Re: [PATCH] Bluetooth: Fix null pointer dereference inl2cap_chan_send

From: Gustavo Padovan
Date: Mon May 21 2012 - 12:17:11 EST

Next message: Ning Jiang: "[PATCH] genirq: Add IRQS_PENDING for nested and simple irq"
Previous message: Shirley Ma: "Re: [V2 PATCH 9/9] vhost: zerocopy: poll vq in zerocopy callback"
In reply to: Minho Ban: "[PATCH] Bluetooth: Fix null pointer dereference in l2cap_chan_send"
Next in thread: Minho Ban: "Re: [PATCH] Bluetooth: Fix null pointer dereference in l2cap_chan_send"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Minho,

* Minho Ban <mhban@xxxxxxxxxxx> [2012-05-21 09:58:19 +0900]:

> If l2cap_chan_send is called will null conn it will cause kernel Oops.
> This patch checks if conn is valid before entering l2cap_chan_send.

chan->conn should be always valid, and if not we have a bug somewhere else in
the code and not in l2cap_chan_send(). It could be a locking problem maybe.
Also check if you can reproduce this with latest bluetooth-next.

Gustavo
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ning Jiang: "[PATCH] genirq: Add IRQS_PENDING for nested and simple irq"
Previous message: Shirley Ma: "Re: [V2 PATCH 9/9] vhost: zerocopy: poll vq in zerocopy callback"
In reply to: Minho Ban: "[PATCH] Bluetooth: Fix null pointer dereference in l2cap_chan_send"
Next in thread: Minho Ban: "Re: [PATCH] Bluetooth: Fix null pointer dereference in l2cap_chan_send"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]