[PATCH ath-next] wifi: ath12k: fix node corruption in ar->arvifs list
Jeff Johnson
jeff.johnson at oss.qualcomm.com
Thu Apr 17 15:57:40 PDT 2025
On Wed, 16 Apr 2025 07:47:24 +0530, Maharaja Kennadyrajan wrote:
> In current WLAN recovery code flow, ath12k_core_halt() only reinitializes
> the "arvifs" list head. This will cause the list node immediately following
> the list head to become an invalid list node. Because the prev of that node
> still points to the list head "arvifs", but the next of the list head
> "arvifs" no longer points to that list node.
>
> When a WLAN recovery occurs during the execution of a vif removal, and it
> happens before the spin_lock_bh(&ar->data_lock) in
> ath12k_mac_vdev_delete(), list_del() will detect the previously mentioned
> situation, thereby triggering a kernel panic.
>
> [...]
Applied, thanks!
[1/1] wifi: ath12k: fix node corruption in ar->arvifs list
commit: 823435bd23108d6f8be89ea2d025c0e2e3769c51
Best regards,
--
Jeff Johnson <jeff.johnson at oss.qualcomm.com>
More information about the ath12k
mailing list