lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-Id: <1195065493.2168.31.camel@lov.site>
Date:	Wed, 14 Nov 2007 19:38:13 +0100
From:	Kay Sievers <kay.sievers@...y.org>
To:	Greg KH <greg@...ah.com>
Cc:	Dave Young <hidave.darkstar@...il.com>,
	Andrew Morton <akpm@...ux-foundation.org>,
	linux-kernel@...r.kernel.org
Subject: Re: 2.6.24-rc2-mm1

On Wed, 2007-11-14 at 08:59 -0800, Greg KH wrote:
> On Wed, Nov 14, 2007 at 05:36:48PM +0800, Dave Young wrote:
> > On Nov 14, 2007 4:41 PM, Andrew Morton <akpm@...ux-foundation.org> wrote:
> > >
> > > On Wed, 14 Nov 2007 14:47:38 +0800 "Dave Young" <hidave.darkstar@...il.com> wrote:
> > >
> > > > On Nov 14, 2007 2:38 PM, Andrew Morton <akpm@...ux-foundation.org> wrote:
> > > > >
> > > > > On Wed, 14 Nov 2007 14:18:39 +0800 "Dave Young" <hidave.darkstar@...il.com> wrote:
> > > > >
> > > > > > Hi,
> > > > > > Boot failed on my machine. hand copy some messages.
> > > > > >
> > > > > > First with BLK_DEV_RAM=y
> > > > > >
> > > > > > BUG kmalloc-64 Poison overwritting:
> > > > > > Alloced in kset_create
> > > > > > Freed in kobject_cleanup
> > > > > >
> > > > > > --cut--
> > > > > > alloc_disk_node
> > > > > > rd_init
> > > > > > kernel_init
> > > > > > --cut--
> > > > > >
> > > > > > Then config ramdisk as module, build and reboot:
> > > > > >
> > > > > > BUG: unable handle paging resuest at 6b6b6b6b
> > > > > > EIP is kobject_add 0xc4/0x150
> > > > > >
> > > > > > --cut--
> > > > > > kobject_set_name
> > > > > > register_disk
> > > > > > add_disk
> > > > > > exact_match
> > > > > > exact_lock
> > > > > > loop_init
> > > > > > --cut--
> > > > > >
> > > > >
> > > > > erp.  Can you send the config over please?
> > > > >
> > > > > And which distro/version is that machine running?
> > > > >
> > > >
> > > > Hi,andrew
> > > >
> > > > slackware 11
> > > >
> > > > config as follows:
> > > > #
> > > > # Automatically generated make config: don't edit
> > > > # Linux kernel version: 2.6.24-rc2-mm1
> > > > # Wed Nov 14 13:50:01 2007
> > > > #
> > >
> > > OK, I can reproduce that on the Vaio, thanks.
> > >
> > > oops: http://userweb.kernel.org/~akpm/dsc00037.jpg
> > > config: (what you sent)
> > > dmesg: http://userweb.kernel.org/~akpm/dmesg-sony.txt
> > >
> > > An inspired guess led me to suspect the driver tree.  The offending patch
> > > is gregkh-driver-kset-convert-block_subsys-to-use-kset_create.patch.
> > >
> > Hi,
> > I do some printk debug, the problem hide in the kobject.c line 256 in
> > kobject_add
> > seems  at
> > list_add_tail(&kobj->entry,&kobj->kset->list);
> 
> That's just wierd.  I'll try to figure this out...
> 
> Kay, any thoughts, I can use any hint anyone has here :)

Hmm, I tried to reproduce, but none of my boxes shows that.

Could it be an init-order problem, where something tries to use the
block subsystem? Before it is initialized with:
  block/genhd.c :: subsys_initcall(genhd_device_init);

If that's the case, we have an old bug that nobody noticed with static
structures, which are zeroed that time, but definitely not properly
initialized.

I'll try to build loop non-modular now, and see if that makes the bug
appear here.

Kay

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