Project

General

Profile

Bug #11935

loader: fix memory corruption bug in vdev_read

Added by Toomas Soome 15 days ago. Updated 7 days ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
bootloader
Start date:
Due date:
% Done:

100%

Estimated time:
Difficulty:
Medium
Tags:

Description

FreeBSD changes:
https://svnweb.freebsd.org/base?view=revision&revision=r344226
https://svnweb.freebsd.org/base?view=revision&revision=r344234
https://svnweb.freebsd.org/base?view=revision&revision=r348471

The bug occurred when a bounce buffer was used and the requested read size was greater than the size of the bounce buffer. This commit also rewrites the read logic so that it is easier to systematically verify all alignment and size cases.

History

#1

Updated by Electric Monk 7 days ago

  • % Done changed from 90 to 100
  • Status changed from In Progress to Closed

git commit cb09bd3c63580aef9fe1999ae4e48a8a5b9cf55c

commit  cb09bd3c63580aef9fe1999ae4e48a8a5b9cf55c
Author: Toomas Soome <tsoome@me.com>
Date:   2019-11-14T18:47:04.000Z

    11935 loader: fix memory corruption bug in vdev_read
    Reviewed by: Matthias Scheler <matthias.scheler@wdc.com>
    Reviewed by: Andy Fiddaman <omnios@citrus-it.co.uk>
    Approved by: Dan McDonald <danmcd@joyent.com>

Also available in: Atom PDF