projects / platform / core / system / kdbus-bus.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: c0aebb5)
policy: kdbus_policy_set() use another variable to save entries
authorDjalal Harouni <tixxdz@opendz.org>
Fri, 20 Jun 2014 16:50:03 +0000 (17:50 +0100)
committerDaniel Mack <zonque@gmail.com>
Fri, 20 Jun 2014 17:44:10 +0000 (19:44 +0200)
In kdbus_policy_set() function, we use the 'e' variable to reference
each entry of the 'db->entries_hash', so at the end the variable 'e' will
for sure point to a valid one.

Next in the KDBUS_ITEMS_FOREACH() iterator and if we fail at the first
KDBUS_ITEM_VALID() test, we jmp to exit:

Which contains the following:
if (e)
kdbus_policy_entry_free(e);

Here 'e' points to a valid entry and it will be freed, so even we
restore all the other entries from that list, there will be always one
missing, the last one pointed by that 'e' variable.

To fix this, just use another 'tmp_entry' variable to reference hash
entries.

Signed-off-by: Djalal Harouni <tixxdz@opendz.org>
policy.c patch | blob | history

diff --git a/policy.c b/policy.c
index 90db0ac60f8bfab9a5dc7d98a0d166649df24c7d..58ab6a5e295eecb72b2589130f6e8c6f710feb6e 100644 (file)
--- a/policy.c
+++ b/policy.c
@@ -476,6 +476,7 @@ int kdbus_policy_set(struct kdbus_policy_db *db,
                     const void *owner)
 {
        struct kdbus_policy_db_entry *e = NULL;
+       struct kdbus_policy_db_entry *tmp_entry = NULL;
        struct kdbus_policy_db_entry_access *a;
        const struct kdbus_item *item;
        struct hlist_node *tmp;
@@ -492,8 +493,8 @@ int kdbus_policy_set(struct kdbus_policy_db *db,
         * At the same time, the lookup mechanism won't find any collisions
         * when looking for already exising names.
         */
-       hash_for_each_safe(db->entries_hash, i, tmp, e, hentry)
-               if (e->owner == owner) {
+       hash_for_each_safe(db->entries_hash, i, tmp, tmp_entry, hentry)
+               if (tmp_entry->owner == owner) {
                        struct kdbus_policy_list_entry *l;
 
                        l = kzalloc(sizeof(*l), GFP_KERNEL);
@@ -502,9 +503,9 @@ int kdbus_policy_set(struct kdbus_policy_db *db,
                                goto exit;
                        }
 
-                       l->e = e;
+                       l->e = tmp_entry;
                        list_add_tail(&l->entry, &list);
-                       hash_del(&e->hentry);
+                       hash_del(&tmp_entry->hentry);
                }
 
        /* Walk the list of items and look for new policies */
Domain: System / Uncategorized;