| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 18 Jun 2011 13:39:57 +0300 From: Pekka Paalanen <pq@....fi> To: Rafał Miłecki <zajec5@...il.com> Cc: Linux Kernel Mailing List <linux-kernel@...r.kernel.org>, linux-wireless@...r.kernel.org, Larry Finger <Larry.Finger@...inger.net> Subject: Re: Lock up when faking MMIO read[bwl] on some machines [WAS: Faking MMIO ops? Fooling a driver] On Sat, 18 Jun 2011 00:31:32 +0200 Rafał Miłecki <zajec5@...il.com> wrote: > I use attached patch to fake result of read[bwl] performed by > closed source driver (ndiswrapper+bcmwl and wl). > > 1) It works great on my Sony VAIO with Intel(R) Core(TM)2 Duo CPU > P8400 2) It locks up Macbook Pro 8,1 with some 8-cores Intel > > Do you have any idea why it causes the lockup? Function causing > problem is "set_ins_reg_val". I've created it as copy of > get_ins_reg_val, it just sets values in struct pt_regs, instead of > reading them). Sorry, I have no insight to that... does unmodified mmiotrace work properly? Are you tracing the exact same kernel binary blob on both machines? Maybe it's using some rare instruction mmiotrace does not decode properly? Maybe with a rep prefix? Do those CPUs have any differences in their registers or struct pt_regs? I'm not even sure how "legal" it is to poke pt_regs there. :-/ Good luck. -- Pekka Paalanen http://www.iki.fi/pq/ -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists