[PATCH] mac80211: fix possible NULL pointer dereference

From: Mariusz Kozlowski
Date: Sat Mar 26 2011 - 13:59:17 EST

Next message: Mariusz Kozlowski: "[PATCH] ACPI battery: fix possible use after free in acpi_battery_add()"
Previous message: Linus Torvalds: "Re: [boot crash #2] Re: [GIT PULL] SLAB changes for v2.6.39-rc1"
Next in thread: Johannes Berg: "Re: [PATCH] mac80211: fix possible NULL pointer dereference"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This patch moves 'key' dereference after BUG_ON(!key) so that when key is NULL
we will see proper trace instead of oops.

Signed-off-by: Mariusz Kozlowski <mk@xxxxxxxxxxxx>
---
net/mac80211/key.c | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/net/mac80211/key.c b/net/mac80211/key.c
index 8c02469..fd97925 100644
--- a/net/mac80211/key.c
+++ b/net/mac80211/key.c
@@ -400,11 +400,12 @@ int ieee80211_key_link(struct ieee80211_key *key,
{
struct ieee80211_key *old_key;
int idx, ret;
- bool pairwise = key->conf.flags & IEEE80211_KEY_FLAG_PAIRWISE;
+ bool pairwise;

BUG_ON(!sdata);
BUG_ON(!key);

+ pairwise = key->conf.flags & IEEE80211_KEY_FLAG_PAIRWISE;
idx = key->conf.keyidx;
key->local = sdata->local;
key->sdata = sdata;
--
1.7.0.4

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mariusz Kozlowski: "[PATCH] ACPI battery: fix possible use after free in acpi_battery_add()"
Previous message: Linus Torvalds: "Re: [boot crash #2] Re: [GIT PULL] SLAB changes for v2.6.39-rc1"
Next in thread: Johannes Berg: "Re: [PATCH] mac80211: fix possible NULL pointer dereference"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]