Date: Mon, 4 May 2015 16:49:46 +0000 From: "Gumpula, Suresh" <Suresh.Gumpula@netapp.com> To: "freebsd-hackers@freebsd.org" <freebsd-hackers@freebsd.org> Subject: Use after free check for all private zones too Message-ID: <D16D1B68.377D6%gsuresh@netapp.com>
next in thread | raw e-mail | index | archive | help
Hi ,
Currently use after free check is available for power of 2 malloc zon=
es ( mt_rash_ctor/ m_trash_dotr ) which writes uma_junk(0xdeadc0de) on free=
d memory and
validates on reusing the object for others .
Similary we( NETAPP) have added a check for all other private zones to=
o with trash_ctor/ trash_dtor . We pass the trash_ctor/trash_dtor to um=
a_zcreate(9) if it is called with NULL for constructor/destructor.
This change uncovered the couple of bugs inernally. One of this is in tcp=
timer bug
https://svnweb.freebsd.org/base?view=3Drevision&revision=3D281599
Its a useful check and uncovers use after free bugs . Would like to push t=
his change . Any comments/suggestions please ?
Thanks
Suresh
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?D16D1B68.377D6%gsuresh>