From mboxrd@z Thu Jan  1 00:00:00 1970
From: Johan Hovold <jhovold@gmail.com>
Date: Sat, 26 Feb 2011 17:45:05 +0000
Subject: dccp: null-pointer dereference on close
Message-Id: <20110226174505.GB3609@localhost>
List-Id: <dccp.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="macroman"
Content-Transfer-Encoding: base64
To: dccp@vger.kernel.org
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==

From mboxrd@z Thu Jan  1 00:00:00 1970
From: Johan Hovold <jhovold@gmail.com>
Subject: dccp: null-pointer dereference on close
Date: Sat, 26 Feb 2011 18:45:05 +0100
Message-ID: <20110226174505.GB3609@localhost>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Cc: "David S. Miller" <davem@davemloft.net>, dccp@vger.kernel.org,
	netdev@vger.kernel.org
To: Arnaldo Carvalho de Melo <acme@ghostprotocols.net>
Return-path: <netdev-owner@vger.kernel.org>
Received: from mail-fx0-f46.google.com ([209.85.161.46]:41244 "EHLO
	mail-fx0-f46.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1751511Ab1BZRpK (ORCPT
	<rfc822;netdev@vger.kernel.org>); Sat, 26 Feb 2011 12:45:10 -0500
Content-Disposition: inline
Sender: netdev-owner@vger.kernel.org
List-ID: <netdev.vger.kernel.org>

Hi,

I triggered the null-pointer dereference below when closing a dccp
socket on 2.6.37 the other day. The receive path is hit during
close, and the socket has already been unhashed in dccp_set_state from
dccp_close.

