summaryrefslogtreecommitdiffstats
path: root/drivers/usb/wusbcore
diff options
context:
space:
mode:
authorPan Bian <bianpan2016@163.com>2016-11-29 13:50:30 +0100
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>2016-11-29 17:36:43 +0100
commitfca0ca95c34dde7e735ef322c599dfa0b4a2deae (patch)
tree9e8853630e87d37a0bf1ed824647824200aca8c9 /drivers/usb/wusbcore
parentUSB: EHCI: ehci-w90x900: remove unuseful functions (diff)
downloadlinux-fca0ca95c34dde7e735ef322c599dfa0b4a2deae.tar.xz
linux-fca0ca95c34dde7e735ef322c599dfa0b4a2deae.zip
usb: return correct errno code when krealloc fails
In function wusb_dev_sec_add(), variable result takes the return value. Its value should be negative on failures. When function krealloc() is called, an earlier check of variable result guarantees that the value of result must not be less than "sizeof(*secd)", and result is not reassigned when krealloc() returns a NULL pointer. As a result, a positive value may be returned, which makes it impossible for the caller of wusb_dev_sec_add() to detect the error. This patch fixes the bug by assigning -ENOMEM to result when krealloc() returns NULL. Signed-off-by: Pan Bian <bianpan2016@163.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Diffstat (limited to 'drivers/usb/wusbcore')
-rw-r--r--drivers/usb/wusbcore/security.c1
1 files changed, 1 insertions, 0 deletions
diff --git a/drivers/usb/wusbcore/security.c b/drivers/usb/wusbcore/security.c
index 8c9421b69da0..170f2c38de9b 100644
--- a/drivers/usb/wusbcore/security.c
+++ b/drivers/usb/wusbcore/security.c
@@ -240,6 +240,7 @@ int wusb_dev_sec_add(struct wusbhc *wusbhc,
if (new_secd == NULL) {
dev_err(dev,
"Can't allocate space for security descriptors\n");
+ result = -ENOMEM;
goto out;
}
secd = new_secd;