On Sat, Oct 10, 2015 at 03:24:37PM +0200, Phil Sutter wrote: > Using printk-debugging I could track down the problem to > rt6_get_cookie() function in include/net/ip6_fib.h: > > The conditional at the start of the function evaluates true, since > 'rt->rt6i_flags & RTF_PCPU' is non-zero. Due to that, 'rt' pointer is > reassigned: > > | rt = (struct rt6_info *)(rt->dst.from); > > It appears that this effectively assigns NULL to it, and the following > dereference causes the bug. Thanks for the report. I am looking into it.
--Martin -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
