[PATCH] Don't potentially dereference NULL innet/dcb/dcbnl.c:dcbnl_getapp()

From: Jesper Juhl
Date: Thu Feb 10 2011 - 16:58:30 EST

Next message: Ryan Mallon: "Re: [PATCH 09/10] Add yaffs2 file system: Linux glue code"
Previous message: Paul E. McKenney: "[PATCH powerpc 1/2] powerpc: protect per-CPU access with preempt_disable"
Next in thread: David Miller: "Re: [PATCH] Don't potentially dereference NULL innet/dcb/dcbnl.c:dcbnl_getapp()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

nla_nest_start() may return NULL. If it does then we'll blow up in
nla_nest_end() when we dereference the pointer.

Signed-off-by: Jesper Juhl <jj@xxxxxxxxxxxxx>
---
dcbnl.c | 3 +++
1 file changed, 3 insertions(+)

only compile tested.

diff --git a/net/dcb/dcbnl.c b/net/dcb/dcbnl.c
index 6b03f56..13cdc30 100644
--- a/net/dcb/dcbnl.c
+++ b/net/dcb/dcbnl.c
@@ -626,6 +626,9 @@ static int dcbnl_getapp(struct net_device *netdev, struct nlattr **tb,
dcb->cmd = DCB_CMD_GAPP;

app_nest = nla_nest_start(dcbnl_skb, DCB_ATTR_APP);
+ if (!app_nest)
+ goto out_cancel;
+
ret = nla_put_u8(dcbnl_skb, DCB_APP_ATTR_IDTYPE, idtype);
if (ret)
goto out_cancel;
--
Jesper Juhl <jj@xxxxxxxxxxxxx> http://www.chaosbits.net/
Plain text mails only, please.
Don't top-post http://www.catb.org/~esr/jargon/html/T/top-post.html

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ryan Mallon: "Re: [PATCH 09/10] Add yaffs2 file system: Linux glue code"
Previous message: Paul E. McKenney: "[PATCH powerpc 1/2] powerpc: protect per-CPU access with preempt_disable"
Next in thread: David Miller: "Re: [PATCH] Don't potentially dereference NULL innet/dcb/dcbnl.c:dcbnl_getapp()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]