BTRFS use-after-free bug at free_extent_buffer_internal

Qu Wenruo quwenruo.btrfs at gmx.com
Mon Apr 22 10:55:58 CEST 2024



在 2024/4/22 16:45, Qu Wenruo 写道:
[...]
>>
>> I added a print statement to free_extent_buffer_internal that prints the
>> start address of the extent_buffer as I'm not sure what to be looking for
>> here.  This print statement is before the decrement.
>>> printf("free_extent_buffer_internal: eb->start[%llx] eb->refs[%i]\n",
>>> eb->start, eb->refs);
>>

Just a small advice, in fact you can go with sandbox mode, running
U-boot in userspace, and bind a host file as a device to test the
filesystem code.

At least that's what I did for most U-boot bugs.

Thanks,
Qu


More information about the U-Boot mailing list