| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 12 Sep 2006 20:10:32 +0100
From: David Howells <dhowells@...hat.com>
To: Matt Mackall <mpm@...enic.com>
Cc: Aubrey <aubreylee@...il.com>,
Nick Piggin <nickpiggin@...oo.com.au>,
David Howells <dhowells@...hat.com>,
linux-kernel@...r.kernel.org, davidm@...pgear.com,
gerg@...pgear.com
Subject: Re: kernel BUGs when removing largish files with the SLOB allocator
Matt Mackall <mpm@...enic.com> wrote:
> > + for (i = 0; i < (1 << bb->order); i++) {
> > + SetPageSlab(page);
> > + page++;
> > + }
>
> for ( ; page < page + (1 << bb->order), page++)
> SetPageSlab(page);
Ugh. No. You can't do that. "page < page + X" will be true until "page + X"
wraps the end of memory.
> > + for (i = 0; i < (1 << bb->order); i++) {
> > + if (!TestClearPageSlab(page))
> > + BUG();
> > + page++;
> > + }
>
> Please drop the BUG. We've already established it's on our lists by
> this point.
I disagree. Let's catch accidental reuse of pages. It should, however, be
marked unlikely().
> You just broke the bit that shrinks the arena.
How? This is only called once when things are being initialised. There can
be no SLOB objects allocated prior to that point.
> I don't like this patch. We've just grown SLOB by about 10% everywhere
> to make nommu happy. Is this needed because nommu is doing something
> special for MMU-less machines or because it's doing something bogus?
See preceding discussion on LKML.
kobjsize() needs to work out how to calculate the size of an object. One of
the main classes of object it might be given is slab/slob objects. Either
these should be marked with PG_slab as per the slab allocator, of kobjsize()
has to go and walk all the slab allocator or slob allocator lists to find out
whether this page belongs to them. Only then can it know whether or not it
can trust the page metadata as slab/slob metadata or not.
> Looking through all the users of kobjsize, it seems we always know
> what the type is (and it's usually a VMA). I instead propose we use
> ksize on objects we know to be SLAB/SLOB-allocated and add a new
> function (kpagesize?) to size other objects where nommu needs it.
Yes, we might have a VMA, but no, we do not know how big the object we've
_actually_ been given by whoever is. kmalloc() doesn't tell us that and
get_unmapped_area() doesn't tell us that but we want it to account correctly
for the ammount of memory allocated.
You say "use ksize on objects we know to be SLAB/SLOB-allocated" which is the
whole point of PG_slab.
> As for whether SLOB should emulate PG_slab on general principles, as
> far as I can tell, PG_slab should be considered a private debugging
> aid to SLAB. All the other users look rather bogus to my eye.
>
> If anything, SLOB should internally abuse PG_slab to mark big pages
> and dispense with its bigblocks lists.
It's not abuse. SLOB is a drop-in replacement for the SLAB allocator,
therefore PG_slab belongs to it instead of SLAB.
Anyway, if you've got a better idea, then patch please.
David
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists