[PATCHv2] tcp: fix crash in tcp_xmit_retransmit_queue
in [Kernel]
|
From: Ilpo Järvinen on 19 Jul 2010 07:20 On Mon, 19 Jul 2010, Lennart Schulte wrote: > I ran tests for about 2 hours with this patch and I got no output from the > debug patch. This seems to have solved at least my problem :) > > Thanks! > > [PATCH] tcp: fix crash in tcp_xmit_retransmit_queue > > > > It can happen that there are no packets in queue while calling > > tcp_xmit_retransmit_queue(). tcp_write_queue_head() then returns > > NULL and that gets deref'ed to get sacked into a local var. > > > > There is no work to do if no packets are outstanding so we just > > exit early. > > > > There may still be another bug affecting this same function. Thanks for testing. DaveM, I think this oops was introduced for 2.6.28 (in 08ebd1721ab8fd362e90ae17b461c07b23fa2824 it seems, to be exact) so to stables it should go too please. I've only tweaked the message (so no need for Lennart to retest v2 :-)). -- [PATCHv2] tcp: fix crash in tcp_xmit_retransmit_queue It can happen that there are no packets in queue while calling tcp_xmit_retransmit_queue(). tcp_write_queue_head() then returns NULL and that gets deref'ed to get sacked into a local var. There is no work to do if no packets are outstanding so we just exit early. This oops was introduced by 08ebd1721ab8fd (tcp: remove tp->lost_out guard to make joining diff nicer). Signed-off-by: Ilpo J�rvinen <ilpo.jarvinen(a)helsinki.fi> Reported-by: Lennart Schulte <lennart.schulte(a)nets.rwth-aachen.de> Tested-by: Lennart Schulte <lennart.schulte(a)nets.rwth-aachen.de> --- net/ipv4/tcp_output.c | 3 +++ 1 files changed, 3 insertions(+), 0 deletions(-) diff --git a/net/ipv4/tcp_output.c b/net/ipv4/tcp_output.c index b4ed957..7ed9dc1 100644 --- a/net/ipv4/tcp_output.c +++ b/net/ipv4/tcp_output.c @@ -2208,6 +2208,9 @@ void tcp_xmit_retransmit_queue(struct sock *sk) int mib_idx; int fwd_rexmitting = 0; + if (!tp->packets_out) + return; + if (!tp->lost_out) tp->retransmit_high = tp->snd_una; -- 1.5.6.5
|
Pages: 1 Prev: [PATCH 2/3] [fs/sysv] V7: Adjust sanity checks for some volumes Next: A few V7 fs improvements |