ceph: quota: fix null pointer dereference in quota check

This patch fixes a possible null pointer dereference in check_quota_exceeded, detected by the static checker smatch, with the following warning: fs/ceph/quota.c:240 check_quota_exceeded() error: we previously assumed 'realm' could be null (see line 188) Fixes: b7a29217 ("ceph: quota: support for ceph.quota.max_files") Reported-by: N Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: N Luis Henriques <lhenriques@suse.com> Reviewed-by: N "Yan, Zheng" <zyan@redhat.com> Signed-off-by: N Ilya Dryomov <idryomov@gmail.com>

ceph: quota: fix null pointer dereference in quota check
This patch fixes a possible null pointer dereference in check_quota_exceeded, detected by the static checker smatch, with the following warning: fs/ceph/quota.c:240 check_quota_exceeded() error: we previously assumed 'realm' could be null (see line 188) Fixes: b7a29217 ("ceph: quota: support for ceph.quota.max_files") Reported-by: N Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: N Luis Henriques <lhenriques@suse.com> Reviewed-by: N "Yan, Zheng" <zyan@redhat.com> Signed-off-by: N Ilya Dryomov <idryomov@gmail.com>
71f2cc64 · Luis Henriques · Ilya Dryomov · c2c6d3ce · 71f2cc64
隐藏空白更改
内联并排

Showing with 2 addition and 1 deletion

fs/ceph/quota.c fs/ceph/quota.c +2 -1

未找到文件。
--- a/fs/ceph/quota.c
+++ b/fs/ceph/quota.c
@@ -237,7 +237,8 @@ static bool check_quota_exceeded(struct inode *inode, enum quota_check_op op,
 		ceph_put_snap_realm(mdsc, realm);
 		realm = next;
 	}
-	ceph_put_snap_realm(mdsc, realm);
+	if (realm)
+		ceph_put_snap_realm(mdsc, realm);
 	up_read(&mdsc->snap_rwsem);

 	return exceeded;