Re: [Lksctp-developers] [PATCH] Fix memory leak in discard case ofsctp_sf_abort_violation()

From: Vlad Yasevich
Date: Mon Nov 12 2007 - 10:15:06 EST

Next message: Alasdair G Kergon: "Re: build #338 failed for 2.6.24-rc2-g6e800af in linux/drivers/md/dm-mpath-hp-sw.c"
Previous message: Jiri Slaby: "Re: PAGE_SIZE on 64bit and 32bit machines"
In reply to: Jesper Juhl: "[PATCH] Fix memory leak in discard case of sctp_sf_abort_violation()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jesper Juhl wrote:
> From: Jesper Juhl <jesper.juhl@xxxxxxxxx>
>
> In net/sctp/sm_statefuns.c::sctp_sf_abort_violation() we may leak
> the storage allocated for 'abort' by returning from the function
> without using or freeing it. This happens in case
> "sctp_auth_recv_cid(SCTP_CID_ABORT, asoc)" is true and we jump to
> the 'discard' label.
> Spotted by the Coverity checker.
>
> The simple fix is to simply move the creation of the "abort chunk"
> to after the possible jump to the 'discard' label. This way we don't
> even have to allocate the memory at all in the problem case.
>
>
> Signed-off-by: Jesper Juhl <jesper.juhl@xxxxxxxxx>

Thanks. I've applied this to my tree.

-vlad
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alasdair G Kergon: "Re: build #338 failed for 2.6.24-rc2-g6e800af in linux/drivers/md/dm-mpath-hp-sw.c"
Previous message: Jiri Slaby: "Re: PAGE_SIZE on 64bit and 32bit machines"
In reply to: Jesper Juhl: "[PATCH] Fix memory leak in discard case of sctp_sf_abort_violation()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]