Skip to content

DAOS-19202 client: Fix cont_create use-after-frees (#18515)#18602

Draft
liw wants to merge 1 commit into
release/2.8from
liw/daos_cont_create_with_label-uaf-2.8
Draft

DAOS-19202 client: Fix cont_create use-after-frees (#18515)#18602
liw wants to merge 1 commit into
release/2.8from
liw/daos_cont_create_with_label-uaf-2.8

Conversation

@liw

@liw liw commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

Calling daos_cont_create_with_label may result in use-after-frees when underlying tasks reinitialize:

cont_prop  ev        Use-after-free
----------------------------------------------------------------
NULL       non-NULL  merged_props in daos_cont_create
RF         non-NULL  merged_props in daos_cont_create_with_label

This patch refactors daos_cont_create_with_label and daos_cont_create to free properties they allocate in task completion callbacks.

Steps for the author:

  • Commit message follows the guidelines.
  • Appropriate Features or Test-tag pragmas were used.
  • Appropriate Functional Test Stages were run.
  • At least two positive code reviews including at least one code owner from each category referenced in the PR.
  • Testing is complete. If necessary, forced-landing label added and a reason added in a comment.

After all prior steps are complete:

  • Gatekeeper requested (daos-gatekeeper added as a reviewer).

Calling daos_cont_create_with_label may result in use-after-frees when
underlying tasks reinitialize:

  cont_prop  ev        Use-after-free
  ----------------------------------------------------------------
  NULL       non-NULL  merged_props in daos_cont_create
  RF         non-NULL  merged_props in daos_cont_create_with_label

This patch refactors daos_cont_create_with_label and daos_cont_create to
free properties they allocate in task completion callbacks.

Signed-off-by: Li Wei <liwei@hpe.com>
@github-actions

github-actions Bot commented Jul 2, 2026

Copy link
Copy Markdown

Ticket title is 'Use-after-free issues in daos_cont_create_with_label when events are used'
Status is 'In Progress'
Labels: 'request_for_2.8'
https://daosio.atlassian.net/browse/DAOS-19202

@liw liw added the clean-cherry-pick Cherry-pick from another branch that did not require additional edits label Jul 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

clean-cherry-pick Cherry-pick from another branch that did not require additional edits

Development

Successfully merging this pull request may close these issues.

1 participant