Re: [PATCH] PCI: endpoint: Fix a double free in __pci_epc_create()

From: Markus Elfring
Date: Fri Jan 03 2025 - 05:29:33 EST

Next message: Alexandre Ghiti: "Re: [PATCH 05/10] riscv: mm: Skip pgtable level check in {pud,p4d}_alloc_one"
Previous message: Thomas Richard: "Re: [PATCH 4/5] pinctrl: Add pin controller driver for AAEON UP boards"
In reply to: Ma Ke: "[PATCH] PCI: endpoint: Fix a double free in __pci_epc_create()"
Next in thread: Ma Ke: "[PATCH] PCI: endpoint: Fix a double free in __pci_epc_create()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> The put_device(&epc->dev) call will trigger pci_epc_release() which
> frees "epc" so the kfree(epc) on the next line is a double free.

See also:
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/Documentation/process/submitting-patches.rst?h=v6.13-rc5#n94

> Found by code review.

Would you become interested to check how many similar control flows
can still be detected by the means of automated advanced source code analyses?

Regards,
Markus

Next message: Alexandre Ghiti: "Re: [PATCH 05/10] riscv: mm: Skip pgtable level check in {pud,p4d}_alloc_one"
Previous message: Thomas Richard: "Re: [PATCH 4/5] pinctrl: Add pin controller driver for AAEON UP boards"
In reply to: Ma Ke: "[PATCH] PCI: endpoint: Fix a double free in __pci_epc_create()"
Next in thread: Ma Ke: "[PATCH] PCI: endpoint: Fix a double free in __pci_epc_create()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]