On Thu, Jul 17, 2008 at 11:42 PM, Ingo Molnar <firstname.lastname@example.org> wrote:
1. Notice the range. It's just a single byte.
2. Notice the value. It's just a ++.
Probably a stray increment of a uint8_t somewhere on a freed object?
The offset from the beginning of the object is 0xf658ae9c - 0xf658ae00 = 0x9c.
How big is a struct sk_buff? Hm.. it is in fact quite big. Now what
member has offset 0x9c? Seems to depend on your config. Is there any
way you can figure it out, Ingo? I'll try it with your config too.
"The animistic metaphor of the bug that maliciously sneaked in while
the programmer was not looking is intellectually dishonest as it
disguises that the error is the programmer's own creation."
-- E. W. Dijkstra, EWD1036