Gh0st
/
linux
mirror of https://github.com/torvalds/linux.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
linux/drivers/net/wireless
History
Miri Korenblit 1801a94299 wifi: iwlwifi: trans: cancel restart work on op mode leave 
If the restart work happens to run after the opmode left
(i.e. called iwl_trans_op_mode_leave), then the opmode memory (including
its mutex) is likely to be freed already, and trans->opmode is NULL.

Although the hw is stopped in that stage, which means that this restart
got aborted (i.e. STATUS_RESET_PENDING will be cleared),
it still can access trans->opmode (NULL pointer dereference)
or the opmodes memory (which is freed).

Fix this by canceling the restart wk in iwl_trans_op_mode_leave.
Also make sure that the restart wk is really aborted.

Fixes: 7391b2a4f7 ("wifi: iwlwifi: rework firmware error handling")
Signed-off-by: Miri Korenblit <miriam.rachel.korenblit@intel.com>
Reviewed-by: Johannes Berg <johannes.berg@intel.com>
Link: https://patch.msgid.link/20250306122425.801301ba1b8b.I6f6143f550b6335b699920c5d4b2b78449607a96@changeid
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
 		2025-03-07 09:57:39 +01:00
..
admtek
ath wireless fixes for v6.14-rc3 2025-02-10 18:13:07 -08:00
atmel
broadcom bugfixes for 6.14: 2025-03-04 08:48:34 -08:00
intel wifi: iwlwifi: trans: cancel restart work on op mode leave 2025-03-07 09:57:39 +01:00
intersil
marvell
mediatek wifi: mt76: move napi_enable() from under BH 2025-01-27 14:30:50 -08:00
microchip wifi: wilc1000: unregister wiphy only after netdev registration 2025-01-15 18:24:33 +02:00
purelifi
quantenna pci-v6.14-changes 2025-01-25 16:03:40 -08:00
ralink
realtek wifi: rtw88: add RTW88_LEDS depends on LEDS_CLASS to Kconfig 2025-01-16 21:26:05 +02:00
rsi
silabs
st
ti
virtual
zydas
Kconfig
Makefile