[PATCH] fix cciss memory leaks

From: Felipe W Damasio <felipewd@terra.com.br> Fix a few error-path leaks in the cciss block driver. Bug found by smatch checker.

[PATCH] fix cciss memory leaks
From: Felipe W Damasio <felipewd@terra.com.br> Fix a few error-path leaks in the cciss block driver. Bug found by smatch checker.
685e2ff2 · Andrew Morton · Linus Torvalds · d2fa8630 · 685e2ff2
Commit 685e2ff2 authored Sep 21, 2003 by Andrew Morton Committed by Linus Torvalds Sep 21, 2003
Hide whitespace changes
Inline Side-by-side

Showing with 16 additions and 8 deletions

drivers/block/cciss.c drivers/block/cciss.c +16 -8

No files found.
--- a/drivers/block/cciss.c
+++ b/drivers/block/cciss.c
@@ -754,16 +754,24 @@ static int cciss_ioctl(struct inode *inode, struct file *filep,
 			status = -ENOMEM;
 			goto cleanup1;
 		}
-		if (copy_from_user(ioc, (void *) arg, sizeof(*ioc)))
+		if (copy_from_user(ioc, (void *) arg, sizeof(*ioc))) {
-			return -EFAULT;
+			status = -EFAULT;
+			goto cleanup1;
+		}
 		if ((ioc->buf_size < 1) &&
-			(ioc->Request.Type.Direction != XFER_NONE))
+			(ioc->Request.Type.Direction != XFER_NONE)) {
-				return -EINVAL;
+				status = -EINVAL;
+				goto cleanup1;
+		}
 		/* Check kmalloc limits  using all SGs */
-		if (ioc->malloc_size > MAX_KMALLOC_SIZE)
+		if (ioc->malloc_size > MAX_KMALLOC_SIZE) {
-			return -EINVAL;
+			status = -EINVAL;
-		if (ioc->buf_size > ioc->malloc_size * MAXSGENTRIES)
+			goto cleanup1;
-			return -EINVAL;
+		}
+		if (ioc->buf_size > ioc->malloc_size * MAXSGENTRIES) {
+			status = -EINVAL;
+			goto cleanup1;
+		}
 		buff = (unsigned char **) kmalloc(MAXSGENTRIES * 
 				sizeof(char *), GFP_KERNEL);
 		if (!buff) {