svn commit: r273143 - head/sys/kern
NGie Cooper
yaneurabeya at gmail.com
Wed Oct 15 19:33:05 UTC 2014
On Wed, Oct 15, 2014 at 12:09 PM, Alexander Motin <mav at freebsd.org> wrote:
> On 15.10.2014 21:48, NGie Cooper wrote:
>> On Wed, Oct 15, 2014 at 11:36 AM, Alexander Motin <mav at freebsd.org> wrote:
>>> Author: mav
>>> Date: Wed Oct 15 18:36:34 2014
>>> New Revision: 273143
>>> URL: https://svnweb.freebsd.org/changeset/base/273143
>>>
>>> Log:
>>> Remove setting BIO_DONE flag for BIOs that have done() method.
>>>
>>> This fixes use-after-free, caused by geom_disk, completing same BIO twice
>>> to save extra allocation, and getting BIO_DONE set after the first.
>>>
>>> MFC after: 1 week
>>
>> Hi mav,
>> This bug is present in stable/10 as well. Could you please merge
>> it back to releng/10.1 before the release is cut?
>
> I'll send request to re@ after required minimal three days.
Ok!
> Though this code was committed to head about a year ago, so not sure how big is this
> problem.
Isilon uses gmirror for some devices and we've been running into
random use-after-free panics in geom (sometimes with gmirror) with
memguard(9) enabled. I have some potentially useful tests that I'll
post on freefall (they need a bit more polishing before they can be
committed to mainline FreeBSD).
Thanks!
More information about the svn-src-all
mailing list