| Message ID | 20230201210218.361970-1-pchelkin@ispras.ru |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:adf:eb09:0:0:0:0:0 with SMTP id s9csp517330wrn;
Wed, 1 Feb 2023 13:20:09 -0800 (PST)
X-Google-Smtp-Source:
AK7set9/v1Fr0OUA1ptWBglDtg8S6ilzC4Ec2sGe09Yz/6aqhQhbSIVVbWRhD2HfgWMkqu42pDuv
X-Received: by 2002:a17:906:7d8:b0:864:223:40b with SMTP id
m24-20020a17090607d800b008640223040bmr4090430ejc.33.1675286409656;
Wed, 01 Feb 2023 13:20:09 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1675286409; cv=none;
d=google.com; s=arc-20160816;
b=D3mwTIaowItfhUn/+QMF77rkljx9VhZIuJm0XQ0gHNpR7xRWDAX6ycFtQh71yfuApX
AE8yeIaA6ecc5TlakBltB/MoLih0k8ZfpjF6IzqiXoWbIEXIIO7lKZBNbT3YxL1QCSdy
eWI7m/mDkTgN6QRYi0wt/+g3DJT+66PfW2lRI/Agn/u6biEvmRroCkUL+Z4p4BKk5DvE
JVAn/3iXDTQuiVhfjGA6wLjpdy6oUHy2eKNhQRFfjYyq5q1kHJkYZmJn5++EanuYzbXw
nf/oQzWmOmxEzaPDGFZMjxXSyDOIaln9FS1meysOF2l6jmbLR9U6GClppE/ZVgWVDDxU
n8Zw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:content-transfer-encoding:mime-version
:references:in-reply-to:message-id:date:subject:cc:to:from
:dkim-signature:dkim-filter;
bh=wjDP8ui3vLJposcMvjeUZxIe06SJLzXhCr64sA9rsy8=;
b=0sO9DsrQyrYqHABXVtUduEN8P9iF8squ4uzh7BTaYWqeyKP+joz6do1GOq+PmBYUSI
biYwTqPokDdg6hddk17k7kni6n27bN8h9ahnnmt9T80RW03hLF9xUJaTuBLUXf2LK8d+
WwxrvHSLXZQZ44jtBh3gO/sCErcs4unJ0kmAYbexoBBYCeQpkCngXvwnqDyJgOjZUbDm
MtHWwSFJL17uhePWmqG+AJnCxW+lyWEq4ePgCMyBK7TsEoZYVLhGc3PUpLFNdnVGsgid
kAin1T+qiWKhtxVpfaByM6gF/LN1h18yN/JHsJUaic4bIaN9qVs4+nMcF1naxzvhLI4K
KOGg==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@ispras.ru header.s=default header.b=WZ4mcvmq;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
hb42-20020a170907162a00b007c10bb4eaabsi30342344ejc.156.2023.02.01.13.19.02;
Wed, 01 Feb 2023 13:20:09 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
dkim=pass header.i=@ispras.ru header.s=default header.b=WZ4mcvmq;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=ispras.ru
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S230032AbjBAVCo (ORCPT <rfc822;duw91626@gmail.com> + 99 others);
Wed, 1 Feb 2023 16:02:44 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44530 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S229551AbjBAVCn (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Wed, 1 Feb 2023 16:02:43 -0500
Received: from mail.ispras.ru (mail.ispras.ru [83.149.199.84])
by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C5244182;
Wed, 1 Feb 2023 13:02:41 -0800 (PST)
Received: from localhost.localdomain (unknown [46.242.14.200])
by mail.ispras.ru (Postfix) with ESMTPSA id 7242340D403D;
Wed, 1 Feb 2023 21:02:38 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.11.0 mail.ispras.ru 7242340D403D
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ispras.ru;
s=default; t=1675285358;
bh=wjDP8ui3vLJposcMvjeUZxIe06SJLzXhCr64sA9rsy8=;
h=From:To:Cc:Subject:Date:In-Reply-To:References:From;
b=WZ4mcvmq2NdoSDJEx+ePHeZ2jl6rgXH4yAcB/ukcvnjLhJQr27Sxa42wiMwMo1BU9
F3MH8IkcHYBXKzfoVjSN/0PiFPESAR+rHY+lGKnQu8u6JHZ2vJTtkdmIW7qbd2kLbH
