Commit 30dc0d0f authored by Matt Fleming's avatar Matt Fleming Committed by H. Peter Anvin

x86, efi: Only close open files in error path

The loop at the 'close_handles' label in handle_ramdisks() should be
using 'i', which represents the number of initrd files that were
successfully opened, not 'nr_initrds' which is the number of initrd=
arguments passed on the command line.

Currently, if we execute the loop to close all file handles and we
failed to open any initrds we'll try to call the close function on a
garbage pointer, causing the machine to hang.

Cc: Matthew Garrett <mjg@redhat.com>
Signed-off-by: default avatarMatt Fleming <matt.fleming@intel.com>
Link: http://lkml.kernel.org/r/1331907517-3985-2-git-send-email-matt@console-pimps.orgSigned-off-by: default avatarH. Peter Anvin <hpa@zytor.com>
parent fb21affa
...@@ -674,7 +674,7 @@ static efi_status_t handle_ramdisks(efi_loaded_image_t *image, ...@@ -674,7 +674,7 @@ static efi_status_t handle_ramdisks(efi_loaded_image_t *image,
low_free(initrd_total, initrd_addr); low_free(initrd_total, initrd_addr);
close_handles: close_handles:
for (k = j; k < nr_initrds; k++) for (k = j; k < i; k++)
efi_call_phys1(fh->close, initrds[k].handle); efi_call_phys1(fh->close, initrds[k].handle);
free_initrds: free_initrds:
efi_call_phys1(sys_table->boottime->free_pool, initrds); efi_call_phys1(sys_table->boottime->free_pool, initrds);
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment