Null pointer crash in p2p_sd_cb

Olsson, Ola Ola.Olsson at sonymobile.com
Tue Jan 20 05:12:44 EST 2015


Hi,

Thanks for the fast reply regarding the recursion problem I had. I really liked your solution. :)

Another crash was found and I am attaching the solution.

signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0xc

backtrace:
   #00 pc 0002ee98  /system/bin/wpa_supplicant

   2ee90:       f7fc f8b6       bl      2b000 <p2p_dbg>
   2ee94:       e02c            b.n     2eef0 <p2p_send_action_cb+0x348>
   2ee96:       6c25            ldr     r5, [r4, #64]   ; 0x40
   2ee98:       68ee            ldr     r6, [r5, #12]
   2ee9a:       b166            cbz     r6, 2eeb6 <p2p_send_action_cb+0x30e>


/Ola
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.shmoo.com/pipermail/hostap/attachments/20150120/424b5358/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Null-pointer-crash-caused-by-commit.patch
Type: application/octet-stream
Size: 1231 bytes
Desc: 0001-Null-pointer-crash-caused-by-commit.patch
URL: <http://lists.shmoo.com/pipermail/hostap/attachments/20150120/424b5358/attachment-0001.obj>


More information about the HostAP mailing list