Re: net: GPF in rt6_nexthop_info

From: David Ahern
Date: Tue Feb 28 2017 - 20:58:35 EST

Next message: Iyappan Subramanian: "Re: [PATCH] drivers: net: xgene: Fix crash on DT systems"
Previous message: Maciej W. Rozycki: "Re: [PATCH 2/4] MIPS: microMIPS: Fix decoding of addiusp instruction"
In reply to: Eric Dumazet: "Re: net: GPF in rt6_nexthop_info"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2/28/17 3:14 PM, Eric Dumazet wrote:
> On Tue, Feb 28, 2017 at 3:09 PM, David Ahern <dsa@xxxxxxxxxxxxxxxxxxx> wrote:
>> On 2/28/17 5:10 AM, Eric Dumazet wrote:
>>> David, rt->rt6i_idev can be NULL.
>>
>> Do you know of an example where rt6i_idev can be NULL - besides the
>> null_entry rt which is null only because of init order?
>
>
> I might have been mistaken, but many points in net/ipv6/route.c test
> rt->rt6i_idev being NULL or not before dereferencing it.
>
> Maybe other rts (other than null_entry) share this property.
>

Seen those and always been confused that an L3 route object does not
require the L3 addr struct for the device.

Code wise the struct is allocated for all net devices at registration as
long as mtu >= 1280. If it is not allocated, routes referencing the
device fail with ENODEV (idev check in ip6_route_info_create). Putting
that together I can't see how a standard ipv6 rt other than the
null_entry can reference a null rt6i_idev.

Next message: Iyappan Subramanian: "Re: [PATCH] drivers: net: xgene: Fix crash on DT systems"
Previous message: Maciej W. Rozycki: "Re: [PATCH 2/4] MIPS: microMIPS: Fix decoding of addiusp instruction"
In reply to: Eric Dumazet: "Re: net: GPF in rt6_nexthop_info"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]