jeltz/hostap
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
hostap/src
History
Ola Olsson bff162ac76 P2P: Fix NULL pointer dereference with SD query cancellation 
A NULL pointer crash was caused by commit
7139cf4a4f ('P2P: Decrement
sd_pending_bcast_queries when sd returns'). p2p->sd_query can be cleared
to NULL whenever a query is cancelled, even in case the request had
already been transmitted. As such, need to be prepared for the query not
remaining when processing TX status callback for the frame.

Crashes on 2ee98 in following code
2ee90:       f7fc f8b6       bl      2b000 <p2p_dbg>
2ee94:       e02c            b.n     2eef0 <p2p_send_action_cb+0x348>
2ee96:       6c25            ldr     r5, [r4, #64]   ; 0x40
2ee98:       68ee            ldr     r6, [r5, #12]
2ee9a:       b166            cbz     r6, 2eeb6 <p2p_send_action_cb+0x30e>

Signed-off-by: Ola Olsson <ola.olsson@sonymobile.com>
2015-01-22 15:49:37 +02:00
..
ap WNM: Fix possible memory leak by free buf 2015-01-20 02:14:19 +02:00
common Interworking: Notify the ANQP parsing status 2015-01-20 02:26:21 +02:00
crypto Add domain_match network profile parameter 2015-01-14 15:45:18 +02:00
drivers nl80211: Increase netlink receive buffer size 2015-01-22 13:51:15 +02:00
eap_common ERP: Add TV/TLV parser 2014-12-04 12:08:59 +02:00
eap_peer EAP: Fix possible memory leak in eap_ttls_process_decrypted() 2015-01-20 02:13:15 +02:00
eap_server eap_server: Avoid NULL pointer dereference in eap_fast_encrypt_phase2() 2015-01-20 02:11:59 +02:00
eapol_auth Check os_snprintf() result more consistently - automatic 1 2014-12-08 11:42:07 +02:00
eapol_supp Add peer certificate alt subject name information to EAP events 2015-01-14 15:45:18 +02:00
l2_packet Clean up debug prints to use wpa_printf() 2014-12-26 13:20:57 +02:00
p2p P2P: Fix NULL pointer dereference with SD query cancellation 2015-01-22 15:49:37 +02:00
pae MACsec: Update protect frames and replay on reauthentication 2014-12-09 16:56:10 +02:00
radius Fix RADIUS client with out-of-memory and missing shared secret 2015-01-19 02:35:43 +02:00
rsn_supp TDLS: Fix an interface addition error path 2015-01-07 13:19:00 +02:00
tls TLS: Add new cipher suites to tls_get_cipher() 2014-12-09 16:57:05 +02:00
utils Define host_to_le32() for Windows builds 2015-01-11 00:58:10 +02:00
wps WPS: Re-fix an interoperability issue with mixed mode and AP Settings 2015-01-19 18:35:59 +02:00
lib.rules Add QUIET=1 option for make 2014-12-29 15:49:05 +02:00
Makefile MACsec: Add PAE implementation 2014-05-09 20:42:44 +03:00