[PATCH 2/5] staging: rtl8188eu: fix potential leak in rtw_wx_set_enc_ext()

From: Christian Engelmayer
Date: Mon Apr 28 2014 - 17:05:40 EST

Next message: Paolo Bonzini: "Re: [GIT PULL] SCSI fixes for 3.15-rc3"
Previous message: Christian Engelmayer: "[PATCH 4/5] staging: rtl8188eu: fix potential leak in rtw_mp_SetRFPath()"
In reply to: Christian Engelmayer: "[PATCH 4/5] staging: rtl8188eu: fix potential leak in rtw_mp_SetRFPath()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Function rtw_wx_set_enc_ext() dynamically allocates a temporary buffer that
is not freed in all error paths. Use a centralized exit path and make sure
that all memory is freed correctly. Detected by Coverity - CID 1077712.

Signed-off-by: Christian Engelmayer <cengelma@xxxxxx>
---
drivers/staging/rtl8188eu/os_dep/ioctl_linux.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/drivers/staging/rtl8188eu/os_dep/ioctl_linux.c b/drivers/staging/rtl8188eu/os_dep/ioctl_linux.c
index 45b47e2..1bd476d 100644
--- a/drivers/staging/rtl8188eu/os_dep/ioctl_linux.c
+++ b/drivers/staging/rtl8188eu/os_dep/ioctl_linux.c
@@ -2097,7 +2097,8 @@ static int rtw_wx_set_enc_ext(struct net_device *dev,
alg_name = "CCMP";
break;
default:
- return -1;
+ ret = -1;
+ goto exit;
}

strncpy((char *)param->u.crypt.alg, alg_name, IEEE_CRYPT_ALG_NAME_LEN);
@@ -2124,6 +2125,7 @@ static int rtw_wx_set_enc_ext(struct net_device *dev,

ret = wpa_set_encryption(dev, param, param_len);

+exit:
kfree(param);
return ret;
}
--
1.9.1

Attachment: signature.asc
Description: PGP signature

Next message: Paolo Bonzini: "Re: [GIT PULL] SCSI fixes for 3.15-rc3"
Previous message: Christian Engelmayer: "[PATCH 4/5] staging: rtl8188eu: fix potential leak in rtw_mp_SetRFPath()"
In reply to: Christian Engelmayer: "[PATCH 4/5] staging: rtl8188eu: fix potential leak in rtw_mp_SetRFPath()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]