[Bug 285813] Panic (NULL deref) in arptimer

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 03 Apr 2025 11:23:21 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=285813

--- Comment #11 from Peter Blok <peter.blok@bsd4all.org> ---
The following snippet migh explain it in if_ether.c

arp_check_update_lle expects la to be locked and has an assert for that, but
only with INVARIANTS defined.

            /* Free newly-create entry and handle packet */
            lltable_free_entry(LLTABLE(ifp), la);
            la = la_tmp;
            la_tmp = NULL;
            arp_check_update_lle(ah, isaddr, ifp, bridged, la);
            /* arp_check_update_lle() returns @la unlocked */

-- 
You are receiving this mail because:
You are the assignee for the bug.