soc: qcom: hab: fix the leak risk in hab_vchan_get (5fef3cdf) · Commits · e / devices / android_kernel_sony_msm8998

drivers/soc/qcom/hab/hab_vchan.c

+7 −7

Original line number	Diff line number	Diff line
		@@ -144,6 +144,13 @@ hab_vchan_get(struct physical_channel pchan, struct hab_header header)
		get_refcnt(vchan->refcount),
		payload_type, sizebytes);
		vchan = NULL;
		} else if (vchan->otherend_closed \|\| vchan->closed) {
		pr_err("closed already remote %d local %d vcid %x remote %x session %d refcnt %d header %x session %d type %d sz %zd\n",
		vchan->otherend_closed, vchan->closed,
		vchan->id, vchan->otherend_id,
		vchan->session_id, get_refcnt(vchan->refcount),
		vchan_id, session_id, payload_type, sizebytes);
		vchan = NULL;
		} else if (!kref_get_unless_zero(&vchan->refcount)) {
		/*
		* this happens when refcnt is already zero
		@@ -154,13 +161,6 @@ hab_vchan_get(struct physical_channel pchan, struct hab_header header)
		vchan->session_id, get_refcnt(vchan->refcount),
		vchan_id, session_id, payload_type, sizebytes);
		vchan = NULL;
		} else if (vchan->otherend_closed \|\| vchan->closed) {
		pr_err("closed already remote %d local %d vcid %x remote %x session %d refcnt %d header %x session %d type %d sz %zd\n",
		vchan->otherend_closed, vchan->closed,
		vchan->id, vchan->otherend_id,
		vchan->session_id, get_refcnt(vchan->refcount),
		vchan_id, session_id, payload_type, sizebytes);
		vchan = NULL;
		}
		}
		spin_unlock_bh(&pchan->vid_lock);