Re: [PATCH net] net: sched: act_tunnel_key: fix NULL pointer dereference during init

Davide Caratti Mon, 25 Feb 2019 07:36:46 -0800

On Mon, 2019-02-25 at 17:28 +0200, Vlad Buslov wrote:
> Metadata pointer is only initialized for action TCA_TUNNEL_KEY_ACT_SET, but
> it is unconditionally dereferenced in tunnel_key_init() error handler.
> Verify that metadata pointer is not NULL before dereferencing it in
> tunnel_key_init error handling code.
> 
> Fixes: ee28bb56ac5b ("net/sched: fix memory leak in act_tunnel_key_init()")
> Signed-off-by: Vlad Buslov <vla...@mellanox.com>
> ---
>  net/sched/act_tunnel_key.c | 3 ++-
>  1 file changed, 2 insertions(+), 1 deletion(-)
> 
> diff --git a/net/sched/act_tunnel_key.c b/net/sched/act_tunnel_key.c
> index 8b43fe0130f7..3f943de9a2c9 100644
> --- a/net/sched/act_tunnel_key.c
> +++ b/net/sched/act_tunnel_key.c
> @@ -377,7 +377,8 @@ static int tunnel_key_init(struct net *net, struct nlattr 
> *nla,
>       return ret;
>  
>  release_tun_meta:
> -     dst_release(&metadata->dst);
> +     if (metadata)
> +             dst_release(&metadata->dst);
>  
>  err_out:
>       if (exists)


Reviewed-by: Davide Caratti <dcara...@redhat.com>

Re: [PATCH net] net: sched: act_tunnel_key: fix NULL pointer dereference during init

Reply via email to