/srv/irclogs.ubuntu.com/2011/02/07/#ubuntu-kernel.txt

=== smb` is now known as smb
=== Guest14562 is now known as ogra
=== _LibertyZero is now known as LibertyZero
=== yofel_ is now known as yofel
=== sforshee is now known as saf-afk
=== saf-afk is now known as sforshee
ntemishi14:55
tgardnersmb, did you run out of interest before reviewing Dapper CVE-2010-3880 ?14:57
ubot2tgardner: net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message that contains multiple attribute elements, as demonstrated by INET_DIAG_BC_JMP instructions. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3880)14:57
ntemismy ethernet adapte supports jumbo frames but the driver dodnt let me go beyond 7k14:58
smbNo, I stumbled over the openvz fixup (which is attributed wrongly it seems) and then forgot about it.14:58
ntemisit can do 9k14:58
=== shadeslayer_ is now known as shadeslayer
ntemisrlt 8111E14:58
smbtgardner, No, I stumbled over the openvz fixup (which is attributed wrongly it seems) and then forgot about it.14:58
ntemisin latest 2.6.35-25-server on x86_6414:58
ntemisthe kernel loaded 8169 driver14:59
smbtgardner, Let me go back and do the Dapper one, but I think you should untangle the fix for openvz. (I'd probably do a separate patch anyway)14:59
ntemisit should be 816815:00
smbtgardner, btw, when apw looked at it he noted that it seems to not only move it but the file modified had changed too. 15:00
ntemisi searched realtek site and they have a proper driver there15:00
ntemisr8168-8.021.00.tar15:01
tgardnersmb, hmm, I can't see anything wrong with it. maybe I'm just dyslexic this morning.15:01
ntemiscan you please include it in a natty kernel?15:01
apwntemis, we are unlikely to pull in one of their tarball drivers if we have good support from an in kernel driver15:02
apwalready ... those drivers are often very nasty to debug and harder to maintain15:03
smbtgardner, Ah, no. I guess he might have been misled by kernel/net.. and net/...15:03
ntemishttp://218.210.127.131/products/productsView.aspx?Langid=1&PNid=13&PFid=5&Level=5&Conn=4&ProdID=23915:03
ntemisthis is the ifo for the card15:03
ntemisLINUX driver for kernel 2.6.x and 2.4.x (Support x86 and x64)15:03
ntemis8.021.002011/1/2756k15:03
=== herton is now known as herton_lunch
smbtgardner, The main issue is that the fixup is not required by your change/cve but was required by his. So the fixup would now be attributed to the wrong cve15:04
ntemisapw: why is using the 8169 driver? the manufacturer produce a 8168 driver for it15:04
apwbecause the upstream driver claims that device, thus are claiming to support it15:05
apwand indeed your own report here is that it does at least for frames up to a cirtain size right?15:05
ntemisyes15:06
tgardnersmb, you're referring to the openvz patch?15:06
ntemisSupports jumbo frame to 9K bytes15:06
ntemissee features15:06
ntemiscurrent driver only 7k15:07
smbtgardner, Yes, that additional line (setting that variable to zero) was part of a previous cve. (apparently someone did not do a complete test-build ;-)). You just stumbled over it when trying your build.15:07
ntemisand also i loose the connection every now and then on the server15:07
ntemisrandom disconnection15:07
ntemisno ssh at all15:07
ntemisi have to restart the server15:07
apwntemis, the former i don't expect is very important, the second is an issue indeed15:08
apwrealtek have not tried to make our lives easy by just dumpiing out tarballs for every driver15:08
apwthey are not easy to intregrate, maintain, or debug ... we are therefore very resistant to pull them in15:08
ntemis:)15:09
ntemisso what now?15:09
apwi would recommend trying the latest natty kernel to see if the random dropouts are there too15:09
ntemisi have to binutils and linux tree and install the realtek ones?15:09
ntemiscan i use the generic 2.3.37 stable kernel for natty on my server?15:10
apwntemis, have you any reason to think they are working any better15:10
ntemisthey are the manuf drivers :) ;)15:11
apwno comment15:11
ntemisdont know untill tested15:11
ntemislol15:11
