diff options
author | Koki Sanagi <sanagi.koki@jp.fujitsu.com> | 2011-05-30 23:48:34 +0200 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2011-06-02 23:06:31 +0200 |
commit | ec764bf083a6ff396234351b51fd236f53c903bf (patch) | |
tree | 30c0f8232fe10c76651114dea999b93fa2c8ade5 /net/iucv | |
parent | drivers/net/can/flexcan.c: add missing clk_put (diff) | |
download | linux-ec764bf083a6ff396234351b51fd236f53c903bf.tar.xz linux-ec764bf083a6ff396234351b51fd236f53c903bf.zip |
net: tracepoint of net_dev_xmit sees freed skb and causes panic
Because there is a possibility that skb is kfree_skb()ed and zero cleared
after ndo_start_xmit, we should not see the contents of skb like skb->len and
skb->dev->name after ndo_start_xmit. But trace_net_dev_xmit does that
and causes panic by NULL pointer dereference.
This patch fixes trace_net_dev_xmit not to see the contents of skb directly.
If you want to reproduce this panic,
1. Get tracepoint of net_dev_xmit on
2. Create 2 guests on KVM
2. Make 2 guests use virtio_net
4. Execute netperf from one to another for a long time as a network burden
5. host will panic(It takes about 30 minutes)
Signed-off-by: Koki Sanagi <sanagi.koki@jp.fujitsu.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net/iucv')
0 files changed, 0 insertions, 0 deletions