Re: net/icmp: null-ptr-deref in icmp6_send

From: David Ahern
Date: Tue Nov 22 2016 - 22:11:03 EST

Next message: Chen-Yu Tsai: "[PATCH v2 0/2] mfd: axp20x: Fix AXP806 access errors on cold boot"
Previous message: Caesar Wang: "Re: [PATCH 3/5] thermal: rockchip: fixes invalid temperature case"
In reply to: David Ahern: "Re: net/icmp: null-ptr-deref in icmp6_send"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 11/22/16 1:11 PM, Cong Wang wrote:
> I have no idea what commit 5d41ce29e tried to fix, but we already
> use skb->dev a few lines before l3mdev_master_ifindex(), so I don't
> understand why skb->dev could be NULL, maybe just for vrf dev?

skb->dev can be null depending on when icmp6_send / icmpv6_send is called. Clearly I missed the ipv6_parse_hopopts -> icmpv6_param_prob path. I'll send a fix when I get back from PTO.

Next message: Chen-Yu Tsai: "[PATCH v2 0/2] mfd: axp20x: Fix AXP806 access errors on cold boot"
Previous message: Caesar Wang: "Re: [PATCH 3/5] thermal: rockchip: fixes invalid temperature case"
In reply to: David Ahern: "Re: net/icmp: null-ptr-deref in icmp6_send"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]