Re: [BUG] SLOB's krealloc() seems bust

From: Peter Zijlstra
Date: Tue Oct 07 2008 - 10:13:27 EST

Next message: Christoph Lameter: "Re: [PATCH 3/3] Convert the UDP hash lock to RCU"
Previous message: Tom Tucker: "[PATCH v2a] 9prdma: RDMA Transport Support for 9P"
In reply to: Christoph Lameter: "Re: [BUG] SLOB's krealloc() seems bust"
Next in thread: Christoph Lameter: "Re: [BUG] SLOB's krealloc() seems bust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 2008-10-07 at 09:07 -0500, Christoph Lameter wrote:
> > Which basically shows us that the content of the pcpu_size[] array got
> > corrupted after the krealloc() call in split_block().
> >
> > Which made me look at which slab allocator I had selected, which turned
> > out to be SLOB (from testing the network swap stuff).
>
> krealloc() is in generic core code (mm/util.c) and is the same for all allocators.

Joy :/

> krealloc uses ksize() which is somewhat dicey for SLOB because it only works
> on kmalloc'ed memory. Is the krealloc used on memory allocated with kmalloc()?
> Slob's ksize could use a BUG_ON for the case in which ksize() is used on
> kmem_cache_alloc'd memory.

kernel/module.c: perpcu_modinit() reads:

pcpu_size = kmalloc(sizeof(pcpu_size[0]) * pcpu_num_allocated,
GFP_KERNEL);

kernel/module.c: split_block() reads:

new = krealloc(pcpu_size, sizeof(new[0])*pcpu_num_allocated*2,
GFP_KERNEL);

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Christoph Lameter: "Re: [PATCH 3/3] Convert the UDP hash lock to RCU"
Previous message: Tom Tucker: "[PATCH v2a] 9prdma: RDMA Transport Support for 9P"
In reply to: Christoph Lameter: "Re: [BUG] SLOB's krealloc() seems bust"
Next in thread: Christoph Lameter: "Re: [BUG] SLOB's krealloc() seems bust"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]