[PATCH] autofs: Fix memory leak in autofs_fill_super()

Next message: Denis Benato: "[PATCH 1/3] platform/x86: asus-wmi: explicitly mark more code with CONFIG_ASUS_WMI_DEPRECATED_ATTRS"
Previous message: Krishna Chomal: "[PATCH 2/2] platform/x86: hp-wmi: implement fan keep-alive"
Next in thread: Ian Kent: "Re: [PATCH] autofs: Fix memory leak in autofs_fill_super()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Zilin Guan

Date: Thu Dec 25 2025 - 09:28:12 EST

The autofs_new_ino() function allocates a new autofs_info structure.
If the subsequent call to autofs_get_inode() fails, this structure is
not freed, leading to a memory leak.

Fix this by adding a new error label to free the structure and jumping
to it upon failure.

While at it, consolidate the error handling for the d_make_root()
failure case to use the same label.

Fixes: 66917f85db600 ("autofs: add: new_inode check in autofs_fill_super()")
Signed-off-by: Zilin Guan <zilin@xxxxxxxxxx>
---
fs/autofs/inode.c | 13 ++++++++-----
1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/fs/autofs/inode.c b/fs/autofs/inode.c
index b932b1719dfc..391979f8b2bb 100644
--- a/fs/autofs/inode.c
+++ b/fs/autofs/inode.c
@@ -324,7 +324,7 @@ static int autofs_fill_super(struct super_block *s, struct fs_context *fc)

root_inode = autofs_get_inode(s, S_IFDIR | 0755);
if (!root_inode)
- return -ENOMEM;
+ goto nomem;

root_inode->i_uid = ctx->uid;
root_inode->i_gid = ctx->gid;
@@ -332,10 +332,9 @@ static int autofs_fill_super(struct super_block *s, struct fs_context *fc)
root_inode->i_op = &autofs_dir_inode_operations;

s->s_root = d_make_root(root_inode);
- if (unlikely(!s->s_root)) {
- autofs_free_ino(ino);
- return -ENOMEM;
- }
+ if (unlikely(!s->s_root))
+ goto nomem;
+
s->s_root->d_fsdata = ino;

if (ctx->pgrp_set) {
@@ -358,6 +357,10 @@ static int autofs_fill_super(struct super_block *s, struct fs_context *fc)

sbi->flags &= ~AUTOFS_SBI_CATATONIC;
return 0;
+
+nomem:
+ autofs_free_ino(ino);
+ return -ENOMEM;
}

/*
--
2.34.1