netfilter: nfnetlink_queue: fix memory leak when attach expectation successfully
authorLiping Zhang <liping.zhang@spreadtrum.com>
Mon, 8 Aug 2016 14:03:40 +0000 (22:03 +0800)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 9 Aug 2016 08:39:25 +0000 (10:39 +0200)
User can use NFQA_EXP to attach expectations to conntracks, but we
forget to put back nf_conntrack_expect when it is inserted successfully,
i.e. in this normal case, expect's use refcnt will be 3. So even we
unlink it and put it back later, the use refcnt is still 1, then the
memory will be leaked forever.

Signed-off-by: Liping Zhang <liping.zhang@spreadtrum.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
net/netfilter/nf_conntrack_netlink.c

index 050bb3420a6baf2e75f1b6eac080fe0b92b7e6f6..b9bfe64e232c683734f417c74f74f18a2ec3ce8b 100644 (file)
@@ -2362,12 +2362,8 @@ ctnetlink_glue_attach_expect(const struct nlattr *attr, struct nf_conn *ct,
                return PTR_ERR(exp);
 
        err = nf_ct_expect_related_report(exp, portid, report);
-       if (err < 0) {
-               nf_ct_expect_put(exp);
-               return err;
-       }
-
-       return 0;
+       nf_ct_expect_put(exp);
+       return err;
 }
 
 static void ctnetlink_glue_seqadj(struct sk_buff *skb, struct nf_conn *ct,