usb: diag: Check for USB connect state in usb_diag_read/write With new composition framework unbind function of the driver is called during composition switch. This results in NULL pointer dereference in usb_diag_read/write while trying to access priv_usb field of usb_diag_ch. WIth the previous compositon framework unbind function was not called, hence, this issue was also not observed. Signed-off-by: Manu Gautam <mgautam@codeaurora.org>

commit: b33f33a13f54df4471447fa67bf5a6eb50af3040 [log] [tgz]
author: Manu Gautam <mgautam@codeaurora.org> Fri Sep 09 14:35:57 2011 +0530
committer: Bryan Huntsman <bryanh@codeaurora.org> Mon Oct 03 09:58:56 2011 -0700
tree: 8e62661a25ee3f260cbedb79f58b84470b60b0e0
parent: 2b0234a369b8b630ad34655646d0499924085bbb [diff] [blame]
diff --git a/drivers/usb/gadget/f_diag.c b/drivers/usb/gadget/f_diag.c
index 5366018..f950286 100644
--- a/drivers/usb/gadget/f_diag.c
+++ b/drivers/usb/gadget/f_diag.c

@@ -388,6 +388,9 @@
 	unsigned long flags;
 	struct usb_request *req;
 
+	if (!ctxt)
+		return -ENODEV;
+
 	spin_lock_irqsave(&ctxt->lock, flags);
 
 	if (!ctxt->configured) {
@@ -441,6 +444,9 @@
 	unsigned long flags;
 	struct usb_request *req = NULL;
 
+	if (!ctxt)
+		return -ENODEV;
+
 	spin_lock_irqsave(&ctxt->lock, flags);
 
 	if (!ctxt->configured) {
commit	b33f33a13f54df4471447fa67bf5a6eb50af3040	[log] [tgz]
author	Manu Gautam <mgautam@codeaurora.org>	Fri Sep 09 14:35:57 2011 +0530
committer	Bryan Huntsman <bryanh@codeaurora.org>	Mon Oct 03 09:58:56 2011 -0700
tree	8e62661a25ee3f260cbedb79f58b84470b60b0e0
parent	2b0234a369b8b630ad34655646d0499924085bbb [diff] [blame]