Commit 62dba282 authored Jul 04, 2025 by Kuniyuki Iwashima Committed by Jakub Kicinski Jul 09, 2025

atm: clip: Fix memory leak of struct clip_vcc.



ioctl(ATMARP_MKIP) allocates struct clip_vcc and set it to
vcc->user_back.

The code assumes that vcc_destroy_socket() passes NULL skb
to vcc->push() when the socket is close()d, and then clip_push()
frees clip_vcc.

However, ioctl(ATMARPD_CTRL) sets NULL to vcc->push() in
atm_init_atmarp(), resulting in memory leak.

Let's serialise two ioctl() by lock_sock() and check vcc->push()
in atm_init_atmarp() to prevent memleak.

Fixes: 1da177e4 ("Linux-2.6.12-rc2")
Signed-off-by: Kuniyuki Iwashima <kuniyu@google.com>
Reviewed-by: Simon Horman <horms@kernel.org>
Link: https://patch.msgid.link/20250704062416.1613927-3-kuniyu@google.com


Signed-off-by: Jakub Kicinski <kuba@kernel.org>

parent 706cc364

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit 9e4dbeee
· Nov 05, 2025

mentioned in commit 9e4dbeee

mentioned in commit 9e4dbeee56f614e3f1e166e5d0655a999ea185ef

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 1c075e88
· Nov 05, 2025

mentioned in commit 1c075e88

mentioned in commit 1c075e88d5859a2c6b43b27e0e46fb281cef8039

Toggle commit list

Please to comment