lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <20161129153510.GE29872@localhost>
Date:   Tue, 29 Nov 2016 16:35:10 +0100
From:   Johan Hovold <johan@...nel.org>
To:     Pan Bian <bianpan2016@....com>
Cc:     Johan Hovold <johan@...nel.org>, linux-usb@...r.kernel.org,
        linux-kernel@...r.kernel.org
Subject: Re: [PATCH 1/1] usb: abort on exception path

On Tue, Nov 29, 2016 at 08:53:35PM +0800, Pan Bian wrote:
> Function klsi_105_open() calls usb_control_msg() and checks its return
> value. When the return value is unexpected, it only assigns the error
> code to the return variable retval, but does not terminate the exception
> path. This patch fixes the bug by inserting "goto exit;" when the call
> to usb_control_msg() fails.
> 
> Signed-off-by: Pan Bian <bianpan2016@....com>

Thanks for the patch.

It turns out there were more issues with the error handling in this
function; for example, the URBs submitted by generic_open were never
stopped on failure to read the line status a bit further down.

I fixed that up and rebased your patch on top.

I'll post both patches to the list shortly.

And next time, please include which driver you are changing in the patch
summary and not just the subsystem prefix (e.g. use "USB: serial:
kl5kusb105: ...").

> ---
>  drivers/usb/serial/kl5kusb105.c | 1 +
>  1 file changed, 1 insertion(+)
> 
> diff --git a/drivers/usb/serial/kl5kusb105.c b/drivers/usb/serial/kl5kusb105.c
> index fc5d3a7..068919f 100644
> --- a/drivers/usb/serial/kl5kusb105.c
> +++ b/drivers/usb/serial/kl5kusb105.c
> @@ -311,6 +311,7 @@ static int  klsi_105_open(struct tty_struct *tty, struct usb_serial_port *port)
>  	if (rc < 0) {
>  		dev_err(&port->dev, "Enabling read failed (error = %d)\n", rc);
>  		retval = rc;
> +		goto exit;
>  	} else
>  		dev_dbg(&port->dev, "%s - enabled reading\n", __func__);

Thanks,
Johan

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