l8Nw8x+Fcq5Xb7mDeWfUfLD4SzOsZQ332dCJNiHY=
From: Fedor Pchelkin <pchelkin@ispras.ru>
To: Pravin B Shelar <pshelar@ovn.org>,
Simon Horman <simon.horman@corigine.com>
Cc: Fedor Pchelkin <pchelkin@ispras.ru>,
"David S. Miller" <davem@davemloft.net>,
Eric Dumazet <edumazet@google.com>,
Jakub Kicinski <kuba@kernel.org>,
Paolo Abeni <pabeni@redhat.com>,
Eelco Chaudron <echaudro@redhat.com>, netdev@vger.kernel.org,
dev@openvswitch.org, linux-kernel@vger.kernel.org,
Alexey Khoroshilov <khoroshilov@ispras.ru>,
lvc-project@linuxtesting.org
Subject: [PATCH v2] net: openvswitch: fix flow memory leak in ovs_flow_cmd_new
Date: Thu, 2 Feb 2023 00:02:18 +0300
Message-Id: <20230201210218.361970-1-pchelkin@ispras.ru>
X-Mailer: git-send-email 2.30.2
In-Reply-To: <Y9qZRCn7CLhYr5h3@corigine.com>
References:
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,SPF_HELO_NONE,SPF_PASS
autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1756567121825570381?=
X-GMAIL-MSGID: =?utf-8?q?1756665122055393995?=
|
| Series |
[v2] net: openvswitch: fix flow memory leak in ovs_flow_cmd_new
|
|
Commit Message
Fedor Pchelkin
Feb. 1, 2023, 9:02 p.m. UTC
Syzkaller reports a memory leak of new_flow in ovs_flow_cmd_new() as it is
not freed when an allocation of a key fails.
BUG: memory leak
unreferenced object 0xffff888116668000 (size 632):
comm "syz-executor231", pid 1090, jiffies 4294844701 (age 18.871s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
backtrace:
[<00000000defa3494>] kmem_cache_zalloc include/linux/slab.h:654 [inline]
[<00000000defa3494>] ovs_flow_alloc+0x19/0x180 net/openvswitch/flow_table.c:77
[<00000000c67d8873>] ovs_flow_cmd_new+0x1de/0xd40 net/openvswitch/datapath.c:957
[<0000000010a539a8>] genl_family_rcv_msg_doit+0x22d/0x330 net/netlink/genetlink.c:739
[<00000000dff3302d>] genl_family_rcv_msg net/netlink/genetlink.c:783 [inline]
[<00000000dff3302d>] genl_rcv_msg+0x328/0x590 net/netlink/genetlink.c:800
[<000000000286dd87>] netlink_rcv_skb+0x153/0x430 net/netlink/af_netlink.c:2515
[<0000000061fed410>] genl_rcv+0x24/0x40 net/netlink/genetlink.c:811
[<000000009dc0f111>] netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline]
[<000000009dc0f111>] netlink_unicast+0x545/0x7f0 net/netlink/af_netlink.c:1339
[<000000004a5ee816>] netlink_sendmsg+0x8e7/0xde0 net/netlink/af_netlink.c:1934
[<00000000482b476f>] sock_sendmsg_nosec net/socket.c:651 [inline]
[<00000000482b476f>] sock_sendmsg+0x152/0x190 net/socket.c:671
[<00000000698574ba>] ____sys_sendmsg+0x70a/0x870 net/socket.c:2356
[<00000000d28d9e11>] ___sys_sendmsg+0xf3/0x170 net/socket.c:2410
[<0000000083ba9120>] __sys_sendmsg+0xe5/0x1b0 net/socket.c:2439
[<00000000c00628f8>] do_syscall_64+0x30/0x40 arch/x86/entry/common.c:46
[<000000004abfdcf4>] entry_SYSCALL_64_after_hwframe+0x61/0xc6
To fix this the patch rearranges the goto labels to reflect the order of
object allocations and adds appropriate goto statements on the error
paths.
Found by Linux Verification Center (linuxtesting.org) with Syzkaller.
