Re: 2.6.18.5 usb/sysfs bug.

From: Chuck Ebbert
Date: Sun Dec 17 2006 - 02:52:59 EST

Next message: Ingo Molnar: "Re: [PATCH 2.6.20-rc1 00/10] Kernel memory leak detector 0.13"
Previous message: john stultz: "[OOPS] PPC NULL pointer dereference from cache_alloc_refill (ide?)"
In reply to: Dave Jones: "Re: 2.6.18.5 usb/sysfs bug."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In-Reply-To: <20061216141828.GA23368@xxxxxxxxxx>

On Sat, 16 Dec 2006 09:18:28 -0500, Dave Jones wrote:

> > That's strange. Remove_files called sysfs_hash_and_remove()
> > with dir==0xfffffff3 (-13 decimal.)
>
> Hmm, That's -EACCESS. Something not checking a return code at a lower
> level maybe ?

In fs/sysfs/group.c:

void sysfs_remove_group(struct kobject * kobj,
const struct attribute_group * grp)
{
struct dentry * dir;

if (grp->name)
dir = lookup_one_len(grp->name, kobj->dentry,
strlen(grp->name));
else
dir = dget(kobj->dentry);

remove_files(dir,grp);
if (grp->name)
sysfs_remove_subdir(dir);
/* release the ref. taken in this routine */
dput(dir);
}

'dir' is being used without checking whether lookup_one_len()
succeeded.

> It's odd that something disconnects during boot, as nothing gets plugged.

Sometimes notebooks have USB devices built-in and they get treated
as if they were hotplugged.

--
MBTI: IXTP

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ingo Molnar: "Re: [PATCH 2.6.20-rc1 00/10] Kernel memory leak detector 0.13"
Previous message: john stultz: "[OOPS] PPC NULL pointer dereference from cache_alloc_refill (ide?)"
In reply to: Dave Jones: "Re: 2.6.18.5 usb/sysfs bug."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]