Thanks,
Johan


root@overo:~# [84140.128631] ------------[ cut here ]------------
[84140.133575] WARNING: at net/ipv4/inet_timewait_sock.c:141 __inet_twsk_hashdance+0x48/0x128()
[84140.142517] Modules linked in: arc4 ecb carl9170 rt2870sta(C) mac80211 r8712u(C) crc_ccitt ah
[84140.151794] [<c0038850>] (unwind_backtrace+0x0/0xec) from [<c0055364>] (warn_slowpath_common)
[84140.161743] [<c0055364>] (warn_slowpath_common+0x4c/0x64) from [<c0055398>] (warn_slowpath_n)
[84140.171966] [<c0055398>] (warn_slowpath_null+0x1c/0x24) from [<c02b72d0>] (__inet_twsk_hashd)
[84140.182373] [<c02b72d0>] (__inet_twsk_hashdance+0x48/0x128) from [<c031caa0>] (dccp_time_wai)
[84140.192413] [<c031caa0>] (dccp_time_wait+0x40/0xc8) from [<c031c15c>] (dccp_rcv_state_proces)
[84140.202636] [<c031c15c>] (dccp_rcv_state_process+0x120/0x538) from [<c032609c>] (dccp_v4_do_)
[84140.213043] [<c032609c>] (dccp_v4_do_rcv+0x11c/0x14c) from [<c0286594>] (release_sock+0xac/0)
[84140.222442] [<c0286594>] (release_sock+0xac/0x110) from [<c031fd34>] (dccp_close+0x28c/0x380)
[84140.231475] [<c031fd34>] (dccp_close+0x28c/0x380) from [<c02d9a78>] (inet_release+0x64/0x70)
[84140.240386] [<c02d9a78>] (inet_release+0x64/0x70) from [<c0284ddc>] (sock_release+0x24/0xb8)
[84140.249328] [<c0284ddc>] (sock_release+0x24/0xb8) from [<c0284e94>] (sock_close+0x24/0x34)
[84140.258087] [<c0284e94>] (sock_close+0x24/0x34) from [<c00c2e4c>] (fput+0x108/0x1f4)
[84140.266296] [<c00c2e4c>] (fput+0x108/0x1f4) from [<c00c0104>] (filp_close+0x70/0x7c)
[84140.274505] [<c00c0104>] (filp_close+0x70/0x7c) from [<c00c01c4>] (sys_close+0xb4/0x10c)
[84140.283081] [<c00c01c4>] (sys_close+0xb4/0x10c) from [<c0033a80>] (ret_fast_syscall+0x0/0x30)
[84140.292114] ---[ end trace b8877ec9d542c32e ]---
[84140.296997] Unable to handle kernel NULL pointer dereference at virtual address 00000010
[84140.305541] pgd = cedb0000
[84140.308410] [00000010] *pgd=8ed22031, *pte=00000000, *ppte=00000000
[84140.315032] Internal error: Oops: 17 [#1] PREEMPT
[84140.320007] last sysfs file: /sys/kernel/uevent_seqnum
[84140.325408] Modules linked in: arc4 ecb carl9170 rt2870sta(C) mac80211 r8712u(C) crc_ccitt ah
[84140.334533] CPU: 0    Tainted: G        WC   (2.6.37+ #47)
[84140.340332] PC is at __inet_twsk_hashdance+0x4c/0x128
[84140.345642] LR is at warn_slowpath_null+0x1c/0x24
[84140.350616] pc : [<c02b72d4>]    lr : [<c0055398>]    psr: 60000013
[84140.350616] sp : ce975e68  ip : ce975db8  fp : cfbc5c00
[84140.362701] r10: cfa3e400  r9 : cfbc5c18  r8 : 00000000
[84140.368225] r7 : 00000006  r6 : cfa96110  r5 : cfa3e400  r4 : cfb54000
[84140.375091] r3 : 00000002  r2 : 00000006  r1 : 00000000  r0 : 00000000
[84140.381988] Flags: nZCv  IRQs on  FIQs on  Mode SVC_32  ISA ARM  Segment user
[84140.389495] Control: 10c5387d  Table: 8edb0019  DAC: 00000015
[84140.395538] Process be2p_ctrl (pid: 2207, stack limit = 0xce9742f0)
[84140.402160] Stack: (0xce975e68 to 0xce976000)
[84140.406738] 5e60:                   cfb54000 00000180 cfa3e400 c031caa0 00000007 cfbc5c00
[84140.415374] 5e80: cfbc9824 00000020 00000007 c031c15c 00000000 00000022 00000000 00000008
[84140.424011] 5ea0: 00000001 cfbc5c00 cfbc5c00 cfa3e400 cfbc9824 00000000 00000001 c04c11b8
[84140.432617] 5ec0: be8ffc1c c032609c fa200000 c0033608 cfa3e400 cfa3e7b0 be8ffc1c ce975ee8
[84140.441253] 5ee0: be8ffc1c cfbc5c00 cfa3e400 ce974000 00000000 c0286594 cfa3e474 cfa3e400
[84140.449859] 5f00: cfa3e408 00000007 cf487c20 cf805840 cf60ca00 c031fd34 00000000 00000000
[84140.458496] 5f20: cfb20288 cfa3e400 cf487c00 00000008 00000000 c02d9a78 00000003 00000000
[84140.467102] 5f40: cf487c00 c0284ddc 00000000 cfb20288 cfb20280 c0284e94 00000000 c00c2e4c
[84140.475738] 5f60: 00000000 00000000 cfb20280 00000000 cfbc50c0 00000006 c0033c04 ce974000
[84140.484375] 5f80: 00000000 c00c0104 00000004 cfbc50c0 cfb20280 c00c01c4 400a1000 00000000
[84140.492980] 5fa0: 0000891c c0033a80 400a1000 00000000 00000004 00000000 403d3014 00000000
[84140.501617] 5fc0: 400a1000 00000000 0000891c 00000006 00000000 00000000 400a9000 be8ffc1c
[84140.510223] 5fe0: 00000000 be8ffbe0 00009584 4036320c 60000010 00000004 00005153 bf0fa7d0
[84140.518859] [<c02b72d4>] (__inet_twsk_hashdance+0x4c/0x128) from [<c031caa0>] (dccp_time_wai)
[84140.528869] [<c031caa0>] (dccp_time_wait+0x40/0xc8) from [<c031c15c>] (dccp_rcv_state_proces)
[84140.539062] [<c031c15c>] (dccp_rcv_state_process+0x120/0x538) from [<c032609c>] (dccp_v4_do_)
[84140.549407] [<c032609c>] (dccp_v4_do_rcv+0x11c/0x14c) from [<c0286594>] (release_sock+0xac/0)
[84140.558776] [<c0286594>] (release_sock+0xac/0x110) from [<c031fd34>] (dccp_close+0x28c/0x380)
[84140.567779] [<c031fd34>] (dccp_close+0x28c/0x380) from [<c02d9a78>] (inet_release+0x64/0x70)
[84140.576660] [<c02d9a78>] (inet_release+0x64/0x70) from [<c0284ddc>] (sock_release+0x24/0xb8)
[84140.585571] [<c0284ddc>] (sock_release+0x24/0xb8) from [<c0284e94>] (sock_close+0x24/0x34)
[84140.594299] [<c0284e94>] (sock_close+0x24/0x34) from [<c00c2e4c>] (fput+0x108/0x1f4)
[84140.602447] [<c00c2e4c>] (fput+0x108/0x1f4) from [<c00c0104>] (filp_close+0x70/0x7c)
[84140.610626] [<c00c0104>] (filp_close+0x70/0x7c) from [<c00c01c4>] (sys_close+0xb4/0x10c)
[84140.619171] [<c00c01c4>] (sys_close+0xb4/0x10c) from [<c0033a80>] (ret_fast_syscall+0x0/0x30)
[84140.628143] Code: e59f00dc e3a0108d ebf6782a e5941044 (e5912010) 
[84140.634643] ---[ end trace b8877ec9d542c32f ]---
[84140.639526] Kernel panic - not syncing: Fatal exception in interrupt