Date: Wed, 20 May 2015 01:23:09 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-fs@FreeBSD.org Subject: [Bug 200288] Modify after Free: ZFS Message-ID: <bug-200288-3630-rgNEIUr4yL@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-200288-3630@https.bugs.freebsd.org/bugzilla/> References: <bug-200288-3630@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200288 --- Comment #16 from Alexander Kabaev <kan@FreeBSD.org> --- Looking at the allocation path, I think it tries to allocate structure of 96 bytes in size, which should put the allocation into '128' malloc zone. You might be better off watching that instead of 'solaris'. 'solaris' is an umbrella type that covers all of the allocations of the code imported from OpenSolaris. On my machine, vmstat -z gives 123470 active allocations in said bucket, while vmstat -m reports 1614027 active allocations for the whole solaris type, about 13x more. Due to the way memguard is implemented, it might be more practical to use selector with less active entries. In reality, I think one will need to hack memguard_cmp_mtp so match 'solaris' _and_ size to match sizeof(struct rl). -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-200288-3630-rgNEIUr4yL>