diff mbox series

[v2,09/11] malloc: check result of malloc_elem_free

Message ID	20221121223208.1147154-10-okaya@kernel.org (mailing list archive)
State	Superseded, archived
Headers	From: okaya@kernel.org To: dev@dpdk.org Cc: Sinan Kaya <okaya@kernel.org> Subject: [PATCH v2 09/11] malloc: check result of malloc_elem_free Date: Mon, 21 Nov 2022 17:32:08 -0500 Message-Id: <20221121223208.1147154-10-okaya@kernel.org> In-Reply-To: <20221121223208.1147154-1-okaya@kernel.org> References: <20221121223208.1147154-1-okaya@kernel.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: list Errors-To: dev-bounces@dpdk.org
Series	codeql fixes for various subsystems \| [v2,00/11] codeql fixes for various subsystems [v2,01/11] ethdev: check return result of rte_eth_dev_info_get [v2,02/11] net/tap: check if name is null [v2,03/11] memzone: check result of rte_fbarray_get [v2,04/11] memzone: check result of malloc_elem_from_data [v2,05/11] malloc: malloc_elem_join_adjacent_free can return null [v2,06/11] malloc: check result of rte_mem_virt2memseg_list [v2,07/11] malloc: check result of rte_fbarray_get [v2,08/11] malloc: check result of rte_mem_virt2memseg [v2,09/11] malloc: check result of malloc_elem_free

Checks

Context	Check	Description
ci/checkpatch	success	coding style OK
ci/iol-mellanox-Performance	success	Performance Testing PASS
ci/iol-broadcom-Functional	success	Functional Testing PASS
ci/iol-broadcom-Performance	success	Performance Testing PASS
ci/iol-intel-Functional	success	Functional Testing PASS
ci/iol-intel-Performance	success	Performance Testing PASS
ci/iol-x86_64-compile-testing	success	Testing PASS
ci/iol-aarch64-unit-testing	success	Testing PASS
ci/iol-x86_64-unit-testing	success	Testing PASS
ci/iol-aarch64-compile-testing	success	Testing PASS
ci/Intel-compilation	success	Compilation OK
ci/intel-Testing	success	Testing PASS

Commit Message

Sinan Kaya Nov. 21, 2022, 10:32 p.m. UTC

  From: Sinan Kaya <okaya@kernel.org>

In malloc_heap_free result of call to malloc_elem_free is dereferenced
here and may be null.

Signed-off-by: Sinan Kaya <okaya@kernel.org>
---
 lib/eal/common/malloc_heap.c | 3 +++
 1 file changed, 3 insertions(+)

Comments

Dmitry Kozlyuk Nov. 22, 2022, 3:52 p.m. UTC | #1

2022-11-21 17:32 (UTC-0500), okaya@kernel.org:
> From: Sinan Kaya <okaya@kernel.org>
> 
> In malloc_heap_free result of call to malloc_elem_free is dereferenced
> here and may be null.

It may not: "malloc_elem_free()" never returns NULL by definition:
it takes a valid busy element and returns a valid free element.
How about annotating the function instead?

diff mbox series

Patch

diff --git a/lib/eal/common/malloc_heap.c b/lib/eal/common/malloc_heap.c
index 88270ce4d2..6eb6fcda5e 100644
--- a/lib/eal/common/malloc_heap.c
+++ b/lib/eal/common/malloc_heap.c
@@ -892,6 +892,9 @@  malloc_heap_free(struct malloc_elem *elem)
 	/* anything after this is a bonus */
 	ret = 0;
 
+	if (elem == NULL)
+		goto free_unlock;
+
 	/* ...of which we can't avail if we are in legacy mode, or if this is an
 	 * externally allocated segment.
 	 */