On Tue, Jul 30, 2019 at 09:31:19AM +0800, maowenan wrote:
On 2019/7/29 23:32, Sasha Levin wrote:
On Mon, Jul 29, 2019 at 09:21:08PM +0800, Mao Wenan wrote:
From: Soheil Hassas Yeganeh
tcp_write_queue_purge clears all the SKBs in the write queue
but does not reset the sk_send_head. As a resu
On 2019/7/29 23:32, Sasha Levin wrote:
> On Mon, Jul 29, 2019 at 09:21:08PM +0800, Mao Wenan wrote:
>> From: Soheil Hassas Yeganeh
>>
>> tcp_write_queue_purge clears all the SKBs in the write queue
>> but does not reset the sk_send_head. As a result, we can have
>> a NULL pointer dereference an
On Mon, Jul 29, 2019 at 09:21:08PM +0800, Mao Wenan wrote:
From: Soheil Hassas Yeganeh
tcp_write_queue_purge clears all the SKBs in the write queue
but does not reset the sk_send_head. As a result, we can have
a NULL pointer dereference anywhere that we use tcp_send_head
instead of the tcp_writ
From: Soheil Hassas Yeganeh
tcp_write_queue_purge clears all the SKBs in the write queue
but does not reset the sk_send_head. As a result, we can have
a NULL pointer dereference anywhere that we use tcp_send_head
instead of the tcp_write_queue_tail.
For example, after a27fd7a8ed38 (tcp: purge wr
4 matches
Mail list logo
