[kobject] Fix memory leak in kobject_set_name().

If kobject_set_name() is called when the kobject already has a name that was dynamically allocated (too long for the static array), then we must free that memory. Noticed by Jon Corbet.

[kobject] Fix memory leak in kobject_set_name().
If kobject_set_name() is called when the kobject already has a name that was dynamically allocated (too long for the static array), then we must free that memory. Noticed by Jon Corbet.
6c7b2bec · Patrick Mochel · 402f1b9f · 6c7b2bec
Commit 6c7b2bec authored Sep 29, 2003 by Patrick Mochel
Hide whitespace changes
Inline Side-by-side

Showing with 14 additions and 5 deletions

lib/kobject.c lib/kobject.c +14 -5

No files found.
--- a/lib/kobject.c
+++ b/lib/kobject.c
@@ -331,6 +331,7 @@ int kobject_set_name(struct kobject * kobj, const char * fmt, ...)
 	int limit = KOBJ_NAME_LEN;
 	int need;
 	va_list args;
+	char * name;
 	va_start(args,fmt);
 	/* 
@@ -338,25 +339,33 @@ int kobject_set_name(struct kobject * kobj, const char * fmt, ...)
 	 */
 	need = vsnprintf(kobj->name,limit,fmt,args);
 	if (need < limit) 
-		kobj->k_name = kobj->name;
+		name = kobj->name;
 	else {
 		/* 
 		 * Need more space? Allocate it and try again 
 		 */
-		kobj->k_name = kmalloc(need,GFP_KERNEL);
+		name = kmalloc(need,GFP_KERNEL);
-		if (!kobj->k_name) {
+		if (!name) {
 			error = -ENOMEM;
 			goto Done;
 		}
 		limit = need;
-		need = vsnprintf(kobj->k_name,limit,fmt,args);
+		need = vsnprintf(name,limit,fmt,args);
 		/* Still? Give up. */
 		if (need > limit) {
-			kfree(kobj->k_name);
+			kfree(name);
 			error = -EFAULT;
+			goto Done;
 		}
 	}
+	/* Free the old name, if necessary. */
+	if (kobj->k_name && kobj->k_name != kobj->name)
+		kfree(kobj->k_name);
+	/* Now, set the new name */
+	kobj->k_name = name;
 Done:
 	va_end(args);
 	return error;