CVSROOT: /cvs
Module name: src
Changes by: b...@cvs.openbsd.org 2012/12/10 15:58:04
Modified files:
sys/ufs/ffs : ffs_softdep.c
Log message:
Fix potential for use-after-free of bufs in softdep.
Softdep uses it's own "getdirtybuf" which has (always) potentially
slept - this wasn't noticable when buffers were static and never freed,
however now that the bufs it was trying to busy is might have been
written out and freed by someone else we can see use-after free if we
fast-recycle buffers. We fix this by either re-trying operations
or ensuring we don't use the buf pointer after waiting.
ok guenther@ (in coimbra)