Fixes: 68bb10101e6b ("openvswitch: Fix flow lookup to use unmasked key")
Signed-off-by: Fedor Pchelkin <pchelkin@ispras.ru>
Signed-off-by: Alexey Khoroshilov <khoroshilov@ispras.ru>
---
v1->v2: make goto statements structured
net/openvswitch/datapath.c | 12 ++++++------
1 file changed, 6 insertions(+), 6 deletions(-)
Comments
On 1 Feb 2023, at 22:02, Fedor Pchelkin wrote: > Syzkaller reports a memory leak of new_flow in ovs_flow_cmd_new() as it is > not freed when an allocation of a key fails. > > BUG: memory leak > unreferenced object 0xffff888116668000 (size 632): > comm "syz-executor231", pid 1090, jiffies 4294844701 (age 18.871s) > hex dump (first 32 bytes): > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > backtrace: > [<00000000defa3494>] kmem_cache_zalloc include/linux/slab.h:654 [inline] > [<00000000defa3494>] ovs_flow_alloc+0x19/0x180 net/openvswitch/flow_table.c:77 > [<00000000c67d8873>] ovs_flow_cmd_new+0x1de/0xd40 net/openvswitch/datapath.c:957 > [<0000000010a539a8>] genl_family_rcv_msg_doit+0x22d/0x330 net/netlink/genetlink.c:739 > [<00000000dff3302d>] genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] > [<00000000dff3302d>] genl_rcv_msg+0x328/0x590 net/netlink/genetlink.c:800 > [<000000000286dd87>] netlink_rcv_skb+0x153/0x430 net/netlink/af_netlink.c:2515 > [<0000000061fed410>] genl_rcv+0x24/0x40 net/netlink/genetlink.c:811 > [<000000009dc0f111>] netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline] > [<000000009dc0f111>] netlink_unicast+0x545/0x7f0 net/netlink/af_netlink.c:1339 > [<000000004a5ee816>] netlink_sendmsg+0x8e7/0xde0 net/netlink/af_netlink.c:1934 > [<00000000482b476f>] sock_sendmsg_nosec net/socket.c:651 [inline] > [<00000000482b476f>] sock_sendmsg+0x152/0x190 net/socket.c:671 > [<00000000698574ba>] ____sys_sendmsg+0x70a/0x870 net/socket.c:2356 > [<00000000d28d9e11>] ___sys_sendmsg+0xf3/0x170 net/socket.c:2410 > [<0000000083ba9120>] __sys_sendmsg+0xe5/0x1b0 net/socket.c:2439 > [<00000000c00628f8>] do_syscall_64+0x30/0x40 arch/x86/entry/common.c:46 > [<000000004abfdcf4>] entry_SYSCALL_64_after_hwframe+0x61/0xc6 > > To fix this the patch rearranges the goto labels to reflect the order of > object allocations and adds appropriate goto statements on the error > paths. > > Found by Linux Verification Center (linuxtesting.org) with Syzkaller. > > Fixes: 68bb10101e6b ("openvswitch: Fix flow lookup to use unmasked key") > Signed-off-by: Fedor Pchelkin <pchelkin@ispras.ru> > Signed-off-by: Alexey Khoroshilov <khoroshilov@ispras.ru> > --- > v1->v2: make goto statements structured Thanks for fixing this, the changes look good. Acked-by: Eelco Chaudron <echaudro@redhat.com> > net/openvswitch/datapath.c | 12 ++++++------ > 1 file changed, 6 insertions(+), 6 deletions(-) > > diff --git a/net/openvswitch/datapath.c b/net/openvswitch/datapath.c > index a71795355aec..fcee6012293b 100644 > --- a/net/openvswitch/datapath.c > +++ b/net/openvswitch/datapath.c > @@ -1004,14 +1004,14 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) > key = kzalloc(sizeof(*key), GFP_KERNEL); > if (!key) { > error = -ENOMEM; > - goto err_kfree_key; > + goto err_kfree_flow; > } > > ovs_match_init(&match, key, false, &mask); > error = ovs_nla_get_match(net, &match, a[OVS_FLOW_ATTR_KEY], > a[OVS_FLOW_ATTR_MASK], log); > if (error) > - goto err_kfree_flow; > + goto err_kfree_key; > > ovs_flow_mask_key(&new_flow->key, key, true, &mask); > > @@ -1019,14 +1019,14 