| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 6 Nov 2007 09:33:38 +0800 From: Andreas Dilger <adilger@....com> To: Mingming Cao <cmm@...ibm.com> Cc: Badari Pulavarty <pbadari@...il.com>, Girish Shilamkar <girish@...sterfs.com>, Avantika Mathur <mathur@...ux.vnet.ibm.com>, ext4 <linux-ext4@...r.kernel.org> Subject: Re: [PATCH][RFC]JBD2: Fix journal checksum kernel oops on NUMA On Nov 05, 2007 15:21 -0800, Mingming Cao wrote: > On Mon, 2007-11-05 at 10:07 -0800, Badari Pulavarty wrote: > > On Tue, 2007-11-06 at 00:15 +0800, Andreas Dilger wrote: > > > My point is that there is a LOT of code in ext[234] that dereferences > > > bh->b_data without kmap() (e.g. group descriptors, bitmaps, superblock, > > > inode tables, etc). Does that imply that something is forcing those > > > bh pages into lowmem, or is the journal bh page in question being > > > allocated in some different way that allows it to be in highmem? > > > > Yes. You are right. Its been a while since I had to deal with HIGHMEM. > > All the meta-data should be in LOWMEM. I asked Mingming to verify > > what the buffer-head is pointing to when it has HIGHMEM page. > > > > The buffer_heads with NULL bh->b_data(under the "start_journal_io" > branch in jbd2_journal_commit_transaction() code) is created by > jbd2_journal_write_metadata_buffer(). > > Noticed that in jbd2_journal_write_metadata_buffer(), there are > multiple places which do kmap_atomic() to access the journal bh page > (new_page). In the normal case the new_page is pointing to the bh > pages, which(the page) was initially allocated by _page_cache_alloc() > (sb_bread->__bread()->_...>find_or_create_page()->_page_cache_alloc() > > In the case it need a data copy (the buffer start with the > JBD2_MAGIC_NUMBER?), a new page is allocated by by > __get_free_pages()(via jbd2_alloc, which is possible allocated in > highmem. __get_free_pages calls alloc_pages() directly, doesn't seem to > have highmem handling like __page_cache_alloc(). So long as there is a good explanation, and the code in jbd is expecting to kmap() the b_data pages always then I have no objection to the patch. I was just worried there was some other kind of bug involved here and wanted to ensure that the root cause was understood. It might be prudent to grep for b_data in the jbd2 code to verify there are no other places that dereference the bh page without kmap first. Thanks for the investigation Mingming. Girish, can you please include this fix into our patch series. Cheers, Andreas -- Andreas Dilger Sr. Software Engineer, Lustre Group Sun Microsystems of Canada, Inc. - To unsubscribe from this list: send the line "unsubscribe linux-ext4" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists