Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P

From: Larry Finger
Date: Fri Dec 05 2008 - 18:18:28 EST

Next message: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Previous message: Jonathan Corbet: "[PATCH 2.6.28] Fix FASYNC race"
In reply to: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Next in thread: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Greg KH wrote:
> On Fri, Dec 05, 2008 at 03:47:45PM +0100, Christian Lamparter wrote:
>> This patch fixes a problem identified by Johannes Berg.
>
> No, it only papers over the real problem here, let's work on a correct
> patch please.

I can contribute a little info. If SLUB debugging is enabled, and the boot
command includes 'slub_debug=P', I get a GPF in kref_get(), which is called from
kobject_get() with the following code:

if (kobj)
kref_get(&kobj->kref);

>From the dump, &kobj->kref is 0x6b6b6b6b6b6b6dbb, a poisoned value.

Somewhere, the "struct urb" has been freed, but kobj has not been set to NULL.

As everything I've found is a symptom, I'm still looking for the real cause.

Larry

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Previous message: Jonathan Corbet: "[PATCH 2.6.28] Fix FASYNC race"
In reply to: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Next in thread: Greg KH: "Re: [PATCH] p54usb: fix usb_kill_urb hang with slub_debug=P"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]