must fix
must-fix bugs
=============
drivers/char/
~~~~~~~~~~~~~
o tty locking is broken.
o see fixme in do_tty_hangup(). this causes ppp bugs in local_bh_enable()
o other problems: aviro, dipankar, alan have details.
o somebody will have to document the tty driver and ldisc api
drivers/tty
~~~~~~~~~~~
o viro: tty_driver refcounting, tty/misc/upper levels of sound still not
completely fixed.
drivers/block/
~~~~~~~~~~~~~~
o loop.c: concurrent write access on block devices might cause a deadlock
of the complete system. see:
http://marc.theaimsgroup.com/?l=linux-kernel&m=106275365925769&w==
http://bugzilla.kernel.org/show_bug.cgi?id=1198
thread of possible fix:
http://www.kerneli.org/pipermail/cryptoapi-devel/2003-october/000676.html
(fruhwirth clemens)
o ideraid hasn't been ported to 2.5 at all yet.
we need to understand whether the proposed bio split code will suffice
for this.
drivers/input/
~~~~~~~~~~~~~~
o rmk: unconverted keyboard/mouse drivers (there's a deadline of 2.6.0
currently on these remaining in my/linus' tree.)
o viro: large absence of locking.
o viro: parport is nearly as bad as that and there the code is more hairy.
imo parport is more of "figure out what api changes are needed for its
users, get them done asap, then fix generic layer at leisure"
o (albert cahalan) lots of people (check google) get this message from the
kernel:
psmouse.c: lost synchronization, throwing 2 bytes away.
(the number of bytes will be 1, 2, or 3)
at work, i get it when there is heavy nfs traffic. the mouse goes crazy,
jumping around and doing random cut-and-paste all over everything. this
is with a decently fast and modern pc.
o there seem to be too many reports of keyboards and mice failing or acting
strangely.
drivers/misc/
~~~~~~~~~~~~~
o rmk: ucb1[23]00 drivers, currently sitting in drivers/misc in the arm
tree. (touchscreen, audio, gpio, type device.)
these need to be moved out of drivers/misc/ and into real places
o viro: actually, misc.c has a good chance to die. with cdev-cidr that's
trivial.
drivers/net/
~~~~~~~~~~~~
drivers/net/irda/
~~~~~~~~~~~~~~~~~
o dongle drivers need to be converted to sir-dev
o irport need to be converted to sir-kthread
o new drivers (irtty-sir/smsc-ircc2/donauboe) need more testing
o rmk: refuse irda initialisation if sizeof(structures) is incorrect (i'm
not sure if we still need this; i think gcc 2.95.3 on arm shows this
problem though.)
drivers/pci/
~~~~~~~~~~~~
o alan: some cardbus crashes the system
(bugzilla, please?)
drivers/pcmcia/
~~~~~~~~~~~~~~~
o alan: this is a locking disaster.
(rmk, brodo: in progress)
drivers/pld/
~~~~~~~~~~~~
o rmk: epxa (arm platform) pld hotswap drivers (drivers/pld)
(rmk: will work out what to do here. maybe drivers/arm/)
drivers/video/
~~~~~~~~~~~~~~
o lots of drivers don't compile, others do but don't work.
drivers/scsi/
~~~~~~~~~~~~~
o convert am53c974, dpt_i2o, initio and pci2220i to dma-mapping
o make inia100, cpqfc, pci2000 and dc390t compile
o convert
wd33c99 based: a2091 a3000 gpv11 mvme174 sgiwd93
53c7xx based: amiga7xxx bvme6000 mvme16x initio am53c974 pci2000
pci2220i dc390t
to new error handling
it also might be possible to shift the 53c7xx based drivers over to
53c700 which does the new eh stuff, but i don't have the hardware to check
such a shift.
for the non-compiling stuff, i've probably missed a few that just aren't
compilable on my platforms, so any updates would be welcome. also, are
some of our non-compiling or unconverted drivers obsolete?
fs/
~~~
o aio/direct-io writes can race with truncate and wreck filesystems.
(badari has a patch)
o viro: fs/char_dev.c needs removal of aeb stuff and merge of cdev-cidr.
in progress.
o forward-port sct's o_direct fixes (badari has a patch)
o viro: there is some generic stuff for namei/namespace/super, but that's a
slow-merge and can go in 2.6 just fine
o andi: also soft needs to be fixed - there are quite a lot of
uninterruptible waits in sunrpc/nfs
o trond: nfs has a mmap-versus-truncate problem
kernel/sched.c
~~~~~~~~~~~~~~
o starvation, general interactivity need close monitoring.
o smt aware scheduler (ingo, rusty, nick have implementations)
kernel/
~~~~~~~
o alan: 32bit uid support is *still* broken for process accounting.
create a 32bit uid, turn accounting on. shock horror it doesn't work
because the field is 16bit. we need an acct structure flag day for 2.6
imho
(alan has patch)
o viro: core sysctl code is racy. and its interaction wiuth sysfs
o (ingo) rwsems (on x86) are limited to 32766 waiting processes. this
means that setting pid_max to above 32k is unsafe :-(
an option is to use config_rwsem_generic_spinlock variant all the time,
for all archs, and not inline any part of the ops.
lib/kobject.c
~~~~~~~~~~~~~
o kobject refcounting (comments from al viro):
_anything_ can grab a temporary reference to kobject. iow, if kobject is
embedded into something that could be freed - it _must_ have a destructor
and that destructor _must_ be the destructor for containing object.
any violation of the above (and we already have a bunch of those) is a
user-triggerable memory corruption.
we can tolerate it for a while in 2.5 (e.g. during work on susbsystem we
can decide to switch to that way of handling objects and have subsystem
vulnerable for a while), but all such windows must be closed before 2.6
and during 2.6 we can't open them at all.
o all block drivers which control multiple gendisks with a single
request_queue are broken, due to one-to-one assumptions in the request
queue sysfs hookup.
mm/
~~~
o gfp_dma32 (or something like that). lots of ideas. jejb, zaitcev,
willy, arjan, wli.
specifically, 64-bit systems need to be able to enforce 32-bit addressing
limits for device metadata like network cards' ring buffers and scsi
command descriptors.
o access_process_vm() doesn't flush right. we probably need new flushing
primitives to do this (davem?)
modules
~~~~~~~
(rusty)
net/
~~~~
(davem)
o udp apps can in theory deadlock, because the ip_append_data path can end
up sleeping while the socket lock is held.
it is ok to sleep with the socket held held, normally. but in this case
the sleep happens while waiting for socket memory/space to become
available, if another context needs to take the socket lock to free up the
space we could hang.
i sent a rough patch on how to fix this to alexey, and he is analyzing
the situation. i expect a final fix from him next week or so.
o semantics for ipsec during operations such as tcp connect suck currently.
when we first try to connect to a destination, we may need to ask the
ipsec key management daemon to resolve the ipsec routes for us. for the
purposes of what the kernel needs to do, you can think of it like arp. we
can't send the packet out properly until we resolve the path.
what happens now for ipsec is basically this:
o_nonblock: returns -eagain over and over until route is resolved
!o_nonblock: sleeps until route is resolved
these semantics are total crap. the solution, which alexey is working
on, is to allow incomplete routes to exist. these "incomplete" routes
merely put the packet onto a "resolution queue", and once the key manager
does it's thing we finish the output of the packet. this is precisely how
arp works.
i don't know when alexey will be done with this.
net/*/netfilter/
~~~~~~~~~~~~~~~~
(rusty)
sound/
~~~~~~
global
~~~~~~
o viro: 64-bit dev_t (not a mustfix for 2.6.0). 32-bit dev_t is done, 64-bit
means extra work on nfsd/raid/etc.
o alan: forward port 2.4 fixes
- chris wright: security fixes including execve holes, execve vs proc races
o there are about 60 or 70 security related checks that need doing
(copy_user etc) from stanford tools. (badari is looking into this, and
hollisb)
o a couple of hundred real looking bugzilla bugs
o viro: cdev rework. mostly done.
