[disk changes] CVS commit: src/sys/dev/dkwedge

To: <source-changes-d%NetBSD.org@localhost>, Jaromír Doleček <jaromir.dolecek%gmail.com@localhost>
Subject: [disk changes] CVS commit: src/sys/dev/dkwedge
From: Maxime Villard <max%m00nbsd.net@localhost>
Date: Mon, 13 Apr 2020 11:37:29 +0200

> Module Name:    src
> Committed By:   jdolecek
> Date:           Sat Apr 11 16:00:34 UTC 2020
>
> Modified Files:
>         src/sys/dev/dkwedge: dkwedge_apple.c dkwedge_bsdlabel.c dkwedge_gpt.c
>             dkwedge_mbr.c dkwedge_rdb.c

It appears that since your recent changes, there is a systematic
use-after-free:

	panic: ASan: Unauthorized Access in 0x...: Addr 0x... [2 bytes, read, PoolUseAfterFree]
	wdc_ata_bio()
	wdstart1()
	wd_diskstart()
	dk_start()
	bdev_strategy()
	spec_strategy()
	VOP_STRATEGY()
	genfs_getpages()
	VOP_GETPAGES()
	ubc_fault()
	uvm_fault_internal()
	trap()
	--- trap (number 6) ---
	copyout()
	uiomove()
	ubc_uiomove()
	ffs_read()
	VOP_READ()
	vn_read()
	dofileread()
	sys_read()
	syscall()

This is reliably reproductible by just booting KASAN on amd64.

Can you give a look?

Thanks,
Maxime

Prev by Date: Re: CVS commit: src/sys/netinet6
Next by Date: Re: CVS commit: src/sys/kern
Previous by Thread: Re: CVS commit: src/sys/netinet6
Next by Thread: Re: CVS commit: src/sys/arch/xen/xen
Indexes:

Home | Main Index | Thread Index | Old Index