首頁 探索 說明
註冊 登入
phyus
/
linux-vybrid_public
8
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
瀏覽代碼

[IPV6]: Fix addrconf dead lock.

We need to release idev->lcok before we call addrconf_dad_stop().
It calls ipv6_addr_del(), which will hold idev->lock.

Bug spotted by Yasuyuki KOZAKAI <yasuyuki.kozakai@toshiba.co.jp>.

Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
YOSHIFUJI Hideaki 19 年之前
父節點
79cac2a221
當前提交
6732badee0
共有 1 個文件被更改,包括 5 次插入4 次删除
分割檢視 顯示文件統計
  1. 5 4
      net/ipv6/addrconf.c

+ 5 - 4
net/ipv6/addrconf.c
查看文件 

@@ -2467,11 +2467,9 @@ static void addrconf_dad_start(struct inet6_ifaddr *ifp, u32 flags)
 
 		return;
 
 	}
 
 
-	if (idev->if_flags & IF_READY) {
 
-		addrconf_dad_kick(ifp);
 
-		spin_unlock_bh(&ifp->lock);
 
-	} else {
 
+	if (!(idev->if_flags & IF_READY)) {
 
 		spin_unlock_bh(&ifp->lock);
 
+		read_unlock_bh(&idev->lock);
 
 		/*
 
 		 * If the defice is not ready:
 
 		 * - keep it tentative if it is a permanent address.
 
@@ -2479,7 +2477,10 @@ static void addrconf_dad_start(struct inet6_ifaddr *ifp, u32 flags)
 
 		 */
 
 		in6_ifa_hold(ifp);
 
 		addrconf_dad_stop(ifp);
 
+		return;
 
 	}
 
+	addrconf_dad_kick(ifp);
 
+	spin_unlock_bh(&ifp->lock);
 
 out:
 
 	read_unlock_bh(&idev->lock);
 
 }