Page MenuHomeFreeBSD
Differential D42366

bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS)
ClosedPublic
Actions

Authored by glebius on Oct 26 2023, 1:34 AM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Jul 16, 4:11 PM
Unknown Object (File)
Tue, Jul 16, 11:03 AM
Unknown Object (File)
Sun, Jul 14, 5:52 AM
Unknown Object (File)
Thu, Jul 11, 12:11 PM
Unknown Object (File)
Thu, Jul 11, 12:06 PM
Unknown Object (File)
Wed, Jul 10, 6:14 PM
Unknown Object (File)
Wed, Jul 10, 4:34 PM
Unknown Object (File)
Mon, Jul 1, 2:46 PM
View All 24 Files
Subscribers
bcran
crest_freebsd_rlwinm.de
imp
rgrimes

Details

Reviewers
markj
bz
grehan
Group Reviewers
bhyve
Commits
rGef161a35012f: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS)
rGabf5807ffc36: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS)
rG6f1ccbd58790: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS)
rGf407a72a506d: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS)
Summary

ioctl(2)'s with integer argument shall pass command argument by value,
not by pointer. The ioctl(2) manual page is not very clear about that.
See sys/kern/sys_generic.c:sys_ioctl() near IOC_VOID.

Fixes: fd8b9c73a5a63a7aa438a73951d7a535b4f25d9a

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

glebius created this revision.Oct 26 2023, 1:34 AM
Herald added a reviewer: bhyve. · View Herald TranscriptOct 26 2023, 1:34 AM
Herald added subscribers: bcran, rgrimes, imp. · View Herald Transcript
glebius requested review of this revision.Oct 26 2023, 1:34 AM
Harbormaster completed remote builds in B54171: Diff 129397.Oct 26 2023, 1:34 AM
glebius added a comment.Oct 26 2023, 1:38 AM

This is how bug manifests itself:

>dtrace -n 'fbt::tunioctl:entry /execname == "bhyve" && args[1] == 0x20045600/ { printf("%x", *(int *)args[2]); }'

Before:
  5  13039                   tunioctl:entry 20045600 d5dea838
  2  13039                   tunioctl:entry 20045600 8751d008
  2  13039                   tunioctl:entry 20045600 93248d28
  4  13039                   tunioctl:entry 20045600 d85557a8

After:
dtrace: description 'fbt::tunioctl:entry ' matched 1 probe
CPU     ID                    FUNCTION:NAME
  7  13039                   tunioctl:entry 1

Eventually it ends up with setting NOARP flag on the vmnet interface. On CURRENT the bug could be masked either by INVARIANTS in the kernel or by MALLOC_PRODUCTION in the userland.

P.S. See also 9fddcc6661d2cf7bb8e704308437d2b1674b50be

markj accepted this revision as: markj.Oct 26 2023, 3:23 AM

Thank you. :(

The bug is in releng/14.0. Could you please make sure this makes it there too? I can help get that done if needed.

This revision is now accepted and ready to land.Oct 26 2023, 3:23 AM
Closed by commit rGf407a72a506d: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS) (authored by glebius). · Explain WhyOct 26 2023, 10:02 AM
This revision was automatically updated to reflect the committed changes.
glebius added a commit: rGf407a72a506d: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS).
crest_freebsd_rlwinm.de added a subscriber: crest_freebsd_rlwinm.de.Oct 26 2023, 3:57 PM

Good catch.

markj added a commit: rG6f1ccbd58790: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS).Oct 26 2023, 8:22 PM
markj added a commit: rGabf5807ffc36: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS).Oct 26 2023, 8:29 PM
markj added a commit: rGef161a35012f: bhyve: fix arguments to ioctl(VMIO_SIOCSIFFLAGS).Oct 27 2023, 5:34 PM

Revision Contents
Changeset List

PathSize
usr.sbin/
bhyve/
2 lines

Diff 129402

View Options

usr.sbin/bhyve/net_backends.c

Loading...