NFSv4.1: Fix a kfree() of uninitialised pointers in decode_cb_sequence_args
authorTrond Myklebust <trond.myklebust@primarydata.com>
Wed, 11 Feb 2015 22:27:55 +0000 (17:27 -0500)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Fri, 6 Mar 2015 22:40:50 +0000 (14:40 -0800)
commit72b19f30985230979d812ae65a3fd4c28067a589
tree8da9ae38e13a111f5836ae845fe2ff4f8feb3feb
parentc213da80aa303730ca6d99a30f10043428c0e354
NFSv4.1: Fix a kfree() of uninitialised pointers in decode_cb_sequence_args

commit d8ba1f971497c19cf80da1ea5391a46a5f9fbd41 upstream.

If the call to decode_rc_list() fails due to a memory allocation error,
then we need to truncate the array size to ensure that we only call
kfree() on those pointer that were allocated.

Reported-by: David Ramos <daramos@stanford.edu>
Fixes: 4aece6a19cf7f ("nfs41: cb_sequence xdr implementation")
Signed-off-by: Trond Myklebust <trond.myklebust@primarydata.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
fs/nfs/callback_xdr.c