From nobody Wed Sep 13 07:02:18 2023 X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RlrxV5lw4z4sng7 for ; Wed, 13 Sep 2023 07:02:38 +0000 (UTC) (envelope-from marklmi@yahoo.com) Received: from sonic315-8.consmr.mail.gq1.yahoo.com (sonic315-8.consmr.mail.gq1.yahoo.com [98.137.65.32]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4RlrxT1wCqz4dnf for ; Wed, 13 Sep 2023 07:02:37 +0000 (UTC) (envelope-from marklmi@yahoo.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=yahoo.com header.s=s2048 header.b=iMx1nUWp; spf=pass (mx1.freebsd.org: domain of marklmi@yahoo.com designates 98.137.65.32 as permitted sender) smtp.mailfrom=marklmi@yahoo.com; dmarc=pass (policy=reject) header.from=yahoo.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1694588554; bh=8WnwXGqlTO6ByGXYEXzfq4bS0+cp5quVmcpGUyCcjIk=; h=From:Subject:Date:Cc:To:References:From:Subject:Reply-To; b=iMx1nUWpQ+K8TUw+DxSfbBtsbv9v2EaADDvtH24QElTK3EqzzOAXZDNJ5GRC5S6MoKejQAcybGoPPOhEN7R9LEH7JYI9qWeQ8XwYdTkNnAg/Oo0RyTAJhCDy9VDwoTbMlAdPq51QDAvCpoIAtxnioXu803DFxCYwVxmfiJRed68mbI2W+nIfg5Rmji3/93ilqH5aseOa/zNxoloNmJPjYrgHDo4RAz3zqY0aN2qWMLSm5jDTN/ro0glS5jlJnPyM+baHHiX4FQwUiki1+V1NKs3Bpk//UCI+lciSCFutpZV+QjFNpLzyhMv9EMfb8M5EKQiMEchwQCrxuoqz1B8f8A== X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1694588554; bh=6S8EaBTDKv6xJ+wNpCLsVaJM7gwyrPSYsQpnc1jHfbi=; h=X-Sonic-MF:From:Subject:Date:To:From:Subject; b=SN7/XTlmn/35fpPlFL3Ulit+HraC+rhtdRs0sRNluYOK7z+MRGcmVzf6+eTrDSuAmb/tY0H1eT/FR/tdWTdP2bLIuLQiXEANBWynv/JAuJRLAbNozVur70hylqYRQAygW132IUqgmslnUOKe0OF/DImI94oHuJyg/igLKFd1KeDHHL3yy8QZRiYxqZuai2acIPwRDzbpLOVo4iJJ5ZnW6FEjffWzQrBkixv0cNJs41RjXadx0oKyIWYO2Cw9514u5kg+83BnwSInZHyPp/1B92cQwv2hgfZ3fCxRLNXk0vE8i/ylNVNhu/PbmZmhrcdfQHEfgoe5ZPACvu0YnU3n1A== X-YMail-OSG: iPhTAXIVM1kYaObdyqTkqzYu7X3.g.kjtLOBWSfYGDeDu4gdAYLg51G4m_164VJ IjZqQaOfHc2_lN.9sEWmS7UMbJQ_3aFH7txvq_gdp3oSnkkug77l5Z3WPYyJ42uu52y57Eef5g6l QLzG3pyU.7jms93rhc7sNEyHORqyt0jfnPJHPMeQ4WOwy0.7BEEPndXvUb6jVWzoJ8OM3Zaz.Rg6 seyTbcNvDqAaEu1Utps7Da5CsCJiFtU5nvUGA4Wlr23dmOP0Ak8oo5_jliMBuQk_2psjKzanRP5t xb160hrtHLAPV1MelD0pHPtav1bazCmmg_wWDt0K3rHNFT4blHCRZqtf6Waf7c8fomvo425DHtUb rz1h.xRkx_WbmIjZjUJOUMwSx6ooO197sAUSIlMfnESn054b_LdcVg1uiny9uuEu8ETZzVMeN7U4 mcD_ZsfVsUvqC.pUPg01u8mjmADoxtmU395y1dUcykI8J8YA5Z.LPNDjWn60VtkYS1R.j_KeHAwt .KivAv1YlHEArM8qozUISH6w7Jwpx5Mh0VQz2l9UFEmqkN7I2XFkLQqgR1cK_Bi8Y22rWRSb7hD3 MbjPY0aDzpa.rn7501bZ7mqe2mUcl_KoBLEADCAPhvyJAOMX3k5P6M4LCL8JrF3g4d0rX8rjgU8M NIEcKMzNqRBly8IQ5itrwAlTzUEQjw5utfjuB_TXG0AgqYpXkuXQq4_u5QIXIp2zZO5.TCprwrCP _S_9wf873KchWFMWCj5vtxaIdEiay.6jPXAuh8IrSmBhb.YXTmi0RNDpAOWmvNRkLOf_LHLTPa4i 3nW74VF47Yk94eYJAhpE.GY5m9q7Hg6pELu93PipEAc9uUb84EL813Lyscv3qs5E_E28jYrJPpIi Ff6l1wwRCrS1OmE.hKizzfXzFGUuGPUi5NBAdqezcpYaO296jDS6q7x7adSs1.1brzsHoLbAfbRn Ykt7qEWCO.g7UOlXiJ5TK3oeQAYTROGshl8Q7PMqO8uGZ2ux892VroRtMHJ.A9VGqdVvymUsjQNV m2hPX6pNMVYDOwpo80GRGPbJKrvvV8MOaXdwNwg9uDHuxm4i54tfJP5ANR2SxxjBwG94s7nummvh LD8Igfq0EYTn2Utkd_ozRHCNvIaon90pAsA8QMA7ShGWpGwU8B5kJ.Q.m2BRZBox1XG4xtm.IDeO euIe2pJW21gVUn0TF0CeMPkCk_PEXsJ.32vgQa_e0QakbMkiHJreuxkSfJ8NVieN86w0h7TR43CA bhdp3hwyGkoZCkopliZdurx1WBbcug1rlTnfwtACN8d5UW5JR._AmOrQRZazDtbInYzF7mX9v3mb urvXQe.djGqRYTYn.8esHnT4Htox6P_nz7I4hPnLpjBwUOca.QVsTCH2Lq0hfKYlIQ2kDsmg1ZEL XVhuaN7a6tlISsKLJniLLUviUS4FEZLgM66AqlGM.17hu1WiHy7JrLDBZYdeBlu5pSs3mCEoPhls CpIKqP7VKj7RXPNumRLEDvizgcTx1w7hun.vUH1VKUo5LMTdxU350fZIp4oivIHAksrXSsbWBVw_ e5nE1E7c3VVM3ccN3JpKcocGr2qXn9s6HgJ0R9fiMNHxugZC5Mi7oGKM0joy_lXNCOwNyD2988V4 kguGcYpgcquUD47Hv7KMIFhA_ItZBJOSni.LaR509KVq1kprHIC9wKnblMZc.OFx_Wcj8CCqH.wi f1XDnh7xpO4NTML7kzc768VOdSw9ZA81CfNy44eTCCzy_.svnqViEBBUm6RBnyCFPKnef1RGMTMu vUF41XXKYGSYrgxxqq1zH8TkVAnXmlIfxQnrE._zTg6H5s6N5dXigIzynrR0QqV7DdUILhIKfHjs 9WtlpNbeXf9QSMqkCrijAQTjhcbMyIevGUu2dTb71PxW9snbec57yxeOh8IFBhB5m.w8u5EKSyxo LQ.0gP4ova2W2xKsyTPzAewob2wSm1NYV.YQyYdT90jeGJNvVgTBmiXjQOQAdu4.r06Xg1eK5_I4 AFOf44F8kncq_w1b8iHU0DK37mzqkKO6cMDTZWwqqbbuPzQ8BteosTxVGCH2uFii9HsSAIEpkEtI zhQRd66llCjEFfIfwgkUHETBrRn8lCcbO3AuwGbupwrBUiZuyjrP_sv5YsTx48_QkcGLJcUayUpL Hu7CiCbar29OKH.QE.BhRySPqQFfUliSe5Vc2dnG.KDDJlaKVztpMG_SxodWQyLdMgyp2BRIjAVB W4zs2_3Qw3fvAXpUV8HoXH5CztcFEU8aeytPNaE9UlX8xZLor2Ij0eDDt4EVMp5woD41i0CWSWIo bvw-- X-Sonic-MF: X-Sonic-ID: 00f8e2f0-2b7c-4fb8-aed6-75a68224b770 Received: from sonic.gate.mail.ne1.yahoo.com by sonic315.consmr.mail.gq1.yahoo.com with HTTP; Wed, 13 Sep 2023 07:02:34 +0000 Received: by hermes--production-gq1-6b7c87dcf5-j6k2s (Yahoo Inc. Hermes SMTP Server) with ESMTPA ID 3c2bde0f40e44c60cd58c2760d82d8c3; Wed, 13 Sep 2023 07:02:29 +0000 (UTC) From: Mark Millard Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit List-Id: Discussions about the use of FreeBSD-current List-Archive: https://lists.freebsd.org/archives/freebsd-current List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-current@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.700.6\)) Subject: sys/net/if_lagg_test:status_stress can lead to use-after-free in main (both before and after stable/14 was created), at least on aarch64 Message-Id: <1A90A03B-0B48-4A74-A10C-BD871514460D@yahoo.com> Date: Wed, 13 Sep 2023 00:02:18 -0700 Cc: Current FreeBSD , Kyle Evans To: FreeBSD-STABLE Mailing List X-Mailer: Apple Mail (2.3731.700.6) References: <1A90A03B-0B48-4A74-A10C-BD871514460D.ref@yahoo.com> X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.50 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-0.999]; DMARC_POLICY_ALLOW(-0.50)[yahoo.com,reject]; MV_CASE(0.50)[]; R_DKIM_ALLOW(-0.20)[yahoo.com:s=s2048]; R_SPF_ALLOW(-0.20)[+ptr:yahoo.com]; MIME_GOOD(-0.10)[text/plain]; RCPT_COUNT_THREE(0.00)[3]; FROM_HAS_DN(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[98.137.65.32:from]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MLMMJ_DEST(0.00)[freebsd-current@freebsd.org]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RWL_MAILSPIKE_POSSIBLE(0.00)[98.137.65.32:from]; DKIM_TRACE(0.00)[yahoo.com:+]; TO_DN_ALL(0.00)[]; FREEMAIL_FROM(0.00)[yahoo.com]; DWL_DNSWL_NONE(0.00)[yahoo.com:dkim]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:36647, ipnet:98.137.64.0/20, country:US]; FREEMAIL_ENVFROM(0.00)[yahoo.com]; RCVD_COUNT_TWO(0.00)[2] X-Rspamd-Queue-Id: 4RlrxT1wCqz4dnf See https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=273081#c5 and the backtrace in the prior comment. The test context is aarch64. Kyle Evans provided a kgdb patch for devel/gdb for aarch64 that that finally let me track this down to the level of detail on how to interpret the register values reported vs. what code involved using the value. I will say that I've not managed to produce the crash with 14.0-BETA1. But I have produced the crash in my personal non-debug kernel builds and with the main snapshots dd'd to media and booted and used. === Mark Millard marklmi at yahoo.com