lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date:	Tue, 01 Apr 2008 22:37:02 +0200
From:	Bernard Pidoux <bpidoux@...e.fr>
To:	Jarek Poplawski <jarkao2@...il.com>
CC:	Jarek Poplawski <jarkao2@...pl>,
	Linux Netdev List <netdev@...r.kernel.org>,
	Ralf Baechle DL5RB <ralf@...ux-mips.org>
Subject: Re: [AX25] kernel panic


Jarek Poplawski wrote:
> On Sun, Mar 30, 2008 at 11:59:21AM +0200, Bernard Pidoux wrote:
> ...
>> I would not be surprised if ROSE was involved as, remember, I first  
>> found the bug when I closed an AX25 session established through a level  
>> 3 ROSE network (FPAC) via AXUDP link (ax25ipd). As I said in my first  
>> bug report, the bug is not triggered when connecting locally or via AX25  
>> call through LAN. Thus ROSE level is involved.
>>
>> However, I guess that lower layer (AX25) should stand a possible error  
>> in the upper layer protocol (ROSE).
> 
> I think ROSE breaks some general rules here: bugs trigger in sock.c
> code when ROSE packets are destroyed after closing its sockets, but
> without proper information on this.
> 
>> ROSE is actually an AX25 packet routing protocol with only three byte  
>> offset added to AX25 frames (encapsulation). Of course it has its own  
>> bugs...
> 
> Probably... BTW, my today's patch adds some locking, so there is always
> some risk of a lockup or some new lockdep warning. And if accidentally
> it works, after testing with these debugging patches there would be
> needed later a test of this #5 alone, as well.
> 
> Thanks,
> Jarek P.
> 
> 


I did what you suggested and reversed your patches #2,#3 and #4 to 
verify that there was no system incompatibilities with the new locks you 
introduced into rose_release().

Patch #1 has also been removed on another machine running a 64 bit Core2 
duo CPU.


Three Linux boxes have been are running for more than 24 hours now with 
only patch #5. They handled a lot of AX25 connections with no problems.

Thus, we can reasonably expect that things are going to stay stable.

If you want to commit patch#5 I will sustain it very much.

I hope that it will be accepted quickly in order to make a coherent 
system with AX25 patches already applied or not yet applied (if any).

Thank you very much Jarek for this very nice job.


Best regards,


Bernard Pidoux,
F6BVP

--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