Hong Zhiguo
2013-Mar-23 12:27 UTC
[Bridge] [PATCH] bridge: fix crash when set mac address of br interface
When I tried to set mac address of a bridge interface to a mac address which already learned on this bridge, I got system hang. The cause is straight forward: function br_fdb_change_mac_address calls fdb_insert with NULL source nbp. Then an fdb lookup is performed. If an fdb entry is found and it's local, it's OK. But if it's not local, source is dereferenced for printk without NULL check. Signed-off-by: Hong Zhiguo <honkiko at gmail.com> --- net/bridge/br_fdb.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/net/bridge/br_fdb.c b/net/bridge/br_fdb.c index 10b47d4..c581f12 100644 --- a/net/bridge/br_fdb.c +++ b/net/bridge/br_fdb.c @@ -421,7 +421,7 @@ static int fdb_insert(struct net_bridge *br, struct net_bridge_port *source, return 0; br_warn(br, "adding interface %s with same address " "as a received packet\n", - source->dev->name); + source ? source->dev->name : br->dev->name); fdb_delete(br, fdb); } -- 1.7.10.4
David Miller
2013-Mar-24 21:28 UTC
[Bridge] [PATCH] bridge: fix crash when set mac address of br interface
From: Hong Zhiguo <honkiko at gmail.com> Date: Sat, 23 Mar 2013 20:27:50 +0800> When I tried to set mac address of a bridge interface to a mac > address which already learned on this bridge, I got system hang. > > The cause is straight forward: function br_fdb_change_mac_address > calls fdb_insert with NULL source nbp. Then an fdb lookup is > performed. If an fdb entry is found and it's local, it's OK. But > if it's not local, source is dereferenced for printk without NULL > check. > > Signed-off-by: Hong Zhiguo <honkiko at gmail.com>Applied.