projects / GitHub / mt8127 / android_kernel_alcatel_ttab.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 56325d9) | patch
bonding: Fix bonding crash
authorMahesh Bandewar <maheshb@google.com>
Fri, 2 Sep 2016 05:18:34 +0000 (22:18 -0700)
committerWilly Tarreau <w@1wt.eu>
Fri, 10 Feb 2017 10:03:47 +0000 (11:03 +0100)
commit745db35452567cca10e92a2b0c70d85494c1ad0e
tree78a2d2245ab4b5a6361b258097c0218a2c1c1249tree | snapshot (tar.gz zip)
parent56325d9fb7b138b228577ae99382b70084ab82f3commit | diff
bonding: Fix bonding crash

commit 24b27fc4cdf9e10c5e79e5923b6b7c2c5c95096c upstream.

Following few steps will crash kernel -

  (a) Create bonding master
      > modprobe bonding miimon=50
  (b) Create macvlan bridge on eth2
      > ip link add link eth2 dev mvl0 address aa:0:0:0:0:01 \
   type macvlan
  (c) Now try adding eth2 into the bond
      > echo +eth2 > /sys/class/net/bond0/bonding/slaves
      <crash>

Bonding does lots of things before checking if the device enslaved is
busy or not.

In this case when the notifier call-chain sends notifications, the
bond_netdev_event() assumes that the rx_handler /rx_handler_data is
registered while the bond_enslave() hasn't progressed far enough to
register rx_handler for the new slave.

This patch adds a rx_handler check that can be performed right at the
beginning of the enslave code to avoid getting into this situation.

Signed-off-by: Mahesh Bandewar <maheshb@google.com>
Acked-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Willy Tarreau <w@1wt.eu>
drivers/net/bonding/bond_main.c diff | blob | blame | history
include/linux/netdevice.h diff | blob | blame | history
net/core/dev.c diff | blob | blame | history
kernel source for telekom puls (alcatel/mediatek)