Skip to content

fix: oob access on fd_log_private_shared_lock #7576

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
cavemanloverboy wants to merge 1 commit into from
Closed

fix: oob access on fd_log_private_shared_lock #7576

cavemanloverboy wants to merge 1 commit into from

Conversation

@cavemanloverboy
Copy link
Contributor

@cavemanloverboy cavemanloverboy commented Dec 10, 2025
edited
Loading

image

@cavemanloverboy cavemanloverboy changed the title patch-9 fix: oob access on fd_log_private_shared_lock Dec 10, 2025
mmcgee-jump
mmcgee-jump requested changes Dec 11, 2025
View reviewed changes
Copy link
Contributor

@mmcgee-jump mmcgee-jump left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Blocking this .. I need to look but pretty sure this is intentional.

@cavemanloverboy
Copy link
Contributor Author

cavemanloverboy commented Dec 11, 2025

if it's indeed intentional can we make the static array and the local lock variable size 2?

@ripatel-fd
Copy link
Contributor

ripatel-fd commented Dec 12, 2025

if it's indeed intentional can we make the static array and the local lock variable size 2?

@cavemanloverboy Yes, the current code is just UB ... Thanks for flagging

@cavemanloverboy
Copy link
Contributor Author

cavemanloverboy commented Dec 12, 2025

if it's indeed intentional can we make the static array and the local lock variable size 2?

@cavemanloverboy Yes, the current code is just UB ... Thanks for flagging

do you want the current PR or do you want me to expand the array size?

@ripatel-fd
Copy link
Contributor

ripatel-fd commented Dec 16, 2025

We are going to fix this, thank you for reporting.

@ripatel-fd ripatel-fd closed this Dec 16, 2025
@mmcgee-jump
Copy link
Contributor

mmcgee-jump commented Dec 16, 2025

The code as written is correct, although it's confusing. The pointer is replaced on boot with a 4k mmaped page. Index 1 and 0 serve different purposes, so this change is not correct.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mmcgee-jump mmcgee-jump mmcgee-jump requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@cavemanloverboy @ripatel-fd @mmcgee-jump