Home » Mailing list archives » linux-netdev » 2008 » July » 21

Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison overwritten

!MAILaRCHIVE_VOTE_RePLACE
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Vegard Nossum <vegard.nossum@...>
To: Ingo Molnar <mingo@...>
Cc: Evgeniy Polyakov <johnpol@...>, Christoph Lameter <cl@...>, Pekka Enberg <penberg@...>, <linux-kernel@...>, <netdev@...>, Rafael J. Wysocki <rjw@...>, <davem@...>
Subject: Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison overwritten
Date: Monday, July 21, 2008 - 4:22 pm

On Mon, Jul 21, 2008 at 10:05 PM, Ingo Molnar <mingo@elte.hu> wrote:

We don't catch writes (yet, because kmemcheck gets confused by SLUB's
own writes so far), but yes, we mark objects "freed" when they are
freed (until the slab page is returned to the page allocator) and we
may detect reads from this area before the object is reallocated. In
that case, a "read from freed memory" message will appear.

Unfortunately, it doesn't work quite as well as I'd like it to yet. We
did catch one real bug in ACPI in this way (read-after-free). But as I
have discovered, not all machines support single-stepping over REP
STOS instructions properly. Which means that kmemcheck breaks silently
on some machines. There's also the recent DMA patch, which might
improve things. Linus is right, it's really fragile. But we are
working on it. It is going in the right direction anyway.

(Pekka and I were also working on an extension to SLUB which delays
the freeing of objects, i.e. so that objects will remain in the
"freed" state for a certain amount of time before it can be allocated
again. But we don't really have a _good_ patch for this yet, it was
more like an ugly hack at the time.)


Vegard

-- 
"The animistic metaphor of the bug that maliciously sneaked in while
the programmer was not looking is intellectually dishonest as it
disguises that the error is the programmer's own creation."
	-- E. W. Dijkstra, EWD1036
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
[bug, netconsole, SLUB] BUG skbuff_head_cache: Poison overwr..., Ingo Molnar, (Thu Jul 17, 5:42 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka J Enberg, (Fri Jul 18, 5:00 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Christoph Lameter, (Fri Jul 18, 9:55 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Fri Jul 18, 5:11 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 5:41 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka Enberg, (Mon Jul 21, 5:52 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Mon Jul 21, 6:06 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Christoph Lameter, (Mon Jul 21, 12:22 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Mon Jul 21, 3:57 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 4:05 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Mon Jul 21, 4:22 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 6:50 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Mon Jul 21, 7:25 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 7:55 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 3:21 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Mon Jul 21, 5:24 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Mon Jul 21, 7:33 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Tue Jul 22, 3:50 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Tue Jul 22, 9:34 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Wed Jul 23, 6:31 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Jeff Kirsher, (Wed Jul 23, 6:40 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Mon Jul 21, 8:57 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 10:01 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Mon Jul 21, 7:03 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Christoph Lameter, (Mon Jul 21, 12:19 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Mon Jul 21, 4:23 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Mon Jul 21, 7:13 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka Enberg, (Fri Jul 18, 5:16 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Christoph Lameter, (Fri Jul 18, 9:54 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Fri Jul 18, 1:46 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka Enberg, (Fri Jul 18, 5:02 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Fri Jul 18, 6:16 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka Enberg, (Fri Jul 18, 10:44 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Evgeniy Polyakov, (Fri Jul 18, 12:07 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Christoph Lameter, (Fri Jul 18, 10:48 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Fri Jul 18, 5:09 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Pekka Enberg, (Fri Jul 18, 5:15 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Thu Jul 17, 7:27 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 7:56 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Mon Jul 21, 7:41 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Thu Jul 17, 7:15 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Thu Jul 17, 10:03 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Fri Jul 18, 3:03 am)
Re: [bug] Attempt to release alive inet socket f6fac040, Ingo Molnar, (Fri Jul 18, 3:10 pm)
Re: [bug] Attempt to release alive inet socket f6fac040, Ingo Molnar, (Fri Jul 18, 3:55 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Fri Jul 18, 5:05 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Fri Jul 18, 3:12 am)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 7:52 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Thu Jul 17, 10:13 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Thu Jul 17, 8:05 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 8:16 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 8:01 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Vegard Nossum, (Thu Jul 17, 7:35 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Thu Jul 17, 5:45 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 6:06 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., Ingo Molnar, (Thu Jul 17, 6:43 pm)
Re: [bug, netconsole, SLUB] BUG skbuff_head_cache: Poison ov..., David Miller, (Thu Jul 17, 6:09 pm)