[grsec] Re: grsecurity 2.1.7 2.4.31/2.6.13 test patches

Fri Sep 9 04:25:28 EDT 2005

Hi,

Brad Spengler wrote:
> The hash table implementation used in the RBAC system and the IP address
> tagging functions has been converted to chained hash tables,

I get these on x86-64 (grsecurity-2.1.7-2.6.13-200509062221.patch):

Debug: sleeping function called from invalid context at mm/slab.c:2096
in_atomic():1, irqs_disabled():0

Call Trace:<ffffffff8013333d>{__might_sleep+189} <ffffffff801781d2>{kmem_cache_alloc+34}
       <ffffffff802228d0>{gr_update_task_in_ip_table+352} <ffffffff8037816c>{tcp_bucket_create+28}
       <ffffffff803799da>{tcp_v4_connect+1866} <ffffffff80335d1d>{lock_sock+717}
       <ffffffff8038a9c2>{inet_stream_connect+226} <ffffffff801778a0>{check_poison_obj+48}
       <ffffffff801776d6>{poison_obj+70} <ffffffff80178078>{cache_alloc_debugcheck_after+280}
       <ffffffff80333f49>{sys_connect+185} <ffffffff801b6021>{do_ioctl+33}
       <ffffffff801b62cd>{vfs_ioctl+621} <ffffffff801b5b0d>{sys_fcntl+1037}
       <ffffffff8019b52e>{sys_lseek+78} <ffffffff8010f226>{system_call+126}

Reverting this change makes the messages go away:

http://cvsweb.grsecurity.net/index.cgi/grsecurity226/grsecurity/grsec_sock.c.diff?r1=text&tr1=1.1&r2=text&tr2=1.2&f=u

-- 
Jaakko