Differential D21003

iflib: fix dangling device softc pointer
ClosedPublic
Actions

Authored by jacob.e.keller_intel.com on Jul 19 2019, 10:44 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Wed, Oct 15, 12:23 PM

	Unknown Object (File)
	Wed, Oct 15, 12:23 PM

	Unknown Object (File)
	Wed, Oct 15, 12:23 PM

	Unknown Object (File)
	Wed, Oct 15, 1:25 AM

	Unknown Object (File)
	Sun, Oct 12, 3:40 AM

	Unknown Object (File)
	Wed, Oct 8, 2:54 AM

	Unknown Object (File)
	Fri, Sep 26, 11:13 AM

	Unknown Object (File)
	Tue, Sep 23, 7:42 PM

Subscribers

Details

Reviewers

shurd
erj
jeffrey.e.pieper_intel.com
gallatin

Group Reviewers

iflib
Intel Networking

Commits

rS350306: iflib: fix dangling device softc pointer

Summary

If a driver's IFDI_ATTACH_PRE function fails, the iflib_device_register
function will free the ctx pointer. However, it does not reset the
device softc pointer to NULL.

This will result in memory corruption as a future access to the now
invalid pointer will corrupt memory that is later allocated on top of
the same memory location.

The iflib_device_deregister function correctly resets the softc pointer
by using device_set_softc().

This clears up the invalid dangling pointer and prevents memory
corruption that could lead to a panic or undefined behavior if the
device's driver failed to attach.

Signed-off-by: Jacob Keller <jacob.e.keller@intel.com>

Test Plan

This fixes memory corruption that can lead to system instability and panics
if a device driver fails to attach. Ideally we should backport this into
both STABLE-11 and STABLE-12

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

jacob.e.keller_intel.com created this revision.Jul 19 2019, 10:44 PM

Herald added a reviewer: shurd. · View Herald TranscriptJul 19 2019, 10:44 PM

Herald added a reviewer: iflib. · View Herald Transcript

Herald added a subscriber: ae. · View Herald Transcript

Harbormaster completed remote builds in B25434: Diff 59949.Jul 19 2019, 10:44 PM

jacob.e.keller_intel.com edited the test plan for this revision. (Show Details)Jul 19 2019, 10:45 PM

jacob.e.keller_intel.com added a reviewer: Intel Networking.

jacob.e.keller_intel.com added a reviewer: erj.

erj accepted this revision as: erj.Jul 23 2019, 5:44 PM

erj mentioned this in D21005: iflib: add iflib_deregister to help cleanup on exit.Jul 23 2019, 6:16 PM

jacob.e.keller_intel.com removed 1 blocking reviewer(s): Intel Networking.Jul 23 2019, 10:06 PM

jeffrey.e.pieper_intel.com accepted this revision.Jul 23 2019, 11:07 PM

erj added a reviewer: gallatin.Jul 24 2019, 4:38 PM

gallatin accepted this revision.Jul 24 2019, 8:48 PM

This revision is now accepted and ready to land.Jul 24 2019, 8:48 PM

Closed by commit rS350306: iflib: fix dangling device softc pointer (authored by erj). · Explain WhyJul 24 2019, 9:43 PM

This revision was automatically updated to reflect the committed changes.

erj added a commit: rS350306: iflib: fix dangling device softc pointer.

Herald added a subscriber: imp. · View Herald TranscriptJul 24 2019, 9:43 PM

Revision Contents
Changeset List

Path

Size

head/

sys/

net/

1 line

Diff 60112

head/sys/net/iflib.c

Loading...