s390/qeth: fix memory leak after failed TX Buffer allocation

author Julian Wiedmann <jwi@linux.ibm.com>

Tue, 9 Mar 2021 16:52:18 +0000 (17:52 +0100)

committer David S. Miller <davem@davemloft.net>

Wed, 10 Mar 2021 00:14:53 +0000 (16:14 -0800)
author Julian Wiedmann <jwi@linux.ibm.com>
Tue, 9 Mar 2021 16:52:18 +0000 (17:52 +0100)
committer David S. Miller <davem@davemloft.net>
Wed, 10 Mar 2021 00:14:53 +0000 (16:14 -0800)
diff --git a/drivers/s390/net/qeth_core_main.c b/drivers/s390/net/qeth_core_main.c

index b71b890..f7bc0ca 100644 (file)
--- a/drivers/s390/net/qeth_core_main.c
+++ b/drivers/s390/net/qeth_core_main.c
@@ -2634,15 +2634,28 @@ static void qeth_free_output_queue(struct qeth_qdio_out_q *q)
  static struct qeth_qdio_out_q *qeth_alloc_output_queue(void)
  {
         struct qeth_qdio_out_q *q = kzalloc(sizeof(*q), GFP_KERNEL);
+       unsigned int i;
  
         if (!q)
                 return NULL;
  
-       if (qdio_alloc_buffers(q->qdio_bufs, QDIO_MAX_BUFFERS_PER_Q)) {
-               kfree(q);
-               return NULL;
+       if (qdio_alloc_buffers(q->qdio_bufs, QDIO_MAX_BUFFERS_PER_Q))
+               goto err_qdio_bufs;
+
+       for (i = 0; i < QDIO_MAX_BUFFERS_PER_Q; i++) {
+               if (qeth_init_qdio_out_buf(q, i))
+                       goto err_out_bufs;
         }
+
         return q;
+
+err_out_bufs:
+       while (i > 0)
+               kmem_cache_free(qeth_qdio_outbuf_cache, q->bufs[--i]);
+       qdio_free_buffers(q->qdio_bufs, QDIO_MAX_BUFFERS_PER_Q);
+err_qdio_bufs:
+       kfree(q);
+       return NULL;
  }
  
  static void qeth_tx_completion_timer(struct timer_list *timer)
@@ -2655,7 +2668,7 @@ static void qeth_tx_completion_timer(struct timer_list *timer)
  
  static int qeth_alloc_qdio_queues(struct qeth_card *card)
  {
-       int i, j;
+       unsigned int i;
  
         QETH_CARD_TEXT(card, 2, "allcqdbf");
  
@@ -2689,13 +2702,6 @@ static int qeth_alloc_qdio_queues(struct qeth_card *card)
                 queue->coalesce_usecs = QETH_TX_COALESCE_USECS;
                 queue->max_coalesced_frames = QETH_TX_MAX_COALESCED_FRAMES;
                 queue->priority = QETH_QIB_PQUE_PRIO_DEFAULT;
-
-               /* give outbound qeth_qdio_buffers their qdio_buffers */
-               for (j = 0; j < QDIO_MAX_BUFFERS_PER_Q; ++j) {
-                       WARN_ON(queue->bufs[j]);
-                       if (qeth_init_qdio_out_buf(queue, j))
-                               goto out_freeoutqbufs;
-               }
         }
  
         /* completion */
@@ -2704,13 +2710,6 @@ static int qeth_alloc_qdio_queues(struct qeth_card *card)
  
         return 0;
  
-out_freeoutqbufs:
-       while (j > 0) {
-               --j;
-               kmem_cache_free(qeth_qdio_outbuf_cache,
-                               card->qdio.out_qs[i]->bufs[j]);
-               card->qdio.out_qs[i]->bufs[j] = NULL;
-       }
  out_freeoutq:
         while (i > 0) {
                 qeth_free_output_queue(card->qdio.out_qs[--i]);
author	Julian Wiedmann <jwi@linux.ibm.com>
	Tue, 9 Mar 2021 16:52:18 +0000 (17:52 +0100)
committer	David S. Miller <davem@davemloft.net>
	Wed, 10 Mar 2021 00:14:53 +0000 (16:14 -0800)