From patchwork Tue May  2 14:00:21 2023
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Jinhong Zhu <jinhongzhu@hust.edu.cn>
X-Patchwork-Id: 678564
Return-Path: <linux-scsi-owner@vger.kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
 aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
 by smtp.lore.kernel.org (Postfix) with ESMTP id A0EF2C77B73
 for <linux-scsi@archiver.kernel.org>; Tue,  2 May 2023 14:05:50 +0000 (UTC)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
 id S233990AbjEBOFt (ORCPT <rfc822;linux-scsi@archiver.kernel.org>);
 Tue, 2 May 2023 10:05:49 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:59146 "EHLO
 lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
 with ESMTP id S229586AbjEBOFs (ORCPT
 <rfc822;linux-scsi@vger.kernel.org>); Tue, 2 May 2023 10:05:48 -0400
Received: from hust.edu.cn (unknown [202.114.0.240])
 by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E251BC3;
 Tue,  2 May 2023 07:05:46 -0700 (PDT)
Received: from user-virtual-machine.. ([10.12.182.5])
 (user=jinhongzhu@hust.edu.cn mech=LOGIN bits=0)
 by mx1.hust.edu.cn  with ESMTP id 342E445T022226-342E445U022226
 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256
 verify=NO); Tue, 2 May 2023 22:04:08 +0800
From: Jinhong Zhu <jinhongzhu@hust.edu.cn>
To: Saurav Kashyap <skashyap@marvell.com>, Javed Hasan <jhasan@marvell.com>,
 GR-QLogic-Storage-Upstream@marvell.com,
 "James E.J. Bottomley" <jejb@linux.ibm.com>,
 "Martin K. Petersen" <martin.petersen@oracle.com>,
 Manish Rangankar <manish.rangankar@cavium.com>,
 Arun Easi <arun.easi@cavium.com>, Nilesh Javali <nilesh.javali@cavium.com>
Cc: Jinhong Zhu <jinhongzhu@hust.edu.cn>, Dan Carpenter <error27@gmail.com>,
 Saurav Kashyap <saurav.kashyap@cavium.com>,
 linux-scsi@vger.kernel.org, linux-kernel@vger.kernel.org
Subject: [PATCH v2] scsi: qedf: Fix NULL dereference in error handling
Date: Tue,  2 May 2023 22:00:21 +0800
Message-Id: <20230502140022.2852-1-jinhongzhu@hust.edu.cn>
X-Mailer: git-send-email 2.34.1
MIME-Version: 1.0
X-FEAS-AUTH-USER: jinhongzhu@hust.edu.cn
Precedence: bulk
List-ID: <linux-scsi.vger.kernel.org>
X-Mailing-List: linux-scsi@vger.kernel.org

Smatch reported:

drivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues()
warn: missing unwind goto?

At this point in the function, nothing has been allocated so we can
return directly. In particular the "qedf->global_queues" have not been
allocated so calling qedf_free_global_queues() will lead to a NULL
dereference when we check if (!gl[i]) and "gl" is NULL.

Fixes: 61d8658b4a43 ("scsi: qedf: Add QLogic FastLinQ offload FCoE driver framework.")
Signed-off-by: Jinhong Zhu <jinhongzhu@hust.edu.cn>
Reviewed-by: Dan Carpenter <error27@gmail.com>
---
V2: Fix the wrong "Fixes" tag in V1.
---
 drivers/scsi/qedf/qedf_main.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/drivers/scsi/qedf/qedf_main.c b/drivers/scsi/qedf/qedf_main.c
index 35e16600fc63..f2c7dd4db9c6 100644
--- a/drivers/scsi/qedf/qedf_main.c
+++ b/drivers/scsi/qedf/qedf_main.c
@@ -3043,9 +3043,8 @@ static int qedf_alloc_global_queues(struct qedf_ctx *qedf)
 	 * addresses of our queues
 	 */
 	if (!qedf->p_cpuq) {
-		status = -EINVAL;
 		QEDF_ERR(&qedf->dbg_ctx, "p_cpuq is NULL.\n");
-		goto mem_alloc_failure;
+		return -EINVAL;
 	}
 
 	qedf->global_queues = kzalloc((sizeof(struct global_queue *)