From: Josh Cartwright Date: Wed, 17 Feb 2016 22:44:15 +0000 (-0600) Subject: gpio: use kzalloc to allocate gpio_device X-Git-Url: https://git.stricted.de/?a=commitdiff_plain;h=969f07b445d1c30479f53ce6818e1263043b999a;p=GitHub%2FLineageOS%2Fandroid_kernel_motorola_exynos9610.git gpio: use kzalloc to allocate gpio_device The use of kmalloc() to allocate the gpio_device leaves the contained struct device object in an unknown state. Calling dev_set_name() on a struct device of unknown state can trigger the free() of an invalid pointer, as seen in the following backtrace (collected by Tony Lindgren): kfree kobject_set_name_vargs dev_set_name gpiochip_add_data omap_gpio_probe platform_drv_probe ... Reported-by: Geert Uytterhoeven Reported-by: Michael Welling Reported-by: Tony Lindgren Tested-by: Michael Welling Tested-by: Tony Lindgren Signed-off-by: Josh Cartwright Signed-off-by: Linus Walleij --- diff --git a/drivers/gpio/gpiolib.c b/drivers/gpio/gpiolib.c index d8511cd68e7b..59f0045c5950 100644 --- a/drivers/gpio/gpiolib.c +++ b/drivers/gpio/gpiolib.c @@ -435,7 +435,7 @@ int gpiochip_add_data(struct gpio_chip *chip, void *data) * First: allocate and populate the internal stat container, and * set up the struct device. */ - gdev = kmalloc(sizeof(*gdev), GFP_KERNEL); + gdev = kzalloc(sizeof(*gdev), GFP_KERNEL); if (!gdev) return -ENOMEM; gdev->dev.bus = &gpio_bus_type;