Re: [PATCH net] net: dsa: fix 'increment on 0' warning

From: Florian Fainelli
Date: Fri Nov 24 2017 - 16:21:32 EST

Next message: David Howells: "Re: [PATCH] KEYS: remove unnecessary get/put of explicit dest_keyring"
Previous message: David Howells: "Re: [PATCH] KEYS: remove unnecessary get/put of explicit dest_keyring"
In reply to: Vivien Didelot: "[PATCH net] net: dsa: fix 'increment on 0' warning"
Next in thread: David Miller: "Re: [PATCH net] net: dsa: fix 'increment on 0' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/24/2017 08:36 AM, Vivien Didelot wrote:
> Setting the refcount to 0 when allocating a tree to match the number of
> switch devices it holds may cause an 'increment on 0; use-after-free',
> if CONFIG_REFCOUNT_FULL is enabled.
>
> To fix this, do not decrement the refcount of a newly allocated tree,
> increment it when an already allocated tree is found, and decrement it
> after the probing of a switch, as done with the previous behavior.
>
> At the same time, make dsa_tree_get and dsa_tree_put accept a NULL
> argument to simplify callers, and return the tree after incrementation,
> as most kref users like of_node_get and of_node_put do.
>
> Fixes: 8e5bf9759a06 ("net: dsa: simplify tree reference counting")
> Signed-off-by: Vivien Didelot <vivien.didelot@xxxxxxxxxxxxxxxxxxxx>

Reviewed-by: Florian Fainelli <f.fainelli@xxxxxxxxx>
Tested-by: Florian Fainelli <f.fainelli@xxxxxxxxx>

Thanks!
--
Florian

Next message: David Howells: "Re: [PATCH] KEYS: remove unnecessary get/put of explicit dest_keyring"
Previous message: David Howells: "Re: [PATCH] KEYS: remove unnecessary get/put of explicit dest_keyring"
In reply to: Vivien Didelot: "[PATCH net] net: dsa: fix 'increment on 0' warning"
Next in thread: David Miller: "Re: [PATCH net] net: dsa: fix 'increment on 0' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]