review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Feng Tang <feng.tang@intel.com>
	Thu, 14 Mar 2019 10:37:29 +0000 (18:37 +0800)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sat, 20 Apr 2019 07:15:55 +0000 (09:15 +0200)
commit	f596ad9ea8a436fe2ebd902125d9c474a995d018
tree	d2d8283a135fceaca0f7a3273bf1e0a71629110f	tree \| snapshot
parent	74ed2226e65a94ea2492d6a99bb2d5d4ec84c4dd	commit \| diff

i40iw: Avoid panic when handling the inetdev event

[ Upstream commit ec4fe4bcc584b55e24e8d1768f5510a62c0fd619 ]

There is a panic reported that on a system with x722 ethernet, when doing
the operations like:

# ip link add br0 type bridge
# ip link set eno1 master br0
# systemctl restart systemd-networkd

The system will panic "BUG: unable to handle kernel null pointer
dereference at 0000000000000034", with call chain:

i40iw_inetaddr_event
notifier_call_chain
blocking_notifier_call_chain
notifier_call_chain
__inet_del_ifa
inet_rtm_deladdr
rtnetlink_rcv_msg
netlink_rcv_skb
rtnetlink_rcv
netlink_unicast
netlink_sendmsg
sock_sendmsg
__sys_sendto

It is caused by "local_ipaddr = ntohl(in->ifa_list->ifa_address)", while
the in->ifa_list is NULL.

So add a check for the "in->ifa_list == NULL" case, and skip the ARP
operation accordingly.

Signed-off-by: Feng Tang <feng.tang@intel.com>
Signed-off-by: Jason Gunthorpe <jgg@mellanox.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>