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) > error = ovs_nla_get_identifier(&new_flow->id, a[OVS_FLOW_ATTR_UFID], > key, log); > if (error) > - goto err_kfree_flow; > + goto err_kfree_key; > > /* Validate actions. */ > error = ovs_nla_copy_actions(net, a[OVS_FLOW_ATTR_ACTIONS], > &new_flow->key, &acts, log); > if (error) { > OVS_NLERR(log, "Flow actions may not be safe on all matching packets."); > - goto err_kfree_flow; > + goto err_kfree_key; > } > > reply = ovs_flow_cmd_alloc_info(acts, &new_flow->id, info, false, > @@ -1126,10 +1126,10 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) > kfree_skb(reply); > err_kfree_acts: > ovs_nla_free_flow_actions(acts); > -err_kfree_flow: > - ovs_flow_free(new_flow, false); > err_kfree_key: > kfree(key); > +err_kfree_flow: > + ovs_flow_free(new_flow, false); > error: > return error; > } > -- > 2.30.2
On Thu, Feb 02, 2023 at 09:11:04AM +0100, Eelco Chaudron wrote: > > > On 1 Feb 2023, at 22:02, Fedor Pchelkin wrote: > > > Syzkaller reports a memory leak of new_flow in ovs_flow_cmd_new() as it is > > not freed when an allocation of a key fails. > > > > BUG: memory leak > > unreferenced object 0xffff888116668000 (size 632): > > comm "syz-executor231", pid 1090, jiffies 4294844701 (age 18.871s) > > hex dump (first 32 bytes): > > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > > backtrace: > > [<00000000defa3494>] kmem_cache_zalloc include/linux/slab.h:654 [inline] > > [<00000000defa3494>] ovs_flow_alloc+0x19/0x180 net/openvswitch/flow_table.c:77 > > [<00000000c67d8873>] ovs_flow_cmd_new+0x1de/0xd40 net/openvswitch/datapath.c:957 > > [<0000000010a539a8>] genl_family_rcv_msg_doit+0x22d/0x330 net/netlink/genetlink.c:739 > > [<00000000dff3302d>] genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] > > [<00000000dff3302d>] genl_rcv_msg+0x328/0x590 net/netlink/genetlink.c:800 > > [<000000000286dd87>] netlink_rcv_skb+0x153/0x430 net/netlink/af_netlink.c:2515 > > [<0000000061fed410>] genl_rcv+0x24/0x40 net/netlink/genetlink.c:811 > > [<000000009dc0f111>] netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline] > > [<000000009dc0f111>] netlink_unicast+0x545/0x7f0 net/netlink/af_netlink.c:1339 > > [<000000004a5ee816>] netlink_sendmsg+0x8e7/0xde0 net/netlink/af_netlink.c:1934 > > [<00000000482b476f>] sock_sendmsg_nosec net/socket.c:651 [inline] > > [<00000000482b476f>] sock_sendmsg+0x152/0x190 net/socket.c:671 > > [<00000000698574ba>] ____sys_sendmsg+0x70a/0x870 net/socket.c:2356 > > [<00000000d28d9e11>] ___sys_sendmsg+0xf3/0x170 net/socket.c:2410 > > [<0000000083ba9120>] __sys_sendmsg+0xe5/0x1b0 net/socket.c:2439 > > [<00000000c00628f8>] do_syscall_64+0x30/0x40 arch/x86/entry/common.c:46 > > [<000000004abfdcf4>] entry_SYSCALL_64_after_hwframe+0x61/0xc6 > > > > To fix this the patch rearranges the goto labels to reflect the order of > > object allocations and adds appropriate goto statements on the error > > paths. > > > > Found by Linux Verification Center (linuxtesting.org) with Syzkaller. > > > > Fixes: 68bb10101e6b ("openvswitch: Fix flow lookup to use unmasked key") > > Signed-off-by: Fedor Pchelkin <pchelkin@ispras.ru> > > Signed-off-by: Alexey Khoroshilov <khoroshilov@ispras.ru> > > --- > > v1->v2: make goto statements structured > > Thanks for fixing this, the changes look good. > > Acked-by: Eelco Chaudron <echaudro@redhat.com> Reviewed-by: Simon Horman <simon.horman@corigine.com>
