Home » Mailing list archives » linux-kernel » 2008 » October » 6

[patch 22/28] x86: Fix broken LDT access in VMI

!MAILaRCHIVE_VOTE_RePLACE
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Greg KH <gregkh@...>
To: <linux-kernel@...>, <stable@...>, <jejb@...>
Cc: Justin Forbes <jmforbes@...>, Zwane Mwaikambo <zwane@...>, Theodore Ts'o <tytso@...>, Randy Dunlap <rdunlap@...>, Dave Jones <davej@...>, Chuck Wolber <chuckw@...>, Chris Wedgwood <reviews@...>, Michael Krufky <mkrufky@...>, Chuck Ebbert <cebbert@...>, Domenico Andreoli <cavokz@...>, Willy Tarreau <w@...>, Rodrigo Rubira Branco <rbranco@...>, Jake Edge <jake@...>, Eugene Teo <eteo@...>, <torvalds@...>, <akpm@...>, <alan@...>, Zachary Amsden <zach@...>, Ingo Molnar <mingo@...>, Glauber de Oliveira Costa <gcosta@...>
Subject: [patch 22/28] x86: Fix broken LDT access in VMI
Date: Monday, October 6, 2008 - 7:17 pm

2.6.25-stable review patch.  If anyone has any objections, please let us
know.

------------------
From: Zachary Amsden <zach@vmware.com>

commit de59985e3a623d4d5d6207f1777398ca0606ab1c upstream

After investigating a JRE failure, I found this bug was introduced a
long time ago, and had already managed to survive another bugfix which
occurred on the same line.  The result is a total failure of the JRE due
to LDT selectors not working properly.

This one took a long time to rear up because LDT usage is not very
common, but the bug is quite serious.  It got introduced along with
another bug, already fixed, by 75b8bb3e56ca09a467fbbe5229bc68627f7445be

Signed-off-by: Zachary Amsden <zach@vmware.com>
Cc: Ingo Molnar <mingo@redhat.com>
Cc: Glauber de Oliveira Costa <gcosta@redhat.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>

---
 arch/x86/kernel/vmi_32.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/arch/x86/kernel/vmi_32.c
+++ b/arch/x86/kernel/vmi_32.c
@@ -234,7 +234,7 @@ static void vmi_write_ldt_entry(struct d
 				const void *desc)
 {
 	u32 *ldt_entry = (u32 *)desc;
-	vmi_ops.write_idt_entry(dt, entry, ldt_entry[0], ldt_entry[1]);
+	vmi_ops.write_ldt_entry(dt, entry, ldt_entry[0], ldt_entry[1]);
 }
 
 static void vmi_load_sp0(struct tss_struct *tss,

-- 
--
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
[patch 00/28] 2.6.25-stable review, Greg KH, (Mon Oct 6, 7:16 pm)
[patch 28/28] udp: Fix rcv socket locking, Greg KH, (Mon Oct 6, 7:18 pm)
[patch 27/28] sctp: Fix oops when INIT-ACK indicates that pe..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 26/28] sctp: do not enable peer features if we cant d..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 25/28] netlink: fix overrun in attribute iteration, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 24/28] niu: panic on reset, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 23/28] ipv6: Fix OOPS in ip6_dst_lookup_tail()., Greg KH, (Mon Oct 6, 7:17 pm)
Re: [patch 23/28] ipv6: Fix OOPS in ip6_dst_lookup_tail()., Neil Horman, (Mon Oct 6, 7:51 pm)
[patch 22/28] x86: Fix broken LDT access in VMI, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 21/28] clockevents: remove WARN_ON which was used to ..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 20/28] ntp: fix calculation of the next jiffie to tri..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 19/28] x86: HPET: read back compare register before r..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 18/28] x86: HPET fix moronic 32/64bit thinko, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 17/28] clockevents: broadcast fixup possible waiters, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 16/28] HPET: make minimum reprogramming delta useful, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 15/28] clockevents: prevent endless loop lockup, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 14/28] clockevents: prevent multiple init/shutdown, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 13/28] clockevents: enforce reprogram in oneshot setup, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 12/28] clockevents: prevent endless loop in periodic ..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 11/28] clockevents: prevent clockevent event_handler ..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 10/28] ACPI: Avoid bogus EC timeout when EC is in Pol..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 09/28] rtc: fix deadlock, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 08/28] x86: add io delay quirk for Presario F700, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 07/28] ACPI: Fix thermal shutdowns, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 06/28] i2c-dev: Return correct error code on class_cr..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 05/28] ALSA: hda - Fix model for Dell Inspiron 1525, Greg KH, (Mon Oct 6, 7:17 pm)
Re: [patch 05/28] ALSA: hda - Fix model for Dell Inspiron 1525, Takashi Iwai, (Tue Oct 7, 1:55 am)
Re: [patch 05/28] ALSA: hda - Fix model for Dell Inspiron 1525, Greg KH, (Wed Oct 8, 10:38 pm)
[patch 04/28] drivers/mmc/card/block.c: fix refcount leak in..., Greg KH, (Mon Oct 6, 7:17 pm)
[patch 03/28] pxa2xx_spi: chipselect bugfixes, Greg KH, (Mon Oct 6, 7:17 pm)
[patch 02/28] pxa2xx_spi: dma bugfixes, Greg KH, (Mon Oct 6, 7:17 pm)
Re: [patch 02/28] pxa2xx_spi: dma bugfixes, Ned Forrester, (Mon Oct 6, 8:15 pm)
[patch 01/28] USB: fix hcd interrupt disabling, Greg KH, (Mon Oct 6, 7:16 pm)