[PATCH 4.19 039/243] dlm: fix possible call to kfree() for non-initialized pointer

From: Greg Kroah-Hartman
Date: Wed Dec 11 2019 - 10:54:45 EST

Next message: Jeffrin Jose: "Re: [PROBLEM]: WARNING: lock held when returning to user space! (5.4.1 #16 Tainted: G )"
Previous message: Greg Kroah-Hartman: "[PATCH 4.19 038/243] ice: Fix NVM mask defines"
In reply to: Greg Kroah-Hartman: "[PATCH 4.19 038/243] ice: Fix NVM mask defines"
Next in thread: Greg Kroah-Hartman: "[PATCH 4.19 008/243] serial: pl011: Fix DMA ->flush_buffer()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Denis V. Lunev <den@xxxxxxxxxx>

[ Upstream commit 58a923adf4d9aca8bf7205985c9c8fc531c65d72 ]

Technically dlm_config_nodes() could return error and keep nodes
uninitialized. After that on the fail path of we'll call kfree()
for that uninitialized value.

The patch is simple - we should just initialize nodes with NULL.

Signed-off-by: Denis V. Lunev <den@xxxxxxxxxx>
Signed-off-by: David Teigland <teigland@xxxxxxxxxx>
Signed-off-by: Sasha Levin <sashal@xxxxxxxxxx>
---
fs/dlm/member.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fs/dlm/member.c b/fs/dlm/member.c
index cad6d85911a80..0bc43b35d2c53 100644
--- a/fs/dlm/member.c
+++ b/fs/dlm/member.c
@@ -671,7 +671,7 @@ int dlm_ls_stop(struct dlm_ls *ls)
int dlm_ls_start(struct dlm_ls *ls)
{
struct dlm_recover *rv, *rv_old;
- struct dlm_config_node *nodes;
+ struct dlm_config_node *nodes = NULL;
int error, count;

rv = kzalloc(sizeof(*rv), GFP_NOFS);
--
2.20.1

Next message: Jeffrin Jose: "Re: [PROBLEM]: WARNING: lock held when returning to user space! (5.4.1 #16 Tainted: G )"
Previous message: Greg Kroah-Hartman: "[PATCH 4.19 038/243] ice: Fix NVM mask defines"
In reply to: Greg Kroah-Hartman: "[PATCH 4.19 038/243] ice: Fix NVM mask defines"
Next in thread: Greg Kroah-Hartman: "[PATCH 4.19 008/243] serial: pl011: Fix DMA ->flush_buffer()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]