Acceuil
suivante
must fix FREE Microwave Oven Repair and Fix Finder Escalade -- Petites annonces - vends chaussures neuves et fix ... Tendeur Fix pour violoncelleMaison Tasset-Magasin de musique Tendeur Fix pour altoMaison Tasset-Magasin de musique Übersetzungsdienst in Hamburg- Fix-Sprachen Q-fix - home computer support Bob le Bricoleur : Fix it Fun ! Forum Auto - Contestation:abscence "fix" ou "mobile" + "non ... Jouet Animo Fix sur king-jouet.com 91.3 .:: Today's Christian Radio ::.. The FIX! HEDGE FUNDS ->> FIX ASSET MANAGEMENT ->> FAM Tidy Up iTunes MP3 Collection - Fix ID3 Tags And More Connected ... fix - definition of fix by the Free Online Dictionary, Thesaurus ... Object Fix Zip, pour réparer les fichiers ZIP endommagés ... Prim'X Technologies - Fix Notes du logiciel de chiffrement ZoneCentral The Denver Post - Shopping for Rox tix fix Recette Cocktail Whisky Fix ¤ 1001 Cocktails IEFix Utility - Description Dent Fix Equipment Eric's Archived Thoughts: Framework Fix REGO-FIX® - Swiss Precision Tools - collets, toolholders, nuts ... Fix Brothers Fruit Farm How to Change the World: The Entrepreneur's New Year's Resolution ... Session Fix :: Firefox Add-ons This Global Warming Fix Stinks [s1] Episode 13 - The Fix (Le Remède) Trev’s Travels » Blog » Word Fix Plugin Téléchargement NOD32.FiX.v2.1-nsane.exe SPACE.com -- NASA Reveals Plan to Fix Solar Wing OE-QuoteFix should fix Historical Gold Charts and Data - London Fix Laptops: easy fix for global education? csmonitor.com 株式会社フィクス トップページ Local News Human stem cells fix heart damage in lab rats ... Portail de l'Autoproduction de Musique Francophone : ID-FIX fix - Wiktionnaire Canon has fix for high-end SLR autofocus Underexposed - CNET ... mental_floss magazine - Where Knowledge Junkies Get Their Fix IBM - DB2 Version 9.1 fix packs and clients DBF Recovery - Repair & Fix Corrupt DBF File - DBF Repair - Fix dbf fix : Avis des membres eBay et Guide d'achat Bicycle Repair and Maintenance: Bicycling Magazine.com Le blog du groupe ID-FIX - Espace Perso HitMuse de ID-FIX Winamp Updated to Fix Security Hole Fix ATI pour Counter-Strike 1.3 - PC INpact Emploi FIX Technical Sales (OMS, FIX, Algorithmic Trading Sales ... 予定調整ツール:fix on Logic-Immo : Immobilier Fix-saint-geneys Carrossiers indépendant au Canada - Fix Auto Carrossier 飞客数据恢复中心·硬盘RAID数据恢复{北京\上海…}电话:800-810-6696 Chancelière Cabrio Fix Number One - Accessoires poussette ... Thermal Fix Serum de Vichy Shop.WND.com - A WorldNetDaily Exclusive! Descriptif du produit Tol-Fix de Tollens sur Batiproduits.com Identity Theft Fraud Resource - Insurance & Repair Services ... Acheter Couche lavable Easy fix de popolini... avec eco-SAPIENS Télécharger Dial-a-fix 0.57.7 Stable Full gratuite en française ... Télécharger Fix My Registry 2.3 gratuite en française - Brothersoft.fr Neo Fix XIV PSTwo - : FOXCHIP : Modification et Réparation des ...