Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

If the frame is not aligned, leave right away. This place probably needs

Browse Source 
to be revisited, because %rbp could easily contain garbage.

Reported-by: syzbot+ecb40cf7f8acc102c29b@syzkaller.appspotmail.com
This commit is contained in:
maxv 2020-06-06 07:03:21 +00:00
parent 502296eab3
commit 0f48bfb53e
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
sys/arch/amd64/amd64/db_machdep.c
View File

@ -1,4 +1,4 @@
/* $NetBSD: db_machdep.c,v 1.7 2020/05/14 16:57:53 maxv Exp $ */ /* $NetBSD: db_machdep.c,v 1.8 2020/06/06 07:03:21 maxv Exp $ */
/* /*
* Mach Operating System * Mach Operating System
@ -26,7 +26,7 @@
* rights to redistribute these changes. * rights to redistribute these changes.
*/ */
#include <sys/cdefs.h> #include <sys/cdefs.h>
__KERNEL_RCSID(0, "$NetBSD: db_machdep.c,v 1.7 2020/05/14 16:57:53 maxv Exp $"); __KERNEL_RCSID(0, "$NetBSD: db_machdep.c,v 1.8 2020/06/06 07:03:21 maxv Exp $");
#include <sys/param.h> #include <sys/param.h>
#include <sys/systm.h> #include <sys/systm.h>
@ -151,6 +151,8 @@ db_nextframe(long **nextframe, long **retaddr, long **arg0, db_addr_t *ip,
db_get_value((long)&tf->tf_rbp, 8, false); db_get_value((long)&tf->tf_rbp, 8, false);
if (fp == NULL) if (fp == NULL)
return 0; return 0;
if (((uintptr_t)fp & 7) != 0)
return 0;
*nextframe = (long *)&fp->f_frame; *nextframe = (long *)&fp->f_frame;
*retaddr = (long *)&fp->f_retaddr; *retaddr = (long *)&fp->f_retaddr;
*arg0 = (long *)&fp->f_arg0; *arg0 = (long *)&fp->f_arg0;