| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20251026102553.29195-1-N.Aleksandrovuk@gmail.com>
Date: Sun, 26 Oct 2025 10:25:53 +0000
From: Nikita Aleksandrov <n.aleksandrovuk@...il.com>
To: Johannes Berg <johannes@...solutions.net>
Cc: linux-wireless@...r.kernel.org,
linux-kernel@...r.kernel.org,
Nikita Aleksandrov <N.Aleksandrovuk@...il.com>,
syzbot+e55106f8389651870be0@...kaller.appspotmail.com
Subject: [PATCH] mac80211: tdls: don't WARN_ON_ONCE on missing STA info
syzbot report e55106f8389651870be0 revealed a crash in tdls handling
when the STA or AP STA info was missing.
Fix: replace WARN_ON_ONCE with a regular error log (sdata_err) and
return early if STA info is missing. Avoids panic_on_warn.
Reported-by: syzbot+e55106f8389651870be0@...kaller.appspotmail.com
Closes: https://syzkaller.appspot.com/bug?extid=e55106f8389651870be0
Fixes: 3a8660878839 ("Linux 6.18-rc1")
Signed-off-by: Nikita Aleksandrov <N.Aleksandrovuk@...il.com>
---
net/mac80211/tdls.c | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/net/mac80211/tdls.c b/net/mac80211/tdls.c
index ba5fbacbeeda..7e54dcfad651 100644
--- a/net/mac80211/tdls.c
+++ b/net/mac80211/tdls.c
@@ -608,8 +608,12 @@ ieee80211_tdls_add_setup_cfm_ies(struct ieee80211_link_data *link,
sta = sta_info_get(sdata, peer);
ap_sta = sta_info_get(sdata, sdata->vif.cfg.ap_addr);
- if (WARN_ON_ONCE(!sta || !ap_sta))
+ if (!sta || !ap_sta) {
+ sdata_err(sdata, "Missing STA info for peer %pM or AP %pM\n",
+ peer,
+ sdata->vif.cfg.ap_addr);
return;
+ }
sta->tdls_chandef = link->conf->chanreq.oper;
--
2.51.1
Powered by blists - more mailing lists