fuse: prevent fuse_put_request on invalid pointer · f60311d5f7 - Gogs

fuse: prevent fuse_put_request on invalid pointer

fuse_direct_io() has a loop where requests are allocated in each
iteration. if allocation fails, the loop is broken out and follows
into an unconditional fuse_put_request() on that invalid pointer.

Signed-off-by: Anand V. Avati <avati@gluster.com>
Signed-off-by: Miklos Szeredi <mszeredi@suse.cz>
Cc: stable@kernel.org

Anand V. Avati 15 年之前

父節點

b419148e56

當前提交

f60311d5f7

共有 1 個文件被更改，包括 2 次插入 和 1 次删除

分割檢視顯示文件統計

						
							+ 2
							
							- 1
						
fs/fuse/file.c
							 
								查看文件
							
				@@ -1063,7 +1063,8 @@ ssize_t fuse_direct_io(struct file *file, const char __user *buf,
			
				 				break;
			
				 		}
			
				 	}
			
				-	fuse_put_request(fc, req);
			
				+	if (!IS_ERR(req))
			
				+		fuse_put_request(fc, req);
			
				 	if (res > 0)
			
				 		*ppos = pos;