Hello: This patch was applied to netdev/net.git (master) by Jakub Kicinski <kuba@kernel.org>: On Thu, 2 Feb 2023 00:02:18 +0300 you wrote: > Syzkaller reports a memory leak of new_flow in ovs_flow_cmd_new() as it is > not freed when an allocation of a key fails. > > BUG: memory leak > unreferenced object 0xffff888116668000 (size 632): > comm "syz-executor231", pid 1090, jiffies 4294844701 (age 18.871s) > hex dump (first 32 bytes): > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > backtrace: > [<00000000defa3494>] kmem_cache_zalloc include/linux/slab.h:654 [inline] > [<00000000defa3494>] ovs_flow_alloc+0x19/0x180 net/openvswitch/flow_table.c:77 > [<00000000c67d8873>] ovs_flow_cmd_new+0x1de/0xd40 net/openvswitch/datapath.c:957 > [<0000000010a539a8>] genl_family_rcv_msg_doit+0x22d/0x330 net/netlink/genetlink.c:739 > [<00000000dff3302d>] genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] > [<00000000dff3302d>] genl_rcv_msg+0x328/0x590 net/netlink/genetlink.c:800 > [<000000000286dd87>] netlink_rcv_skb+0x153/0x430 net/netlink/af_netlink.c:2515 > [<0000000061fed410>] genl_rcv+0x24/0x40 net/netlink/genetlink.c:811 > [<000000009dc0f111>] netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline] > [<000000009dc0f111>] netlink_unicast+0x545/0x7f0 net/netlink/af_netlink.c:1339 > [<000000004a5ee816>] netlink_sendmsg+0x8e7/0xde0 net/netlink/af_netlink.c:1934 > [<00000000482b476f>] sock_sendmsg_nosec net/socket.c:651 [inline] > [<00000000482b476f>] sock_sendmsg+0x152/0x190 net/socket.c:671 > [<00000000698574ba>] ____sys_sendmsg+0x70a/0x870 net/socket.c:2356 > [<00000000d28d9e11>] ___sys_sendmsg+0xf3/0x170 net/socket.c:2410 > [<0000000083ba9120>] __sys_sendmsg+0xe5/0x1b0 net/socket.c:2439 > [<00000000c00628f8>] do_syscall_64+0x30/0x40 arch/x86/entry/common.c:46 > [<000000004abfdcf4>] entry_SYSCALL_64_after_hwframe+0x61/0xc6 > > [...] Here is the summary with links: - [v2] net: openvswitch: fix flow memory leak in ovs_flow_cmd_new https://git.kernel.org/netdev/net/c/0c598aed445e You are awesome, thank you!
diff --git a/net/openvswitch/datapath.c b/net/openvswitch/datapath.c index a71795355aec..fcee6012293b 100644 --- a/net/openvswitch/datapath.c +++ b/net/openvswitch/datapath.c @@ -1004,14 +1004,14 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) key = kzalloc(sizeof(*key), GFP_KERNEL); if (!key) { error = -ENOMEM; - goto err_kfree_key; + goto err_kfree_flow; } ovs_match_init(&match, key, false, &mask); error = ovs_nla_get_match(net, &match, a[OVS_FLOW_ATTR_KEY], a[OVS_FLOW_ATTR_MASK], log); if (error) - goto err_kfree_flow; + goto err_kfree_key; ovs_flow_mask_key(&new_flow->key, key, true, &mask); @@ -1019,14 +1019,14 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) error = ovs_nla_get_identifier(&new_flow->id, a[OVS_FLOW_ATTR_UFID], key, log); if (error) - goto err_kfree_flow; + goto err_kfree_key; /* Validate actions. */ error = ovs_nla_copy_actions(net, a[OVS_FLOW_ATTR_ACTIONS], &new_flow->key, &acts, log); if (error) { OVS_NLERR(log, "Flow actions may not be safe on all matching packets."); - goto err_kfree_flow; + goto err_kfree_key; } reply = ovs_flow_cmd_alloc_info(acts, &new_flow->id, info, false, @@ -1126,10 +1126,10 @@ static int ovs_flow_cmd_new(struct sk_buff *skb, struct genl_info *info) kfree_skb(reply); err_kfree_acts: ovs_nla_free_flow_actions(acts); -err_kfree_flow: - ovs_flow_free(new_flow, false); err_kfree_key: kfree(key); +err_kfree_flow: + ovs_flow_free(new_flow, false); error: return error; }