FROMLIST: android: binder: Fix null ptr dereference in debug msg (from https://patchwork.kernel.org/patch/9990323/) Don't access next->data in kernel debug message when the next buffer is null. Bug: 36007193 Change-Id: Ib8240d7e9a7087a2256e88c0ae84b9df0f2d0224 Acked-by: Arve Hjønnevåg <arve@android.com> Signed-off-by: Sherry Yang <sherryy@android.com>

commit: c80cb1668c1ca29b5c4fe2d37d0e15f3d3f5daef [log] [tgz]
author: Sherry Yang <sherryy@android.com> Thu Oct 05 17:13:47 2017 -0400
committer: Todd Kjos <tkjos@google.com> Fri Dec 15 11:15:22 2017 -0800
tree: 68ae19d946b37aac154368d5d034e30e2a9f1cba
parent: 8f66a7a8b20edca396204f0b4f6ccb9904a0e86c [diff]
diff --git a/drivers/android/binder_alloc.c b/drivers/android/binder_alloc.c
index fab5295..0a541fe 100644
--- a/drivers/android/binder_alloc.c
+++ b/drivers/android/binder_alloc.c

@@ -520,7 +520,7 @@
 		binder_alloc_debug(BINDER_DEBUG_BUFFER_ALLOC,
 				   "%d: merge free, buffer %pK do not share page with %pK or %pK\n",
 				   alloc->pid, buffer->data,
-				   prev->data, next->data);
+				   prev->data, next ? next->data : NULL);
 		binder_update_page_range(alloc, 0, buffer_start_page(buffer),
 					 buffer_start_page(buffer) + PAGE_SIZE,
 					 NULL);
commit	c80cb1668c1ca29b5c4fe2d37d0e15f3d3f5daef	[log] [tgz]
author	Sherry Yang <sherryy@android.com>	Thu Oct 05 17:13:47 2017 -0400
committer	Todd Kjos <tkjos@google.com>	Fri Dec 15 11:15:22 2017 -0800
tree	68ae19d946b37aac154368d5d034e30e2a9f1cba
parent	8f66a7a8b20edca396204f0b4f6ccb9904a0e86c [diff]