHI0E=;
	h=In-Reply-To:References:From:Date:Subject:To:Cc:From;
	b=Tg9AJHqaaNGCUPJOhuQly0/lqpwkZduL5Chm7HR6b5sHUK9gXPwdHDfrmTDScU10x
	 n4zUtN7ovF8UzQSTicWKQS5V+h4gY0FL0mI4lfggZyzTfCkKZmm9ic+he0sF34vOzX
	 XzyJ322Hp/wTFYvYHoQwme1gQWhXvFZC0foDecxfyVoWdOHC3d6w9QgkHMC1oY/Xa/
	 nhcwAXhP5hs62hyXkNzoX5LPdJr07pJ686vEDFSpj/sTKApUXmuSyfPRn/rAdkJk+8
	 2VhcKo/G1JePexcX2Qfj1MXXNbCNAWAkGaiGekZGUaW0fX9zALAY5QSofOmtPfusTN
	 c+H05Yy8vZR2Q==
Received: by mail-oo1-f48.google.com with SMTP id 006d021491bc7-5968b4a073fso1626306eaf.1;
        Tue, 09 Jan 2024 05:46:32 -0800 (PST)
X-Gm-Message-State: AOJu0YzZm3YnwAcztIZu8WngMFLrIWi7x+mn9W8AyMNqyv36RzZTftgF
	szs1WVWigIeXAsceKhmNKKOaOrFyMEryNKSAv3k=
X-Received: by 2002:a05:6820:820:b0:594:51d7:681b with SMTP id
 bg32-20020a056820082000b0059451d7681bmr3622145oob.2.1704807991365; Tue, 09
 Jan 2024 05:46:31 -0800 (PST)
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Received: by 2002:a8a:c13:0:b0:511:f2c1:11ee with HTTP; Tue, 9 Jan 2024
 05:46:30 -0800 (PST)
In-Reply-To: <20240109133429.31752-1-pchelkin@ispras.ru>
References: <20240109133429.31752-1-pchelkin@ispras.ru>
From: Namjae Jeon <linkinjeon@kernel.org>
Date: Tue, 9 Jan 2024 22:46:30 +0900
X-Gmail-Original-Message-ID: <CAKYAXd-ULRwKdDLs2XPwf6n9_HTHUJv1+aLmbWN5SqjUxw_xNQ@mail.gmail.com>
Message-ID: <CAKYAXd-ULRwKdDLs2XPwf6n9_HTHUJv1+aLmbWN5SqjUxw_xNQ@mail.gmail.com>
Subject: Re: [PATCH] ksmbd: free ppace array on error in parse_dacl
To: Fedor Pchelkin <pchelkin@ispras.ru>
Cc: Steve French <sfrench@samba.org>, Sergey Senozhatsky <senozhatsky@chromium.org>, 
	Tom Talpey <tom@talpey.com>, Ronnie Sahlberg <lsahlber@redhat.com>, Hyunchul Lee <hyc.lee@gmail.com>, 
	linux-cifs@vger.kernel.org, linux-kernel@vger.kernel.org, 
	Alexey Khoroshilov <khoroshilov@ispras.ru>, lvc-project@linuxtesting.org
Content-Type: text/plain; charset="UTF-8"

2024-01-09 22:34 GMT+09:00, Fedor Pchelkin <pchelkin@ispras.ru>:
> Free the ppace array if one of the init_acl_state() calls inside
> parse_dacl() fails. At the moment the function may fail only due to the
> memory allocation errors so it's highly unlikely in this case but
> nevertheless a fix is needed.
>
> Found by Linux Verification Center (linuxtesting.org).
>
> Fixes: e2f34481b24d ("cifsd: add server-side procedures for SMB3")
> Signed-off-by: Fedor Pchelkin <pchelkin@ispras.ru>
> ---
>  fs/smb/server/smbacl.c | 5 ++++-
>  1 file changed, 4 insertions(+), 1 deletion(-)
>
> diff --git a/fs/smb/server/smbacl.c b/fs/smb/server/smbacl.c
> index 1164365533f0..e6d0537cab49 100644
> --- a/fs/smb/server/smbacl.c
> +++ b/fs/smb/server/smbacl.c
> @@ -406,11 +406,14 @@ static void parse_dacl(struct mnt_idmap *idmap,
>  		return;
>
>  	ret = init_acl_state(&acl_state, num_aces);
> -	if (ret)
> +	if (ret) {
> +		kfree(ppace);
>  		return;
> +	}
>  	ret = init_acl_state(&default_acl_state, num_aces);
>  	if (ret) {
>  		free_acl_state(&acl_state);
> +		kfree(ppace);
>  		return;
>  	}
Looks good to me.
But rather than this, How about moving ppace allocation here ?

Thanks for your patch.
>
> --
> 2.43.0
>
>