Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

caif: Plug memory leak for checksum error

In case of checksum error, the framing layer returns -EILSEQ, but
does not free the packet. Plug this hole by freeing the packet if
-EILSEQ is returned.

Signed-off-by: Sjur Brændeland <sjur.brandeland@stericsson.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
sjur.brandeland@stericsson.com 14 years ago
parent
138eded8ba
commit
69c867c90c
1 changed files with 6 additions and 1 deletions
Split View Show Diff Stats
  1. 6 1
      net/caif/caif_dev.c

+ 6 - 1
net/caif/caif_dev.c
View File 

@@ -142,6 +142,7 @@ static int receive(struct sk_buff *skb, struct net_device *dev,
 
 {
 
 	struct cfpkt *pkt;
 
 	struct caif_device_entry *caifd;
 
+	int err;
 
 
 	pkt = cfpkt_fromnative(CAIF_DIR_IN, skb);
 
 
@@ -159,7 +160,11 @@ static int receive(struct sk_buff *skb, struct net_device *dev,
 
 	caifd_hold(caifd);
 
 	rcu_read_unlock();
 
 
-	caifd->layer.up->receive(caifd->layer.up, pkt);
 
+	err = caifd->layer.up->receive(caifd->layer.up, pkt);
 
+
 
+	/* For -EILSEQ the packet is not freed so so it now */
 
+	if (err == -EILSEQ)
 
+		cfpkt_destroy(pkt);
 
 
 	/* Release reference to stack upwards */
 
 	caifd_put(caifd);