Page MenuHomeFreeBSD
Differential D44086

Fix kernel panic with disabled ttys
ClosedPublic
Actions

Authored by emaste on Feb 26 2024, 3:49 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sun, Nov 3, 11:32 AM
Unknown Object (File)
Sun, Nov 3, 11:22 AM
Unknown Object (File)
Tue, Oct 15, 11:21 PM
Unknown Object (File)
Tue, Oct 15, 2:01 PM
Unknown Object (File)
Mon, Oct 14, 4:49 PM
Unknown Object (File)
Fri, Oct 11, 12:13 PM
Unknown Object (File)
Thu, Oct 10, 2:35 PM
Unknown Object (File)
Tue, Oct 8, 12:37 PM
View All 58 Files
Subscribers
imp
olce

Details

Reviewers
pjd
kib
Commits
rGf3195cc08ccc: kern: fix panic with disabled ttys
rGa3ec3054762f: kern: fix panic with disabled ttys
rG814761540eb9: kern: fix panic with disabled ttys
rGa60220bbb551: kern: fix panic with disabled ttys
rG8d22744f5be1: kern: fix panic with disabled ttys
rG975d7730828a: kern: fix panic with disabled ttys
Summary
PR: 277240, 277329
Fixes: f1d0a0cbecf2 ("jail: Fix information leak.")

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

emaste requested review of this revision.Feb 26 2024, 3:49 PM
emaste updated this revision to Diff 135013.
emaste created this revision.

use bool while here

kib accepted this revision.Feb 26 2024, 3:57 PM

Just a note, this is still racy.

This revision is now accepted and ready to land.Feb 26 2024, 3:57 PM
emaste added a comment.Feb 26 2024, 4:02 PM

Just a note, this is still racy.

I originally had just (p = tp->t_session->s_leader) != NULL but then copied the example from tty_signal_sessleader. To make sure I understand correctly there's not a unique problem with my use but rather this pattern in general?

kib added a comment.Feb 26 2024, 4:09 PM
In D44086#1005754, @emaste wrote:

Just a note, this is still racy.

I originally had just (p = tp->t_session->s_leader) != NULL but then copied the example from tty_signal_sessleader. To make sure I understand correctly there's not a unique problem with my use but rather this pattern in general?

The session is not locked, so leader might be changed under us. It should not cause kernel memory corruption, since struct proc is type-stable, but in principle results in accessing tp after the test result is potentially invalid outright or invalidated after the check.

emaste updated this revision to Diff 135016.Feb 26 2024, 4:11 PM

fix copy-pasteo

This revision now requires review to proceed.Feb 26 2024, 4:11 PM
This revision was not accepted when it landed; it landed in state Needs Review.Feb 26 2024, 8:14 PM
Closed by commit rG975d7730828a: kern: fix panic with disabled ttys (authored by emaste). · Explain Why
This revision was automatically updated to reflect the committed changes.
emaste added a commit: rG975d7730828a: kern: fix panic with disabled ttys.
Herald added subscribers: olce, imp. · View Herald TranscriptFeb 26 2024, 8:14 PM
emaste added a commit: rG8d22744f5be1: kern: fix panic with disabled ttys.Feb 29 2024, 12:30 AM
emaste added a commit: rGa60220bbb551: kern: fix panic with disabled ttys.
emaste added a commit: rG814761540eb9: kern: fix panic with disabled ttys.Feb 29 2024, 1:18 PM
gordon added a commit: rGa3ec3054762f: kern: fix panic with disabled ttys.Mar 28 2024, 5:06 AM
gordon added a commit: rGf3195cc08ccc: kern: fix panic with disabled ttys.

Revision Contents
Changeset List

PathSize
sys/
kern/
7 lines

Diff 135026

View Options

sys/kern/tty.c

Loading...