ntemiso.k15:11
ntemiscan i use the 2.6.37 generic kernel in this server?15:11
ntemisthe one in ppa15:12
apwthere is no support for the mainline kernels, so they are probabally not recommended for long term use; they are intended for debugging15:12
ntemishttp://kernel.ubuntu.com/~kernel-ppa/mainline/v2.6.37-natty/15:12
ntemisthis will fuction ok on a 10.10 release?15:13
sconklinsmb: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/57927615:13
ubot2Launchpad bug 579276 in linux "Lost network in KVM VM / virtio_net page allocation failure" [Medium,Triaged]15:13
apwntemis, it may, it has no ubuntu sauce, so it may have trouble15:13
ntemisi just want to be able to use my server , now i have to force shutdown from power every now and then15:14
ntemisolny way to comunicate is from that eth015:15
ntemisone final question apw15:17
ntemisapw: is the v2.6.37-natty kernel includes drivers for the nic's or i have to load them manually15:17
apwntemis, as i say i would recommended testing with a latest natty kernel to see if that is fixed, helps us find fixed15:18
apwntemis, i would say it has the same drivers as previous versions so should support the same cards15:18
ntemisyou mean go for 2.6.38 rc?15:18
apwntemis, i would myself, i would pick the natty kerenl as it has the ubuntu sauce and is more likely to work with your userspace15:19
ntemisam seeing this: v2.6.37-rc2-maverick/15:20
ntemiswhat do you think?15:20
ntemisor this:v2.6.38-rc3-natty15:20
apwi personally wouldn't run any of the kernel-ppa ones in a production env for very long, i would go for a full 2.6.37 without -rc if wanting 27, but again there are 27 based natty kerenls, i would use those15:20
ntemisthanks15:21
=== Quintasan_ is now known as Quintasan
tgardnersmb, so back to the Hardy review for Hardy CVE-2010-3880. Are you thinking the extra cruft should be folded back into the patch for CVE-2010-3876 (which is where it appears to have come from) ?15:39
ubot2tgardner: net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel infinite loop) via crafted INET_DIAG_REQ_BYTECODE instructions in a netlink message that contains multiple attribute elements, as demonstrated by INET_DIAG_BC_JMP instructions. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3880)15:39
ubot2tgardner: net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory by leveraging the CAP_NET_RAW capability to read copies of the applicable structures. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3876)15:39
smbtgardner, I probably would suggest the lazy mode. Which is split it off as separate patch and add references to 3876.15:40
tgardnersmb, OK, I'll get to it in a bit.15:41
apwsforshee, can hear but not reply at the moment15:47
apwrunning strace on X to ensure you got the command right for someone, is a _really_ stupid idea15:48
=== tgardner is now known as tgardner-afk
ntemisapw: you here?15:55
apwntemis, s'up15:56
ntemisi installed 2.6.37 natty15:56
ntemis64bit15:56
ntemisall ok15:56
apwok so upstream has fixed something then15:56
ntemisdont know yet15:57
ntemisi will leave it on for a few days15:57
apwok15:57
ntemisif it looses connection is a negative15:57
ntemisam gonna try jumbo frames on this one to see any dif15:57
=== herton_lunch is now known as herton
ntemisnope16:00
ntemissame output16:00
ntemisSIOCSIFMTU: Invalid argument16:00
ntemisam stuck at 1500 mtu16:01
ntemisfor now :)16:01
ntemisi hope 11.04 is the sweet spot16:01
ntemisall survive the update nfs server samba etc16:04
ntemishmmm....16:07
ntemisserver is faster on this kernel!16:07
ntemisis it a placebo?16:07
apwntemis, depends what you are using it for, there are changes in there to make it more responsive16:08
ntemisit is more responsive!16:08
ntemisCPU usage 27% user, 4% kernel, 52% IO, 18% idle16:09
ntemisand responsive as hell16:09
ntemisa job welldone!16:09
ntemisReal memory 3.87 GB total, 498.02 MB used16:10
ntemismy god!16:10
ntemisthanks guys16:10
ntemis2.6.37 rocks16:10
ogratgardner-afk, the plan for OMAP4 was that we have an installable .deb of .38 in the archive so people can install and test it, we wont build images with that 17:04
ogratgardner-afk, for *images* we need display, which is why i insisted to have it ready asap, a .deb and branch would be fine earlier17:04
bjfogra, so the OMAP4 flavour (non-display) that is built from main, will that be an officially supported flavour ? 17:06
ograbjf, that will become the natty kernel, once the missing features are in17:06
ograand yes, omap4 is an officially supported platform 17:07
ogra(since maverick)17:07
bjfogra, i'm trying to ask (poorly i know) will there be two supported Natty OMAP4 kernels, one built from the master branch (2.6.38) and one built from the ti-omap4 topic branch ?17:08
ograno17:08
ograthe actual plan is that we get a working .38 kernel before kernel freeze 17:08
bjfogra, and if that doesn't happen ?17:09
ograthe prob is that .38 is not yet feature complete so we need .35 for images until thats done17:09
ograbjf, if that doesnt happen people will be killed i guess :)17:09
ograor something similar will happen 17:09
bjfogra, sounds like a plan ! :-)17:10
=== skaet is now known as skaet_afk
=== sconklin is now known as sconklin-lunch
JFo<-need more coffee, brb17:51
=== tgardner-afk is now known as tgardner
rigvedhi everyone...i created a initramfs for 2.6.32-28, which i had built eariler (following Linux Kernel in a Nutshell guide). when i try to boot into this in qemu, i get the error - unable to find udev. can anyone tell me what i'm doing wrong here18:08
apwrigved, how did you make it?18:09
rigvedapw: you mean the initramfs?18:09
apwrigved, yes18:09
rigvedapw: using mkintramfs18:10
rigvedapw: wait, i'll tell you the exact command18:10
rigvedapw: sudo mkinitramfs -f -o /boot/initrd.img-2.6.32.28 -v 2.6.32.2818:13
jjohansenrigved: try sudo update-initramfs -c -k 2.6.32.2818:14
rigvedjjohansen: ok. wait, i'll give it a try18:14
jjohansenrigved: you will also want to run update-grub after that so that grub knows about the new kernel18:15
psurbhismb, ping18:16
rigvedjjohansen: ya i had done that...i booted into the new kernel also...it showed me the Ubuntu 10.04 booting screen...with the dots...then it gave me this error and dropped me to a initramfs shell18:16
tgardnerogra, whats your call on the minimal ti-omap4 kernel for Natty? Is there any reason folks couldn't use the Linaro kernel until TI can get graphics in shape?18:17
smbpsurbhi, hey, though I currently got only one eye and hand free18:18
psurbhismb, what happened?18:19
smbpsurbhi, I am on the phone :)18:19
psurbhiheh18:19
psurbhii will wait for u18:19
rigvedjjohansen: so when i run this command it generated the image, but it couldn't find any files under /lib/modules/2.6.32.28/ in the guide it said to put the built kernel in a test folder.18:21
jjohansenrigved: how did you build your kernel and how did you install it18:22
=== sconklin-lunch is now known as sconklin
rigvedjjohansen: make O=~/linux/linux-2.6.32.28/ menuconfig.18:24
ogratgardner, see above :)18:24
rigvedjjohansen: then make modules_install.18:24
ogra<ogra> tgardner-afk, the plan for OMAP4 was that we have an installable .deb of .38 in the archive so people can install and test it, we wont build images with that 18:24
ogra<ogra> tgardner-afk, for *images* we need display, which is why i insisted to have it ready asap, a .deb and branch would be fine earlier18:24
rigvedjjohansen: then make O=~/linux/linux-2.6.32.28/ ARCH=i386.18:24
rigvedjjohansen: sorry that's make O=~/linux/linux-2.6.32.28/ ARCH=i386 install18:25
ogratgardner, we should have a kernel in the archive asap so we can see whats broken in TIs tree and track the progress, while it is currently starting off from mainline i expect many patches that are pre-promoted in that tree before they hit upstream 18:25
tgardnerogra, so, you're willing to suffer the regression of no GUI for awhile? I'm not really interested in managing 2 ti-omap4 packages.18:26
ograwell, no18:26
ograwe need .35 for finishing off the GUI work on unity-2d18:26
ograi dont expect any changes to .35 18:26
ogranone at all 18:26
ograjust leave it rot and lets care for .3818:27
rigvedjjohansen: sorry again. i had typed sudo for the last two commands18:27
tgardnerogra, so, you want me to carry yet another kernel _and_ meta package for Natty? Or can folks just use the Maverick kernel after I pull 2.6.38 into the Natty ti-omap4 branch?18:27
ograhmm, no, it needs a different name indeed18:28
ograwe dont need a meta18:28
ograjust a binary18:28
jjohansenrigved: so the make install, make modules install should have put a kernel image in /boot/ and installed the modules in /lib/modules/18:28
=== sforshee is now known as sforshee-lunch
jjohansenrigved: so what do you have under /lib/modules/18:29
rsalvetiproblem is that we want a new kernel but still need to use the older one to generate images18:29
ogratgardner, we still need meta and .35 for images 18:29
ograbut threre wont be changes to it18:29
tgardnerogra, could we get by with building the development kernel in a PPA ?18:30
apwwhy can't the new kernel hang out in a PPA until its ready18:30
rigvedjjohansen: there are quite some files in /lib/modules/2.6.32.28/18:30
ograworst case that would suffice, yep18:30
rigvedjjohansen: i'm going to try to boot into qemu using the new initrd-img18:30
jjohansenrigved: err I thought you said that lib /lib/modules/2.6.32.28/ was missing18:30
rigvedjjohansen: that's what update-initramfs said. but there are files under it18:31
apwits not even clear we need it in a PPA, we do most testing with hand rolled .debs anyhow18:32
jjohansenrigved: oh, okay I didn't realize it was only update-initramfs that was having the problem with that18:33
apwogra, its not even clear we need it in a PPA, we do most testing with hand rolled .debs anyhow18:34
jjohansenrigved: maybe try update-initramfs -u -k all18:34
JFo<- grabbing a bite to eat, back son18:35
JFosoon*18:35
rigvedjjohansen: so in virtualbox i get a different error: ALERT! /dev/disk/by-uuid/blah blah blah does not exist. Dropping to shell. then i have a initramfs shell (busybox)18:36
rigvedjjohansen: now i'll try qemu18:36
rigvedjjohansen: then i'll try the other command which you gave18:36
ograapw, we want a .deb available asap, i dont care at all where we pull it from (it would be cooler to have it in the archive but indeed i dont want to add extra work for you guys)18:36
apwogra, so do we have a tree yet?18:37
tgardnerapw, ogra: we could do this in the pre-proposed PPA perhaps.18:37
apwtgardner, if its arm does it need to be a de-virt one yet ?18:37
apwstill ?18:37
ograyes18:37
tgardnerapw, uh, you might be right18:37
ograuntil we get the pandas that are ordered since Nov.18:38
tgardnerapw, we only have one de-virt PPA, right?18:38
apwyeah, and i'd say for this use case a cross-build is as good18:38
apwso the main blocker is having a tree to make it out of18:38
tgardnerapw, well, we could carry a dev branch for awhile.18:38
rigvedjjohansen: same error in qemu.18:39
rigvedjjohansen: now i'll try the other command18:39
apwtgardner, yeah i recon keep it in a separate branch but internally thinking its ti-omap4 until its ready, in the main repo18:39
ograapw, cross isnt an option 18:39
apwthen we can just shove it over the top18:39
apwogra, why not?18:39
tgardnerapw, my thoughts exactly18:39
ograwe need the same thing we will get from the builders else testing is moot18:39
bryceh[ 4635.189079] exe (9084): /proc/9084/oom_adj is deprecated, please use /proc/9084/oom_score_adj instead.18:40
apwogra, define the same ?18:40
bryceh^^ does such an error message indicate the oom handler got called?18:40
apwits built witht he same compilers, just the cross versions18:40
ogranote that we also want to be sure the toolchain dtrt etc18:40
apwyou normally test cross built ones18:40
psurbhismb, i am pushng off for dinner ... its very late in here.. wanted to discuss bug 70939218:40
ubot2Launchpad bug 709392 in nfs-utils "NFS client does not submit "nfs_file_sync" write requests when the file open call includes O_SYNC." [High,Triaged] https://launchpad.net/bugs/70939218:40
psurbhimaybe  tomorrow18:40
ograhmpf18:40
psurbhisee you around!18:40
tgardnerapw, ogra: we can use the c-k-t PPA for Natty. It won't collide with anything going on right now. This should all resolve itslef by mid April18:41
apwtgardner, yep fine with me18:41
ogratgardner, that sounds good18:41
tgardnerok, resolved.18:41
apwwell other than the lack of a tree to package right ?18:41
ograi'm really more confident in natively built packages, sorry for being so stuck in that 18:41
tgardnerogra, I'll respond to Sebastien and Nicholas18:42
ograthanks, i seem to have a mail prob i just tried to send an answer18:42
apwogra, you are right at the end of the process you can't say its deffo good unless its native18:42
apwogra, for the majority of the builds before that i recon you are fine, and you save 6 hours a cycle18:43
ograi would just like to exclude all possible issues so we can see the real probs with the code18:43
apwthen you pay 7 hours a spin, i'd be suicidal at that18:43
ograand i'm sure there will be enough18:43
apwbut its your life18:43
ograwe dont user that kernel on any images so 7h are fine imho18:44
ograit doesnt block anything 18:44
=== sforshee-lunch is now known as sforshee
hertonbryceh: nope, just that the process is trying to set oom_adj, it's a deprecated interface now18:51
hertonfor oom parameter, process should use now oom_score_adj18:51
hertonDocumentation/feature-removal-schedule.txt explains it better in linux source (/proc/<pid>/oom_adj section)18:52
=== skaet_afk is now known as skaet
ograwhoever is ML admin for the kernel list, please reject the duplicated mail from ogra@grawert.net that will end up in your queue18:59
ogra(it was also sent from ogra@ubuntu.com and got through the queue already)19:00
tgardnerogra, thats me19:01
ograjust throw it away please (if yuo do your admin work anyway, no need for extra action)19:01
tgardnerogra, done19:03
ograbah, so you did extra action :P19:03
ograthansk :)19:03
brycehherton, thanks19:05
* tgardner --> lunch19:12
niemeyerGreetings19:23
niemeyerIs there a way to *reserve* a contiguous area of virtual address space within a process, without having it interpreted as an allocation (e.g. without hitting ulimit -v problems)?19:23
=== poelzi_ is now known as poelzi
rigvedjjohansen: hi. i did some googling and found out that the problem is caused because the kernel is unable to mount a SATA HDD. So, in virtualbox, i changed the SATA HDD to a IDE HDD, and it worked. any idea what is happening here?19:30
zulhas anyone seen this on 2.6.38 with running kpartx? http://pastebin.ubuntu.com/564033/19:33
rigvedjjohansen: this is the bug report on launchpad - bug 57607119:33
ubot2Launchpad bug 576071 in ubuntu "After upgrade to Lucid /dev/disk/by-uuid missing when booting with initramfs" [Undecided,Incomplete] https://launchpad.net/bugs/57607119:33
jjohansenrigved: okay hrmm, I don't know anything atm but will take a look19:35
hertonzul: looks you hit the same bug as LP#70016519:37
herton(https://bugs.launchpad.net/ubuntu/+source/linux/+bug/700165)19:37
ubot2Launchpad bug 700165 in linux "qemu-nbd kthread becomes defunct on disconnect" [High,Fix released]19:37
rigvedjjohansen: i don't know what's happening exactly, i don't even understand teh bug report...but atleast now i can move forward in the kernel guide. thanks for your help. it's very late here. i'm off to sleep. good day19:38
keessmb: oh! http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f12d3d04e8f6223276abb068c5d72852174b8c31 should fix the Xen issues with RO/NX. can you re-enable that for the Xen builds?19:56
niemeyerkees: Any idea about the question above, or at least a direction I could look at?20:03
niemeyerherton: Bem vindo, btw :)20:03
* kees reads backscroll20:03
niemeyerIs there a way to *reserve* a contiguous area of virtual address space within a process, without having it interpreted as an allocation (e.g. without hitting ulimit -v problems)?20:03
niemeyerkees: ^20:03
keesI'm not sure what the difference between "reserve" and "allocate" really would be.20:04
keesare you just trying to stop something from using a static range of memory?20:04
