Re: CVS commit: src/sys/kern

To: source-changes-d%NetBSD.org@localhost, Jaromir Dolecek <jdolecek%netbsd.org@localhost>
Subject: Re: CVS commit: src/sys/kern
From: Kamil Rytarowski <n54%gmx.com@localhost>
Date: Fri, 21 Feb 2020 12:34:53 +0100

On 20.02.2020 22:14, Jaromir Dolecek wrote:
> Module Name:	src
> Committed By:	jdolecek
> Date:		Thu Feb 20 21:14:23 UTC 2020
> 
> Modified Files:
> 	src/sys/kern: subr_autoconf.c
> 
> Log Message:
> protect deferred lists' manipulation by config_misc_lock, same as
> config_pending semaphore itself; right now this also covers
> DVF_ATTACH_INPROGRESS flag
> 
> 
> To generate a diff of this commit:
> cvs rdiff -u -r1.265 -r1.266 src/sys/kern/subr_autoconf.c
> 
> Please note that diffs are not public domain; they are subject to the
> copyright notices on the relevant files.
> 

After this commit kASan breaks on boot:

[   1.2418653] panic: ASan: Unauthorized Access In 0xffffffff811e0c46:
Addr 0xffffa7000f382a58 [8 bytes, read, PoolUseAfterFree]

[   1.2511909] cpu1: Begin traceback...
[   1.2612093] vpanic() at netbsd:vpanic+0x241 sys/kern/subr_prf.c:336
[   1.2812516] snprintf() at netbsd:snprintf
[   1.3012883] kasan_report() at netbsd:kasan_report+0x98
kasan_code_name sys/kern/subr_asan.c:186 [inline]
[   1.3012883] kasan_report() at netbsd:kasan_report+0x98
sys/kern/subr_asan.c:196
[   1.3213274] __asan_load8() at netbsd:__asan_load8+0x294
kasan_shadow_4byte_isvalid sys/kern/subr_asan.c:346 [inline]
[   1.3213274] __asan_load8() at netbsd:__asan_load8+0x294
kasan_shadow_8byte_isvalid sys/kern/subr_asan.c:360 [inline]
[   1.3213274] __asan_load8() at netbsd:__asan_load8+0x294
kasan_shadow_check sys/kern/subr_asan.c:412 [inline]
[   1.3213274] __asan_load8() at netbsd:__asan_load8+0x294
sys/kern/subr_asan.c:1182
[   1.3413734] config_interrupts_thread() at
netbsd:config_interrupts_thread+0x68 sys/kern/subr_autoconf.c:459
[   1.3513931] cpu1: End traceback...
[   1.3513931] fatal breakpoint trap in supervisor mode
[   1.3614094] trap type 1 code 0 rip 0xffffffff8021e4b5 cs 0x8 rflags
0x246 cr2 0 ilevel 0 rsp 0xffffa7017de07d60
[   1.3714294] curlwp 0xffffa700116a16c0 pid 0.30 lowest kstack
0xffffa7017de002c0
Stopped in pid 0.30 (system) at netbsd:breakpoint+0x5:  leave
db{1}>

https://syzkaller.appspot.com/bug?extid=1f0aefb06a387371fa14

Attachment: signature.asc
Description: OpenPGP digital signature

Prev by Date: Re: CVS commit: src/external/apache2/llvm/config/llvm/Config
Next by Date: Re: CVS commit: src
Previous by Thread: Re: CVS commit: src/doc
Next by Thread: Re: CVS commit: src
Indexes:

Home | Main Index | Thread Index | Old Index