Re: [BUG] Potential Null Pointer Dereference in ieee80211_process_neg_ttlm_req Function

Next message: Benjamin Gaignard: "[PATCH v13 6/6] arm64: defconfig: enable Verisilicon IOMMU for Rockchip RK3588"
Previous message: Benjamin Gaignard: "[PATCH v13 4/6] media: verisilicon: AV1: Restore IOMMU context before decoding a frame"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Johannes Berg

Date: Mon Feb 16 2026 - 04:54:16 EST

Hi,

> Our team recently developed a null-pointer-dereference (NPD) vulnerability detection tool

OK, so you decided to write a new tool. Good for you, but keep in mind
that you need to compete with very well-known tools already.

> After manual review,

(and you have:)

> BUILD_BUG_ON(ARRAY_SIZE(direction) != ARRAY_SIZE(elems->ttlm));

So you're either lying, or decided to task someone with this who doesn't
understand C; even state-of-the art LLMs would do better. State of the
art tools (LLMs and not LLMs like coverity) will also give you a
scenario of how the purported bug can actually happen.

I get that you need human feedback to improve your system, but you've
also apparently decided that it's too expensive / too much work / too
hard to really do this review, and you want the Linux community to do it
for you instead. That's cheaper, yay!

But it doesn't work that way. You're not entitled to free feedback for
your under development tool.

Please stop doing this.

johannes