RE: [PATCH] qed: fix memory leak of pent on error exit paths

2018-10-10 Thread Bolotin, Denis 
> +err:
> +   qed_spq_return_entry(p_hwfn, *pp_ent);
> +   *pp_ent = NULL;
> +
> +   return rc;

Hi Colin,

This leak is a known issue and can be found in several locations in the code. 
We are working on fixing it globally and it is currently being tested.
Thank you for your fix but we would rather prepare a fix that would also cover 
the other leaks in the code.

To comment on your fix, qed_spq_return_entry() may not be the API needed to 
prevent the leak. If you look at qed_spq_get_entry(), you’ll see that an entry 
can be taken from the free_pool but also can be kzalloc’ed.
The proper solution would be the solution below, but like I said, we are 
working on a complete patch that will be submitted soon.

+ if (p_ent->queue == _hwfn->p_spq->unlimited_pending
+kfree(p_ent);
+ else
+qed_spq_return_entry(p_hwfn, *pp_ent);

Thanks,
Denis

[PATCH] qed: fix memory leak of pent on error exit paths

2018-10-08 Thread Colin King 
From: Colin Ian King 

Currently, calls to qed_sp_init_request can leak pent on -EINVAL errors.
Fix this by adding the allocated pent back to the p_hwfn free_pool
on these error exits so it can be re-used later and hence fixes the
leak.

Detected by CoverityScan, CID#1411643 ("Resource leak")

Fixes: fe56b9e6a8d9 ("qed: Add module with basic common support")
Signed-off-by: Colin Ian King 
---
 .../net/ethernet/qlogic/qed/qed_sp_commands.c| 16 +---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/drivers/net/ethernet/qlogic/qed/qed_sp_commands.c 
b/drivers/net/ethernet/qlogic/qed/qed_sp_commands.c
index 77b6248ad3b9..810475a6522a 100644
--- a/drivers/net/ethernet/qlogic/qed/qed_sp_commands.c
+++ b/drivers/net/ethernet/qlogic/qed/qed_sp_commands.c
@@ -79,8 +79,10 @@ int qed_sp_init_request(struct qed_hwfn *p_hwfn,
break;
 
case QED_SPQ_MODE_BLOCK:
-   if (!p_data->p_comp_data)
-   return -EINVAL;
+   if (!p_data->p_comp_data) {
+   rc = -EINVAL;
+   goto err;
+   }
 
p_ent->comp_cb.cookie = p_data->p_comp_data->cookie;
break;
@@ -95,7 +97,8 @@ int qed_sp_init_request(struct qed_hwfn *p_hwfn,
default:
DP_NOTICE(p_hwfn, "Unknown SPQE completion mode %d\n",
  p_ent->comp_mode);
-   return -EINVAL;
+   rc = -EINVAL;
+   goto err;
}
 
DP_VERBOSE(p_hwfn, QED_MSG_SPQ,
@@ -109,6 +112,13 @@ int qed_sp_init_request(struct qed_hwfn *p_hwfn,
memset(_ent->ramrod, 0, sizeof(p_ent->ramrod));
 
return 0;
+
+err:
+   qed_spq_return_entry(p_hwfn, *pp_ent);
+   *pp_ent = NULL;
+
+   return rc;
+
 }
 
 static enum tunnel_clss qed_tunn_clss_to_fw_clss(u8 type)
-- 
2.17.1