| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <tnxbpe5ygfy.fsf@e102109-lin.cambridge.arm.com> Date: Tue, 30 Mar 2010 16:31:13 +0100 From: Catalin Marinas <catalin.marinas@....com> To: Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp> Cc: linux-kernel@...r.kernel.org Subject: Re: [2.6.31 and later] "struct pid" leak. Tetsuo Handa <penguin-kernel@...ove.SAKURA.ne.jp> wrote: > I got below report with 2.6.33.1 . > > unreferenced object 0xde144600 (size 64): > comm "init", pid 1, jiffies 4294678101 (age 291.508s) > hex dump (first 32 bytes): > 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > 00 00 00 00 04 76 ae de d1 76 43 c0 d6 08 00 00 .....v...vC..... > backtrace: > [<c0481704>] create_object+0x121/0x1ef > [<c05f546b>] kmemleak_alloc+0x25/0x42 > [<c047e326>] kmemleak_alloc_recursive+0x1c/0x22 > [<c047e36e>] kmem_cache_alloc+0x42/0x68 > [<c0437701>] alloc_pid+0x19/0x288 > [<c0428acc>] copy_process+0x95a/0xdac > [<c04290d8>] do_fork+0x129/0x261 > [<c0407de5>] sys_clone+0x1f/0x24 > [<c040292d>] ptregs_clone+0x15/0x28 > [<ffffffff>] 0xffffffff > unreferenced object 0xdfa96a40 (size 64): > comm "login", pid 2259, jiffies 4294719437 (age 250.179s) > hex dump (first 32 bytes): > 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ > 00 00 00 00 60 39 ae de d1 76 43 c0 bb 09 00 00 ....`9...vC..... > backtrace: > [<c0481704>] create_object+0x121/0x1ef > [<c05f546b>] kmemleak_alloc+0x25/0x42 > [<c047e326>] kmemleak_alloc_recursive+0x1c/0x22 > [<c047e36e>] kmem_cache_alloc+0x42/0x68 > [<c0437701>] alloc_pid+0x19/0x288 > [<c0428acc>] copy_process+0x95a/0xdac > [<c04290d8>] do_fork+0x129/0x261 > [<c0407de5>] sys_clone+0x1f/0x24 > [<c040292d>] ptregs_clone+0x15/0x28 > [<ffffffff>] 0xffffffff I reported similar leaks last year - http://lkml.org/lkml/2009/7/8/422. There is some analysis in the thread above of the reference counting but I couldn't figure out where it goes wrong. It looks to me like there isn't any reference to a struct pid block but its reference count is 2. There is a bugzilla entry as well - https://bugzilla.kernel.org/show_bug.cgi?id=13868 -- Catalin -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists