lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Mon, 26 May 2008 09:35:04 +1000
From:	Neil Brown <neilb@...e.de>
To:	Adrian Bunk <bunk@...nel.org>
Cc:	Mariusz Kozlowski <m.kozlowski@...land.pl>,
	kernel-testers@...r.kernel.org, linux-kernel@...r.kernel.org,
	Kay Sievers <kay.sievers@...y.org>,
	Greg Kroah-Hartman <gregkh@...e.de>
Subject: Re: x86_64 panic on latest linux-2.6

On Sunday May 25, bunk@...nel.org wrote:
> On Sun, May 25, 2008 at 10:51:33AM +0200, Mariusz Kozlowski wrote:
> > Hello,
> 
> Hi Mariusz,
> 
> > 	My x86_64 box is not willing to boot.
> > 
> > http://tuxland.pl/tmp/s7300372.jpg (275kB)
> > 
> > (gdb) p blk_lookup_devt
> > $1 = {dev_t (const char *, int)} 0xffffffff8032a430 <blk_lookup_devt>
> > (gdb) l *(0xffffffff8032a430+0x7f)
> > 0xffffffff8032a4af is in blk_lookup_devt (block/genhd.c:664).
> > 659             dev_t devt = MKDEV(0, 0);
> > 660     
> > 661             mutex_lock(&block_class_lock);
> > 662             list_for_each_entry(dev, &block_class.devices, node) {
> > 663                     if (strcmp(dev->bus_id, name) == 0) {
> > 664                             struct gendisk *disk = dev_to_disk(dev);
> > 665     
> > 666                             if (part < disk->minors)
> > 667                                     devt = MKDEV(MAJOR(dev->devt),
> > 668                                                  MINOR(dev->devt) + part);

Having decoded the "Code:", what is happening here is that 'dev' is
clearly not embedded inside a 'disk'.
The address of 'dev' is in RBX and is ffff81007f270010.
disk->minors is at and offset of -0x60 from 'dev' (as 'dev' is assumed
to be a structure embeded in a 'struct gendisk' - dev_to_disk uses
container_of to find the gendisk that holds the device).  But 0x60 from RBX
is in a different page, and presumably that memory doesn't exist.

So the question is: how can a 'struct device' which is not part of
a 'struct gendisk' be on 'block_class.devices'.

Unfortunately, I have no idea.

NeilBrown
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