Btrfs: fix double free in find_lock_delalloc_range

commit 7d78874273463a784759916fc3e0b4e2eb141c70 upstream. We need to NULL the cached_state after freeing it, otherwise we might free it again if find_delalloc_range doesn't find anything. Signed-off-by: Chris Mason <clm@fb.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: Chris Mason <clm@fb.com> 2014-05-21 05:49:54 -0700
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2014-06-30 20:01:33 -0700
commit: a25ebe211246ea835f165c371d744f2d65260d64 (patch)
tree: 335551c23a3381b1f50d09bd0c5206e54e3d261b /fs
parent: 2edae61bce495df81c58eb0b93faac301de849c7 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/fs/btrfs/extent_io.c b/fs/btrfs/extent_io.c
index d64fda54148..57484d2e58d 100644
--- a/fs/btrfs/extent_io.c
+++ b/fs/btrfs/extent_io.c
@@ -1551,6 +1551,7 @@ again:
 		 * shortening the size of the delalloc range we're searching
 		 */
 		free_extent_state(cached_state);
+		cached_state = NULL;
 		if (!loops) {
 			unsigned long offset = (*start) & (PAGE_CACHE_SIZE - 1);
 			max_bytes = PAGE_CACHE_SIZE - offset;
author	Chris Mason <clm@fb.com>	2014-05-21 05:49:54 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2014-06-30 20:01:33 -0700
commit	a25ebe211246ea835f165c371d744f2d65260d64 (patch)
tree	335551c23a3381b1f50d09bd0c5206e54e3d261b /fs
parent	2edae61bce495df81c58eb0b93faac301de849c7 (diff)