Date: Thu, 02 Nov 2023 16:48:15 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 274875] A possible null-pointer dereference caused by a data race in sys/geom/gate/g_gate.c Message-ID: <bug-274875-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D274875 Bug ID: 274875 Summary: A possible null-pointer dereference caused by a data race in sys/geom/gate/g_gate.c Product: Base System Version: 14.0-RELEASE Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: islituo@gmail.com In the function g_gate_dumpconf(), sc->sc_readcons is first checked to be n= ot NULL: if (sc->sc_readcons !=3D NULL) and then dereferenced: sbuf_printf(sb, "%s<read_provider>%s</read_provider>\n", indent, sc->sc_readcons->provider->name); However, sc->sc_readcons can be set to NULL by other functions such as g_gate_modify() right after it is checked: sc->sc_readcons =3D NULL; and thus can cause a null-pointer dereference. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-274875-227>