• Johannes Berg's avatar
    cfg80211: fix BSS struct IE access races · 9caf0364
    Johannes Berg authored
    When a BSS struct is updated, the IEs are currently
    overwritten or freed. This can lead to races if some
    other CPU is accessing the BSS struct and using the
    IEs concurrently.
    
    Fix this by always allocating the IEs in a new struct
    that holds the data and length and protecting access
    to this new struct with RCU.
    Signed-off-by: default avatarJohannes Berg <johannes.berg@intel.com>
    9caf0364
cfg.c 54.2 KB