Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit a5926973 authored by Jinwei Chen's avatar Jinwei Chen Committed by snandini
Browse files

qcacld-3.0: fix invalid accessing to freed in_ifaddr 

The in_ifaddr in in_dev->ifa_list which stores IP info is freed
maybe due to lifetime hit/wlan interface re-connect, etc. In
the meantime, lot ARP request frame is pending in DP RX thread and
still try to do local ARP check in function hdd_is_arp_local(),
this function will go through in_dev->ifa_list but no lock
protection, use after free happened due to race condition.
Add lock protection in hdd_is_arp_local().

Change-Id: Iaa97d445d3c4c0b79b5b9f63362df2601f62af5b
CRs-Fixed: 2751469
parent e523f55f
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment