From: Kalle Valo Date: Thu, 6 Oct 2011 11:32:32 +0000 (+0300) Subject: ath6kl: fix null skb dereference in ath6kl_rx() X-Git-Tag: firefly_0821_release~3680^2~2381^2~57^2~287^2~340 X-Git-Url: http://demsky.eecs.uci.edu/git/?a=commitdiff_plain;h=ad3f78b99e5cd74e9d9643ac8356206f57e796c9;p=firefly-linux-kernel-4.4.55.git ath6kl: fix null skb dereference in ath6kl_rx() smatch found that skb might be null in some cases in ath6kl_rx(): ath6kl/txrx.c +1252 ath6kl_rx(222) error: potential null derefence 'skb'. This will happen when ath6kl is in AP mode and two clients send traffic to each other. Reported-by: Dan Carpenter Signed-off-by: Kalle Valo --- diff --git a/drivers/net/wireless/ath/ath6kl/txrx.c b/drivers/net/wireless/ath/ath6kl/txrx.c index bcf7b01310d0..a9dff01c70a6 100644 --- a/drivers/net/wireless/ath/ath6kl/txrx.c +++ b/drivers/net/wireless/ath/ath6kl/txrx.c @@ -1247,6 +1247,11 @@ void ath6kl_rx(struct htc_target *target, struct htc_packet *packet) } if (skb1) ath6kl_data_tx(skb1, ar->net_dev); + + if (skb == NULL) { + /* nothing to deliver up the stack */ + return; + } } datap = (struct ethhdr *) skb->data;