Re: Oops on ibmasm

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On Thu, Mar 09, 2006 at 09:41:45AM +1100, Srihari Vijayaraghavan wrote:
 > command count: 1
 > input: ibmasm RSA I remote mouse as
 > /class/input/input2
 > input: ibmasm RSA I remote keyboard as
 > /class/input/input3
 > ibmasm remote responding to events on RSA card 0
 > command count: 2
 > ibmasm_exec_command:130 at 1141819512.780778
 > do_exec_command:107 at 1141819512.780787
 > respond to interrupt at 1141819512.782055
 > exec_next_command:150 at 1141819512.782094
 > finished interrupt at   1141819512.782103
 > command count: 1
 > Unable to handle kernel paging request at virtual
 > address 6b6b6b6b

the problem is we do this..


command_put drops the refcount of the kobject in sp,
which then gets freed in the .release (free_command)
which ends up kfree'ing 'sp'.

unsurprisingly, it goes bang the next time something
tries to access it.  (Ie the 2nd line above)

It's totally busted.


To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at
Please read the FAQ at

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]
  Powered by Linux