[PATCH 17/26] usb: gadget: configfs: remove using list iterator after loop body as a ptr

From: Jakob Koschel
Date: Sun Mar 06 2022 - 12:52:15 EST

Next message: Jakob Koschel: "[PATCH 18/26] usb: gadget: legacy: remove using list iterator after loop body as a ptr"
Previous message: Jakob Koschel: "[PATCH 14/26] usb: gadget: s3c-hsudc: remove usage of list iterator past the loop body"
In reply to: Jakob Koschel: "[PATCH 14/26] usb: gadget: s3c-hsudc: remove usage of list iterator past the loop body"
Next in thread: Jakob Koschel: "[PATCH 18/26] usb: gadget: legacy: remove using list iterator after loop body as a ptr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

If the list does not contain the expected element, the value of
list_for_each_entry() iterator will not point to a valid structure.
To avoid type confusion in such case, the list iterator
scope will be limited to list_for_each_entry() loop.

In preparation to limiting scope of a list iterator to the list traversal
loop, use a dedicated pointer to point to the found element [1].
Determining if an element was found is then simply checking if
the pointer is != NULL instead of using the potentially bogus pointer.

Link: https://lore.kernel.org/all/YhdfEIwI4EdtHdym@xxxxxxxxx/
Signed-off-by: Jakob Koschel <jakobkoschel@xxxxxxxxx>
---
drivers/usb/gadget/configfs.c | 20 ++++++++++++--------
1 file changed, 12 insertions(+), 8 deletions(-)

diff --git a/drivers/usb/gadget/configfs.c b/drivers/usb/gadget/configfs.c
index d4a678c0806e..938cd43e74c6 100644
--- a/drivers/usb/gadget/configfs.c
+++ b/drivers/usb/gadget/configfs.c
@@ -418,7 +418,7 @@ static int config_usb_cfg_link(

struct usb_function_instance *fi =
to_usb_function_instance(usb_func_ci);
- struct usb_function_instance *a_fi;
+ struct usb_function_instance *a_fi = NULL, *tmp;
struct usb_function *f;
int ret;

@@ -428,11 +428,13 @@ static int config_usb_cfg_link(
* from another gadget or a random directory.
* Also a function instance can only be linked once.
*/
- list_for_each_entry(a_fi, &gi->available_func, cfs_list) {
- if (a_fi == fi)
+ list_for_each_entry(tmp, &gi->available_func, cfs_list) {
+ if (tmp == fi) {
+ a_fi = tmp;
break;
+ }
}
- if (a_fi != fi) {
+ if (!a_fi) {
ret = -EINVAL;
goto out;
}
@@ -882,15 +884,17 @@ static int os_desc_link(struct config_item *os_desc_ci,
struct gadget_info *gi = os_desc_item_to_gadget_info(os_desc_ci);
struct usb_composite_dev *cdev = &gi->cdev;
struct config_usb_cfg *c_target = to_config_usb_cfg(usb_cfg_ci);
- struct usb_configuration *c;
+ struct usb_configuration *c = NULL, *tmp;
int ret;

mutex_lock(&gi->lock);
- list_for_each_entry(c, &cdev->configs, list) {
- if (c == &c_target->c)
+ list_for_each_entry(tmp, &cdev->configs, list) {
+ if (tmp == &c_target->c) {
+ c = tmp;
break;
+ }
}
- if (c != &c_target->c) {
+ if (!c) {
ret = -EINVAL;
goto out;
}
--
2.25.1

Next message: Jakob Koschel: "[PATCH 18/26] usb: gadget: legacy: remove using list iterator after loop body as a ptr"
Previous message: Jakob Koschel: "[PATCH 14/26] usb: gadget: s3c-hsudc: remove usage of list iterator past the loop body"
In reply to: Jakob Koschel: "[PATCH 14/26] usb: gadget: s3c-hsudc: remove usage of list iterator past the loop body"
Next in thread: Jakob Koschel: "[PATCH 18/26] usb: gadget: legacy: remove using list iterator after loop body as a ptr"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]