Project

General

Profile

Actions

Bug #11935

closed

loader: fix memory corruption bug in vdev_read

Added by Toomas Soome over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
bootloader
Start date:
Due date:
% Done:

100%

Estimated time:
Difficulty:
Medium
Tags:
Gerrit CR:

Description

FreeBSD changes:
https://svnweb.freebsd.org/base?view=revision&revision=r344226
https://svnweb.freebsd.org/base?view=revision&revision=r344234
https://svnweb.freebsd.org/base?view=revision&revision=r348471

The bug occurred when a bounce buffer was used and the requested read size was greater than the size of the bounce buffer. This commit also rewrites the read logic so that it is easier to systematically verify all alignment and size cases.

Actions #1

Updated by Electric Monk over 2 years ago

  • Status changed from In Progress to Closed
  • % Done changed from 90 to 100

git commit cb09bd3c63580aef9fe1999ae4e48a8a5b9cf55c

commit  cb09bd3c63580aef9fe1999ae4e48a8a5b9cf55c
Author: Toomas Soome <tsoome@me.com>
Date:   2019-11-14T18:47:04.000Z

    11935 loader: fix memory corruption bug in vdev_read
    Reviewed by: Matthias Scheler <matthias.scheler@wdc.com>
    Reviewed by: Andy Fiddaman <omnios@citrus-it.co.uk>
    Approved by: Dan McDonald <danmcd@joyent.com>

Actions

Also available in: Atom PDF