Date: Wed, 27 Jan 2016 18:49:25 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 206680] kbd race attacks Message-ID: <bug-206680-8-RM6UUad2Gx@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-206680-8@https.bugs.freebsd.org/bugzilla/> References: <bug-206680-8@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D206680 --- Comment #2 from CTurt <cturt@hardenedbsd.org> --- Correct. I cited `kbd_realloc_array` in my comment because it is the most blatant example of code which is no longer thread safe, following the removal of `spltty` and `splx`. However, it is not just `kbd_realloc_array` which needs to be sorted. The w= hole of this source file seems to rely on using `spltty` to prevent race attacks, which means multiple locks will probably need to be used. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-206680-8-RM6UUad2Gx>