[PATCH 6.1.y 04/73] ksmbd: Fix resource leak in smb2_lock()

31 Dec 2023

From: Marios Makassikis mmakassikis@freebox.fr
[ Upstream commit 01f6c61bae3d658058ee6322af77acea26a5ee3a ]
"flock" is leaked if an error happens before smb2_lock_init(), as the
lock is not added to the lock_list to be cleaned up.
Signed-off-by: Marios Makassikis mmakassikis@freebox.fr
Acked-by: Namjae Jeon linkinjeon@kernel.org
Signed-off-by: Steve French stfrench@microsoft.com
---
 fs/smb/server/smb2pdu.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/fs/smb/server/smb2pdu.c b/fs/smb/server/smb2pdu.c
index 554214fca5b7..21d0416f1101 100644
--- a/fs/smb/server/smb2pdu.c
+++ b/fs/smb/server/smb2pdu.c
@@ -6951,6 +6951,7 @@ int smb2_lock(struct ksmbd_work *work)
    	if (lock_start > U64_MAX - lock_length) {
    		pr_err("Invalid lock range requested\n");
    		rsp->hdr.Status = STATUS_INVALID_LOCK_RANGE;
+			locks_free_lock(flock);
    		goto out;
    	}
@@ -6970,6 +6971,7 @@ int smb2_lock(struct ksmbd_work *work)
    			    "the end offset(%llx) is smaller than the start offset(%llx)\n",
    			    flock->fl_end, flock->fl_start);
    		rsp->hdr.Status = STATUS_INVALID_LOCK_RANGE;
+			locks_free_lock(flock);
    		goto out;
    	}
@@ -6981,6 +6983,7 @@ int smb2_lock(struct ksmbd_work *work)
    			    flock->fl_type != F_UNLCK) {
    				pr_err("conflict two locks in one request\n");
    				err = -EINVAL;
+					locks_free_lock(flock);
    				goto out;
    			}
    		}
@@ -6989,6 +6992,7 @@ int smb2_lock(struct ksmbd_work *work)
    	smb_lock = smb2_lock_init(flock, cmd, flags, &lock_list);
    	if (!smb_lock) {
    		err = -EINVAL;
+			locks_free_lock(flock);
    		goto out;
    	}
    }
-- 
2.25.1



    

2024

2023

2022

2021

2020

2019

2018

2017

[PATCH 6.1.y 04/73] ksmbd: Fix resource leak in smb2_lock()