Re: [PATCH] usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit()

From: shuah
Date: Tue Nov 12 2019 - 04:41:39 EST

Next message: Tony Lu: "Re: [PATCH] net: remove static inline from dev_put/dev_hold"
Previous message: Simon Horman: "Re: [net-next, 1/2] enetc: Configure the Time-Aware Scheduler via tc-taprio offload"
In reply to: Suwan Kim: "[PATCH] usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/11/19 7:10 AM, Suwan Kim wrote:

Smatch reported that nents is not initialized and used in
stub_recv_cmd_submit(). nents is currently initialized by sgl_alloc()
and used to allocate multiple URBs when host controller doesn't
support scatter-gather DMA. The use of uninitialized nents means that
buf_len is zero and use_sg is true. But buffer length should not be
zero when an URB uses scatter-gather DMA.

To prevent this situation, add the conditional that checks buf_len
and use_sg. And move the use of nents right after the sgl_alloc() to
avoidÂthe use of uninitialized nents.

If the error occurs, it adds SDEV_EVENT_ERROR_MALLOC and stub_priv
will be released by stub event handler and connection will be shut
down.

Fixes:Âea44d190764bÂ("usbip: Implement SG support to vhci-hcd and stub driver")
Reported-by: kbuild test robot <lkp@xxxxxxxxx>
Reported-by: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
Signed-off-by: Suwan Kim <suwan.kim027@xxxxxxxxx>
---

Looks good.

Acked-by: Shuah Khan <skhan@xxxxxxxxxxxxxxxxxxx>

thanks,
-- Shuah

Next message: Tony Lu: "Re: [PATCH] net: remove static inline from dev_put/dev_hold"
Previous message: Simon Horman: "Re: [net-next, 1/2] enetc: Configure the Time-Aware Scheduler via tc-taprio offload"
In reply to: Suwan Kim: "[PATCH] usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]