Re: [PATCH 07/11] Memory compaction core

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Andrea Arcangeli

Subject: Re: [PATCH 07/11] Memory compaction core

Date: Wednesday, March 24, 2010 - 2:47 pm

On Wed, Mar 24, 2010 at 03:28:54PM -0600, Jonathan Corbet wrote:
quoted text> On Wed, 24 Mar 2010 22:19:24 +0100
> Andrea Arcangeli <aarcange@redhat.com> wrote:
> 
> > > > It's a bit strange to test this when we're about to oops anyway.  The
> > > > oops will tell us the same thing.  
> > > 
> > > ...except that we've seen a fair number of null pointer dereference
> > > exploits that have told us something altogether different.  Are we
> > > *sure* we don't want to test for null pointers...?  
> > 
> > Examples? Maybe WARN_ON != oops, but VM_BUG_ON still an oops that is
> > and without serial console it would go lost too. I personally don't
> > see how it's needed.
> 
> I don't quite understand the question; are you asking for examples of
> exploits?
> 
> 	http://lwn.net/Articles/347006/
> 	http://lwn.net/Articles/360328/
> 	http://lwn.net/Articles/342330/
> 	...

As far as I can tell, VM_BUG_ON would make _zero_ differences there.

I think you mistaken a VM_BUG_ON for a:

  if (could_be_null->something) {
     WARN_ON(1);
     return -ESOMETHING;
  }

adding a VM_BUG_ON(inode->something) would _still_ be as exploitable
as the null pointer deference, because it's a DoS. It's not really a
big deal of an exploit but it _sure_ need fixing.

The whole point is that VM_BUG_ON(!something) before something->else
won't move the needle as far as your null pointer deference exploits
are concerned.

quoted text> As to whether this particular test makes sense, I don't know.  But the
> idea that we never need to test about-to-be-dereferenced pointers for
> NULL does worry me a bit.

Being worried is good idea, as we don't want DoS bugs ;). It's just
that VM_BUG_ON isn't a solution to the problem (and the really
important thing, it's not improving its detectability either), fixing
the actual bug is the solution.
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH 07/11] Memory compaction core, Mel Gorman, (Tue Mar 23, 5:25 am)

Re: [PATCH 07/11] Memory compaction core, Christoph Lameter, (Tue Mar 23, 10:56 am)

Re: [PATCH 07/11] Memory compaction core, Mel Gorman, (Tue Mar 23, 11:15 am)

Re: [PATCH 07/11] Memory compaction core, Christoph Lameter, (Tue Mar 23, 11:33 am)

Re: [PATCH 07/11] Memory compaction core, Mel Gorman, (Tue Mar 23, 11:58 am)

Re: [PATCH 07/11] Memory compaction core, Christoph Lameter, (Tue Mar 23, 12:20 pm)

Re: [PATCH 07/11] Memory compaction core, KAMEZAWA Hiroyuki, (Tue Mar 23, 6:03 pm)

Re: [PATCH 07/11] Memory compaction core, Minchan Kim, (Tue Mar 23, 6:47 pm)

Re: [PATCH 07/11] Memory compaction core, KAMEZAWA Hiroyuki, (Tue Mar 23, 6:53 pm)

Re: [PATCH 07/11] Memory compaction core, Minchan Kim, (Tue Mar 23, 7:10 pm)

Re: [PATCH 07/11] Memory compaction core, Mel Gorman, (Wed Mar 24, 3:57 am)

Re: [PATCH 07/11] Memory compaction core, Andrew Morton, (Wed Mar 24, 1:33 pm)

Re: [PATCH 07/11] Memory compaction core, Jonathan Corbet, (Wed Mar 24, 1:59 pm)

Re: [PATCH 07/11] Memory compaction core, Andrew Morton, (Wed Mar 24, 2:14 pm)

Re: [PATCH 07/11] Memory compaction core, Andrea Arcangeli, (Wed Mar 24, 2:19 pm)

Re: [PATCH 07/11] Memory compaction core, Christoph Lameter, (Wed Mar 24, 2:19 pm)

Re: [PATCH 07/11] Memory compaction core, Jonathan Corbet, (Wed Mar 24, 2:28 pm)

Re: [PATCH 07/11] Memory compaction core, Andrea Arcangeli, (Wed Mar 24, 2:47 pm)

Re: [PATCH 07/11] Memory compaction core, Jonathan Corbet, (Wed Mar 24, 2:54 pm)

Re: [PATCH 07/11] Memory compaction core, Andrea Arcangeli, (Wed Mar 24, 2:57 pm)

Re: [PATCH 07/11] Memory compaction core, Andrea Arcangeli, (Wed Mar 24, 3:06 pm)

Re: [PATCH 07/11] Memory compaction core, Mel Gorman, (Thu Mar 25, 2:13 am)


linux-kernel:
Rusty Russell	Re: 2.6.22-rc3-mm1
Bill Fink	Re: [PATCH] net: add ability to clear stats via ethtool - e1000/pcnet32
Jeffrey V. Merkey	Re: Versioning file system
Alexey Dobriyan	Re: [2.6.22.2 review 09/84] Fix rfkill IRQ flags.
Luben Tuikov	Re: Integration of SCST in the mainstream Linux kernel
linux-netdev:
David Miller	Re: [2.6.30-rc3] powerpc: compilation error of mace module
Rafael J. Wysocki	Re: [PATCH] igb: fix kexec with igb
Patrick McHardy	Re: [rfc 02/13] [RFC 02/13] netfilter: nf_conntrack_sip: Add callid parser
webmaster Maintenance	&#32852;&#31995;&#31995;&#32479;&#31649;&#29702;&#21592;
Krzysztof Oledzki	Re: Error: an inet prefix is expected rather than "0/0".
git-commits-head:
Linux Kernel Mailing List	V4L/DVB: tm6000: add special usb request to quit i2c tuner transfer
Linux Kernel Mailing List	OMAP: DSS2: SDI driver
Linux Kernel Mailing List	PCI: introduce pci_pcie_cap()
Linux Kernel Mailing List	drivers/acpi: use kasprintf
Linux Kernel Mailing List	PCI hotplug: acpiphp: remove superfluous _HPP/_HPX evaluation
git:
Oliver Kullmann	Re: how to move with history?
Junio C Hamano	Re: [PATCH 2/3] git-add--interactive: remove hunk coalescing
Shawn O. Pearce	Re: Bugs in Gitosis
Harvey Harrison	Re: [SoC RFC] libsvn-fs-git: A git backend for the subversion filesystem
Alex Riesen	Re: git exclude patterns for directory
openbsd-misc:
Ted Bullock	Re: Proliant DL380 G3 cannot get on network
Jack J. Woehr	Re: Real men don't attack straw men
Úlfar M. E. Johnson	installing openbsd in xen
Eric Furman	Re: Defending OpenBSD Performance
Tony Abernethy	Re: The Atheros story in much fewer words