hertonniemeyer: obrigado :)20:04
niemeyerkees: That's it20:04
niemeyerkees: So that in the future the page can be mapped continuously with the previous page, if necessary20:05
niemeyerkees: The trick being used now is to mmap() a big range with prot=0, and then changing the prot when it's actually needed20:06
niemeyerkees: It all works well, except that the dumb backend of ulimit -v restricts address space for no reason20:06
niemeyer(why the heck people use that)20:06
keesout of curiosity, why do you care about contiguous future memory allocation?20:07
bguthrokees / smb: I just noticed the kernel.org changeset above. Are there normally xen builds against the ubuntu kernel? If so - where could I find them?20:07
keesbguthro: the "linux-ec2" (Xen guest) is part of the normal natty kernel builds of the "linux" source package.20:08
keesniemeyer: anyway, you're only ever fighting against glibc, so you probably just want to use your own heap allocator.20:09
bguthroah. Its a domU kernel. that makes more sense...I was hoping for the dom0 white whale20:09
niemeyerkees: It is "my own" heap allocator, actually :-) (Go's, to be more precise)20:09
niemeyerkees: The algorithm gets simpler and faster with it20:10
keesniemeyer: if you control the allocator, why do you need the reserve memory regions? you just need to not use them. :P20:10
niemeyerkees: Because other libraries have their own allocators, which will get in the way and explode the application if the area is not reserved20:11
keesniemeyer: right, I mean _replace_ the glibc allocator.20:12
keesniemeyer: so that your allocator is being used for all calls.20:13
niemeyerkees: I don't get what you mean.  Any library doing mmap() can take a page in a non-reserved space.20:13
niemeyerkees: It doesn't matter what glibc is doing20:13
keesniemeyer: ah, okay, sure. most just use malloc, though.20:13
niemeyerkees: mmap() is used for other reasons besides building the arena for malloc20:14
keesniemeyer: but anyway, I get what you're saying. I'm not aware of a way to mark mmap regions offlimits without actually allocating them.20:14
niemeyerkees: Ok, cool20:14
niemeyerkees: Do you know if there's a viable alternative to ulimit -v which doesn't hit the issue?20:14
niemeyerkees: It looks like most people doing ulimit -v are really trying to restrict swapping20:15
niemeyerkees: But the limit of virtual space is much more encompassing than this20:15
keeshow much are you reserving? most sane users of ulimit -v shouldn't be setting it too low20:15
keese.g. I use ulimit -v for local builds to make sure things like gcc and glibc testsuites don't wreck my system.20:16
niemeyerkees: A lot.. or nothing, depending on the POV :-)20:16
niemeyerkees: 16GB, for instance20:16
niemeyerIt's quite a bit, but nothing taking a 64bit space in account20:16
keesO_o20:16
keesare you really growing continugous areas so frequently that you can't just use realloc?20:17
brycehis   video=vesafb:off   the right way to disable vesafb?20:18
niemeyerkees: That doesn't work for a memory arena.. we're talking about the thing that backs malloc()20:18
niemeyerkees: realloc would mean all pointers inside the region shifting20:18
niemeyerkees: This is possible in the future, but it's a much larger problem than the one we're talking about20:18
keesniemeyer: but if it's for an arena why do you need it contiguous? can't you just have multiple arenas?20:19
niemeyerkees: Yes, that was the old implementation.. a contiguous region makes things a lot simpler and faster.20:20
niemeyerkees: E.g. 16GB is mapped with 22 bits (* page size)20:21
* kees wonders if the kernel anonymous mmap routine uses greedy or "after last" allocations.20:23
keesi.e. alloc something, then alloc something 16GB later.20:23
keeswill the next mmap end up in the middle, or after?20:23
niemeyerkees: Good question20:26
keesniemeyer: it works...20:32
keeswait, no20:32
keesyeah, seems to work.20:32
kees$ ./mmap 20:32
kees0x7f3b94f0c000 -> 0x7f3f94f0c000: 16384M20:32
kees0x7f3b94f0a000: ok20:32
