dumbbell 2008-01-24 17:10:19 UTC
FreeBSD src repository
Modified files:
sys/sys event.h
sys/kern vfs_aio.c
Log:
When asked to use kqueue, AIO stores its internal state in the
`kn_sdata' member of the newly registered knote. The problem is that
this member is overwritten by a call to kevent(2) with the EV_ADD flag,
targetted at the same kevent/knote. For instance, a userland application
may set the pointer to NULL, leading to a panic.
A testcase was provided by the submitter.
PR: kern/118911
Submitted by: MOROHOSHI Akihiko <[EMAIL PROTECTED]>
MFC after: 1 day
Revision Changes Path
1.237 +6 -4 src/sys/kern/vfs_aio.c
1.38 +2 -0 src/sys/sys/event.h
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
