Re: [patch] x86: fix PTE corruption issue while mapping RAM using/dev/mem

From: Ingo Molnar
Date: Mon Jan 12 2009 - 18:52:16 EST

Next message: Frederik Deweerdt: "Re: [patch] tlb flush_data: replace per_cpu with an array"
Previous message: Eric W. Biederman: "Re: PCI, ACPI, IRQ, IOAPIC: reroute PCI interrupt to legacy boot interrupt equivalent"
In reply to: Suresh Siddha: "[patch] x86: fix PTE corruption issue while mapping RAM using /dev/mem"
Next in thread: pageexec: "Re: [patch] x86: fix PTE corruption issue while mapping RAM using /dev/mem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Suresh Siddha <suresh.b.siddha@xxxxxxxxx> wrote:

> From: Suresh Siddha <suresh.b.siddha@xxxxxxxxx>
> Subject: x86: fix PTE corruption issue while mapping RAM using /dev/mem
>
> Beschorner Daniel reported:
> > hwinfo problem since 2.6.28, showing this in the oops:
> > Corrupted page table at address 7fd04de3ec00
>
> PaX Team reported a regression with this commit:
>
> > commit 9542ada803198e6eba29d3289abb39ea82047b92
> > Author: Suresh Siddha <suresh.b.siddha@xxxxxxxxx>
> > Date: Wed Sep 24 08:53:33 2008 -0700
> >
> > x86: track memtype for RAM in page struct
>
> This commit breaks mapping any RAM page through /dev/mem, as the
> reserve_memtype() was not initializing the return attribute type and as such
> corrupting the PTE entry that was setup with the return attribute type.
>
> Because of this bug, application mapping this RAM page through /dev/mem
> will die with "Corrupted page table at address xxxx" message in the kernel
> log and also the kernel identity mapping which maps the underlying RAM
> page gets converted to UC.
>
> Fix this by initializing the return attribute type before calling
> reserve_ram_pages_type()
>
> Reported-by: PaX Team <pageexec@xxxxxxxxxxx>
> Reported-and-tested-by: Beschorner Daniel <Daniel.Beschorner@xxxxxxxxxx>
> Tested-and-Acked-by: PaX Team <pageexec@xxxxxxxxxxx>
> Signed-off-by: Suresh Siddha <suresh.b.siddha@xxxxxxxxx>
> Signed-off-by: Venkatesh Pallipadi <venkatesh.pallipadi@xxxxxxxxx>
> Cc: <stable@xxxxxxxxxx>
> ---

applied to tip/x86/urgent, thanks Suresh!

note that the patch caused some conflicts (there were other changes in
pat.c) - i merged it up manually but could you please check the final
commit in tip/master whether it's all OK?

Ingo
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Frederik Deweerdt: "Re: [patch] tlb flush_data: replace per_cpu with an array"
Previous message: Eric W. Biederman: "Re: PCI, ACPI, IRQ, IOAPIC: reroute PCI interrupt to legacy boot interrupt equivalent"
In reply to: Suresh Siddha: "[patch] x86: fix PTE corruption issue while mapping RAM using /dev/mem"
Next in thread: pageexec: "Re: [patch] x86: fix PTE corruption issue while mapping RAM using /dev/mem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]