| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 09 Jan 2009 22:13:55 +0100 From: Stefan Richter <stefanr@...6.in-berlin.de> To: Greg KH <gregkh@...e.de> CC: Kay Sievers <kay.sievers@...y.org>, linux-kernel@...r.kernel.org, Jay Fenlason <fenlason@...hat.com> Subject: Re: post 2.6.28 regression: device_initialize() now sleeps, and may fail without recovery strategy Greg KH wrote: > On Fri, Jan 09, 2009 at 07:35:42PM +0100, Stefan Richter wrote: >> We can fix the bug by changing firewire-core, but >> a) it'd be more than a one-liner, >> b) who knows which other subsystems are affected. > > I agree. > > I originally looked at changing this to be at device_add time, but I > think there are some code paths that do device_initialize and then do > some operations on the device before calling device_add. get_device() and put_device() seem to be about the only things that are interesting before device_add(). Don't know if a final put_device() in this situation > But I could be > wrong, let me do some testing first before forcing you to make that big > change to the firewire core. It isn't actually that big. And the added complication could hopefully be covered by comments about the caveats. Actually, maybe it would be better for the firewire stack to move the concerned stuff into a non-atomic context. There are other things we do in there and atomic context isn't very comfortable for all this. But that would be a much bigger change. >> Next, the above code is bogus. In 2.6.28, device_initialize() could >> never fail and was thus safe to use as a void-valued function. >> >> How does driver core handle dev->p == NULL in subsequent usages of dev now? > > It dies a flaming horrible death, pretty much like the whole rest of the > system if allocating such a small ammount of memory is causing failures > :) Well, at least code which allocates struct device can check for failure and handle it, while the allocator of dev->p can't even check. Unless you change device_initialize() to return error status and add error handling all over the place... -- Stefan Richter -=====-==--= ---= -=--= http://arcgraph.de/sr/ -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists