Page MenuHomeFreeBSD
Differential D44702

uipc_shm: Copyin userpath for ktrace(2)
ClosedPublic
Actions

Authored by jfree on Apr 9 2024, 9:54 PM.
Tags
None
Referenced Files
F102835979: D44702.diff
Sun, Nov 17, 7:26 PM
Unknown Object (File)
Fri, Nov 1, 12:38 AM
Unknown Object (File)
Fri, Nov 1, 12:38 AM
Unknown Object (File)
Fri, Nov 1, 12:38 AM
Unknown Object (File)
Fri, Nov 1, 12:23 AM
Unknown Object (File)
Sep 15 2024, 7:32 AM
Unknown Object (File)
Sep 5 2024, 2:23 PM
Unknown Object (File)
Aug 20 2024, 7:32 PM
View All 26 Files
Subscribers
glebius
imp
olce

Details

Reviewers
markj
Commits
rGd0ca50b414be: uipc_shm: Copyin userpath for ktrace(2)
rGb112232e4fb9: uipc_shm: Copyin userpath for ktrace(2)
Summary

If userpath is not SHM_ANON, then copy it in early so ktrace(2) can
record it. Without this change, ktrace(2) will attempt to strcpy a
userspace string and trigger a page fault.

Reported by: syzbot+490b9c2a89f53b1b9779@syzkaller.appspotmail.com
Fixes: 0cd9cde767c3
Approved by: markj (mentor)
MFC after: 1 month
Sponsored by: The FreeBSD Foundation

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 56992
Build 53880: arc lint + arc unit

Revision Contents
Changeset List

PathSize
sys/
kern/
44 lines

Diff 136789

View Options

sys/kern/uipc_shm.c

Loading...