[PATCH] exofs: check for allocation failure in uri_store()

From: Alexey Khoroshilov
Date: Wed Aug 08 2012 - 13:03:49 EST

Next message: Michel Lespinasse: "Re: [PATCH 3/5] kmemleak: use rbtree instead of prio tree"
Previous message: Ido Yariv: "[PATCH v2 2/2] x86/pat: Avoid contention on cpa_lock if possible"
Next in thread: Sachin Bhamare: "Re: [PATCH] exofs: check for allocation failure in uri_store()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

There is no memory allocation failure check in uri_store().
That can lead to NULL pointer dereference.

Found by Linux Driver Verification project (linuxtesting.org).

Signed-off-by: Alexey Khoroshilov <khoroshilov@xxxxxxxxx>
---
fs/exofs/sys.c | 7 ++++++-
1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/fs/exofs/sys.c b/fs/exofs/sys.c
index 5a7b691..1b4f2f9 100644
--- a/fs/exofs/sys.c
+++ b/fs/exofs/sys.c
@@ -80,8 +80,13 @@ static ssize_t uri_show(struct exofs_dev *edp, char *buf)

static ssize_t uri_store(struct exofs_dev *edp, const char *buf, size_t len)
{
+ uint8_t *new_uri;
+
edp->urilen = strlen(buf) + 1;
- edp->uri = krealloc(edp->uri, edp->urilen, GFP_KERNEL);
+ new_uri = krealloc(edp->uri, edp->urilen, GFP_KERNEL);
+ if (new_uri == NULL)
+ return -ENOMEM;
+ edp->uri = new_uri;
strncpy(edp->uri, buf, edp->urilen);
return edp->urilen;
}
--
1.7.9.5

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Michel Lespinasse: "Re: [PATCH 3/5] kmemleak: use rbtree instead of prio tree"
Previous message: Ido Yariv: "[PATCH v2 2/2] x86/pat: Avoid contention on cpa_lock if possible"
Next in thread: Sachin Bhamare: "Re: [PATCH] exofs: check for allocation failure in uri_store()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]