kern/177451: [ieee80211] page fault in ieee80211_tx_mgt_timeout
PseudoCylon
moonlightakkiy at yahoo.ca
Fri Mar 29 21:30:03 UTC 2013
The following reply was made to PR kern/177451; it has been noted by GNATS.
From: PseudoCylon <moonlightakkiy at yahoo.ca>
To: bug-followup at FreeBSD.org, davide at FreeBSD.org
Cc:
Subject: Re: kern/177451: [ieee80211] page fault in ieee80211_tx_mgt_timeout
Date: Fri, 29 Mar 2013 15:21:58 -0600
http://fxr.watson.org/fxr/source/net80211/ieee80211_output.c?v=FREEBSD91#L2506
enum ieee80211_state ostate = (enum ieee80211_state) arg;
casting a pointer to an enum
http://fxr.watson.org/fxr/source/net80211/ieee80211_output.c?v=FREEBSD91#L2519
if (vap->iv_state == ostate)
So that, this test is always false -> callout_reset() will never be
called -> by the time the callout timer runs out, ni could be freed.
More information about the freebsd-wireless
mailing list