kees7f3b94f11000-7f3b94f12000 rw-p 00000000 00:00 0 20:32
kees7f3f94f0c000-7f3f94f0d000 ---p 00000000 00:00 0 20:32
* kees attempts a larger secondary allocation....20:33
niemeyerkees: Hmm.. I don't think I get it20:34
niemeyerkees: This shows you're actually allocating 16GB, right?20:34
keesnope.20:34
kees    start = mmap(NULL, 4096, PROT_READ | PROT_WRITE, MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);20:34
kees    end = mmap(start + 16L*1024L*1024L*1024L, 4096, PROT_NONE, MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);20:34
kees    more = mmap(NULL, 4096*1024, PROT_READ | PROT_WRITE, MAP_PRIVATE | MAP_ANONYMOUS, -1, 0);20:34
keesand more ends up below start, not above it20:34
niemeyerkees: Ahh, ok20:34
niemeyerkees: You mean below end?20:35
keesso... maybe you can use that, but I have no idea how stable it might be.20:35
keesno, 0x7f3b94f0a000 (more) is less than 0x7f3b94f0c000 (start)20:35
keeslooks like it's growing the heap down.20:35
keesbut this is probably all academic; there's nothing that says it won't change behavior at any moment. :P20:36
niemeyerkees: Well, hmm.. I don't think I understand why the experiment proves something useful20:37
niemeyerkees: You're allocating two pages consecutively, and they are 8k apart from each other?20:37
niemeyer>>> 0x7f3b94f0a000 - 0x7f3b94f0c00020:37
niemeyer-819220:37
keesniemeyer: because the kernel didn't allocate anything between 0x7f3b94f0c000 and 0x7f3f94f0c000, leaving a 16GB gap20:38
keesand, ta-da, I broke it.20:39
keesniemeyer: it looks like it's just finding "best match" for anonymous mappings20:40
keesI can get it to alloc "start" below libc, and "end" after libc...20:40
keesso... nevermind! :P20:40
niemeyerI see20:40
niemeyerkees: Was a valid experiment, though20:40
* kees nods20:40
brycehJFo, bug #711568 turned out to be a kernel regression.  Upstream has committed a kernel patch, mind adding this to the kernel team's list to look at?20:41
ubot2Launchpad bug 711568 in xserver-xorg-video-intel "Dithering regression on Intel graphics with .38 Natty kernel" [Undecided,New] https://launchpad.net/bugs/71156820:41
JFoI don't mind at all bryceh :)20:41
JFolooks like apw beat me to the punch, but I went ahead and added the patch tag20:43
JFothanks for the heads up bryceh :)20:43
brycehsure20:44
brycehhopefully I'll have more to come.  There's been a spate of gpu lockups lately, something must be futzed in the .38 drm still.20:45
niemeyerkees: How did you figure it wasn't deterministic?20:53
keesniemeyer: I switched start/end to use PROT_NONE, and looked at the maps file.20:57
keesniemeyer: there was all kinds of stuff between the two :(20:57
niemeyerHmmm..20:57
niemeyerOk20:57
keesniemeyer: http://paste.ubuntu.com/564073/20:58
niemeyerkees: Thanks20:58
keesnp20:59
niemeyerkees: Hmmm21:07
niemeyerkees: That's not a definitive answer I think21:07
keesniemeyer: no, it shows it's pretty unstable.21:07
niemeyerkees: What I mean is that the compiler can choose to allocate certain libraries in fixed addresses21:08
niemeyerkees: This would affect such placement21:08
keesniemeyer: right, but that's against packaging policy (libraries must be -fPIC)21:08
niemeyerkees: Not really.. -fPIC just says the code should be relocatable21:09
niemeyerkees: It doesn't limit the freedom to put such code in a given address21:09
niemeyerkees: linker vs. compiler in this case21:09
keesniemeyer: okay, yes, that's true.21:11
keesbut any pinning of objection locations would defeat the security purpose of ASLR21:12
bjfJFo, can you accept nominations on bug #714732 and bug #714846 ? thanks.21:42
ubot2Launchpad bug 714732 in linux "Maverick update to 2.6.35.11 stable release" [Undecided,New] https://launchpad.net/bugs/71473221:42
ubot2Launchpad bug 714846 in linux "CVE-2010-4242" [Undecided,New] https://launchpad.net/bugs/71484621:42
JFobjf, I can indeed21:43
JFobjf, done21:44
JFo:)21:44
bjfthanks21:44
JFomy pleasure21:45
=== bjf is now known as bjf[afk]
=== sconklin is now known as sconklin-gone

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!