[PATCHv3] staging: Check for Null allocated skb in fw_download_code

Jeff Haran Jeff.Haran at citrix.com
Tue Aug 12 16:46:56 EDT 2014 

> -----Original Message-----
> From: kernelnewbies-bounces at kernelnewbies.org [mailto:kernelnewbies-bounces at kernelnewbies.org] On Behalf Of Nick Krause
> Sent: Tuesday, August 12, 2014 1:20 PM
> To: kernelnewbies
> Subject: Re: [PATCHv3] staging: Check for Null allocated skb in fw_download_code
> 
> On Tue, Aug 12, 2014 at 4:18 PM, Nicholas Krause <xerofoify at gmail.com> wrote:
> > I am fixing the bug entry , https://bugzilla.kernel.org/show_bug.cgi?id=60461.
> > This entry states that we are not checking the skb allocated in fw_download_code
> > for NULL and after checking it ,I fixed it to check for the NULL value before
> > returning false and exiting fw_download_code cleanly. In additon I removed the
> > variable, rt_status as it's easier to read this function's return value with
> > just true or false and rt status is a unneeded variable for the bool return
> > of this function.
> >
> > Signed-off-by: Nicholas Krause <xerofoify at gmail.com>
> > ---
> >  drivers/staging/rtl8192e/rtl8192e/r8192E_firmware.c | 5 +++--
> >  1 file changed, 3 insertions(+), 2 deletions(-)
> >
> > diff --git a/drivers/staging/rtl8192e/rtl8192e/r8192E_firmware.c b/drivers/staging/rtl8192e/rtl8192e/r8192E_firmware.c
> > index 1a95d1f..66d83f8 100644
> > --- a/drivers/staging/rtl8192e/rtl8192e/r8192E_firmware.c
> > +++ b/drivers/staging/rtl8192e/rtl8192e/r8192E_firmware.c
> > @@ -36,7 +36,6 @@ static bool fw_download_code(struct net_device *dev, u8 *code_virtual_address,
> >                              u32 buffer_len)
> >  {
> >         struct r8192_priv *priv = rtllib_priv(dev);
> > -       bool                rt_status = true;
> >         u16                 frag_threshold;
> >         u16                 frag_length, frag_offset = 0;
> >         int                 i;
> > @@ -61,6 +60,8 @@ static bool fw_download_code(struct net_device *dev, u8 *code_virtual_address,
> >                 }
> >
> >                 skb  = dev_alloc_skb(frag_length + 4);
> > +               if (skb == NULL)
> > +                       return false;
> >                 memcpy((unsigned char *)(skb->cb), &dev, sizeof(dev));
> >                 tcb_desc = (struct cb_desc *)(skb->cb + MAX_DEV_ADDR_SIZE);
> >                 tcb_desc->queue_index = TXCMD_QUEUE;
> > @@ -99,7 +100,7 @@ static bool fw_download_code(struct net_device *dev, u8 *code_virtual_address,
> >
> >         write_nic_byte(dev, TPPoll, TPPoll_CQ);
> >
> > -       return rt_status;
> > +       return true;
> >  }
> >
> >  static bool CPUcheck_maincodeok_turnonCPU(struct net_device *dev)
> > --
> > 1.9.1
> >
> 
> I am trying to get this patch merged and after my issues with the
> kernel community, I can't get this into the mainline.
> If someone wants to send it out for me and state it's from me that
> would be great.
> Nick

While the avoidance of dereferencing NULL pointers in the kernel is a laudable goal, what will be the effect of the call to write_nic_byte() at the end of the function not happening should the call to dev_alloc_skb() return NULL?

Jeff Haran

More information about the Kernelnewbies mailing list